3db963e74d57dcb9ba6485e9195dd240_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

3db963e74d57dcb9ba6485e9195dd240_JaffaCakes118
Size

513KB
MD5

3db963e74d57dcb9ba6485e9195dd240
SHA1

68bf162df44f44257a14e63886486a74d483253b
SHA256

c353d9c1ef4084c48675b11eb53efcc75cf126c29157364c66a6d7c90d66a3e8
SHA512

9cf35153a377b1b29db55e177f1fc2cf2e4d384e8f96daad2d318d426f28ffe108d9bdc7c02cd84077fadffe9d3408af39878945424effbcad7c016898b895fd
SSDEEP

12288:TyByXedkWzQnS2ljTAfd36gvdh9P0efP86L3:TyBAedkW25N8fd3jt08L3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3db963e74d57dcb9ba6485e9195dd240_JaffaCakes118

Files

3db963e74d57dcb9ba6485e9195dd240_JaffaCakes118
.exe windows:4 windows x86 arch:x86

338d3a469575f5cf75848dbe89c847e6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

h:\tgmtxwc\j

Imports

wininet

InternetOpenUrlW
SetUrlCacheHeaderData
InternetSetDialStateW
GetUrlCacheHeaderData
InternetConfirmZoneCrossing
InternetAttemptConnect
FindFirstUrlCacheEntryW

gdi32

GdiPlayScript
GetTextExtentExPointA
GetCharABCWidthsA
GetClipRgn
FrameRgn
DeleteColorSpace
GdiPlayDCScript
SetDeviceGammaRamp
GetStretchBltMode
BitBlt
GetSystemPaletteEntries
GetDIBits
SetTextAlign

comdlg32

ReplaceTextA
PrintDlgW
PageSetupDlgA
GetSaveFileNameA

kernel32

WriteFile
IsValidLocale
GetStdHandle
HeapSize
LCMapStringA
InitializeCriticalSection
ReadFile
GetCommandLineA
GetUserDefaultLCID
VirtualProtect
TlsAlloc
GetModuleHandleA
SetEnvironmentVariableA
WideCharToMultiByte
GetLogicalDriveStringsW
TlsFree
GetLastError
LeaveCriticalSection
RtlUnwind
VirtualQuery
GetTimeZoneInformation
GetEnvironmentStrings
TlsGetValue
CompareStringW
DeleteCriticalSection
GetEnvironmentStringsW
SetStdHandle
FreeEnvironmentStringsW
GetSystemInfo
FlushFileBuffers
IsValidCodePage
IsBadWritePtr
ExitProcess
InterlockedExchange
UnhandledExceptionFilter
GetVolumeInformationA
HeapValidate
EnterCriticalSection
GetSystemTimeAsFileTime
EnumSystemLocalesA
FreeEnvironmentStringsA
GetLocaleInfoA
GetCurrentProcessId
GetProcAddress
GetOEMCP
GetStringTypeW
GetTickCount
GetStartupInfoA
HeapDestroy
HeapAlloc
GetModuleFileNameA
MultiByteToWideChar
CloseHandle
VirtualQueryEx
SetLastError
VirtualFree
QueryPerformanceCounter
GetVersionExA
EnumSystemLocalesW
GetDateFormatA
TerminateProcess
CreateMutexA
GetLocaleInfoW
LoadLibraryA
GetTimeFormatA
OpenMutexA
HeapFree
GetStringTypeA
HeapCreate
InterlockedIncrement
GetModuleFileNameW
GetCurrentThread
GetCommandLineW
CreateNamedPipeW
GetStartupInfoW
GetCurrentProcess
GetFileType
GetCPInfo
GetCurrentThreadId
CompareStringA
LCMapStringW
SetFilePointer
HeapReAlloc
TlsSetValue
SetHandleCount
GetACP
VirtualAlloc

advapi32

RegOpenKeyW
StartServiceA
CryptExportKey
LookupPrivilegeDisplayNameW
RegCreateKeyA

comctl32

MakeDragList
ImageList_GetIcon
ImageList_Destroy
ImageList_SetFilter
DrawStatusText
CreateToolbarEx
ImageList_GetImageRect
InitCommonControlsEx

user32

IsClipboardFormatAvailable
CountClipboardFormats
EndTask
OemToCharBuffW
DdeFreeStringHandle
ChildWindowFromPoint
SetUserObjectInformationW
MapVirtualKeyExW
CloseDesktop
IsCharUpperA
RegisterDeviceNotificationW
RegisterClassExA
RegisterClassA
SetLastErrorEx

Sections

.text
Size: 180KB - Virtual size: 180KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 202KB - Virtual size: 234KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 118KB - Virtual size: 117KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

338d3a469575f5cf75848dbe89c847e6

Headers

File Characteristics

PDB Paths

Imports

wininet

gdi32

comdlg32

kernel32

advapi32

comctl32

user32

Sections

.text Size: 180KB - Virtual size: 180KB

.rdata Size: 202KB - Virtual size: 234KB

.data Size: 118KB - Virtual size: 117KB

.rsrc Size: 11KB - Virtual size: 10KB

.text
Size: 180KB - Virtual size: 180KB

.rdata
Size: 202KB - Virtual size: 234KB

.data
Size: 118KB - Virtual size: 117KB

.rsrc
Size: 11KB - Virtual size: 10KB