407fbd2292b622cfbf80e6c495b53ffa_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

407fbd2292b622cfbf80e6c495b53ffa_JaffaCakes118
Size

368KB
MD5

407fbd2292b622cfbf80e6c495b53ffa
SHA1

50cf712430f122ac7c704d32e46909e8274db685
SHA256

48bd1532f8e428f11d16efef4e5613c8f0a5df0eec506133ce073d26651c359a
SHA512

287c22ae8eb0b86dd7b88d2171e6e1cdb857daabcc7f9d703b7ba0111e6a9cf1ad3d27ae98bd14f2006c4ca583b6054ff3875d4638c7d1fa333ca8387f34e814
SSDEEP

6144:qp4XL/S4vNJtC8V5rLxpAKLEGjfiDnM+hZBz8fjgof:qp4rS4vNJtCG5PbLgFhDaP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
407fbd2292b622cfbf80e6c495b53ffa_JaffaCakes118

Files

407fbd2292b622cfbf80e6c495b53ffa_JaffaCakes118
.exe windows:4 windows x86 arch:x86

27f566d088b3853303fbf1e7cda0ca13

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SetTextCharacterExtra
EnumFontFamiliesA
TextOutW
GetDeviceCaps
SetAbortProc
GetObjectA
CreateDCA
GetAspectRatioFilterEx
GetEnhMetaFileDescriptionW
OffsetWindowOrgEx
SetPixelV
GetOutlineTextMetricsA
DeleteDC

kernel32

TerminateProcess
GetDateFormatA
lstrcpyn
TlsGetValue
MultiByteToWideChar
GetLocaleInfoW
HeapAlloc
EnumSystemLocalesA
SetComputerNameW
GetCurrencyFormatW
LoadLibraryA
GetFileType
WriteFile
GetCommandLineA
IsValidCodePage
FreeEnvironmentStringsA
SetEnvironmentVariableA
GetProcessHeap
GetProcessHeaps
VirtualProtectEx
SetVolumeLabelA
GetSystemDefaultLangID
InterlockedExchange
HeapCreate
GetEnvironmentStrings
IsValidLocale
CompareStringW
SetThreadPriority
HeapReAlloc
OpenMutexA
SetFilePointer
WideCharToMultiByte
ExitProcess
GetPrivateProfileStringW
WriteConsoleOutputW
HeapSize
CreateDirectoryW
WaitCommEvent
GetTimeFormatA
GetCurrentProcessId
WriteConsoleA
QueryPerformanceCounter
GetNumberFormatA
InitializeCriticalSection
InterlockedDecrement
SetThreadContext
TlsAlloc
ReadFile
EnumCalendarInfoExW
VirtualQuery
TlsSetValue
CompareStringA
GetCurrentThreadId
LCMapStringW
GetUserDefaultLCID
GetConsoleCP
CreateFileA
GetCPInfo
GetConsoleMode
GetSystemInfo
TlsFree
GetProcAddress
FlushFileBuffers
GetTickCount
GetStartupInfoA
GetStringTypeW
FreeLibrary
GetConsoleOutputCP
VirtualFree
EnterCriticalSection
RtlUnwind
IsDebuggerPresent
SetHandleCount
HeapDestroy
LCMapStringA
InterlockedIncrement
GetSystemTimeAsFileTime
GetStdHandle
LeaveCriticalSection
GetCurrentProcess
GetStringTypeA
SetUnhandledExceptionFilter
SetLastError
CreateMutexA
FreeEnvironmentStringsW
GetModuleHandleA
SetConsoleCtrlHandler
GetOEMCP
WriteProfileSectionA
GetVersionExA
GetLastError
Sleep
UnhandledExceptionFilter
GetFullPathNameA
GetACP
WriteConsoleW
CloseHandle
FindResourceExW
GetTimeZoneInformation
VirtualAlloc
GetCurrentThread
GetEnvironmentStringsW
CreateNamedPipeW
GetLocaleInfoA
DeleteCriticalSection
GetShortPathNameA
FileTimeToLocalFileTime
ReadConsoleOutputA
GetModuleFileNameA
SetStdHandle
GetEnvironmentStringsA
FindResourceExA
HeapFree

shell32

ExtractAssociatedIconA

wininet

FtpGetCurrentDirectoryA
InternetFortezzaCommand
InternetSetCookieA
InternetConnectW
InternetInitializeAutoProxyDll
FtpPutFileW
IncrementUrlCacheHeaderData
FtpGetFileSize
RetrieveUrlCacheEntryFileA

comctl32

ImageList_DragLeave
ImageList_AddMasked
CreateStatusWindow
ImageList_SetImageCount
ImageList_AddIcon
CreateStatusWindowW
GetEffectiveClientRect
InitCommonControlsEx
ImageList_GetIcon
ImageList_GetImageRect
ImageList_SetFlags
ImageList_SetFilter
MakeDragList

user32

ChangeDisplaySettingsExA
FillRect
TrackPopupMenuEx
CharLowerBuffA
GetWindowLongW
SetDlgItemTextA
BeginDeferWindowPos
GetClassInfoExA
RegisterClassExA
ChangeMenuA
DragObject
DeleteMenu
SetWindowsHookW
SendMessageA
RegisterWindowMessageA
FlashWindowEx
MsgWaitForMultipleObjects
GetInputState
VkKeyScanExA
DdeFreeDataHandle
LoadMenuA
SetTimer
RegisterClassA
EnumDisplaySettingsExW
GetProcessDefaultLayout
GetKeyboardLayoutNameW
WINNLSGetEnableStatus
RedrawWindow
GetClipboardData

Sections

.text
Size: 164KB - Virtual size: 160KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 80KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

27f566d088b3853303fbf1e7cda0ca13

Headers

File Characteristics

Imports

gdi32

kernel32

shell32

wininet

comctl32

user32

Sections

.text Size: 164KB - Virtual size: 160KB

.rdata Size: 80KB - Virtual size: 76KB

.data Size: 92KB - Virtual size: 105KB

.rsrc Size: 28KB - Virtual size: 27KB

.text
Size: 164KB - Virtual size: 160KB

.rdata
Size: 80KB - Virtual size: 76KB

.data
Size: 92KB - Virtual size: 105KB

.rsrc
Size: 28KB - Virtual size: 27KB