fb4f1c9a0835311c1f0c17ecdcfc0a3c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

fb4f1c9a0835311c1f0c17ecdcfc0a3c_JaffaCakes118
Size

493KB
MD5

fb4f1c9a0835311c1f0c17ecdcfc0a3c
SHA1

e7c92e5f824265b5d35440d99cef03a328e5a4a8
SHA256

681aaae2ade00241d0942f20f0fb511cb0f2a4916057916e68cb5a0b242f582a
SHA512

67d3be35c8a2b5eb25a16c46e8d9613e7d6ce0f8fd231dbb87ca99ecaad749fe89edb685123abc2bda765589258f9963f83fa2e8d93a7113e4954989bc9853e7
SSDEEP

12288:u/rwFwHxoClYDr6waXVGpXGj/fwUGI6NudBo8Eh4zeyYxT5qXKuNt3DPjk3fPAi:yr+wH68+G7DL2xxT5q6u7s3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fb4f1c9a0835311c1f0c17ecdcfc0a3c_JaffaCakes118

Files

fb4f1c9a0835311c1f0c17ecdcfc0a3c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5df4deb13a89b7a9fbcd6cf0860bcf2c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

PageSetupDlgW
PageSetupDlgA
GetSaveFileNameA
ReplaceTextW
GetSaveFileNameW
ChooseColorA
ChooseFontW
GetFileTitleW
ReplaceTextA
ChooseColorW
ChooseFontA
GetOpenFileNameA
PrintDlgW
FindTextA

wininet

InternetCloseHandle
ShowCertificate
InternetSetCookieA
GetUrlCacheEntryInfoW
InternetGetCertByURLA

advapi32

RegEnumValueA
CryptEnumProvidersA
RegCreateKeyExW
RegDeleteKeyW
CryptDestroyKey
CryptGetProvParam
CryptHashSessionKey
CryptImportKey
CryptDuplicateKey
CryptAcquireContextW
RegDeleteValueA
CryptSetProviderExW
RegFlushKey
CryptGetUserKey
CryptSignHashW
RegRestoreKeyA
RegLoadKeyW
CryptGetDefaultProviderA

user32

DdeConnect
SetCapture
CreateIconFromResource
SwitchToThisWindow
GetDoubleClickTime
ModifyMenuW
EnumPropsW
EndDeferWindowPos
GetScrollPos
GetMonitorInfoA
GetOpenClipboardWindow
DrawStateA
EnableScrollBar
GetPriorityClipboardFormat
GetWindowRect
SetMenuInfo
CopyAcceleratorTableA
ValidateRgn
WaitMessage
AnimateWindow
DrawFrame

kernel32

VirtualQuery
HeapCreate
TlsFree
TransmitCommChar
LockResource
SetLastError
TerminateProcess
lstrlen
GetCommandLineA
SetPriorityClass
GetStartupInfoW
VirtualProtect
GetStartupInfoA
GetProfileIntA
GetEnvironmentStrings
LCMapStringW
GetProcAddress
FoldStringA
GetStdHandle
FreeEnvironmentStringsW
GetSystemInfo
GetEnvironmentStringsW
GetTimeFormatW
GetOEMCP
LCMapStringA
UnhandledExceptionFilter
TlsAlloc
QueryPerformanceCounter
VirtualFree
GetTickCount
ExitProcess
LeaveCriticalSection
GetCPInfo
GetModuleHandleA
GetUserDefaultLCID
GetConsoleTitleW
IsBadWritePtr
CompareStringA
HeapAlloc
FileTimeToSystemTime
GetTimeZoneInformation
WriteFile
DeleteCriticalSection
HeapReAlloc
HeapSize
IsValidCodePage
CreateFileMappingA
GetDateFormatA
WideCharToMultiByte
EnterCriticalSection
GetTimeFormatA
FindResourceExA
GetLastError
MultiByteToWideChar
LoadLibraryA
FreeEnvironmentStringsA
GetCurrentProcessId
IsValidLocale
EnumSystemLocalesA
WriteConsoleW
GetModuleFileNameA
TlsGetValue
GetModuleFileNameW
GetCurrentThreadId
InterlockedExchange
RtlUnwind
GetLocaleInfoA
TlsSetValue
GetSystemTimeAsFileTime
CompareStringW
VirtualAlloc
HeapDestroy
GetACP
GetVersionExA
InitializeCriticalSection
GetLocaleInfoW
GetCurrentThread
GetStringTypeW
SetEnvironmentVariableA
GetFileType
HeapFree
GetStringTypeA
GetComputerNameA
GetCurrentProcess
GetCommandLineW
SetHandleCount
EnumResourceNamesW

Sections

.text
Size: 207KB - Virtual size: 206KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 275KB - Virtual size: 275KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5df4deb13a89b7a9fbcd6cf0860bcf2c

Headers

File Characteristics

Imports

comdlg32

wininet

advapi32

user32

kernel32

Sections

.text Size: 207KB - Virtual size: 206KB

.data Size: 275KB - Virtual size: 275KB

.rsrc Size: 10KB - Virtual size: 9KB

.text
Size: 207KB - Virtual size: 206KB

.data
Size: 275KB - Virtual size: 275KB

.rsrc
Size: 10KB - Virtual size: 9KB