24df42685a5425f8f385d95ff38d4af1_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

24df42685a5425f8f385d95ff38d4af1_JaffaCakes118
Size

435KB
MD5

24df42685a5425f8f385d95ff38d4af1
SHA1

7b96841afbf181340324444185115f577fe2a767
SHA256

a97706f5935c53c82376a4329d2a76f7bf0408e11523adfe6d47848442b27eff
SHA512

ac7e73acc59ebd1aff7d205276da7cf532d72ab96ee58892dbbb4e826de15c43929d774893955d8d84bde7570db4ee638f82d2904fcd7764440a100e63faced1
SSDEEP

6144:5S6ILyXsBtEc+DsiZXGopfS0BzMUp1O1FXTKDrKqZXEZl9BW4MO9rE7:5YWcEc+4iZXX17uEh8lm4DVC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
24df42685a5425f8f385d95ff38d4af1_JaffaCakes118

Files

24df42685a5425f8f385d95ff38d4af1_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a36ad404beaecd6ffc3d9f2ea5cf2adb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

CryptSignHashW
CryptExportKey
LookupPrivilegeDisplayNameW
AbortSystemShutdownA
CryptEnumProviderTypesA
RegQueryInfoKeyW
RegQueryValueA
LookupPrivilegeValueA
RegOpenKeyExW
CryptSetKeyParam
LookupPrivilegeValueW
RegRestoreKeyW
RegLoadKeyW
LookupAccountSidA
RegNotifyChangeKeyValue
CryptGetKeyParam

shell32

ShellExecuteW
SHFileOperation
SheGetDirA
ExtractIconExA
SHUpdateRecycleBinIcon
SHEmptyRecycleBinA
DragQueryFileA
ExtractAssociatedIconExA
ExtractIconW
ShellExecuteEx
ShellAboutA
FreeIconList
InternalExtractIconListA
SHAppBarMessage
DragQueryFile
SheChangeDirExW
SHInvokePrinterCommandW
ExtractIconA
InternalExtractIconListW
SHFileOperationW
FindExecutableA

gdi32

CreateBrushIndirect
PolylineTo
RealizePalette
CreateColorSpaceA
SetICMMode
EnumFontsA
PolyBezier

user32

MapWindowPoints
LoadStringA
GetClipboardOwner
GetClipboardFormatNameW
CallMsgFilterA
CheckMenuItem
DeleteMenu
GetMenu
DestroyWindow
ChangeDisplaySettingsExW

kernel32

Sleep
HeapReAlloc
GetModuleFileNameA
GetTickCount
RtlUnwind
LCMapStringW
SetConsoleCtrlHandler
GetFileType
GetLocaleInfoW
IsDebuggerPresent
FreeEnvironmentStringsW
IsValidCodePage
TlsGetValue
GetStartupInfoA
IsBadReadPtr
VirtualFree
WriteFile
UnhandledExceptionFilter
GlobalFindAtomA
InterlockedIncrement
GetModuleHandleW
WaitForMultipleObjects
lstrcmpiW
GetCurrentProcessId
MultiByteToWideChar
WaitForSingleObjectEx
GetTimeFormatA
SetEnvironmentVariableA
GetLastError
GetOEMCP
LoadLibraryA
FreeLibrary
IsValidLocale
LeaveCriticalSection
GetStringTypeA
GetCommandLineW
GetModuleHandleA
lstrcmpi
GetEnvironmentStringsW
SetHandleCount
CreatePipe
GetModuleFileNameW
GetUserDefaultLCID
GetThreadContext
SetUnhandledExceptionFilter
InterlockedDecrement
DeleteCriticalSection
VirtualAlloc
InterlockedExchange
LocalFileTimeToFileTime
GetSystemTime
HeapFree
HeapAlloc
GetStringTypeW
WriteConsoleInputW
GetACP
GetEnvironmentStringsA
GetStdHandle
TerminateProcess
GetCPInfo
SetFileAttributesA
VirtualQuery
CompareStringW
GetPrivateProfileSectionA
TlsAlloc
CompareStringA
ExpandEnvironmentStringsA
InitializeCriticalSectionAndSpinCount
GetStartupInfoW
GetCurrentThread
LCMapStringA
TlsFree
HeapCreate
SystemTimeToTzSpecificLocalTime
GetTimeZoneInformation
HeapSize
HeapLock
LocalFlags
EnumCalendarInfoExA
PulseEvent
GetCurrentProcess
GetCurrentThreadId
EnumSystemLocalesA
GetDateFormatA
HeapDestroy
ExitProcess
GetProcAddress
WideCharToMultiByte
QueryPerformanceCounter
TlsSetValue
EnterCriticalSection
GetSystemTimeAsFileTime
SetLastError
GetLocaleInfoA

wininet

SetUrlCacheHeaderData
CreateUrlCacheEntryW
InternetGetCookieW
DeleteUrlCacheEntry
InternetSetDialState
InternetQueryOptionW
SetUrlCacheConfigInfoW
InternetCreateUrlW
FindNextUrlCacheEntryExA
ShowCertificate

Sections

.avx��
Size: 431KB - Virtual size: 431KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a36ad404beaecd6ffc3d9f2ea5cf2adb

Headers

File Characteristics

Imports

advapi32

shell32

gdi32

user32

kernel32

wininet

Sections

.avx���� Size: 431KB - Virtual size: 431KB

.avx��
Size: 431KB - Virtual size: 431KB