393e62c69babd21435316a8df44ac98a_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

393e62c69babd21435316a8df44ac98a_JaffaCakes118
Size

339KB
MD5

393e62c69babd21435316a8df44ac98a
SHA1

2d5cb6afee3412756dccbfcc235728489ce2d89d
SHA256

f7e4d1d55a54f979f70a7caee83e34f233a7151e4c336f8221b33a5e0240ec3e
SHA512

b7884ccfa4f2db2a762e8896f488d4c68abcb62d51c713c35bc7c1b200632ff804b573841482b4b3c502414db51818598e1b20322ef55ca9f3c44f7f714fa884
SSDEEP

6144:UFcwJqr23uzeY7k3RpJiM1y5CHG+6YPbH5fB53d4b3yDLXFhathPzF34:UFc3ryyo9VbH5HUILXXat

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
393e62c69babd21435316a8df44ac98a_JaffaCakes118

Files

393e62c69babd21435316a8df44ac98a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4a430d594ed85e47916438cd53869dac

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_DragShowNolock
CreatePropertySheetPage
DrawStatusTextW
_TrackMouseEvent
InitCommonControlsEx
ImageList_GetIconSize

user32

GetClassWord
RegisterClassA
SwitchToThisWindow
CharUpperA
ScrollDC
MonitorFromPoint
GetKeyboardLayoutList
SetMessageQueue
IsWindow
GetGuiResources
RegisterClassExA
GetScrollPos
GetMenuState
DialogBoxParamW
DdeFreeStringHandle
GetWindowTextA
ShowScrollBar
wvsprintfA

wininet

InternetConfirmZoneCrossingA
InternetGetLastResponseInfoW
FtpGetCurrentDirectoryW
FtpOpenFileA
InternetCombineUrlA
RetrieveUrlCacheEntryFileA

kernel32

InitializeCriticalSection
HeapDestroy
CloseHandle
GetCommandLineW
GetEnvironmentStringsW
TerminateProcess
VirtualQuery
TlsGetValue
SetEnvironmentVariableA
GetStartupInfoW
GetCPInfo
HeapReAlloc
GetCurrentProcessId
GetCurrentProcess
FlushFileBuffers
GetCurrentThread
GetTickCount
LeaveCriticalSection
InterlockedIncrement
MultiByteToWideChar
GetTimeZoneInformation
GetVersion
WriteFile
QueryPerformanceCounter
TlsSetValue
EnterCriticalSection
GetModuleHandleA
IsBadWritePtr
SetHandleCount
GetStdHandle
GetStringTypeW
GetEnvironmentStrings
HeapFree
SetStdHandle
FreeEnvironmentStringsA
GetModuleFileNameA
GetSystemTime
LCMapStringW
InterlockedExchange
SetFilePointer
GetCurrentThreadId
GetSystemTimeAsFileTime
GetLocalTime
CompareStringA
GetStartupInfoA
CreateMutexA
GetProcAddress
GetCommandLineA
ExitProcess
TlsAlloc
DeleteCriticalSection
TlsFree
GetModuleFileNameW
OpenMutexA
HeapCreate
SetVolumeLabelW
VirtualFree
UnhandledExceptionFilter
VirtualAlloc
GetStringTypeA
FreeEnvironmentStringsW
HeapAlloc
SetLastError
CompareStringW
InterlockedDecrement
LCMapStringA
LoadLibraryA
SetConsoleTitleA
ReadFile
RtlUnwind
GetLastError
GetFileType
WideCharToMultiByte

gdi32

CreateHalftonePalette
CreatePen
GetTextExtentPointA
EnumMetaFile
GetDIBColorTable
GetTextAlign
GetDeviceCaps
AbortPath
IntersectClipRect
GetBitmapDimensionEx
SetBitmapDimensionEx
CreateRoundRectRgn

Sections

.text
Size: 119KB - Virtual size: 118KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 49KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 94KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4a430d594ed85e47916438cd53869dac

Headers

File Characteristics

Imports

comctl32

user32

wininet

kernel32

gdi32

Sections

.text Size: 119KB - Virtual size: 118KB

.rdata Size: 49KB - Virtual size: 71KB

.data Size: 94KB - Virtual size: 93KB

.rsrc Size: 76KB - Virtual size: 76KB

.text
Size: 119KB - Virtual size: 118KB

.rdata
Size: 49KB - Virtual size: 71KB

.data
Size: 94KB - Virtual size: 93KB

.rsrc
Size: 76KB - Virtual size: 76KB