fd756d8e6751cf0a62fc4e7e735eec95_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

fd756d8e6751cf0a62fc4e7e735eec95_JaffaCakes118
Size

620KB
MD5

fd756d8e6751cf0a62fc4e7e735eec95
SHA1

33d6e5a7aa9e9f0a5d25174ba421c96ee6958cb1
SHA256

9d6daa2148d92353a60aa3fcd64e4909ac0030f1ee0cd4704f3f3790f1142e2e
SHA512

da62f630c7926d9074e8193fa7e5045249943c6d9afa4d85d45a0249e31ea487f0c0b62907ad726e38962a51d86d3eb712d11aa4490aab8ee4ffd2c95bd73f9b
SSDEEP

12288:RhQ8Bcsis05rhugS5tMY658OGkLb32uUB4NHMFRKlb:RhQ8BcVj5rhS5tTaGObMB4GKl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fd756d8e6751cf0a62fc4e7e735eec95_JaffaCakes118

Files

fd756d8e6751cf0a62fc4e7e735eec95_JaffaCakes118
.exe windows:4 windows x86 arch:x86

88a84c5c6d6dcb3cbb14957580db2104

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

UnlockUrlCacheEntryFile
InternetShowSecurityInfoByURLA
LoadUrlCacheContent
RetrieveUrlCacheEntryStreamA
DeleteUrlCacheContainerW

kernel32

GetCPInfo
GetLocaleInfoA
TlsSetValue
LoadLibraryA
VirtualAlloc
GetConsoleOutputCP
VirtualQuery
GetNamedPipeInfo
GetCurrentProcess
TlsFree
GetConsoleCP
HeapCreate
GetTempFileNameW
WideCharToMultiByte
MultiByteToWideChar
HeapDestroy
GetTimeZoneInformation
GetTickCount
GetModuleHandleA
GetTimeFormatA
HeapAlloc
GetUserDefaultLCID
GetConsoleMode
TlsGetValue
RtlUnwind
EnumSystemCodePagesW
GetCurrentThread
SleepEx
Sleep
OpenMutexA
QueryPerformanceCounter
GetStartupInfoA
SetFilePointer
HeapFree
EnumSystemLocalesA
IsValidCodePage
ReadConsoleOutputAttribute
FreeLibrary
GetStringTypeA
ExitProcess
IsDebuggerPresent
OpenEventA
FlushFileBuffers
GetEnvironmentStringsW
ReadFile
GetEnvironmentStrings
GetCurrentProcessId
WriteConsoleA
DeleteFileA
IsValidLocale
CompareStringW
CreateMutexA
LoadLibraryExA
GetStartupInfoW
GetProcAddress
TerminateProcess
InterlockedIncrement
GetEnvironmentVariableW
GetFileType
EnterCriticalSection
LCMapStringW
GetCommandLineW
CreateFileA
GetProcessHeap
HeapSize
OpenProcess
GetACP
WriteFile
SetConsoleCtrlHandler
GetStdHandle
VirtualFree
DeleteCriticalSection
InterlockedDecrement
OpenEventW
UnhandledExceptionFilter
SetLastError
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetLastError
LeaveCriticalSection
GetCurrencyFormatW
GetModuleFileNameA
InitializeCriticalSection
GetSystemTimeAsFileTime
GetModuleFileNameW
GetCurrentThreadId
ReadConsoleInputA
GetCommandLineA
WriteConsoleW
GetLocaleInfoW
GetFullPathNameW
GetStringTypeW
GetDateFormatA
GetVersionExA
SetHandleCount
InterlockedExchange
SetUnhandledExceptionFilter
LCMapStringA
TlsAlloc
CompareStringA
VirtualFreeEx
SetEnvironmentVariableA
GetOEMCP
CloseHandle
SetStdHandle
HeapReAlloc

comctl32

ImageList_SetFlags
ImageList_GetImageCount
CreatePropertySheetPageA
ImageList_Copy
CreateToolbar
CreateStatusWindowW
ImageList_Replace
InitCommonControlsEx
ImageList_DragEnter
ImageList_GetDragImage

gdi32

GetDeviceCaps
EndPage
GetRandomRgn
GetObjectW
DeleteObject
SelectClipPath
CreateDCW
TextOutA
DeleteDC

shell32

SheChangeDirExW
SHGetDataFromIDListW

user32

RegisterClassA
GetWindowInfo
CreateIconFromResource
SetFocus
DrawTextW
GetMonitorInfoW
TrackPopupMenu
wvsprintfW
DdeGetData
GetDlgItem
LoadIconA
GetTitleBarInfo
SendMessageTimeoutA
IsCharAlphaNumericW
MoveWindow
OpenInputDesktop
RegisterClassExA
DefWindowProcA
LoadCursorA
DrawAnimatedRects
SetShellWindow
LoadKeyboardLayoutW
CreateIcon
GetMessageA
GetMenuItemID
PostThreadMessageA
UnregisterClassA
DestroyWindow
BeginPaint
GetDlgCtrlID
GetWindowRgn
DdeCreateStringHandleA
SetDeskWallpaper
IsWindowVisible
CloseWindow
GetKeyboardLayoutNameA
CascadeWindows
RedrawWindow
EnumWindowStationsW
InflateRect
DdeUnaccessData
MessageBoxW
EndMenu
SetMenuItemInfoA
WinHelpW
VkKeyScanExA
SetWindowPlacement
IsWindowEnabled
CallMsgFilter
GetProcessDefaultLayout
DdeFreeDataHandle
CreateWindowExW
KillTimer
GetMenuDefaultItem
ShowWindow
TranslateAcceleratorW
CopyRect
DlgDirSelectExA
CreateWindowExA
InsertMenuItemA
RemovePropW
SetForegroundWindow
MessageBeep
GetPropW
GetScrollBarInfo
ShowOwnedPopups
AttachThreadInput
ValidateRect
DlgDirListComboBoxW
wsprintfA
SetMessageExtraInfo
ActivateKeyboardLayout
SetCapture
DestroyCursor

Sections

.text
Size: 176KB - Virtual size: 173KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 264KB - Virtual size: 260KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 120KB - Virtual size: 137KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 56KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

88a84c5c6d6dcb3cbb14957580db2104

Headers

File Characteristics

Imports

wininet

kernel32

comctl32

gdi32

shell32

user32

Sections

.text Size: 176KB - Virtual size: 173KB

.rdata Size: 264KB - Virtual size: 260KB

.data Size: 120KB - Virtual size: 137KB

.rsrc Size: 56KB - Virtual size: 52KB

.text
Size: 176KB - Virtual size: 173KB

.rdata
Size: 264KB - Virtual size: 260KB

.data
Size: 120KB - Virtual size: 137KB

.rsrc
Size: 56KB - Virtual size: 52KB