267ccddc18b9d98c6806a7b2343960d8_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

267ccddc18b9d98c6806a7b2343960d8_JaffaCakes118
Size

348KB
MD5

267ccddc18b9d98c6806a7b2343960d8
SHA1

94e035484681096db87f2a4f0dee14f9cd40ab7d
SHA256

e60d7207a4b2177b1776e1365980b37876e78d23ad658f68c81d52db0328442b
SHA512

c77cbeafccc41b33aa302bb6858cf5769fecfc3f7cabadfde86eb4d2fbcec27a953e18fb6ec4c7868615836ff869334562b1f77471a21e676c693a77a8b814e4
SSDEEP

6144:RMI5tbF4bFEX+2DY0TYYI+gulk2lHFRVeH7UMQ4YRDW014:yGtRoX2DNTY5ok2DibS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
267ccddc18b9d98c6806a7b2343960d8_JaffaCakes118

Files

267ccddc18b9d98c6806a7b2343960d8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7afe6d8d60b116df8b6132bb3e8a6bcc

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CharNextW
GetKeyboardLayoutList
ShowWindow
DrawTextExA
DdeAbandonTransaction
MapVirtualKeyExA
RegisterClassA
ClientToScreen
GetNextDlgGroupItem
GetMessagePos
GetKeyNameTextW
RegisterClassExA
GetKeyboardLayoutNameW
CloseWindow
CharToOemBuffA
CreateWindowExW
DestroyWindow
GetScrollInfo
DrawEdge
DlgDirListA
MessageBoxW
GetClipboardOwner
RemoveMenu
DefWindowProcA
ReleaseDC
FlashWindowEx

comctl32

ImageList_DragEnter
ImageList_SetImageCount
InitCommonControlsEx
ImageList_AddIcon
_TrackMouseEvent
ImageList_SetIconSize
ImageList_LoadImageA
ImageList_ReplaceIcon
ImageList_DrawIndirect
CreatePropertySheetPageW
DrawInsert

wininet

HttpSendRequestA
InternetSetOptionA
InternetCloseHandle
GopherOpenFileW

kernel32

CreateFileA
GetStdHandle
GetProcAddress
GetLocaleInfoW
GetConsoleCP
SetFilePointer
GetCommandLineW
GetStringTypeW
GetACP
GetCommandLineA
GetCurrentProcess
GetCPInfo
HeapDestroy
SetHandleCount
EnterCriticalSection
GetConsoleOutputCP
FreeEnvironmentStringsW
LCMapStringA
GetModuleFileNameA
GetLocaleInfoA
FreeEnvironmentStringsA
SetLastError
IsValidLocale
GetFileType
WideCharToMultiByte
GetProfileSectionW
ReadFile
CloseHandle
InitializeCriticalSection
CompareStringW
GetSystemTime
lstrcmpi
CreateMutexA
HeapFree
TerminateProcess
SetFileTime
CopyFileA
GetCurrentProcessId
DeleteCriticalSection
SetUnhandledExceptionFilter
GetProcessHeap
GetOEMCP
WriteProfileSectionA
SetConsoleCtrlHandler
WriteFile
MultiByteToWideChar
InterlockedDecrement
GetVolumeInformationW
VirtualAlloc
GetLastError
GetModuleHandleA
HeapCreate
VirtualFreeEx
FlushFileBuffers
ExitProcess
GetStartupInfoW
ReadConsoleA
GetEnvironmentStrings
GetNumberFormatA
GetCurrentThreadId
SetEnvironmentVariableA
VirtualFree
WriteConsoleOutputW
QueryPerformanceCounter
WriteConsoleW
EnumDateFormatsExW
LockFileEx
FreeLibrary
InterlockedIncrement
WaitNamedPipeA
Sleep
GetSystemTimeAsFileTime
EnumCalendarInfoW
WriteConsoleA
LocalSize
FreeResource
LCMapStringW
GetModuleFileNameW
DeleteFileA
WaitForMultipleObjects
SetStdHandle
GetConsoleTitleA
VirtualQuery
IsValidCodePage
CompareStringA
GetStringTypeA
GetTimeFormatA
GetTickCount
GetEnvironmentStringsW
TlsAlloc
LoadLibraryA
GetUserDefaultLCID
ReadConsoleOutputW
HeapReAlloc
InterlockedExchange
RtlUnwind
SetLocaleInfoA
LeaveCriticalSection
GetProfileSectionA
IsDebuggerPresent
TlsGetValue
EnumResourceTypesA
ReadConsoleOutputCharacterA
GetDateFormatA
MoveFileExA
DeleteFileW
TlsFree
GetTempPathW
HeapSize
HeapAlloc
GetStartupInfoA
GetConsoleMode
UnhandledExceptionFilter
GetCurrentThread
GetTimeZoneInformation
OpenMutexA
GetVersionExA
TlsSetValue
EnumSystemLocalesA
LoadLibraryExW

Sections

.text
Size: 140KB - Virtual size: 136KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 80KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 96KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7afe6d8d60b116df8b6132bb3e8a6bcc

Headers

File Characteristics

Imports

user32

comctl32

wininet

kernel32

Sections

.text Size: 140KB - Virtual size: 136KB

.rdata Size: 80KB - Virtual size: 78KB

.data Size: 96KB - Virtual size: 98KB

.rsrc Size: 28KB - Virtual size: 27KB

.text
Size: 140KB - Virtual size: 136KB

.rdata
Size: 80KB - Virtual size: 78KB

.data
Size: 96KB - Virtual size: 98KB

.rsrc
Size: 28KB - Virtual size: 27KB