fad2c615d5985ab9d6652afb92d02e2a_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

fad2c615d5985ab9d6652afb92d02e2a_JaffaCakes118
Size

679KB
MD5

fad2c615d5985ab9d6652afb92d02e2a
SHA1

bdc51784a9e0417385f32d9e40873b13cf3135b1
SHA256

5fd3db9b107d201530104b6182b8a6688efb470fc1101f4d7ea983a036bbc35f
SHA512

7055f2d7d8d19b1b3827fa92f0350100c0675d65739b146d9c5c64130b99f183e90049fd6e14caf3ad130b0287940ce59f34c81a1cbcc723a293732f5281d60d
SSDEEP

12288:72//qYo+R0vuwgN2nWz5nAZJ/LfHtP+lGPrKbrMiv4HVmxJ5bccW8VY:7OtQo04AZtVPrzc5b3Z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fad2c615d5985ab9d6652afb92d02e2a_JaffaCakes118

Files

fad2c615d5985ab9d6652afb92d02e2a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

cdddf0a02a1110e5df2fd472ee93d9b1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

advapi32

LogonUserA
RegEnumValueW
RegOpenKeyA
RegLoadKeyA
RegReplaceKeyW
RegSetKeySecurity
RegDeleteValueW
CryptSetProvParam
RegQueryValueExA
CryptAcquireContextA
LookupPrivilegeValueA
RegFlushKey

comdlg32

ReplaceTextA
ChooseFontW
PageSetupDlgA
GetOpenFileNameW

shell32

SHChangeNotify
SHGetInstanceExplorer
FreeIconList

wininet

InternetConfirmZoneCrossing
InternetCanonicalizeUrlA

user32

GetTitleBarInfo
RegisterClassExA
NotifyWinEvent
GetDesktopWindow
EndDeferWindowPos
GetWindowInfo
DdeKeepStringHandle
SetMessageExtraInfo
LoadMenuW
FindWindowExW
RegisterClassA
ArrangeIconicWindows
InternalGetWindowText
ToUnicodeEx
EnumPropsExA
GrayStringW

kernel32

OutputDebugStringW
SetFilePointer
FlushFileBuffers
DeleteCriticalSection
HeapAlloc
HeapDestroy
MultiByteToWideChar
TlsSetValue
EnumResourceNamesA
lstrlenA
IsValidCodePage
GetUserDefaultLCID
CloseHandle
FreeLibrary
GetModuleHandleA
GetTickCount
SetConsoleCtrlHandler
LCMapStringA
GetDateFormatA
GetConsoleOutputCP
AddAtomW
TerminateProcess
SetEnvironmentVariableA
GetConsoleMode
GetProcAddress
CompareStringA
RaiseException
SetHandleCount
IsDebuggerPresent
WriteFile
GetLocaleInfoW
WideCharToMultiByte
LCMapStringW
GetCurrentThreadId
GetOEMCP
TlsGetValue
HeapReAlloc
GetCurrentThread
GetTimeFormatA
GetProcessHeap
GetCommandLineA
VirtualFree
CreateWaitableTimerA
TlsAlloc
InitializeCriticalSectionAndSpinCount
TlsFree
CompareStringW
lstrcpyW
FillConsoleOutputCharacterW
GetCurrentProcessId
EnumSystemLocalesA
InterlockedDecrement
HeapSize
InterlockedIncrement
GetStartupInfoW
LoadLibraryW
GetCPInfo
OpenMutexA
GetModuleFileNameA
HeapValidate
LeaveCriticalSection
GetStdHandle
GetCurrentProcess
UnhandledExceptionFilter
InterlockedExchange
WriteConsoleW
SetUnhandledExceptionFilter
HeapCreate
GetCommandLineW
CreateFileA
LoadLibraryA
GetLocaleInfoA
ExitProcess
GetTimeZoneInformation
EnterCriticalSection
GetSystemTimeAsFileTime
HeapFree
IsBadReadPtr
SetLastError
RtlUnwind
GetStringTypeA
Sleep
GetModuleFileNameW
GetModuleHandleW
VirtualAlloc
GetFileType
GetConsoleCP
CreateDirectoryExW
GetStartupInfoA
GetPrivateProfileIntA
VirtualQuery
FreeEnvironmentStringsW
SetStdHandle
DebugBreak
GetStringTypeW
GetEnvironmentStringsW
QueryPerformanceCounter
WriteConsoleA
GetACP
GetLastError
OutputDebugStringA
ReadFile
IsValidLocale
CreateMutexA

Sections

.text
Size: 303KB - Virtual size: 303KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 48KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 315KB - Virtual size: 315KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cdddf0a02a1110e5df2fd472ee93d9b1

Headers

File Characteristics

Imports

comctl32

advapi32

comdlg32

shell32

wininet

user32

kernel32

Sections

.text Size: 303KB - Virtual size: 303KB

.rdata Size: 48KB - Virtual size: 70KB

.data Size: 315KB - Virtual size: 315KB

.rsrc Size: 11KB - Virtual size: 10KB

.text
Size: 303KB - Virtual size: 303KB

.rdata
Size: 48KB - Virtual size: 70KB

.data
Size: 315KB - Virtual size: 315KB

.rsrc
Size: 11KB - Virtual size: 10KB