fb4f82bd1d18b4b4adf30c502be8776e_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

fb4f82bd1d18b4b4adf30c502be8776e_JaffaCakes118
Size

548KB
MD5

fb4f82bd1d18b4b4adf30c502be8776e
SHA1

0be88bd4bd757353e7cc15b44d1b4ddbf0b52f31
SHA256

faa7c2dd70d40f3bc681b94d8d5d3dfa15207f629b86ec8e768ff883a3825c8c
SHA512

bd8107ec71b70ff6b3a661d6d75ad7100d089808277c502c8ebc0bc2c66a9675f2105695065edadd3460edefe615b1dc5bd58b94d675113efe1ad0c433a7d547
SSDEEP

12288:GbyjU00hQOoEQIA2HP9HWROX5atgfF0m+LOFX3tPnxQ8JD:2T0uQObQIh9Wg5at+0JmPP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fb4f82bd1d18b4b4adf30c502be8776e_JaffaCakes118

Files

fb4f82bd1d18b4b4adf30c502be8776e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

53fa61023a851cb17f760b1485745201

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetACP
TlsFree
GetTimeZoneInformation
CreateMutexA
UnhandledExceptionFilter
GetTickCount
HeapFree
GetDiskFreeSpaceExA
GlobalFree
VirtualQuery
Sleep
LCMapStringA
LoadLibraryA
InterlockedIncrement
GetProcAddress
MultiByteToWideChar
GetComputerNameA
VirtualProtect
WideCharToMultiByte
SetEnvironmentVariableA
WriteConsoleA
OpenWaitableTimerA
GetModuleHandleA
QueryPerformanceCounter
GetEnvironmentStringsW
CompareStringA
CloseHandle
SetThreadIdealProcessor
TerminateProcess
WriteFile
HeapCreate
InterlockedDecrement
HeapSize
FlushFileBuffers
GetLocaleInfoA
GetCPInfo
GetStdHandle
GetSystemTimeAsFileTime
EnumSystemLocalesA
SetHandleCount
GetConsoleOutputCP
TlsSetValue
TlsAlloc
ReadFile
OpenMutexA
CompareStringW
GetModuleHandleW
HeapAlloc
GetLastError
GlobalReAlloc
SetFilePointer
GetVolumeInformationA
GetConsoleMode
LocalReAlloc
SetLastError
HeapDestroy
lstrcmpiW
RtlUnwind
HeapReAlloc
ResumeThread
FreeEnvironmentStringsW
FreeLibrary
GetDateFormatA
ExitProcess
IsDebuggerPresent
RemoveDirectoryA
GetModuleFileNameA
GetConsoleCP
LocalCompact
GetModuleFileNameW
GetStartupInfoA
GetStringTypeW
TlsGetValue
GetFileType
GetStringTypeA
InitializeCriticalSectionAndSpinCount
CreateFileA
IsValidLocale
GetCurrentProcessId
GetLocaleInfoW
GetStartupInfoW
GetCommandLineA
GetTimeFormatA
WriteConsoleW
SetConsoleCtrlHandler
LeaveCriticalSection
GetCurrentThread
InterlockedExchange
GetCommandLineW
DeleteCriticalSection
IsValidCodePage
SetUnhandledExceptionFilter
GetCurrentThreadId
GetUserDefaultLCID
GetCurrentProcess
VirtualFree
CommConfigDialogW
GetOEMCP
SetStdHandle
LCMapStringW
EnterCriticalSection
VirtualAlloc

gdi32

ExtCreateRegion
GetClipRgn
GetTextExtentPoint32W
DeleteDC
RealizePalette

user32

SetDoubleClickTime
GetCursor
GetKeyNameTextA
SetClipboardData
GetComboBoxInfo
RegisterClassExA
IsCharLowerW
EnumDesktopWindows
RegisterClassA
GetSystemMenu
LoadCursorW
AppendMenuA
WaitForInputIdle
LookupIconIdFromDirectory
BroadcastSystemMessage
LoadKeyboardLayoutW
DrawCaption
EnumWindows
SetWindowPlacement
SetKeyboardState
SendIMEMessageExW

advapi32

RegNotifyChangeKeyValue
LogonUserW
RegFlushKey
LookupAccountSidA
CryptImportKey
CryptVerifySignatureA
CryptHashData
RegRestoreKeyA
CryptSetProviderExA
RegEnumKeyW
RegSaveKeyW

comctl32

InitCommonControlsEx

shell32

ExtractAssociatedIconExA

wininet

GetUrlCacheEntryInfoExA
InternetQueryOptionA
InternetCheckConnectionW

Sections

.text
Size: 213KB - Virtual size: 213KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 317KB - Virtual size: 317KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

53fa61023a851cb17f760b1485745201

Headers

File Characteristics

Imports

kernel32

gdi32

user32

advapi32

comctl32

shell32

wininet

Sections

.text Size: 213KB - Virtual size: 213KB

.rdata Size: 10KB - Virtual size: 24KB

.data Size: 317KB - Virtual size: 317KB

.rsrc Size: 5KB - Virtual size: 5KB

.text
Size: 213KB - Virtual size: 213KB

.rdata
Size: 10KB - Virtual size: 24KB

.data
Size: 317KB - Virtual size: 317KB

.rsrc
Size: 5KB - Virtual size: 5KB