fdd72e32140cfb6578903f2ec495b7ed_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

fdd72e32140cfb6578903f2ec495b7ed_JaffaCakes118
Size

455KB
MD5

fdd72e32140cfb6578903f2ec495b7ed
SHA1

4f31c8348d23a8773cf71c1677d7aac8ff616b59
SHA256

57c1b99155c9f93b10095d0228f724da90a5d087d9518b1d1c7749886177605d
SHA512

51767bb78c5e3f16e1b42cca909dd23f1d9e9e5dbd37d0b98040a50411c7d8e60b5eee5d4c7a9470db31410fa615b5236fce2ecd688aba29e446beae24e9f90e
SSDEEP

12288:Kn3n8Y/ZU6z0tNe2MMnMMMMMyDnZD3/S/Ak:KnsYS8UMMnMMMMMyDh6f

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fdd72e32140cfb6578903f2ec495b7ed_JaffaCakes118

Files

fdd72e32140cfb6578903f2ec495b7ed_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3d61adc4c02b269890b7628642413a3c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

atl

AtlModuleInit

version

GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA

user32

wsprintfA
RegisterWindowMessageA
TranslateMessage
DispatchMessageA
GetMessageA
CallMsgFilterW
PostThreadMessageA

wininet

InternetCombineUrlA
InternetCrackUrlA

kernel32

CreateFileA
VirtualAlloc

cfgmgr32

CM_Connect_MachineA

advapi32

RegNotifyChangeKeyValue
RegCloseKey
RevertToSelf
RegDeleteValueA
RegOpenKeyExA
RegDeleteKeyA
ImpersonateLoggedOnUser
RegQueryInfoKeyA
RegQueryValueExA
RegEnumValueA
RegEnumKeyExA
RegSetValueExA
RegCreateKeyExA
OpenThreadToken

urlmon

UrlMkSetSessionOption
CoInternetParseUrl
CoInternetGetSession
CopyBindInfo

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 237KB - Virtual size: 236KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 1.8MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 205KB - Virtual size: 204KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3d61adc4c02b269890b7628642413a3c

Headers

DLL Characteristics

File Characteristics

Imports

atl

version

user32

wininet

kernel32

cfgmgr32

advapi32

urlmon

Sections

.text Size: 5KB - Virtual size: 5KB

.rsrc Size: 237KB - Virtual size: 236KB

.reloc Size: 512B - Virtual size: 24B

.data Size: 4KB - Virtual size: 1.8MB

.idata Size: 1KB - Virtual size: 1KB

.rdata Size: 205KB - Virtual size: 204KB

.text
Size: 5KB - Virtual size: 5KB

.rsrc
Size: 237KB - Virtual size: 236KB

.reloc
Size: 512B - Virtual size: 24B

.data
Size: 4KB - Virtual size: 1.8MB

.idata
Size: 1KB - Virtual size: 1KB

.rdata
Size: 205KB - Virtual size: 204KB