f8060fbb5713931af2df3a0fb3cb3ce3_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f8060fbb5713931af2df3a0fb3cb3ce3_JaffaCakes118
Size

503KB
MD5

f8060fbb5713931af2df3a0fb3cb3ce3
SHA1

8bfc7b1414b43a29808833596eb4b61d917c1691
SHA256

8a476f87f8deec4ba38de7e4c36fbb542e9b8fe7371f4dc20b19232a42676aba
SHA512

4ab12638244c775c0dafe6b96e3d04a5a42a825dd79ac98fed75008a9d156e11fdefca95395a0f7ba84fc5798d5fd7c86291c1bf6003454e3590056d0707902c
SSDEEP

12288:WCdEVSuOAvvrWPBpQyy/ArPa8Ry2H8h4:ndYvzApQlY+8U4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f8060fbb5713931af2df3a0fb3cb3ce3_JaffaCakes118

Files

f8060fbb5713931af2df3a0fb3cb3ce3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c4e02a3eeef8b831f05fa3f826b06003

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

ShowScrollBar
FindWindowA
SwitchDesktop
RegisterWindowMessageA
LoadBitmapA
RegisterClassA
RegisterClassExA
EnumDisplayDevicesW
LoadCursorFromFileA
DlgDirListA
GetSysColor
IsDlgButtonChecked
GetProcessDefaultLayout
EnumWindows

kernel32

HeapAlloc
GetCurrentThreadId
IsDebuggerPresent
GetStringTypeW
GetModuleFileNameA
GetConsoleCP
GetModuleHandleW
FindFirstFileExW
GetCurrentThread
SetEnvironmentVariableA
FreeLibrary
GetTimeZoneInformation
SetTimeZoneInformation
GetProcAddress
TlsAlloc
ExitProcess
GetConsoleOutputCP
TlsSetValue
FindFirstFileA
SetLastError
RtlUnwind
FreeEnvironmentStringsW
HeapSize
GetModuleHandleA
GetLocaleInfoA
Sleep
GetEnvironmentStrings
MultiByteToWideChar
ReadFile
DeleteCriticalSection
VirtualQuery
GetDriveTypeW
VirtualAlloc
HeapCreate
InterlockedExchange
EnumSystemLocalesA
FindResourceA
InterlockedDecrement
VirtualFree
GetTimeFormatA
SetFilePointer
WriteConsoleA
SetHandleCount
SetThreadLocale
IsValidLocale
SetUnhandledExceptionFilter
GetACP
QueryPerformanceCounter
LeaveCriticalSection
LocalFree
IsValidCodePage
CreateMutexW
WaitForSingleObjectEx
GetStartupInfoA
GetDateFormatA
HeapReAlloc
CloseHandle
FileTimeToSystemTime
OpenMutexA
FlushFileBuffers
LoadLibraryA
GetCommandLineA
CreateProcessW
CompareStringA
GetStdHandle
SetConsoleCtrlHandler
UnhandledExceptionFilter
FreeEnvironmentStringsA
TlsFree
SetStdHandle
GetEnvironmentStringsW
CreateFileA
GetCPInfo
GetTickCount
InterlockedIncrement
WideCharToMultiByte
GetLastError
GetCurrentProcessId
WriteFile
GetFileType
EnterCriticalSection
LCMapStringW
CompareStringW
InitializeCriticalSectionAndSpinCount
TerminateProcess
CreateMutexA
GetOEMCP
GetSystemTimeAsFileTime
GetCurrentProcess
GetConsoleMode
LCMapStringA
MoveFileW
GetUserDefaultLCID
HeapDestroy
TlsGetValue
GetStringTypeA
GetLocaleInfoW
HeapFree
WriteConsoleW

advapi32

RegSaveKeyW
RegOpenKeyW
StartServiceA
RegConnectRegistryW
LookupPrivilegeDisplayNameW
RegSetValueW
RegCreateKeyW
CryptImportKey
InitializeSecurityDescriptor
CryptDeriveKey

shell32

SHGetDiskFreeSpaceA
SHAddToRecentDocs
DragQueryFileAorW
SheChangeDirA
DragQueryPoint

gdi32

FillPath
GetCharABCWidthsFloatA
GetMetaFileA
SetICMProfileA
CreateEllipticRgnIndirect
SetAbortProc
OffsetClipRgn
SetPaletteEntries
PlayEnhMetaFile
CreatePolygonRgn
SetMetaRgn
PtInRegion
GetTextExtentExPointW
GetEnhMetaFileDescriptionW
SetWindowOrgEx
GetICMProfileA
CreateCompatibleBitmap

comctl32

InitCommonControlsEx

wininet

RetrieveUrlCacheEntryStreamW
InternetCreateUrlW
InternetDialW

Sections

.text
Size: 175KB - Virtual size: 174KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 314KB - Virtual size: 314KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c4e02a3eeef8b831f05fa3f826b06003

Headers

File Characteristics

Imports

user32

kernel32

advapi32

shell32

gdi32

comctl32

wininet

Sections

.text Size: 175KB - Virtual size: 174KB

.rdata Size: 10KB - Virtual size: 18KB

.data Size: 314KB - Virtual size: 314KB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 175KB - Virtual size: 174KB

.rdata
Size: 10KB - Virtual size: 18KB

.data
Size: 314KB - Virtual size: 314KB

.rsrc
Size: 2KB - Virtual size: 1KB