2620e7dc3673499ae96cf3f5b0f2f081_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2620e7dc3673499ae96cf3f5b0f2f081_JaffaCakes118
Size

372KB
MD5

2620e7dc3673499ae96cf3f5b0f2f081
SHA1

be27230984580bf52563e68e1e2c0b1072704693
SHA256

7014ce055667ccc0c00397a6f4cb4436dbb12c4be356bf06755c4055d4fb21ed
SHA512

5803ea2d1cb6d7603fbc9374f41e6d7acd0948fb54c8c8e53069a7f1df417a3c7877e6717f6bb5607570ad22ceef36b7b1255596795ff41c600efef10a688326
SSDEEP

6144:bTH8YbixOb1aYhNHOWTod2fseA3ZVoGNAaL0ATWo7M6lKPh0r:bb8YL0YhNuBd2Epc86AA6ch2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2620e7dc3673499ae96cf3f5b0f2f081_JaffaCakes118

Files

2620e7dc3673499ae96cf3f5b0f2f081_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f6ad061d1bcc12f0036eff190b39cdfa

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

d:\sos\lmse.pdb

Imports

wininet

InternetInitializeAutoProxyDll
InternetQueryOptionA
DeleteIE3Cache
CreateUrlCacheEntryA
InternetOpenW
FtpCreateDirectoryW

kernel32

GetConsoleMode
GetStringTypeW
GetStdHandle
FlushFileBuffers
VirtualFree
GetTickCount
GetFileType
VirtualAlloc
SetUnhandledExceptionFilter
GetSystemTimeAsFileTime
SetEnvironmentVariableA
TlsSetValue
SetLastError
HeapDestroy
InitializeCriticalSection
GetCurrentThreadId
GetUserDefaultLCID
GetCurrentProcess
GetDateFormatA
GetProcAddress
FreeLibrary
InterlockedDecrement
CompareStringW
GetLocaleInfoA
GetTimeFormatA
VirtualQuery
GetCurrentThread
IsValidCodePage
LoadLibraryA
GetLocaleInfoW
SetStdHandle
CloseHandle
OpenMutexA
GetModuleHandleA
HeapAlloc
GetCommandLineW
GetCPInfo
FreeEnvironmentStringsA
TlsGetValue
IsDebuggerPresent
WriteFile
GetStringTypeA
IsValidLocale
WriteConsoleW
InterlockedExchange
RemoveDirectoryW
WideCharToMultiByte
TerminateProcess
GetConsoleCP
SetConsoleCtrlHandler
ExitProcess
MultiByteToWideChar
FreeEnvironmentStringsW
DeleteCriticalSection
HeapSize
CreateMailslotA
UnhandledExceptionFilter
GetEnvironmentStringsW
GetStartupInfoA
RtlUnwind
SetHandleCount
HeapFree
CreateFileA
GetModuleFileNameW
GetStartupInfoW
GetProcessHeap
GetConsoleOutputCP
GetTimeZoneInformation
GetModuleFileNameA
Sleep
EnumSystemLocalesA
LCMapStringA
CreateMutexA
TlsFree
ReadFile
GetVersionExA
GetEnvironmentStrings
GetLastError
GetACP
LeaveCriticalSection
CompareStringA
WriteConsoleA
EnterCriticalSection
InterlockedIncrement
HeapCreate
TlsAlloc
GetOEMCP
SetFilePointer
LCMapStringW
HeapReAlloc
QueryPerformanceCounter
GetCurrentProcessId
GetCommandLineA

comctl32

InitCommonControlsEx
DrawStatusText
DestroyPropertySheetPage
CreatePropertySheetPage
ImageList_DragShowNolock
ImageList_SetFilter
ImageList_Create
ImageList_GetBkColor
ImageList_DrawIndirect
CreateToolbarEx
ImageList_EndDrag
ImageList_LoadImage
GetEffectiveClientRect
ImageList_AddMasked
ImageList_Merge
ImageList_Write
ImageList_GetIconSize

user32

DialogBoxIndirectParamA
WINNLSGetEnableStatus
BroadcastSystemMessageW
SetMenuItemInfoA
GetWindowModuleFileNameA
PeekMessageA
EnumWindowStationsW
SendMessageTimeoutW
OpenClipboard
GetMonitorInfoW
RegisterClassA
CopyRect
DrawTextExW
CopyAcceleratorTableW
WaitForInputIdle
ChangeDisplaySettingsA
SetUserObjectSecurity
RegisterClassExA
OemToCharW
PostMessageA
GetSystemMenu
ChangeDisplaySettingsExW
TabbedTextOutA
DragDetect
DefWindowProcA

Sections

.text
Size: 160KB - Virtual size: 158KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 96KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 96KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f6ad061d1bcc12f0036eff190b39cdfa

Headers

File Characteristics

PDB Paths

Imports

wininet

kernel32

comctl32

user32

Sections

.text Size: 160KB - Virtual size: 158KB

.rdata Size: 96KB - Virtual size: 92KB

.data Size: 96KB - Virtual size: 124KB

.rsrc Size: 16KB - Virtual size: 13KB

.text
Size: 160KB - Virtual size: 158KB

.rdata
Size: 96KB - Virtual size: 92KB

.data
Size: 96KB - Virtual size: 124KB

.rsrc
Size: 16KB - Virtual size: 13KB