347ac7388167a527ce54a14ec19548b7_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

347ac7388167a527ce54a14ec19548b7_JaffaCakes118
Size

454KB
MD5

347ac7388167a527ce54a14ec19548b7
SHA1

fa1c41dc770abde9fd42e8d1eabef939a430ee1e
SHA256

17082478df4ffb2c5c8e1bd77cc1d87d4f332e3b846b71aa609f341de3bcbfc6
SHA512

52868d3a65232ab2851d85bc8066d1dbca71f9fcc3699664e1db425595d759e671dab340249e011b365bedb60f16fca27e3010fa4913344ec42731c79b6124c8
SSDEEP

6144:9IZAp2T+T1rdwgc23aoobLW5CPNFSDZAG2HBav0xKPEDlVuUPnp5+l:9IZ0Dwgi2SMD+G2Y8P5Pn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
347ac7388167a527ce54a14ec19548b7_JaffaCakes118

Files

347ac7388167a527ce54a14ec19548b7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ce8fe893647727a6c6a27acb0550b753

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTimeZoneInformation
GetCurrentProcessId
GetCPInfo
EnumDateFormatsA
VirtualFree
TlsAlloc
InterlockedIncrement
CompareStringW
GetModuleFileNameA
VirtualQuery
LCMapStringW
IsValidLocale
EnumSystemLocalesA
CompareStringA
GetUserDefaultLCID
HeapCreate
SetHandleCount
GetDateFormatA
FindNextFileA
InterlockedDecrement
UnhandledExceptionFilter
GetModuleHandleW
WriteConsoleOutputA
FreeEnvironmentStringsA
MultiByteToWideChar
GetCompressedFileSizeW
GetStdHandle
HeapSize
GetProcAddress
IsValidCodePage
GetTickCount
GetEnvironmentStrings
RtlUnwind
WriteFile
HeapFree
SetConsoleCtrlHandler
InitializeCriticalSectionAndSpinCount
GetOEMCP
SetUnhandledExceptionFilter
GetStringTypeW
HeapDestroy
GetCurrentThread
GetLocaleInfoA
GetStringTypeA
GetModuleHandleA
TerminateProcess
TlsSetValue
GetSystemTimeAsFileTime
GetLocaleInfoW
GetLastError
TlsFree
ExitProcess
LockFile
GetThreadPriority
HeapAlloc
GlobalFree
FreeEnvironmentStringsW
VirtualAlloc
HeapReAlloc
FileTimeToDosDateTime
CreateFileW
OpenEventW
InterlockedExchange
GetCurrencyFormatW
TlsGetValue
LeaveCriticalSection
GetCurrentThreadId
GetCurrentProcess
SetLastError
FreeLibrary
SetEnvironmentVariableA
GetConsoleOutputCP
Sleep
DeleteCriticalSection
GetCommandLineA
LoadLibraryA
CreateMutexW
GetStartupInfoA
WriteConsoleOutputAttribute
WideCharToMultiByte
GetEnvironmentStringsW
GetSystemDirectoryA
LockFileEx
GetSystemInfo
EnterCriticalSection
GetTimeFormatA
GlobalAlloc
FillConsoleOutputCharacterW
LCMapStringA
FileTimeToLocalFileTime
CommConfigDialogA
GetACP
QueryPerformanceCounter
IsDebuggerPresent
GetFileType

wininet

FindNextUrlCacheContainerW
InternetCombineUrlA
InternetGetConnectedStateExW
InternetCanonicalizeUrlA
InternetSetCookieW
InternetConnectA
DeleteUrlCacheGroup
InternetCreateUrlA

gdi32

CreateColorSpaceA
GetTextMetricsA
GetTextAlign
GetCharABCWidthsW
GetCharacterPlacementW
GdiSetBatchLimit
FloodFill
SetMapperFlags
StartDocW
GetGraphicsMode
CombineTransform
SetPixelV
SetBkMode
GetTextFaceA
DeviceCapabilitiesExW
SetPixel
GetArcDirection
EnumFontFamiliesExW
FillPath
GetTextExtentExPointA
GetWindowExtEx

advapi32

CryptEnumProvidersA
CryptVerifySignatureA
CryptGetDefaultProviderA
CreateServiceA
CryptContextAddRef

comdlg32

PrintDlgW
ReplaceTextW
FindTextW
LoadAlterBitmap

shell32

SHGetSpecialFolderPathA
FreeIconList
SHEmptyRecycleBinA
SHBrowseForFolderW
DoEnvironmentSubstA

Sections

.text
Size: 150KB - Virtual size: 150KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 282KB - Virtual size: 281KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ce8fe893647727a6c6a27acb0550b753

Headers

File Characteristics

Imports

kernel32

wininet

gdi32

advapi32

comdlg32

shell32

Sections

.text Size: 150KB - Virtual size: 150KB

.rdata Size: 9KB - Virtual size: 13KB

.data Size: 282KB - Virtual size: 281KB

.rsrc Size: 11KB - Virtual size: 10KB

.text
Size: 150KB - Virtual size: 150KB

.rdata
Size: 9KB - Virtual size: 13KB

.data
Size: 282KB - Virtual size: 281KB

.rsrc
Size: 11KB - Virtual size: 10KB