06350cdee81e85a6a5dd0d5025720140_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

06350cdee81e85a6a5dd0d5025720140_JaffaCakes118
Size

521KB
MD5

06350cdee81e85a6a5dd0d5025720140
SHA1

3e38c5f5b616c54dd11a60f36778863c9e262759
SHA256

955d770d1e848b734e6b9b7865a99c76efcdbe17d4e91f3746a299c6585ee4ee
SHA512

f5df7ecfdd0d6669dc160a9be2097404c1e70f2fe2cb9b2a9cfee7f1592a11db974ce2f7aada59657b8f2d6fd63ee68d0268a4eb6f4b1f7bdceda5d5c01b68ff
SSDEEP

12288:oKsvmJ8jlrSQ3Fy2PzZn3z1okDqCZQenHe/oslBwjvqHf:Zd8jlrSQ3jn3pokeCaeWlBQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
06350cdee81e85a6a5dd0d5025720140_JaffaCakes118

Files

06350cdee81e85a6a5dd0d5025720140_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8749722c4fb66e40af09563865ad28e1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

wininet

CreateUrlCacheContainerW
FindNextUrlCacheContainerW

user32

RegisterClassExA
RegisterClassA
wvsprintfW
wvsprintfA
IsCharAlphaNumericW
IsCharLowerA

comdlg32

FindTextA
GetSaveFileNameW
ReplaceTextA
PageSetupDlgA

advapi32

RegRestoreKeyW
RegOpenKeyExW
CryptHashData
CryptGetDefaultProviderA
RegCreateKeyW
CryptHashSessionKey
RegNotifyChangeKeyValue
LookupAccountNameA
LookupAccountSidW
RegCreateKeyA
CryptVerifySignatureW
DuplicateToken
CryptDestroyHash
RegQueryInfoKeyW
RegQueryMultipleValuesW

kernel32

UnhandledExceptionFilter
lstrlenA
GetEnvironmentStrings
VirtualFree
OpenMutexA
TlsAlloc
CompareStringA
SetStdHandle
GetCurrentProcess
QueryPerformanceCounter
EnterCriticalSection
DeleteCriticalSection
VirtualAlloc
FlushFileBuffers
SystemTimeToFileTime
GetUserDefaultLCID
GetCurrentThreadId
WideCharToMultiByte
MultiByteToWideChar
ReadFile
PulseEvent
GetCurrentProcessId
GetDateFormatA
HeapFree
GetSystemTimeAsFileTime
FreeEnvironmentStringsW
IsValidLocale
SetUnhandledExceptionFilter
LCMapStringA
GetConsoleOutputCP
CloseHandle
LeaveCriticalSection
InterlockedIncrement
GetACP
GetLocaleInfoA
InitializeCriticalSection
HeapDestroy
WriteConsoleW
GetOEMCP
GetEnvironmentStringsW
GetWindowsDirectoryA
TlsSetValue
TlsFree
GetCurrentThread
HeapSize
ExitProcess
SetHandleCount
GetLastError
HeapCreate
FindClose
WriteFile
WritePrivateProfileStringW
LoadLibraryA
GetFileType
WaitForDebugEvent
SetLastError
IsValidCodePage
InterlockedDecrement
GetStringTypeW
RtlUnwind
GetTimeZoneInformation
ConvertDefaultLocale
GetVersionExA
GetCommandLineA
GetConsoleCP
VirtualQuery
GlobalFix
SetConsoleCtrlHandler
CreateProcessA
FreeLibrary
CreateFileA
InterlockedExchange
GetConsoleMode
WriteConsoleA
FoldStringA
GetLocaleInfoW
TerminateProcess
GetTickCount
GetStringTypeA
DuplicateHandle
LCMapStringW
TlsGetValue
GetSystemInfo
GetSystemDefaultLCID
CreateMutexA
GetProcessHeap
GetStartupInfoA
CompareStringW
EnumSystemLocalesA
WriteConsoleOutputAttribute
GetProcAddress
GetModuleFileNameA
IsDebuggerPresent
GetCPInfo
HeapAlloc
Sleep
GetStdHandle
FreeEnvironmentStringsA
GetTimeFormatA
SetEnvironmentVariableA
GetModuleHandleA
HeapReAlloc
SetFilePointer

gdi32

GetCharWidthFloatW
CreateFontIndirectW
SaveDC
SetPolyFillMode
PathToRegion
ExtTextOutA

Sections

.text
Size: 187KB - Virtual size: 186KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 315KB - Virtual size: 315KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8749722c4fb66e40af09563865ad28e1

Headers

File Characteristics

Imports

comctl32

wininet

user32

comdlg32

advapi32

kernel32

gdi32

Sections

.text Size: 187KB - Virtual size: 186KB

.rdata Size: 10KB - Virtual size: 23KB

.data Size: 315KB - Virtual size: 315KB

.rsrc Size: 7KB - Virtual size: 7KB

.text
Size: 187KB - Virtual size: 186KB

.rdata
Size: 10KB - Virtual size: 23KB

.data
Size: 315KB - Virtual size: 315KB

.rsrc
Size: 7KB - Virtual size: 7KB