f5327b0b5868ea87f8f21dfa16e9b99f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f5327b0b5868ea87f8f21dfa16e9b99f_JaffaCakes118
Size

442KB
MD5

f5327b0b5868ea87f8f21dfa16e9b99f
SHA1

6dfcab59f0ca1454bb84b66d64e4390092c72ee3
SHA256

40dbfb641c4f79bbdc89533d8f452cf0c80bc1a68558dd078b541ceadb17eb98
SHA512

a9ece9e731776ac2597788bbd72e194567ae2e0bdffb359b0fdc1cffea8fe71a61ec7c7a697100a5a1977aa00e492dd21268a117504107a0686c0fff1c9d2cf6
SSDEEP

12288:Qzw7TN1OVWWY87pj90WRU540W5CAub/jv1A:iEN1OIgSWRUmrQ1bra

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f5327b0b5868ea87f8f21dfa16e9b99f_JaffaCakes118

Files

f5327b0b5868ea87f8f21dfa16e9b99f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a5f923c3493dc08e6b8a0db4c1ffeae1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHQueryRecycleBinA
SHGetSpecialFolderPathA
ShellExecuteEx
CheckEscapesW
ExtractIconA
ExtractIconW
ShellExecuteA
FindExecutableA
ExtractIconExW
RealShellExecuteW
DoEnvironmentSubstA
ShellExecuteExW
DragQueryFileA
SHFreeNameMappings
DragQueryFileAorW
ShellAboutW

comdlg32

PrintDlgW
GetFileTitleW
GetFileTitleA
GetOpenFileNameW
PrintDlgA
ChooseColorA
ReplaceTextA
ChooseFontA
ChooseFontW
PageSetupDlgA
GetOpenFileNameA
ChooseColorW
LoadAlterBitmap

wininet

DeleteUrlCacheEntryA
DeleteUrlCacheEntry
SetUrlCacheEntryGroupW
InternetGetCookieW
UnlockUrlCacheEntryFile
HttpEndRequestW
SetUrlCacheEntryGroup
InternetErrorDlg
FtpPutFileW
FindNextUrlCacheEntryExW
GopherFindFirstFileA
InternetSetDialState
FindFirstUrlCacheEntryExA
FtpRemoveDirectoryA
FtpPutFileA
HttpSendRequestExW
InternetAlgIdToStringW
FtpRenameFileW
GopherGetAttributeA
RetrieveUrlCacheEntryStreamA
InternetConfirmZoneCrossingW
InternetShowSecurityInfoByURLA
InternetReadFileExA
HttpAddRequestHeadersW
InternetGetConnectedState

gdi32

GetWinMetaFileBits
GetPaletteEntries
LineTo

kernel32

CompareStringA
GetEnvironmentStringsW
SetEvent
GetSystemTimeAsFileTime
GetModuleFileNameA
IsValidLocale
CreateFileMappingA
SetStdHandle
ExitProcess
IsValidCodePage
TlsFree
GetVersionExA
LCMapStringA
LeaveCriticalSection
ReadFileEx
SetEnvironmentVariableA
LoadLibraryA
VirtualQuery
GetACP
GetLastError
RtlUnwind
GetEnvironmentStrings
HeapReAlloc
VirtualAlloc
GetFullPathNameW
GetOEMCP
CompareStringW
GetCPInfo
GetCurrentThreadId
SetFilePointer
TerminateThread
CloseHandle
FlushFileBuffers
HeapValidate
FreeEnvironmentStringsA
RemoveDirectoryW
GetCommandLineA
ConvertDefaultLocale
GetFileType
GetPrivateProfileSectionNamesW
HeapDestroy
GetStdHandle
HeapCreate
EnterCriticalSection
GetCurrentProcessId
WideCharToMultiByte
GetTickCount
TlsAlloc
FillConsoleOutputCharacterA
FreeEnvironmentStringsW
GetStringTypeExW
SetConsoleActiveScreenBuffer
GetCurrentThread
SetConsoleCtrlHandler
lstrcmpiW
GetLocaleInfoA
GetDateFormatA
InitializeCriticalSection
IsBadWritePtr
GetLocaleInfoW
GetFileAttributesExA
AllocConsole
HeapFree
EnumSystemLocalesA
GetCurrentProcess
TlsGetValue
QueryPerformanceCounter
GetStartupInfoA
SetLastError
TlsSetValue
InterlockedDecrement
MultiByteToWideChar
TerminateProcess
GetTimeZoneInformation
GetSystemDirectoryW
CreateDirectoryA
LocalUnlock
GetStringTypeA
WaitForSingleObjectEx
GetUserDefaultLCID
GetModuleHandleA
VirtualFree
WriteFile
GetThreadSelectorEntry
GetProcAddress
GetSystemInfo
VirtualProtect
SetHandleCount
UnhandledExceptionFilter
DebugBreak
OutputDebugStringA
LCMapStringW
GetTimeFormatA
SetEndOfFile
DeleteCriticalSection
CreateToolhelp32Snapshot
GetStringTypeW
InterlockedIncrement
HeapAlloc
InterlockedExchange
IsBadReadPtr

Sections

.text
Size: 157KB - Virtual size: 157KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 279KB - Virtual size: 278KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a5f923c3493dc08e6b8a0db4c1ffeae1

Headers

File Characteristics

Imports

shell32

comdlg32

wininet

gdi32

kernel32

Sections

.text Size: 157KB - Virtual size: 157KB

.data Size: 279KB - Virtual size: 278KB

.rsrc Size: 5KB - Virtual size: 4KB

.text
Size: 157KB - Virtual size: 157KB

.data
Size: 279KB - Virtual size: 278KB

.rsrc
Size: 5KB - Virtual size: 4KB