402f2ad504723e691cecdade3ad5ae47_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

402f2ad504723e691cecdade3ad5ae47_JaffaCakes118
Size

612KB
MD5

402f2ad504723e691cecdade3ad5ae47
SHA1

fbb625e71ea99361934a6e230bffc52b0c0cc3f3
SHA256

cab98f6fb64ba6139c324539e8f14779e6ad37d34601584ee380ec4c7f2b4cd8
SHA512

63e9e645e9ecc8035f865b551b288e42296edfd7cf3bd164e83006476b8287984bcdff2ed83fa46ce1bbb4f95d6cc6da294a61379f7739a655b82922d2c3223e
SSDEEP

6144:Pn0oKvGP0EWGxZR+f+43Z5Hj6iiqGxZR+JEjnGi6qDjqGxZR+Lghaz96QxqGxZRs:8jumbBHbiqbShDjqbUgsQxqbCCQx+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
402f2ad504723e691cecdade3ad5ae47_JaffaCakes118

Files

402f2ad504723e691cecdade3ad5ae47_JaffaCakes118
.exe windows:4 windows x86 arch:x86

950bbcba1e878d149639d51770611c3b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameA
Sleep
CreateMutexA
FileTimeToSystemTime
CloseHandle
GetSystemInfo
VirtualProtect
FlushFileBuffers
GetStringTypeW
GetStringTypeA
GetLocaleInfoA
ExitProcess
LCMapStringW
MultiByteToWideChar
LCMapStringA
SetStdHandle
InitializeCriticalSection
GetCPInfo
GetOEMCP
GetACP
IsBadCodePtr
IsBadReadPtr
VirtualQuery
InterlockedExchange
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetFileType
SetHandleCount
GetEnvironmentStringsW
LoadLibraryA
GetDriveTypeA
GetDiskFreeSpaceExA
WideCharToMultiByte
FreeEnvironmentStringsW
FindFirstFileA
FindNextFileA
FindClose
CreateThread
GetLocalTime
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetStdHandle
HeapSize
SystemTimeToFileTime
MulDiv
CreateFileA
GetFileSize
HeapReAlloc
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
ReadFile
SetFilePointer
GetFileAttributesA
TerminateProcess
GetCurrentProcess
WriteFile
GetTickCount
SetEndOfFile
RtlUnwind
RaiseException
GetStartupInfoA
GetCommandLineA
GetVersionExA
HeapFree
HeapAlloc
QueryPerformanceCounter
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetProcAddress
TlsAlloc
SetLastError
GetLastError
TlsFree
TlsSetValue
TlsGetValue
SetUnhandledExceptionFilter
GetModuleHandleA

user32

EndDialog
CheckDlgButton
SendMessageA
LoadImageA
GetSystemMetrics
SetFocus
SetParent
SetTimer
GetWindowLongA
GetWindowRect
GetCursorPos
GetParent
ScreenToClient
GetWindowTextA
GetClientRect
BeginPaint
IsWindowEnabled
DrawTextA
SetWindowPos
EndPaint
KillTimer
SetWindowLongA
CallWindowProcA
GetDlgCtrlID
LoadCursorA
SetCursor
CreateDialogParamA
GetSysColor
InvalidateRect
GetDC
SendDlgItemMessageA
ReleaseDC
ShowWindow
SetDlgItemTextA
SetWindowTextA
MessageBoxA
DialogBoxParamA
PostMessageA
GetDlgItemTextA
GetDlgItem
EnableWindow
UpdateWindow
IsDlgButtonChecked

gdi32

SetBkMode
DeleteObject
GetObjectA
GetDeviceCaps
CreateFontIndirectA
SetTextColor
GetStockObject
SelectObject

comdlg32

GetOpenFileNameA

advapi32

RegCloseKey
RegSetValueExA
RegQueryValueExA
RegCreateKeyExA

shell32

ShellExecuteA

comctl32

ImageList_Create
ord17
ImageList_ReplaceIcon

wininet

InternetOpenA
InternetReadFile
InternetCloseHandle
InternetOpenUrlA

Sections

.text
Size: 60KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 528KB - Virtual size: 526KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

950bbcba1e878d149639d51770611c3b

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

comctl32

wininet

Sections

.text Size: 60KB - Virtual size: 56KB

.rdata Size: 12KB - Virtual size: 11KB

.data Size: 8KB - Virtual size: 16KB

.rsrc Size: 528KB - Virtual size: 526KB

.text
Size: 60KB - Virtual size: 56KB

.rdata
Size: 12KB - Virtual size: 11KB

.data
Size: 8KB - Virtual size: 16KB

.rsrc
Size: 528KB - Virtual size: 526KB