fff2265a00d45d7a3c366047ee2713bf_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

fff2265a00d45d7a3c366047ee2713bf_JaffaCakes118
Size

363KB
MD5

fff2265a00d45d7a3c366047ee2713bf
SHA1

df27453623ea3de10211a3177f08f05402b9d95a
SHA256

94336a3021a196f505cae722e4b75ece45828756c22f3bd62ffb1790bef531d7
SHA512

4dfda13534ba41cf3e00891ebc3db005f140f106e32d9b019f3768d57aa9f897dc3f936f43819157f982b798f6cefd43bfcbb266bba8d3840a87883f4617c5e3
SSDEEP

6144:hM+LBUuqMRx1uBzlOEFlIBpQ0Aheqyz1lnZCBEQjRdpDHqvLRpJ2Kr108z38XTVe:rlUvMvYnr65JfZCBEkTRH6nJr0SOT+zj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fff2265a00d45d7a3c366047ee2713bf_JaffaCakes118

Files

fff2265a00d45d7a3c366047ee2713bf_JaffaCakes118
.exe windows:4 windows x86 arch:x86

433f545c9f774598367f5fc8b7b70811

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

e:\rsv

Imports

user32

RegisterClassExA
ShowWindow
RegisterClassA
SetMenuContextHelpId
CreateWindowExW
RegisterWindowMessageW
MessageBoxW
AppendMenuW
GetKBCodePage

comdlg32

GetOpenFileNameA
ChooseFontA
PageSetupDlgA

wininet

GopherOpenFileW
InternetWriteFile
LoadUrlCacheContent
GetUrlCacheEntryInfoA
FtpPutFileA
FindNextUrlCacheContainerA
InternetGetConnectedStateEx
InternetTimeToSystemTime

comctl32

InitCommonControlsEx

shell32

ShellExecuteExA
SHGetMalloc
FreeIconList
SheChangeDirExW

advapi32

RegLoadKeyW
LookupPrivilegeValueW
RevertToSelf
CryptSetProviderExW
CryptAcquireContextW
ReportEventA
CryptGetKeyParam
RegDeleteKeyW
InitializeSecurityDescriptor
RegEnumKeyW
RegDeleteValueW
CryptGetUserKey
AbortSystemShutdownW
CryptGenRandom
RegCreateKeyExW
CryptVerifySignatureW
RegQueryMultipleValuesA
CryptGetHashParam
CryptContextAddRef

kernel32

FindFirstFileW
TlsFree
SetStdHandle
GetTimeFormatA
SetLastError
InterlockedExchange
GetACP
Sleep
EnumResourceNamesW
VirtualFree
ExitProcess
GetCurrentThreadId
GetConsoleCP
VirtualQuery
LocalLock
SetFilePointer
GetStringTypeA
TerminateProcess
GetProfileStringW
InitializeCriticalSectionAndSpinCount
GetEnvironmentStringsW
HeapCreate
HeapDestroy
GlobalReAlloc
TlsSetValue
GetCurrentThread
GetSystemTimeAsFileTime
SetHandleCount
TlsAlloc
GetFileType
FreeLibrary
HeapAlloc
VirtualAlloc
GetStringTypeW
MultiByteToWideChar
GetDateFormatA
DebugActiveProcess
GetTimeZoneInformation
GetCurrentProcess
DeleteCriticalSection
GetLastError
HeapFree
GetOEMCP
EnterCriticalSection
CompareStringW
GetStartupInfoA
GetModuleFileNameW
UnhandledExceptionFilter
SetConsoleCtrlHandler
LCMapStringW
GetModuleHandleW
LeaveCriticalSection
SetUnhandledExceptionFilter
GetUserDefaultLCID
SystemTimeToTzSpecificLocalTime
QueryPerformanceCounter
ReadConsoleOutputA
GetCurrencyFormatW
TlsGetValue
LoadModule
GetProcAddress
WriteConsoleW
CreateMutexA
WideCharToMultiByte
InterlockedDecrement
ReadFile
HeapSize
CloseHandle
GetLocaleInfoA
HeapReAlloc
GetStdHandle
IsValidCodePage
GlobalAddAtomW
FlushFileBuffers
EnumSystemLocalesA
LCMapStringA
GetCommandLineW
RtlUnwind
GetTickCount
GetPriorityClass
IsDebuggerPresent
GetStartupInfoW
GetFileSize
GetModuleHandleA
CreateFileA
InterlockedIncrement
IsValidLocale
GetCommandLineA
SetEnvironmentVariableA
GetConsoleMode
LoadLibraryA
GetCurrentProcessId
CompareStringA
GetModuleFileNameA
WriteConsoleA
OpenMutexA
GetConsoleOutputCP
FreeEnvironmentStringsW
WriteFile
GetLocaleInfoW
GetCPInfo

Sections

.text
Size: 221KB - Virtual size: 220KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 30KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 94KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

433f545c9f774598367f5fc8b7b70811

Headers

File Characteristics

PDB Paths

Imports

user32

comdlg32

wininet

comctl32

shell32

advapi32

kernel32

Sections

.text Size: 221KB - Virtual size: 220KB

.rdata Size: 30KB - Virtual size: 41KB

.data Size: 94KB - Virtual size: 93KB

.rsrc Size: 17KB - Virtual size: 16KB

.text
Size: 221KB - Virtual size: 220KB

.rdata
Size: 30KB - Virtual size: 41KB

.data
Size: 94KB - Virtual size: 93KB

.rsrc
Size: 17KB - Virtual size: 16KB