3350af2ef7a70c0b133962e74ae6ce9f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3350af2ef7a70c0b133962e74ae6ce9f_JaffaCakes118
Size

457KB
MD5

3350af2ef7a70c0b133962e74ae6ce9f
SHA1

c1be538e717207853ba773c574b000412014a0e8
SHA256

7f654e962593eaa4783d7cfd2a5cd174866fe604b69beb0daf97e2c42b80222e
SHA512

72f9157309acc9c713c672aaf47b6403841272bf63ec76f1d3f89757f7b2560d343a46d21adbcb891cfdee20b73b6e7dc94d2abce0e711ba59f49415fe05e1ac
SSDEEP

12288:R4QIqs1Wo2Cp33F8fLaFoE5zVbbShvIBHyoBrqc0hFUmeQ0jwTn:Ch1qfIBZ0LUpjwTn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3350af2ef7a70c0b133962e74ae6ce9f_JaffaCakes118

Files

3350af2ef7a70c0b133962e74ae6ce9f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9259d53086df89341fd751ad063d2708

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

KillTimer
DdeUninitialize
DdeQueryStringW
SetTimer
RegisterClassA
GetOpenClipboardWindow
CloseDesktop
IsClipboardFormatAvailable
DestroyIcon
IntersectRect
DlgDirListA
EndTask
InflateRect
CloseClipboard
IsWindowUnicode
CharNextW
RegisterDeviceNotificationW
GrayStringW
GetWindowWord
DdeSetUserHandle
CreateWindowExA
RegisterClassExA

advapi32

CryptAcquireContextA
LookupPrivilegeNameW
RegQueryValueExA
CryptGenKey
DuplicateToken
CryptHashSessionKey
RegCreateKeyExA
CryptEnumProviderTypesA
RegEnumValueW
RegOpenKeyA
ReportEventW
LookupPrivilegeNameA
RegLoadKeyA
RegEnumKeyA
RegSetValueW
RegQueryValueA
RegDeleteKeyW
LookupPrivilegeDisplayNameA
CryptExportKey
CryptGetKeyParam
RegConnectRegistryW
RegQueryValueExW
CryptDeriveKey
CryptDestroyKey
CryptEnumProvidersW

gdi32

EnumFontsA
SetMapperFlags
TranslateCharsetInfo
StartPage
GetTextFaceW
GetBkColor
AbortPath
GetCharWidth32W
GetStretchBltMode
ExtTextOutA
GetNearestColor
GetObjectA
SetFontEnumeration

wininet

InternetSetCookieW
SetUrlCacheGroupAttributeW
InternetShowSecurityInfoByURLA
InternetSetCookieA
GetUrlCacheGroupAttributeA
FtpOpenFileA
GetUrlCacheConfigInfoA

kernel32

FlushFileBuffers
DuplicateHandle
GetStringTypeExW
SleepEx
GetCurrentThreadId
LeaveCriticalSection
GetStartupInfoA
HeapFree
SetLastError
HeapCreate
InitializeCriticalSection
OpenMutexA
GetEnvironmentStrings
GlobalAlloc
GetACP
GetCurrentThread
TerminateProcess
GetProcAddress
WriteFile
HeapDestroy
SetHandleCount
TlsGetValue
GetTickCount
GetDiskFreeSpaceA
LocalReAlloc
GlobalUnfix
CompareStringW
GetStringTypeA
RtlUnwind
GetCommandLineA
CreateMutexA
QueryPerformanceCounter
GetTimeZoneInformation
FreeEnvironmentStringsA
GetEnvironmentStringsW
WriteConsoleW
SetVolumeLabelA
TlsAlloc
ExitProcess
TlsFree
CompareStringA
HeapAlloc
GetModuleFileNameA
lstrcpyn
UnhandledExceptionFilter
LCMapStringA
GetCurrentProcess
WritePrivateProfileSectionW
GetSystemTimeAsFileTime
LCMapStringW
GetFileType
WaitForSingleObjectEx
CreateToolhelp32Snapshot
VirtualAlloc
GetExitCodeProcess
InterlockedExchange
GetLastError
HeapReAlloc
GetLocalTime
SetConsoleTextAttribute
WriteProfileStringW
ReadFile
SetStdHandle
GetCPInfo
GetDateFormatW
IsBadWritePtr
DeleteCriticalSection
GetOEMCP
MultiByteToWideChar
GetCurrentDirectoryW
InterlockedIncrement
VirtualFree
TlsSetValue
LoadLibraryA
VirtualQuery
GetStdHandle
SetEnvironmentVariableA
GetCurrentProcessId
GetModuleHandleA
SetFilePointer
EnterCriticalSection
SystemTimeToTzSpecificLocalTime
CloseHandle
FreeEnvironmentStringsW
FillConsoleOutputCharacterA
WideCharToMultiByte
InterlockedDecrement
GetStringTypeW
lstrcmpA
GetVersion
GetSystemTime

comdlg32

ChooseFontW
LoadAlterBitmap
FindTextA

comctl32

InitCommonControlsEx

Sections

.text
Size: 297KB - Virtual size: 296KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 44KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 102KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9259d53086df89341fd751ad063d2708

Headers

File Characteristics

Imports

user32

advapi32

gdi32

wininet

kernel32

comdlg32

comctl32

Sections

.text Size: 297KB - Virtual size: 296KB

.rdata Size: 44KB - Virtual size: 72KB

.data Size: 102KB - Virtual size: 101KB

.rsrc Size: 13KB - Virtual size: 13KB

.text
Size: 297KB - Virtual size: 296KB

.rdata
Size: 44KB - Virtual size: 72KB

.data
Size: 102KB - Virtual size: 101KB

.rsrc
Size: 13KB - Virtual size: 13KB