3f5ebfe92d0b709bff869aef10d0f560_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3f5ebfe92d0b709bff869aef10d0f560_JaffaCakes118
Size

624KB
MD5

3f5ebfe92d0b709bff869aef10d0f560
SHA1

2a77338e0e5aaa71a3f9dc1d590205d4a6974216
SHA256

5272b6351a0ad872f3a77328ae7de7b0d425358171da5259e18d453d784b59a0
SHA512

1981ccdc76a5a8ede27d2353b1ca29179468ea7ae35275cd772256b0c17c3d7ff45cc1b3fb55f472b30f838557d5c935dc84e7ad8857b3988aa342e364253e48
SSDEEP

12288:BH1jrO0mOigit95jrzUdRhlxHMhb84sHY82lRP8AAx:BH1jrVmv55jrwZMbeH8NxA

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3f5ebfe92d0b709bff869aef10d0f560_JaffaCakes118

Files

3f5ebfe92d0b709bff869aef10d0f560_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4f4b640810ba51ac8d568bb3d2108521

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

CommitUrlCacheEntryW

comctl32

InitCommonControlsEx

gdi32

SetAbortProc
SetICMMode
CreateBrushIndirect
SetTextAlign
DeleteObject
SetPolyFillMode
Escape
SetGraphicsMode
GetGlyphOutlineA
GetBitmapDimensionEx
GetEnhMetaFileBits
GetEnhMetaFileW
GetCharacterPlacementW
GetFontLanguageInfo
GetBrushOrgEx
GetColorSpace
PolyPolyline
EnumFontsW
SetFontEnumeration

advapi32

LookupPrivilegeValueW
RegQueryValueW
CryptSetProviderExW
LookupPrivilegeDisplayNameA
RegDeleteKeyW
CreateServiceA
CryptEnumProviderTypesW
RegRestoreKeyW
CryptSetProviderA
InitializeSecurityDescriptor
CryptSetProviderW
RegCreateKeyW

kernel32

CompareStringW
LCMapStringW
GetCurrentProcess
SetHandleCount
GetModuleHandleA
DeleteCriticalSection
GetCurrentThreadId
LoadLibraryA
RtlUnwind
EnterCriticalSection
UnhandledExceptionFilter
IsBadWritePtr
GetStartupInfoA
VirtualAlloc
GetLocaleInfoA
GetTimeFormatA
HeapDestroy
VirtualQuery
IsValidCodePage
GetFileType
EnumSystemLocalesA
TlsGetValue
SetLastError
GetCPInfo
GetLastError
HeapAlloc
IsValidLocale
GetModuleFileNameW
GetTimeZoneInformation
SetStdHandle
ExitProcess
GetSystemInfo
TerminateProcess
FlushViewOfFile
QueryPerformanceCounter
FreeEnvironmentStringsA
InterlockedExchange
WriteFile
VirtualProtect
GetLocaleInfoW
GetFileAttributesExW
SetEnvironmentVariableA
GetProcAddress
GetACP
GetDateFormatA
LCMapStringA
GetCommandLineA
OpenMutexA
GetModuleFileNameA
MultiByteToWideChar
SetFilePointer
ReadFile
GetUserDefaultLCID
AddAtomA
FreeEnvironmentStringsW
SetLocaleInfoA
GetStringTypeA
CompareStringA
GetSystemTimeAsFileTime
GetCommandLineW
CloseHandle
GetTickCount
GetStringTypeW
GetCurrentThread
TlsSetValue
FlushFileBuffers
TlsFree
GetStartupInfoW
HeapCreate
HeapFree
VirtualFree
GetCurrentProcessId
HeapReAlloc
WideCharToMultiByte
GetEnvironmentStrings
GetVersionExA
GetOEMCP
TlsAlloc
HeapSize
LocalReAlloc
GetStdHandle
InitializeCriticalSection
GetEnvironmentStringsW
LeaveCriticalSection
CreateMutexA

user32

SetPropA
PostMessageW
DrawTextW
CreateAcceleratorTableW
WINNLSGetIMEHotkey
GetMenuItemID
GetDialogBaseUnits
GetScrollRange
DialogBoxIndirectParamW
RegisterClassExA
SetWindowLongW
TabbedTextOutW
SetMenuContextHelpId
IsDialogMessageW
RegisterClassA
DdeInitializeA
DeferWindowPos
GetMenuStringA
SendInput

Sections

.text
Size: 287KB - Virtual size: 287KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 317KB - Virtual size: 316KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4f4b640810ba51ac8d568bb3d2108521

Headers

File Characteristics

Imports

wininet

comctl32

gdi32

advapi32

kernel32

user32

Sections

.text Size: 287KB - Virtual size: 287KB

.rdata Size: 9KB - Virtual size: 33KB

.data Size: 317KB - Virtual size: 316KB

.rsrc Size: 9KB - Virtual size: 9KB

.text
Size: 287KB - Virtual size: 287KB

.rdata
Size: 9KB - Virtual size: 33KB

.data
Size: 317KB - Virtual size: 316KB

.rsrc
Size: 9KB - Virtual size: 9KB