3eabb2faa317419f6106d9f77ae49695_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3eabb2faa317419f6106d9f77ae49695_JaffaCakes118
Size

306KB
MD5

3eabb2faa317419f6106d9f77ae49695
SHA1

4beaf9477e0838567f9b159109fbdb33ba5b0e6f
SHA256

07a3df75c525354c0e28cd3222f83245ed9a46c65de30c0fdfa64256c99a97d4
SHA512

1decd2f71cc5fc7b0c36efba9fcf3235ae6ad6c5f8b88845af4caf8f8dbbdf70c6617085b47c997079d24b3e19792fb7bd8c956ac7d0e2c5f9626a19ceac15bb
SSDEEP

3072:HIQ6Yx8uVbQ4kJXGrw6kxbUF6FzmIMqwFNmNTxTyvvvc1URnOoW3QnF5seZJwv71:j3xPUXGrqbuP75civqtCnDzSkLz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3eabb2faa317419f6106d9f77ae49695_JaffaCakes118

Files

3eabb2faa317419f6106d9f77ae49695_JaffaCakes118
.exe windows:4 windows x86 arch:x86

56892f990380e78e68ea70f94f17d50e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

CreateStatusWindow
InitCommonControlsEx
ImageList_GetIconSize
InitMUILanguage
ImageList_SetFlags
ImageList_SetOverlayImage
ImageList_SetBkColor
DrawStatusTextA
ImageList_ReplaceIcon
ImageList_Write
DrawStatusText
ImageList_Destroy
ImageList_DragEnter

user32

RegisterClassExA
DestroyWindow
GetWindowDC
SetWindowWord
CharUpperBuffA
CreateDialogParamW
LockWindowUpdate
MessageBoxA
SendIMEMessageExA
CreateWindowExW
SetUserObjectInformationW
DialogBoxIndirectParamA
ExcludeUpdateRgn
UnhookWinEvent
ShowWindow
RegisterClassA

kernel32

GetLocaleInfoW
TlsFree
Sleep
HeapAlloc
TlsGetValue
LoadLibraryA
IsValidLocale
TlsSetValue
FlushFileBuffers
GetSystemTimeAsFileTime
SetHandleCount
GetUserDefaultLCID
GetStartupInfoW
HeapDestroy
SetFilePointer
ExitProcess
GetCommandLineA
HeapReAlloc
EnumTimeFormatsW
CloseHandle
SetUnhandledExceptionFilter
LeaveCriticalSection
GetConsoleCP
GetCurrentProcess
CreateThread
CreateFileW
WriteConsoleA
GetTickCount
GetThreadPriority
CompareStringA
CreateFileA
CompareStringW
VirtualFree
GetEnvironmentStrings
FreeEnvironmentStringsW
SetLastError
GetLastError
WideCharToMultiByte
GetPrivateProfileSectionNamesW
WriteConsoleOutputCharacterA
GetStartupInfoA
SetEnvironmentVariableA
GetTimeFormatA
WriteFile
GetTimeZoneInformation
EnumSystemLocalesA
RtlFillMemory
GetModuleHandleA
GetDateFormatA
IsDebuggerPresent
IsValidCodePage
GetEnvironmentStringsW
FreeEnvironmentStringsA
WriteConsoleW
SetStdHandle
GetLocaleInfoA
DeleteCriticalSection
VirtualQuery
GetStringTypeA
GetCPInfo
EnterCriticalSection
GetACP
UnhandledExceptionFilter
GetCurrentThread
GetFileType
GetStdHandle
GetCommandLineW
InitializeCriticalSection
FreeLibrary
LCMapStringA
TerminateProcess
InterlockedExchange
QueryPerformanceCounter
ReadFile
SetConsoleCtrlHandler
GetVersionExA
GetProcessHeaps
LCMapStringW
GetCurrentThreadId
GetModuleFileNameA
RtlUnwind
GetProcessHeap
GetOEMCP
GetCurrentDirectoryW
HeapCreate
lstrcmpiW
MultiByteToWideChar
GetConsoleOutputCP
GlobalFindAtomW
CreateMutexA
TlsAlloc
GetProcAddress
GetModuleFileNameW
HeapSize
InterlockedDecrement
HeapFree
GetStringTypeW
OpenMutexA
VirtualAlloc
InterlockedIncrement
WritePrivateProfileSectionA
GetCurrentProcessId
GetConsoleMode

wininet

HttpSendRequestExA
DetectAutoProxyUrl
InternetReadFileExA
CommitUrlCacheEntryA
FtpPutFileA
IncrementUrlCacheHeaderData
FtpFindFirstFileA

shell32

FindExecutableA
SHGetFileInfoA

Sections

.text
Size: 182KB - Virtual size: 181KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

56892f990380e78e68ea70f94f17d50e

Headers

File Characteristics

Imports

comctl32

user32

kernel32

wininet

shell32

Sections

.text Size: 182KB - Virtual size: 181KB

.rdata Size: 16KB - Virtual size: 33KB

.data Size: 88KB - Virtual size: 88KB

.rsrc Size: 18KB - Virtual size: 18KB

.text
Size: 182KB - Virtual size: 181KB

.rdata
Size: 16KB - Virtual size: 33KB

.data
Size: 88KB - Virtual size: 88KB

.rsrc
Size: 18KB - Virtual size: 18KB