273c031338cb000f2ce8a3ab59158ec8_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

273c031338cb000f2ce8a3ab59158ec8_JaffaCakes118
Size

389KB
MD5

273c031338cb000f2ce8a3ab59158ec8
SHA1

3ebbde38766800325bd55829e8afb862e347fefe
SHA256

fe613885cb4a0b597a71df5d53517e757f8122b50fb1a7f825b6b78f9d9d809f
SHA512

0c19960e761609bbd744416d719544fad35efb644cd5d5aa7aaf68852d503aa93e23508393f9fecf58dcb7c1f13a764114a44f096b2bb91189bf8131b54abdd8
SSDEEP

6144:JrV5q5lHAJstBYq2vmLaoemHHFT14ymkpeIYMtMwFUNs/64gDiJ9gfAlS:+AuXVI+BNmvjMvYs/6SJT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
273c031338cb000f2ce8a3ab59158ec8_JaffaCakes118

Files

273c031338cb000f2ce8a3ab59158ec8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0180c1575cde42d329ce1855e5ffc374

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

ExtractAssociatedIconA

comdlg32

GetOpenFileNameW

comctl32

InitCommonControlsEx

kernel32

GetStringTypeExA
GetEnvironmentStringsW
EnumSystemLocalesA
VirtualFree
HeapCreate
LoadLibraryA
DeleteCriticalSection
GetDateFormatA
CompareStringW
WriteConsoleW
GetTimeFormatW
GetSystemTimeAsFileTime
WriteFile
GetConsoleOutputCP
GetTimeZoneInformation
GetStringTypeA
SetStdHandle
WaitNamedPipeW
LeaveCriticalSection
HeapAlloc
WriteConsoleA
HeapSize
TlsAlloc
IsDebuggerPresent
GetStringTypeW
HeapReAlloc
GetTickCount
LCMapStringW
GetFileAttributesExW
IsValidLocale
FreeLibrary
InterlockedDecrement
DebugActiveProcess
Sleep
TlsSetValue
FlushFileBuffers
UnhandledExceptionFilter
EnterCriticalSection
GetProcessHeap
HeapFree
GetConsoleCP
CreateFileA
WideCharToMultiByte
GetStdHandle
SetConsoleCtrlHandler
SetHandleCount
EnumResourceNamesA
VirtualQuery
CompareStringA
lstrcpyW
TlsGetValue
InitializeCriticalSection
SetUnhandledExceptionFilter
SetThreadContext
VirtualAlloc
GetModuleHandleA
ReadFile
GetThreadPriorityBoost
GetCPInfo
GetProcAddress
FreeEnvironmentStringsA
GetCommandLineA
GetLocaleInfoW
TlsFree
GetModuleFileNameA
GetTimeFormatA
IsValidCodePage
GetThreadTimes
GetLocaleInfoA
MultiByteToWideChar
SetFilePointer
InterlockedIncrement
QueryPerformanceCounter
GetLastError
CreateMutexA
LCMapStringA
GetCurrentProcess
DeleteAtom
SetLastError
GetCurrentThreadId
GetStartupInfoA
SetEnvironmentVariableA
SetLocaleInfoA
HeapDestroy
FreeEnvironmentStringsW
GetCurrentProcessId
GetUserDefaultLCID
GetFileType
GetCurrentThread
GetEnvironmentStrings
RtlUnwind
GetOEMCP
GetPrivateProfileStringW
CloseHandle
TerminateProcess
GetConsoleMode
GetACP
GetVersionExA
InterlockedExchange
OpenMutexA
ExitProcess

gdi32

GdiPlayJournal
GetClipBox

advapi32

RegConnectRegistryA
CryptSetProviderExA
CryptGetHashParam
CryptSetHashParam
RegOpenKeyExW
StartServiceW
RegSaveKeyA
LookupPrivilegeNameW
LookupAccountSidW
CryptSetProviderW
LogonUserA
RegOpenKeyW
CryptAcquireContextA
CryptSignHashA
RegEnumKeyExA
CryptEnumProviderTypesW
RegQueryValueW
CryptSetKeyParam
InitiateSystemShutdownW
RegDeleteValueW
DuplicateToken
RegDeleteValueA

user32

DrawMenuBar
LoadIconA
RegisterClassExA
PtInRect
EndPaint
ValidateRect
DdeDisconnectList
MsgWaitForMultipleObjectsEx
GetDC
GetClassLongA
GetUserObjectSecurity
SetWindowTextW
TranslateMDISysAccel
RegisterClassA

Sections

.text
Size: 193KB - Virtual size: 192KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 177KB - Virtual size: 177KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0180c1575cde42d329ce1855e5ffc374

Headers

File Characteristics

Imports

shell32

comdlg32

comctl32

kernel32

gdi32

advapi32

user32

Sections

.text Size: 193KB - Virtual size: 192KB

.rdata Size: 10KB - Virtual size: 27KB

.data Size: 177KB - Virtual size: 177KB

.rsrc Size: 7KB - Virtual size: 6KB

.text
Size: 193KB - Virtual size: 192KB

.rdata
Size: 10KB - Virtual size: 27KB

.data
Size: 177KB - Virtual size: 177KB

.rsrc
Size: 7KB - Virtual size: 6KB