16187c90d81c72decaac62738bb1a45e_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

16187c90d81c72decaac62738bb1a45e_JaffaCakes118
Size

471KB
MD5

16187c90d81c72decaac62738bb1a45e
SHA1

79643583439ff80e9aa0205031a44da2cf4f51f8
SHA256

d03f6c25dac73bc792e4ecdd13d5175e863d5e9be38542f157b96d805b8d8580
SHA512

640dc7cab58a6c72a620bcb9f2cd4fdbc836f92e1cc273a36b52465134910ef9f9d65b2e1f1497b059fafd37c199ebb5dd9adbcaf7218df62c8aefd99fc15dd3
SSDEEP

12288:omEqs4xE0xsSNwENojL9LFJD3m14FhNrqEgghDiIx46qy+t:9EHL/VjL9LFJDDFzqBghDi2Tqy+t

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
16187c90d81c72decaac62738bb1a45e_JaffaCakes118

Files

16187c90d81c72decaac62738bb1a45e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

abbf7e15fdddd8a07eb27fc78f55d971

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegSetValueExA
RegCloseKey
ReportEventW
RegCreateKeyA
RegEnumValueA
CryptDecrypt
CryptReleaseContext
CryptGenRandom
RegDeleteKeyA

wininet

CreateUrlCacheEntryW
InternetReadFile
FtpPutFileEx
FreeUrlCacheSpaceW
InternetSetDialState
InternetGetConnectedStateEx
DeleteUrlCacheContainerA
GetUrlCacheConfigInfoW
InternetLockRequestFile

gdi32

GetObjectW
StretchBlt
GetTextMetricsA
RectVisible

user32

RegisterClassA
RegisterClassExA
SwapMouseButton
LoadCursorA
DlgDirSelectExW
DefFrameProcW
EnableScrollBar
SetWindowLongW
SendMessageW
FrameRect
CharToOemA
CharPrevA
CloseWindowStation
TranslateAcceleratorA
DdeInitializeA
SetShellWindow
OpenWindowStationW
ShowWindow
DlgDirListComboBoxA
GetMenuItemRect
DialogBoxIndirectParamA
DestroyCursor
FindWindowA

comdlg32

ReplaceTextA
ReplaceTextW
GetFileTitleW

comctl32

InitCommonControlsEx

kernel32

GetCurrentThreadId
SetEnvironmentVariableA
CreateMutexA
GetThreadContext
FindFirstFileExA
GetStdHandle
OpenMutexA
QueryPerformanceCounter
GetModuleFileNameW
WideCharToMultiByte
CommConfigDialogW
GetStringTypeW
MultiByteToWideChar
HeapCreate
GetDiskFreeSpaceA
GetOEMCP
LoadModule
IsBadWritePtr
HeapAlloc
TlsFree
GetVersionExA
GetEnvironmentStringsW
FindFirstFileA
GetCurrentThread
GetCommandLineW
GetACP
VirtualProtect
SetFilePointer
InterlockedExchange
FreeEnvironmentStringsW
GetModuleFileNameA
GetProcAddress
CompareStringW
SetLocalTime
MoveFileA
GetModuleHandleA
VirtualQuery
GetCalendarInfoW
GetStringTypeA
FlushFileBuffers
TlsGetValue
GetUserDefaultLCID
TlsSetValue
GetFileType
EnterCriticalSection
GetSystemTimeAsFileTime
TerminateProcess
EnumResourceLanguagesW
WriteConsoleA
GetDiskFreeSpaceExW
HeapFree
FreeEnvironmentStringsA
WriteFile
LCMapStringA
WriteConsoleOutputCharacterW
GetSystemInfo
GetLocaleInfoW
DeleteCriticalSection
CompareStringA
IsValidCodePage
HeapReAlloc
SetFileTime
CreateSemaphoreA
GetTimeZoneInformation
HeapDestroy
ExitProcess
HeapSize
LeaveCriticalSection
GetTimeFormatA
GetCurrentProcessId
GetCPInfo
SystemTimeToFileTime
GetEnvironmentStrings
SetLastError
SetHandleCount
CreateNamedPipeA
CloseHandle
LoadLibraryA
TlsAlloc
InitializeCriticalSectionAndSpinCount
UnhandledExceptionFilter
GlobalAlloc
InitializeCriticalSection
LCMapStringW
ReadFile
GetStartupInfoW
VirtualFree
GetDateFormatA
GetCurrentProcess
RtlUnwind
GetFileAttributesExW
VirtualAlloc
GetStartupInfoA
SetStdHandle
EnumSystemLocalesA
IsValidLocale
GetTickCount
GetCommandLineA
GetLastError
GetLocaleInfoA

Sections

.text
Size: 295KB - Virtual size: 294KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 66KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 103KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

abbf7e15fdddd8a07eb27fc78f55d971

Headers

File Characteristics

Imports

advapi32

wininet

gdi32

user32

comdlg32

comctl32

kernel32

Sections

.text Size: 295KB - Virtual size: 294KB

.rdata Size: 66KB - Virtual size: 87KB

.data Size: 103KB - Virtual size: 102KB

.rsrc Size: 6KB - Virtual size: 5KB

.text
Size: 295KB - Virtual size: 294KB

.rdata
Size: 66KB - Virtual size: 87KB

.data
Size: 103KB - Virtual size: 102KB

.rsrc
Size: 6KB - Virtual size: 5KB