05d23eceb36c39d1c2788ead084db7fe_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

05d23eceb36c39d1c2788ead084db7fe_JaffaCakes118
Size

301KB
MD5

05d23eceb36c39d1c2788ead084db7fe
SHA1

5bf00c15213528bdbd06db44c7bc4f8360b67d95
SHA256

8c757e255ea959bb3a8558909e5cac3f5cea9fe5122ca38cef6028eb4c253336
SHA512

1c602f1a279b8afc4b9f4862dc4d5048c45ee65635380c2ef83be9a956dc4b16241404fabb4dc662105ddabbeb0262fe33b616e647d501de8bf2675c0d423bb6
SSDEEP

6144:LO3rpWAxzdftxTc8H6rQw2wLSrMSGPwbwxNjRkuVVmlS8vY3bWBD1:a3EAxzFHTJarQzpM764kKBOYLe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
05d23eceb36c39d1c2788ead084db7fe_JaffaCakes118

Files

05d23eceb36c39d1c2788ead084db7fe_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2bf3c7ae65c100e3861b1243c5717ce7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

UnregisterClassA
GetWindowRect
MessageBoxExW
GetClipboardSequenceNumber
PtInRect
EndTask
LoadCursorA
EnumWindowStationsW
AdjustWindowRect
GetWindowDC
ExcludeUpdateRgn
MenuItemFromPoint
CloseWindowStation
DefMDIChildProcA

gdi32

EnumEnhMetaFile
DrawEscape
CreatePatternBrush
GetBkMode
GetPaletteEntries
GetCharacterPlacementA
GetCharABCWidthsFloatA
GdiFlush
ColorMatchToTarget
SetWorldTransform
TextOutW
UpdateICMRegKeyA
OffsetWindowOrgEx
GetMetaRgn
Pie

shell32

SHGetMalloc
SheChangeDirExW

advapi32

CryptGetKeyParam
RegCreateKeyA
CryptGenKey
RegOpenKeyA
RegSetValueExW
CryptDestroyHash

kernel32

SetConsoleCtrlHandler
LeaveCriticalSection
FreeEnvironmentStringsA
GetStringTypeW
EnumSystemLocalesA
SetHandleCount
VirtualFree
GetTimeFormatA
GetStdHandle
LCMapStringW
GetEnvironmentStringsW
CreateRemoteThread
GetCurrentThread
GetSystemTimeAsFileTime
GlobalLock
VirtualAlloc
FindClose
TerminateProcess
TlsGetValue
GetProfileSectionA
GetStartupInfoA
TlsAlloc
FreeEnvironmentStringsW
GetLastError
IsValidCodePage
IsBadReadPtr
ExitProcess
GetProcAddress
SetEnvironmentVariableW
GlobalGetAtomNameA
GetCommandLineA
VirtualQuery
GetTimeZoneInformation
SetStdHandle
CompareStringA
LoadLibraryA
RtlUnwind
SetConsoleMode
IsValidLocale
DebugBreak
LCMapStringA
TlsFree
GetCPInfo
GetModuleFileNameA
DeleteCriticalSection
VirtualProtectEx
VirtualProtect
FreeLibrary
GetDateFormatA
GetThreadTimes
UnhandledExceptionFilter
InitializeCriticalSection
WritePrivateProfileSectionA
GetCurrentProcessId
EnterCriticalSection
QueryPerformanceCounter
HeapDestroy
GetFileTime
MultiByteToWideChar
GetOEMCP
OpenSemaphoreW
SetFilePointer
CompareStringW
GetStringTypeA
SetLastError
OutputDebugStringA
HeapAlloc
FlushFileBuffers
IsBadWritePtr
GetUserDefaultLCID
GetCurrentProcess
CreateProcessW
GetProcessAffinityMask
GetFileType
GetLocaleInfoW
CloseHandle
InterlockedExchange
GetVersionExA
GetModuleHandleA
GetTickCount
InterlockedDecrement
GetACP
GetCommandLineW
GetCurrentThreadId
GlobalCompact
GetEnvironmentStrings
WideCharToMultiByte
HeapFree
RemoveDirectoryW
InterlockedIncrement
LocalShrink
GetCalendarInfoA
HeapReAlloc
HeapValidate
SetEnvironmentVariableA
WriteFile
GetDateFormatW
GetLocaleInfoA
TlsSetValue
GetSystemInfo
HeapCreate
GetUserDefaultLangID

wininet

FtpDeleteFileW
InternetReadFile
FtpFindFirstFileA
InternetCrackUrlW
FreeUrlCacheSpaceW
InternetCloseHandle
InternetConfirmZoneCrossing
FindNextUrlCacheEntryExA
HttpSendRequestA
SetUrlCacheEntryGroupA
InternetGetCookieW
InternetSetDialStateA
InternetOpenA

Sections

.text
Size: 151KB - Virtual size: 151KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 143KB - Virtual size: 166KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2bf3c7ae65c100e3861b1243c5717ce7

Headers

File Characteristics

Imports

user32

gdi32

shell32

advapi32

kernel32

wininet

Sections

.text Size: 151KB - Virtual size: 151KB

.data Size: 143KB - Virtual size: 166KB

.rsrc Size: 5KB - Virtual size: 4KB

.text
Size: 151KB - Virtual size: 151KB

.data
Size: 143KB - Virtual size: 166KB

.rsrc
Size: 5KB - Virtual size: 4KB