f90e76db1294897c1d89632d1f8f30c8_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

f90e76db1294897c1d89632d1f8f30c8_JaffaCakes118
Size

604KB
MD5

f90e76db1294897c1d89632d1f8f30c8
SHA1

2a6a0e5f405a7715356cd76eb5c59e73185c1a2a
SHA256

775a802155e1f01d4df5ec6d8309854a0a750dfd16c8246b62b3fd7b0a2b5a03
SHA512

0f5f3444227125b6218b7fbf25b25725260d3818ece128b868858d7a557231a1d30d86a0384c20c1b7aa2d9b6e6e14820f0a7db0f7bfaad1e2d4a5f0fbff1681
SSDEEP

12288:SvMsfySXIBEjXpzTO77Kn9yL7JysBsmG1JoNvoxn4fbHJ60NKlM:S0sfySYBEjXxOK9yL7JXG2vTfbo0Il

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f90e76db1294897c1d89632d1f8f30c8_JaffaCakes118

Files

f90e76db1294897c1d89632d1f8f30c8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

714ac0ced8cb7b5d5b1c8c7da2fb9405

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_LoadImageA
ImageList_GetIcon
ImageList_Write
InitCommonControlsEx
CreateStatusWindow
ImageList_SetOverlayImage
CreateMappedBitmap
ImageList_GetDragImage
ImageList_SetImageCount
ImageList_AddIcon
CreatePropertySheetPageA
ImageList_DrawEx
ImageList_GetFlags
ImageList_Draw
GetEffectiveClientRect
_TrackMouseEvent
ImageList_GetImageCount
ImageList_Duplicate
ImageList_SetBkColor
CreateToolbar
ImageList_SetDragCursorImage
ImageList_Create

wininet

InternetTimeFromSystemTimeA
HttpQueryInfoW

shell32

InternalExtractIconListW
FreeIconList
DragFinish

advapi32

CryptGetKeyParam

kernel32

HeapFree
GetUserDefaultLCID
GlobalLock
GetEnvironmentStrings
TerminateThread
SetFilePointer
EnumResourceLanguagesW
ReadConsoleOutputA
VirtualFree
OpenProcess
DeleteCriticalSection
GetCurrentThreadId
OpenMutexA
GetVersionExA
GetWindowsDirectoryW
GetCommandLineA
IsValidLocale
GetLocaleInfoW
GetStartupInfoA
GetDateFormatA
GetSystemInfo
ExitProcess
WideCharToMultiByte
CompareStringA
SetConsoleTextAttribute
SetLastError
CreateThread
GetNumberFormatW
LCMapStringA
SetStdHandle
GetTickCount
GetLocaleInfoA
HeapDestroy
CreateDirectoryExW
GetTimeFormatA
VirtualQuery
GetDriveTypeA
EnumTimeFormatsW
WriteFile
VirtualProtect
FlushFileBuffers
RtlUnwind
SetEnvironmentVariableA
IsBadReadPtr
lstrcpynW
TlsGetValue
HeapSize
EnumTimeFormatsA
FindClose
GetProcessShutdownParameters
GetThreadTimes
GetCurrentThread
LockFile
InitializeCriticalSection
LoadLibraryA
GetTimeFormatW
FreeEnvironmentStringsA
LCMapStringW
GetNamedPipeHandleStateW
VirtualAlloc
SetVolumeLabelA
MultiByteToWideChar
TlsFree
SetConsoleTitleW
GetTempFileNameA
GetStdHandle
GetPriorityClass
GetACP
SystemTimeToTzSpecificLocalTime
ReadFile
GetLastError
FreeEnvironmentStringsW
GetCurrentProcess
GetStringTypeW
GetTimeZoneInformation
HeapAlloc
IsBadWritePtr
TerminateProcess
GetCPInfo
InterlockedExchange
CommConfigDialogW
EnumSystemLocalesA
CompareStringW
EnterCriticalSection
SetConsoleWindowInfo
HeapReAlloc
SetLocaleInfoA
GetStringTypeA
UnhandledExceptionFilter
QueryPerformanceCounter
GetSystemTimeAdjustment
GetSystemTimeAsFileTime
SetHandleCount
IsValidCodePage
TlsSetValue
GetModuleHandleA
HeapCreate
GetProcAddress
CreateMutexA
GetOEMCP
TlsAlloc
CloseHandle
GetFileType
GetEnvironmentStringsW
CreateSemaphoreW
LeaveCriticalSection
GetModuleFileNameA
FormatMessageW
GlobalFindAtomA
GetCurrentProcessId

gdi32

SetTextCharacterExtra
CreateDIBSection
Polygon
GetTextAlign
DeleteObject
EnumFontFamiliesExA
SetWindowExtEx
ExtTextOutA
InvertRgn
GetTextCharacterExtra

user32

ScrollDC
EnumPropsW
CreatePopupMenu
OpenWindowStationA
GetMenuState
EditWndProc
RegisterClassA
IntersectRect
ChangeClipboardChain
GetMenuItemInfoA
LoadMenuIndirectW
CreateWindowExA
DdeGetLastError
SetMenu
MessageBoxW
GetCursorPos
OpenWindowStationW
ExitWindowsEx
GetDlgCtrlID
LoadAcceleratorsA
OpenIcon
RealGetWindowClass
SendMessageW
OemToCharA
SetClassWord
GetSubMenu
ShowWindow
InflateRect
GetScrollRange
DdeImpersonateClient
DdeCreateStringHandleA
RegisterClassExA
GetTabbedTextExtentA
InSendMessage
InsertMenuW
GetMenuItemInfoW
LoadCursorFromFileW
IsWindowEnabled
DestroyWindow
CreateDialogParamW
GetScrollPos
DefWindowProcA
GetWindowThreadProcessId

Sections

.text
Size: 208KB - Virtual size: 207KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 260KB - Virtual size: 258KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

714ac0ced8cb7b5d5b1c8c7da2fb9405

Headers

File Characteristics

Imports

comctl32

wininet

shell32

advapi32

kernel32

gdi32

user32

Sections

.text Size: 208KB - Virtual size: 207KB

.rdata Size: 260KB - Virtual size: 258KB

.data Size: 112KB - Virtual size: 134KB

.rsrc Size: 20KB - Virtual size: 18KB

.text
Size: 208KB - Virtual size: 207KB

.rdata
Size: 260KB - Virtual size: 258KB

.data
Size: 112KB - Virtual size: 134KB

.rsrc
Size: 20KB - Virtual size: 18KB