3f91d3f9913d86f3ec28d56f513cc7a3_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3f91d3f9913d86f3ec28d56f513cc7a3_JaffaCakes118
Size

540KB
MD5

3f91d3f9913d86f3ec28d56f513cc7a3
SHA1

06948c5e49ad0b048d4215e5f9ede06d1a4670c3
SHA256

6883026f6c5113f304b4dca9ae994805b60ee864063c4f46c3b481a148423f62
SHA512

737fa5805f4811ca2f50b35edc20fee74f3d8f565801028a951bf137c0a6ab10b4e0e6f2038bbf18bcece277517bb163b2f0b5613399aeb43eb72e30d95c3e3d
SSDEEP

12288:eNyTTdshsMQBdTcLedld+q0zws9AcCu/i3H1/:eNyThnMQ/QLIl70zwsF/i3V

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3f91d3f9913d86f3ec28d56f513cc7a3_JaffaCakes118

Files

3f91d3f9913d86f3ec28d56f513cc7a3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

66e96debc57bfef54973e5c889d5aace

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

RetrieveUrlCacheEntryFileW
DeleteUrlCacheEntryW
InternetLockRequestFile

comctl32

DrawStatusText
DrawStatusTextA
ImageList_DragShowNolock
InitMUILanguage
CreatePropertySheetPageW
ImageList_DragEnter
ImageList_Destroy
ImageList_DragLeave
ImageList_Merge
CreateToolbarEx
CreateUpDownControl
ImageList_Read
CreateToolbar
ImageList_GetIconSize
ImageList_BeginDrag
ImageList_GetBkColor
InitCommonControlsEx
ImageList_DrawIndirect
ImageList_SetFlags

kernel32

GlobalFlags
TlsAlloc
InterlockedIncrement
FindResourceExA
TerminateProcess
SetEnvironmentVariableA
IsBadReadPtr
CloseHandle
InterlockedDecrement
WritePrivateProfileStructW
GetACP
GetModuleHandleA
CopyFileA
CompareStringW
SleepEx
GetSystemTimeAsFileTime
WriteProfileSectionW
GetPrivateProfileIntA
FileTimeToSystemTime
GetTempFileNameA
GetStdHandle
GetCurrentProcess
FindFirstFileW
GetProcAddress
GetCurrentProcessId
ExitProcess
SetFilePointer
SetConsoleCP
FindNextFileW
UnhandledExceptionFilter
SetStdHandle
GetPriorityClass
GetEnvironmentStrings
GetTickCount
SetConsoleTitleA
ExpandEnvironmentStringsW
DeleteCriticalSection
FreeEnvironmentStringsA
MultiByteToWideChar
GetEnvironmentVariableW
OpenMutexA
UnlockFile
VirtualAlloc
HeapDestroy
ReadFile
lstrcpyW
LeaveCriticalSection
FindResourceA
GetThreadLocale
EnumSystemCodePagesA
IsBadWritePtr
GetLastError
VirtualFree
GetStringTypeW
QueryPerformanceCounter
GetProcAddress
CompareStringA
LCMapStringA
CreateMutexA
HeapCreate
InterlockedExchange
GetVersion
GetDiskFreeSpaceA
GetFullPathNameW
WriteFile
WriteConsoleInputW
GetCurrentThreadId
VirtualQuery
GetEnvironmentStringsW
TerminateThread
GlobalAlloc
GetLocalTime
RtlZeroMemory
GetTimeZoneInformation
FlushFileBuffers
EnterCriticalSection
TlsSetValue
GetFileType
WaitForMultipleObjects
GetSystemTime
WideCharToMultiByte
HeapReAlloc
GetCurrentThread
SetTimeZoneInformation
WriteConsoleOutputCharacterA
FileTimeToDosDateTime
GetEnvironmentVariableA
GlobalAddAtomW
GetStringTypeExA
RtlUnwind
SetLastError
GetStringTypeA
LCMapStringW
GetOEMCP
FreeEnvironmentStringsW
LockFileEx
OutputDebugStringW
HeapAlloc
GetCPInfo
GetStartupInfoA
GetModuleFileNameA
SetHandleCount
TlsGetValue
GetCommandLineA
HeapFree
TlsFree
OpenEventW
LocalFileTimeToFileTime
SetConsoleScreenBufferSize
LoadLibraryA
InitializeCriticalSection

user32

SetUserObjectInformationA
GetMenuBarInfo
CharUpperW
RegisterClassA
DialogBoxParamA
DefFrameProcW
GetTitleBarInfo
ToUnicodeEx
SetWinEventHook
GetClipboardData
OpenDesktopA
BlockInput
BroadcastSystemMessageW
DefWindowProcA
DrawMenuBar
EnumDisplaySettingsExA
PostQuitMessage
LoadCursorA
CreateWindowExW
RegisterClassExA
DestroyWindow
ExitWindowsEx
ShowWindow
SetParent
GetMessageW
ChangeMenuW
MessageBoxExW
FindWindowW
SetScrollPos
DdeClientTransaction
DefMDIChildProcW
GetKBCodePage
CopyImage
MessageBoxIndirectW
SetClipboardViewer
FindWindowExW
SetWindowLongW
RegisterDeviceNotificationW
GetSysColor
AppendMenuA
GetSysColorBrush
ChildWindowFromPointEx
GetDesktopWindow
IsIconic
DlgDirListW
DeferWindowPos
InvalidateRect
MessageBoxA
DdeAccessData
UnhookWindowsHook
DrawCaption
LoadCursorFromFileA
ClipCursor
SetWindowsHookExA
ScreenToClient
SetCursor
UnhookWindowsHookEx
EqualRect
DdeUnaccessData
MapVirtualKeyExA
GetMenuItemID
GetUserObjectInformationW
EndDialog
EnableWindow
KillTimer
EnumDisplayDevicesA
SetCaretPos
InSendMessage
GetTopWindow

Sections

.text
Size: 144KB - Virtual size: 143KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 252KB - Virtual size: 248KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 108KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

66e96debc57bfef54973e5c889d5aace

Headers

File Characteristics

Imports

wininet

comctl32

kernel32

user32

Sections

.text Size: 144KB - Virtual size: 143KB

.rdata Size: 252KB - Virtual size: 248KB

.data Size: 108KB - Virtual size: 120KB

.rsrc Size: 32KB - Virtual size: 29KB

.text
Size: 144KB - Virtual size: 143KB

.rdata
Size: 252KB - Virtual size: 248KB

.data
Size: 108KB - Virtual size: 120KB

.rsrc
Size: 32KB - Virtual size: 29KB