0099e2f111ea36dd62aebdd10542caff_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

0099e2f111ea36dd62aebdd10542caff_JaffaCakes118
Size

538KB
MD5

0099e2f111ea36dd62aebdd10542caff
SHA1

95a92ddf8f99346ace84ae1781a1dfcc22a2f813
SHA256

224b07d37b7cc0efd1617b37bb4a35b25b7dbd801f9dbaaa998f59731545bb2e
SHA512

f87686dcfc6c5052f3019ff1b0f3c996d1bf0468591ccd237134f2d62a81d4b7ce07398904dacb4352a47e4f88bb220836e69573aeaf504024f824381fe24427
SSDEEP

12288:DFEUnlpj2XlpaGpJmd0SjE3i9z0HAijEbB9jlh:DuUlp6XlpHpg0SjE3icc9xh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0099e2f111ea36dd62aebdd10542caff_JaffaCakes118

Files

0099e2f111ea36dd62aebdd10542caff_JaffaCakes118
.exe windows:4 windows x86 arch:x86

cdde3f87da3f0fae09d9b9d50c4ea75f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

UrlZonesDetach
FtpPutFileA
CreateUrlCacheEntryW
CreateUrlCacheEntryA
GopherGetLocatorTypeW
InternetGetConnectedState
GetUrlCacheEntryInfoExW
GetUrlCacheEntryInfoExA
InternetConnectA

kernel32

ExpandEnvironmentStringsW
MultiByteToWideChar
TerminateProcess
HeapAlloc
SetHandleCount
LCMapStringA
GetStartupInfoW
EnumSystemLocalesA
GetLastError
GetModuleFileNameA
lstrcmpW
LeaveCriticalSection
InterlockedDecrement
GetLocaleInfoW
GetStringTypeW
GetACP
InitializeCriticalSection
CloseHandle
FreeLibrary
HeapDestroy
GetConsoleMode
SetFilePointer
TlsGetValue
WriteConsoleW
FreeEnvironmentStringsW
WideCharToMultiByte
SetStdHandle
TlsSetValue
GetTempPathA
CompareStringA
TlsAlloc
OpenMutexA
UnhandledExceptionFilter
VirtualQuery
GetCPInfo
GetProcAddress
lstrcpynA
FlushFileBuffers
GetStartupInfoA
GetUserDefaultLCID
GetOEMCP
QueryPerformanceCounter
GetCommandLineW
EnterCriticalSection
VirtualAlloc
SetUnhandledExceptionFilter
GetCurrentThread
HeapSize
HeapReAlloc
GetTickCount
InterlockedExchange
LCMapStringW
TlsFree
DeleteCriticalSection
ReadFile
FreeEnvironmentStringsA
GetTimeFormatA
IsValidLocale
GetConsoleCP
RtlUnwind
CompareStringW
GetTimeZoneInformation
GetCurrentProcessId
CreateMutexA
GetModuleFileNameW
lstrlenA
CreateFileW
GetLocaleInfoA
GetCurrentThreadId
WriteFile
GetEnvironmentStrings
GetCurrentProcess
WriteConsoleA
CreateFileA
GetProcessHeap
GetDateFormatA
FindAtomW
GetModuleHandleA
HeapFree
GetFileType
GetVersionExA
SetConsoleCtrlHandler
SetEnvironmentVariableA
IsDebuggerPresent
GetCommandLineA
Sleep
GetConsoleOutputCP
GetSystemTimeAsFileTime
GetStdHandle
VirtualFree
WriteProfileStringW
SetLastError
IsValidCodePage
ExitProcess
LoadLibraryA
HeapCreate
GetStringTypeA
GetEnvironmentStringsW
InterlockedIncrement

shell32

InternalExtractIconListA
SHQueryRecycleBinA
SHGetMalloc
FindExecutableA

gdi32

GetKerningPairsA
SetBitmapBits
GetEnhMetaFileW
GetEnhMetaFilePaletteEntries
ColorCorrectPalette
DeleteMetaFile
LineDDA
PlgBlt
IntersectClipRect
GetLogColorSpaceA
GetMapMode
SetWorldTransform
FillRgn
GetLogColorSpaceW
Chord

advapi32

CryptGetHashParam
LookupPrivilegeNameA

user32

FindWindowExW
GetClassInfoW
InsertMenuA
GetThreadDesktop
DlgDirListComboBoxW
DrawFrame
RegisterClassExA
DestroyIcon
RegisterClassA
SetWinEventHook
RegisterWindowMessageW
SetWindowTextA
GetMenu
UnloadKeyboardLayout
CreateDialogParamA
MonitorFromWindow
DefMDIChildProcA
SetWindowsHookExW
SetMenuItemInfoA
OpenWindowStationA
SetCursorPos
DdeDisconnect

comctl32

InitCommonControlsEx

Sections

.text
Size: 160KB - Virtual size: 160KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 358KB - Virtual size: 358KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cdde3f87da3f0fae09d9b9d50c4ea75f

Headers

File Characteristics

Imports

wininet

kernel32

shell32

gdi32

advapi32

user32

comctl32

Sections

.text Size: 160KB - Virtual size: 160KB

.rdata Size: 10KB - Virtual size: 28KB

.data Size: 358KB - Virtual size: 358KB

.rsrc Size: 7KB - Virtual size: 7KB

.text
Size: 160KB - Virtual size: 160KB

.rdata
Size: 10KB - Virtual size: 28KB

.data
Size: 358KB - Virtual size: 358KB

.rsrc
Size: 7KB - Virtual size: 7KB