044e621979f31fa8466ba677b6a8d067_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

044e621979f31fa8466ba677b6a8d067_JaffaCakes118
Size

557KB
MD5

044e621979f31fa8466ba677b6a8d067
SHA1

85cd353d4a68be4fb8cdc1020746ce419912a138
SHA256

ed683bd4a20e85a709e5743b67ae8a01967fcfa70e8fae1d33cc84397de75e1b
SHA512

dcbe7c624dd2f931127cd9759dc132948784fb7ae8e23db7c20ebb1cc7d9d843117b3cfb739b8af9c72ff03c47cc0a9d21f6ce062925a147114dccc7889f988d
SSDEEP

12288:AvYXONJqK76/jn2TVQIELp7wbzmvPidVtXPzOm:AvYeNJqK7QjnllwIuZa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
044e621979f31fa8466ba677b6a8d067_JaffaCakes118

Files

044e621979f31fa8466ba677b6a8d067_JaffaCakes118
.exe windows:4 windows x86 arch:x86

fbaf8bf786904301ef9ca9a199f1911f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetTitleBarInfo
GetClipboardOwner
RegisterWindowMessageA
GetNextDlgGroupItem
SetClassWord
FindWindowA
LoadBitmapA
GetTopWindow
CreateWindowExW
TrackMouseEvent
SendIMEMessageExW
GetDlgItemTextA
WinHelpW
OpenInputDesktop
GetMenuInfo
CopyAcceleratorTableW
DdeUnaccessData
CreateWindowStationW
LoadImageW
CloseClipboard
GetMonitorInfoW
SystemParametersInfoW
ShowScrollBar
GetWindowModuleFileNameW
MapVirtualKeyW
SetCursor
CopyRect
GetMenuContextHelpId
CountClipboardFormats
RegisterClassW
GrayStringW
ShowWindow
SetPropA
SetDlgItemTextW
SendDlgItemMessageA
SetWindowsHookExA
ChangeMenuA
GetCursorPos
OffsetRect
GetUpdateRgn
CallWindowProcA
DdeImpersonateClient
SetDeskWallpaper
CharNextW
DeleteMenu
DialogBoxParamW
FindWindowW
TranslateMessage
EnumChildWindows
SetFocus
ToAscii
ShowCursor
MonitorFromRect

wininet

InternetGetConnectedState
GopherOpenFileW
GopherFindFirstFileW
InternetFindNextFileW
InternetAutodialHangup
InternetCreateUrlW
InternetReadFile
InternetGoOnline
SetUrlCacheConfigInfoW
InternetReadFileExW
FtpCreateDirectoryA
InternetSetDialState
InternetGetConnectedStateExW
InternetSetOptionW
InternetCheckConnectionA
InternetConfirmZoneCrossing
GopherGetAttributeA
ShowCertificate
FindCloseUrlCache
IsUrlCacheEntryExpiredA
InternetTimeToSystemTime
HttpSendRequestExA
InternetTimeToSystemTimeW
FtpGetCurrentDirectoryA
FtpRenameFileA
InternetDialW
HttpAddRequestHeadersW
FindFirstUrlCacheEntryW
InternetShowSecurityInfoByURLW
InternetConnectA
InternetSetCookieW
FindNextUrlCacheEntryExA
InternetCombineUrlW
InternetCrackUrlA
HttpOpenRequestW
FtpOpenFileA
LoadUrlCacheContent
InternetErrorDlg
InternetGoOnlineA
InternetSetDialStateA
HttpSendRequestExW
InternetGetLastResponseInfoW
InternetAttemptConnect
GetUrlCacheHeaderData
IsUrlCacheEntryExpiredW
SetUrlCacheEntryGroupW
InternetOpenW
InternetSetOptionExW
ShowClientAuthCerts
InternetCombineUrlA
HttpOpenRequestA
InternetGetCookieA
InternetCheckConnectionW
GetUrlCacheEntryInfoW
InternetGetCertByURLA
FindFirstUrlCacheContainerA
InternetUnlockRequestFile
GetUrlCacheEntryInfoExA
InternetConfirmZoneCrossingA
SetUrlCacheGroupAttributeA
InternetGoOnlineW
FtpPutFileW
InternetCrackUrlW
ResumeSuspendedDownload
IsHostInProxyBypassList
FindNextUrlCacheEntryExW
InternetHangUp
SetUrlCacheEntryInfoW
InternetQueryFortezzaStatus
SetUrlCacheEntryGroupA
FtpGetFileSize
RetrieveUrlCacheEntryStreamA
FtpOpenFileW
HttpEndRequestW
SetUrlCacheGroupAttributeW
InternetLockRequestFile
CreateUrlCacheEntryW
InternetAutodial
InternetSetOptionExA
InternetOpenA
InternetReadFileExA
GopherGetLocatorTypeW
InternetTimeToSystemTimeA
IncrementUrlCacheHeaderData
FindNextUrlCacheEntryW
InternetQueryDataAvailable
RegisterUrlCacheNotification
SetUrlCacheEntryGroup
HttpSendRequestW
GetUrlCacheEntryInfoA
FtpGetFileA
ShowX509EncodedCertificate
InternetSetOptionA
DetectAutoProxyUrl
GetUrlCacheConfigInfoW
HttpQueryInfoA
InternetConfirmZoneCrossingW
InternetSecurityProtocolToStringA
InternetGetConnectedStateExA
InternetCanonicalizeUrlW
InternetTimeFromSystemTimeW
InternetQueryOptionW
FtpFindFirstFileA
InternetWriteFileExA
ReadUrlCacheEntryStream

Sections

.text
Size: 154KB - Virtual size: 153KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 402KB - Virtual size: 402KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

fbaf8bf786904301ef9ca9a199f1911f

Headers

File Characteristics

Imports

user32

wininet

Sections

.text Size: 154KB - Virtual size: 153KB

.data Size: 402KB - Virtual size: 402KB

.text
Size: 154KB - Virtual size: 153KB

.data
Size: 402KB - Virtual size: 402KB