463ce95cafb14ddc2c7b28bd62e7e5c5_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

463ce95cafb14ddc2c7b28bd62e7e5c5_JaffaCakes118
Size

292KB
MD5

463ce95cafb14ddc2c7b28bd62e7e5c5
SHA1

3a61451b9a5be6bcd6f2c25ed3e471bfa82e57a7
SHA256

09cc0aec48913870027dcac3bf4f9aaa23081791a16fda9edbf80a3125fd6062
SHA512

c3a13c6e7bb9719dc7d2ded44701c860361d8aae0ec51c6afec817f55cb1866aa6a719774e02dc678365dea49ef0ad8b58a1a2f37b724ff0c19333bee2681175
SSDEEP

6144:vj2HSv5WLHk6/yQrZDoTUQ1o1D1Bvb5l/M0:vjrQzk6vd+j1UDXTL/M

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
463ce95cafb14ddc2c7b28bd62e7e5c5_JaffaCakes118

Files

463ce95cafb14ddc2c7b28bd62e7e5c5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

fdd60f8d2fd48f1de6f3848d2731a3f2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryExW
GetLastError
FreeEnvironmentStringsA
ContinueDebugEvent
EnumSystemLocalesA
GetCurrentThread
GetStringTypeA
MoveFileA
TlsAlloc
GetEnvironmentVariableA
CompareStringW
CreateToolhelp32Snapshot
RaiseException
OpenWaitableTimerA
OpenMutexW
FillConsoleOutputCharacterA
SetHandleCount
lstrlenA
HeapDestroy
HeapSize
GetVersionExA
LockFile
HeapReAlloc
ReadFileEx
GetStdHandle
EnumTimeFormatsA
GetModuleFileNameA
TlsFree
LocalFileTimeToFileTime
GetACP
GetEnvironmentStrings
IsValidLocale
SleepEx
GetUserDefaultLCID
VirtualFree
EnumResourceTypesW
InitializeCriticalSection
GetSystemInfo
WaitNamedPipeA
GetTimeZoneInformation
IsValidCodePage
GetLocaleInfoA
GetSystemTimeAsFileTime
GetCurrencyFormatA
GetSystemTimeAdjustment
TlsGetValue
LCMapStringA
CreateDirectoryExW
GetEnvironmentStringsW
WritePrivateProfileStructA
GetDateFormatA
GetMailslotInfo
SetThreadIdealProcessor
GetTimeFormatA
IsBadWritePtr
FreeLibrary
LCMapStringW
MultiByteToWideChar
LoadLibraryA
UnhandledExceptionFilter
ReadFile
GetCurrentProcessId
CreateProcessA
GetThreadTimes
GetCurrentProcess
InterlockedExchange
GetPrivateProfileStringW
GetFileType
OpenSemaphoreW
QueryPerformanceCounter
FlushFileBuffers
DeleteCriticalSection
HeapAlloc
HeapFree
GlobalUnlock
TerminateProcess
GetLocaleInfoW
GetModuleHandleA
VirtualQuery
OpenEventW
VirtualProtect
SetFilePointer
HeapCreate
EnterCriticalSection
GetTickCount
CreateFileW
ReadConsoleInputW
GetCurrentThreadId
SetEnvironmentVariableA
CreateMutexA
CompareStringA
SetLastError
WideCharToMultiByte
ExitProcess
VirtualAlloc
GetStartupInfoA
RtlZeroMemory
GetOEMCP
GetProcAddress
CloseHandle
RtlUnwind
GetCommandLineA
FreeEnvironmentStringsW
WriteFile
SetStdHandle
GlobalFindAtomA
TlsSetValue
GetCPInfo
OpenFileMappingA
GetSystemTime
OpenMutexA
LeaveCriticalSection
GetStringTypeW

user32

DdeAccessData
CreateWindowExW
PostThreadMessageA
DdeDisconnectList
RegisterClassExA
SetCaretPos
ReleaseCapture
DrawTextExW
DestroyWindow
ShowWindow
CreateMenu
GetWindowModuleFileNameW
VkKeyScanW
MessageBoxW
RegisterClassA
SetDlgItemInt
AppendMenuA
GetDlgCtrlID
UnregisterDeviceNotification
CheckRadioButton
DefWindowProcA
PostQuitMessage

wininet

FtpSetCurrentDirectoryA
DeleteIE3Cache
InternetOpenUrlW
GopherGetLocatorTypeW
FtpGetFileA
FtpPutFileA

comctl32

ImageList_SetOverlayImage
InitCommonControlsEx

comdlg32

PrintDlgA
LoadAlterBitmap

Sections

.text
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 89KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fdd60f8d2fd48f1de6f3848d2731a3f2

Headers

File Characteristics

Imports

kernel32

user32

wininet

comctl32

comdlg32

Sections

.text Size: 80KB - Virtual size: 79KB

.rdata Size: 72KB - Virtual size: 71KB

.data Size: 89KB - Virtual size: 103KB

.rsrc Size: 50KB - Virtual size: 49KB

.text
Size: 80KB - Virtual size: 79KB

.rdata
Size: 72KB - Virtual size: 71KB

.data
Size: 89KB - Virtual size: 103KB

.rsrc
Size: 50KB - Virtual size: 49KB