460ac2f9b5b8cec55f68ab4621130b78_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

460ac2f9b5b8cec55f68ab4621130b78_JaffaCakes118
Size

560KB
MD5

460ac2f9b5b8cec55f68ab4621130b78
SHA1

b3665c88201009fc859feadadd202b3dae65c7b0
SHA256

a2c9a82271e2e50b75ae9da75a54ba364626da8dc2e2d64b44957606dc40efb7
SHA512

b86cf4fb82e9f5fe84b737776b753a59211dc5afd6d303d9836891b8d1716981ccfa8c8c0dfba0aa9b008127c9d54cbcef54201c250c715ebb6d838546d05100
SSDEEP

6144:MXyhJBX8MXh1PWGxaP+jj2UkbL4SP+lge74aIBx3DJZxw0BXtWJrjcgB2tMWWqRh:MX+JVXhRXxQUUoK3nm29WJHMtMWz1h

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
460ac2f9b5b8cec55f68ab4621130b78_JaffaCakes118

Files

460ac2f9b5b8cec55f68ab4621130b78_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b2361b7bcb47ef6ff19bd32ae6f77a72

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CreatePenIndirect
ArcTo
GetArcDirection

advapi32

CryptSetProviderA
RegQueryValueW
AbortSystemShutdownA
CryptSetProvParam
CryptSignHashW

user32

InsertMenuA
ActivateKeyboardLayout
GetClipCursor
TabbedTextOutA
EnumDisplayDevicesW
RegisterClassExA
OemToCharBuffA
GetScrollPos
EndDeferWindowPos
DlgDirSelectExA
GetDoubleClickTime
OemToCharW
RedrawWindow
ExcludeUpdateRgn
CharToOemBuffW
DdeGetData
CreateDesktopA
SetScrollPos
GetMenuItemInfoA
DrawFocusRect
GetDialogBaseUnits
GetWindowModuleFileNameA
UnregisterClassW
DdePostAdvise
DdeSetUserHandle
DefWindowProcW
CascadeWindows
SetPropA
GetScrollBarInfo
ChangeDisplaySettingsW
RegisterClassA
DestroyWindow
MonitorFromRect
SwitchToThisWindow
RemovePropW
CreateWindowExA
PostMessageA
GetKBCodePage
AppendMenuW
GetWindowTextA
MessageBoxA
ShowWindow
DrawFrameControl
OemKeyScan
GetClassLongA
GetPropW
GetOpenClipboardWindow
GetUserObjectInformationA
ChangeDisplaySettingsExW
SendNotifyMessageA
GetDlgItemTextA
RegisterClassExW
SetPropW

kernel32

TerminateProcess
GetLocalTime
WriteProfileSectionW
LCMapStringA
TlsSetValue
IsBadWritePtr
GetLastError
CloseHandle
UnhandledExceptionFilter
GetCurrentThreadId
SetFilePointer
SetEnvironmentVariableA
DeleteCriticalSection
GetProcAddress
HeapFree
SetStdHandle
GetFileType
GetSystemTime
GetTimeZoneInformation
InterlockedExchange
GetCPInfo
EnterCriticalSection
VirtualFree
OpenMutexA
HeapAlloc
LCMapStringW
QueryPerformanceCounter
CompareStringA
SetHandleCount
LoadLibraryA
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetCommandLineW
lstrcmpiW
VirtualAlloc
InterlockedDecrement
ReadFile
CompareStringW
CreateNamedPipeA
GetSystemTimeAsFileTime
GetTickCount
InitializeCriticalSection
HeapDestroy
GetStartupInfoA
GetStringTypeA
FreeEnvironmentStringsA
TlsAlloc
GetModuleFileNameA
ExitProcess
HeapReAlloc
GetCommandLineA
RtlUnwind
GetModuleHandleA
GetVersion
FlushFileBuffers
TlsFree
HeapCreate
GetEnvironmentStrings
SetLastError
WideCharToMultiByte
GetCurrentProcess
InterlockedIncrement
VirtualQuery
TlsGetValue
GetCurrentThread
GetStartupInfoW
GetStringTypeW
MultiByteToWideChar
CreateMutexA
GetCurrentProcessId
InterlockedCompareExchange
LeaveCriticalSection
WriteFile
GetModuleFileNameW
GetStdHandle

wininet

FtpCreateDirectoryW
FtpCommandW
SetUrlCacheEntryGroup
GetUrlCacheGroupAttributeW
GetUrlCacheEntryInfoExA
FtpPutFileEx
InternetGetCookieA

comctl32

ImageList_LoadImageA
CreateMappedBitmap
ImageList_DrawIndirect
ImageList_GetFlags
ImageList_GetDragImage
ImageList_GetIconSize
ImageList_DragEnter
ImageList_ReplaceIcon
ImageList_GetIcon
ImageList_SetFilter
ImageList_EndDrag
ImageList_Draw
ImageList_AddMasked
DestroyPropertySheetPage
InitMUILanguage
ImageList_GetImageInfo
ImageList_SetDragCursorImage
ImageList_GetBkColor
CreateToolbarEx
DrawStatusText
InitCommonControlsEx
ImageList_SetBkColor
ImageList_Create
ImageList_Copy
ImageList_Read

Sections

.text
Size: 140KB - Virtual size: 136KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 260KB - Virtual size: 258KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 108KB - Virtual size: 118KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b2361b7bcb47ef6ff19bd32ae6f77a72

Headers

File Characteristics

Imports

gdi32

advapi32

user32

kernel32

wininet

comctl32

Sections

.text Size: 140KB - Virtual size: 136KB

.rdata Size: 260KB - Virtual size: 258KB

.data Size: 108KB - Virtual size: 118KB

.rsrc Size: 48KB - Virtual size: 46KB

.text
Size: 140KB - Virtual size: 136KB

.rdata
Size: 260KB - Virtual size: 258KB

.data
Size: 108KB - Virtual size: 118KB

.rsrc
Size: 48KB - Virtual size: 46KB