f8358bd23308296ce5f34f5be7349633_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f8358bd23308296ce5f34f5be7349633_JaffaCakes118
Size

237KB
MD5

f8358bd23308296ce5f34f5be7349633
SHA1

207320f02eefa450165527f51c07851137d3b282
SHA256

7bf61ea2ebedb7e3597e712bc1cea5929cec85bd9d4243680135f04392dd7441
SHA512

d019b99a30eaec704d83e2494224d4ec0c7768c7a38ca64e026362dbcef8014133b746337b745c600a76b5545f5315a68739d5a68d0adeb552277bccaa05e175
SSDEEP

6144:Bfb6x4abRQhxAIO7vhtzhGR60huOMR+J22SmaHw+nGfgA9:UBQWPW6u/aLi9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f8358bd23308296ce5f34f5be7349633_JaffaCakes118

Files

f8358bd23308296ce5f34f5be7349633_JaffaCakes118
.exe windows:4 windows x86 arch:x86

dd876210eb6001fe19dc3179ced431f3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

GetUserNameW
RegOpenKeyExW
RegCloseKey
LookupSecurityDescriptorPartsW
RegFlushKey
CryptGetProvParam
CryptEnumProviderTypesW
CryptGetHashParam
RegConnectRegistryW
CryptCreateHash
CryptDestroyHash
CryptSetProvParam
CryptEncrypt
RegQueryInfoKeyA
CryptDuplicateHash
RegEnumKeyExA
RegDeleteValueA
RegDeleteKeyA
CryptSetProviderExA
CryptEnumProvidersA
CryptEnumProvidersW
CryptSetKeyParam
CreateServiceW
LogonUserW
RevertToSelf

comdlg32

GetSaveFileNameA
LoadAlterBitmap
ReplaceTextW
PrintDlgW
ChooseColorW
ReplaceTextA
GetOpenFileNameW
GetFileTitleA
PageSetupDlgA
FindTextA
ChooseFontW
PrintDlgA
GetSaveFileNameW
GetOpenFileNameA
GetFileTitleW
PageSetupDlgW

gdi32

GetCharABCWidthsW
GetOutlineTextMetricsA
RealizePalette
GetEnhMetaFilePaletteEntries
SetBkColor
RemoveFontResourceA

wininet

GopherGetAttributeW
GopherGetLocatorTypeW
GopherFindFirstFileA
HttpQueryInfoA
DeleteIE3Cache
FtpSetCurrentDirectoryA
DeleteUrlCacheEntryA
GetUrlCacheEntryInfoExW
InternetReadFile
SetUrlCacheConfigInfoA
ShowClientAuthCerts

kernel32

HeapCreate
SetConsoleTitleW
GetLastError
TlsFree
GetTimeFormatW
SetHandleCount
GetTimeFormatA
GetModuleHandleA
GetCurrentThreadId
GetCommandLineW
GetCurrentProcessId
RtlFillMemory
GetUserDefaultLCID
LCMapStringA
FreeEnvironmentStringsW
SetConsoleTitleA
SetLastError
GetProcAddress
WideCharToMultiByte
GetCurrentProcess
GetStartupInfoA
GetLocaleInfoA
TlsGetValue
OutputDebugStringW
FreeEnvironmentStringsA
GetTimeZoneInformation
DeleteCriticalSection
GetStringTypeA
TerminateProcess
GetStartupInfoW
ReadConsoleInputW
InitializeCriticalSection
GetSystemTimeAsFileTime
HeapSize
GetTickCount
EnumSystemLocalesA
GetFileType
GetProfileStringW
GetThreadLocale
GetPrivateProfileSectionA
GetStringTypeW
LoadLibraryExA
HeapReAlloc
SetEnvironmentVariableA
GetEnvironmentStringsW
UnhandledExceptionFilter
GetACP
IsValidLocale
GetSystemDefaultLCID
VirtualUnlock
LoadLibraryA
TlsSetValue
MultiByteToWideChar
GetDateFormatA
GetCurrentThread
TlsAlloc
GetTempPathA
GetOEMCP
GetModuleFileNameW
VirtualFree
lstrcatA
WaitNamedPipeW
CompareStringW
ExitProcess
GetStdHandle
GetSystemInfo
WriteFile
HeapAlloc
WritePrivateProfileStructA
VirtualAlloc
InterlockedExchange
HeapFree
GetLocaleInfoW
CreateDirectoryExA
FreeLibrary
GetModuleFileNameA
RtlUnwind
LeaveCriticalSection
CompareStringA
LCMapStringW
HeapDestroy
IsBadWritePtr
VirtualProtect
GetVersionExA
IsValidCodePage
QueryPerformanceCounter
GetEnvironmentStrings
GetCommandLineA
EnterCriticalSection
GetCPInfo
VirtualQuery

user32

GetIconInfo
ToAscii
wvsprintfA
EndMenu
GetWindowWord
MonitorFromPoint
LoadKeyboardLayoutA
RegisterDeviceNotificationW
OemToCharBuffW
SetCapture
CreateIconFromResource
LoadImageW
DrawAnimatedRects
GetClipboardFormatNameA

Sections

.text
Size: 118KB - Virtual size: 117KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 110KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dd876210eb6001fe19dc3179ced431f3

Headers

File Characteristics

Imports

advapi32

comdlg32

gdi32

wininet

kernel32

user32

Sections

.text Size: 118KB - Virtual size: 117KB

.data Size: 110KB - Virtual size: 124KB

.rsrc Size: 8KB - Virtual size: 8KB

.text
Size: 118KB - Virtual size: 117KB

.data
Size: 110KB - Virtual size: 124KB

.rsrc
Size: 8KB - Virtual size: 8KB