423bc8ba12a93c3b94f40ca6ea0f54f7_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

423bc8ba12a93c3b94f40ca6ea0f54f7_JaffaCakes118
Size

660KB
MD5

423bc8ba12a93c3b94f40ca6ea0f54f7
SHA1

adae1bd215f21bd5dd767ad42f4b17aaa4b02c8a
SHA256

319d7b88fb55c06f51d4ac19f1d939d03ebc738aaaf747de1fe59bb1cddb9337
SHA512

3ba2b97cf0c5ca269556e229a227f027e3ffc721ff15f9ea87c51caf5a4ff9a4da7c7f7ec3c9a5e9d582bbe795150ddc9877c5e3913c8b86a2307e57f713350a
SSDEEP

12288:4mHJlITyC7qBP7dbOuFzr0RQZSgHuDHWxO81EEs:THPfC25dbOuFzwiUIO83s

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
423bc8ba12a93c3b94f40ca6ea0f54f7_JaffaCakes118

Files

423bc8ba12a93c3b94f40ca6ea0f54f7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5c368d0ee1d959a8803eea07934cd3bb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CombineRgn
GetEnhMetaFileBits
GetMetaRgn
CancelDC
GetPath
CreatePen
AnimatePalette
CreateRectRgn
DeviceCapabilitiesExW
ChoosePixelFormat
FillPath
GetViewportExtEx
GetClipRgn
GetViewportOrgEx

comctl32

InitCommonControlsEx
ImageList_DragEnter

shell32

SHUpdateRecycleBinIcon

comdlg32

ReplaceTextA
GetOpenFileNameW
GetSaveFileNameA
PrintDlgW

wininet

FtpRemoveDirectoryA
InternetCombineUrlA
InternetHangUp
InternetCanonicalizeUrlA
DeleteUrlCacheContainerA
FtpPutFileW
InternetCrackUrlW

kernel32

GetCurrentProcess
WriteConsoleOutputW
GetDateFormatA
LCMapStringA
MultiByteToWideChar
LCMapStringW
VirtualProtect
SetThreadPriority
GetDriveTypeA
FoldStringA
CreateMutexA
GetTimeZoneInformation
InitializeCriticalSection
IsValidLocale
CommConfigDialogA
lstrcatA
GetCPInfo
GetMailslotInfo
GetPrivateProfileSectionW
WideCharToMultiByte
OpenMutexA
FileTimeToDosDateTime
GetModuleHandleA
GetTickCount
ExpandEnvironmentStringsA
VirtualAlloc
SetLastError
CreateNamedPipeW
GetEnvironmentStrings
SuspendThread
DeleteFileA
GetNamedPipeHandleStateA
CompareStringA
EnumSystemCodePagesW
GetFileType
HeapAlloc
CompareStringW
ReadFile
FreeEnvironmentStringsW
RtlUnwind
FlushConsoleInputBuffer
GetVersionExA
HeapFree
GetProcAddress
GetDiskFreeSpaceExA
GetSystemInfo
EnumCalendarInfoW
lstrcpyA
HeapCreate
TlsSetValue
GetOEMCP
GetDateFormatW
SetFilePointer
CreateProcessW
GetCommandLineW
GetTimeFormatA
SleepEx
QueryPerformanceCounter
GetStdHandle
CloseHandle
HeapDestroy
SetWaitableTimer
LoadLibraryA
ExitProcess
WaitNamedPipeA
RtlMoveMemory
GetStringTypeW
WriteFile
IsValidCodePage
GetModuleFileNameW
VirtualLock
GetPrivateProfileSectionNamesW
GetStringTypeExA
FreeEnvironmentStringsA
GetThreadTimes
GetLocaleInfoW
SetEnvironmentVariableA
GetStartupInfoA
TlsFree
GetProcAddress
GetStringTypeA
GetCurrentThread
ReadConsoleA
LeaveCriticalSection
SetStdHandle
GetCurrentThreadId
ExpandEnvironmentStringsW
GetSystemDefaultLCID
GetLastError
VirtualFree
VirtualQuery
TerminateProcess
TlsAlloc
GetACP
SetHandleCount
GetCurrentProcessId
SetCurrentDirectoryW
InterlockedExchange
GetUserDefaultLCID
SetVolumeLabelW
GetCurrentDirectoryW
GetCommandLineA
GetEnvironmentStringsW
IsBadWritePtr
EnumSystemLocalesA
HeapSize
EnterCriticalSection
UnhandledExceptionFilter
GetModuleFileNameA
TlsGetValue
VirtualQueryEx
GetConsoleTitleA
GetSystemTimeAsFileTime
DeleteCriticalSection
GetLocaleInfoA
HeapReAlloc
FlushFileBuffers
GetStartupInfoW

user32

RegisterClassA
UnregisterDeviceNotification
DdeInitializeA
DefDlgProcA
ChangeMenuW
SetWindowPos
SetDlgItemTextW
GetFocus
ChangeDisplaySettingsExW
DdeQueryStringW
HideCaret
CopyAcceleratorTableW
AppendMenuW
IsCharLowerA
GetUpdateRect
IsCharLowerW
GetKeyboardLayoutNameA
InvertRect
GetPropA
EnumDisplaySettingsExW
DestroyWindow
CreateWindowExA
GetWindowLongW
CreateIcon
PostThreadMessageA
CreateWindowExW
TrackPopupMenu
OpenClipboard
CreateMDIWindowW
CharLowerW
CallWindowProcW
MessageBoxA
CharPrevA
EndMenu
GetMenuBarInfo
RegisterClassExA
GetDlgItem
TranslateAcceleratorA
LoadIconW
EnumChildWindows
DdeCreateStringHandleW
GetSysColorBrush
ShowWindow
DragDetect
GetMessagePos
GetCaretPos
GetClipCursor
FillRect
CheckMenuRadioItem
ToUnicodeEx
GetMessageA
GetQueueStatus
ExcludeUpdateRgn
GetMenuItemInfoW
AttachThreadInput
DrawStateA
DefWindowProcW
GetKeyNameTextW

Sections

.text
Size: 156KB - Virtual size: 152KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 268KB - Virtual size: 264KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 122KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 120KB - Virtual size: 118KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5c368d0ee1d959a8803eea07934cd3bb

Headers

File Characteristics

Imports

gdi32

comctl32

shell32

comdlg32

wininet

kernel32

user32

Sections

.text Size: 156KB - Virtual size: 152KB

.rdata Size: 268KB - Virtual size: 264KB

.data Size: 112KB - Virtual size: 122KB

.rsrc Size: 120KB - Virtual size: 118KB

.text
Size: 156KB - Virtual size: 152KB

.rdata
Size: 268KB - Virtual size: 264KB

.data
Size: 112KB - Virtual size: 122KB

.rsrc
Size: 120KB - Virtual size: 118KB