47ca7f08a04449419356086277ab210f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

47ca7f08a04449419356086277ab210f_JaffaCakes118
Size

496KB
MD5

47ca7f08a04449419356086277ab210f
SHA1

80db36dfa39cbb3c0b8f79085ebfd28070648aad
SHA256

824368197abea0dea0150989a40943889aaee485bbc74ba8f33958031289d087
SHA512

a3aed54b87c23849b71c50c5590caf310427245fd4df377c7e1e7f5ca809b44f9b7c907e6f4d703954656bc3c5e42bac5768152be21e77e5489cb6d396aca741
SSDEEP

6144:5/9NZe2EqwKJoA0pw2ZMXEyaRJTL3rc02zWlr4VC/r8TrmDYBxrhNXlY/eNQYx/w:51N8IJoA0u8FH5pXDYNNXlhx9TF8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
47ca7f08a04449419356086277ab210f_JaffaCakes118

Files

47ca7f08a04449419356086277ab210f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8897d43ecb55e509f4a24a5fb8daa7ef

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_SetImageCount
InitCommonControlsEx
CreateStatusWindow
CreateStatusWindowW
ImageList_GetImageInfo
ImageList_SetFilter
ImageList_AddIcon

comdlg32

PrintDlgA
GetOpenFileNameA
FindTextA

kernel32

OpenFile
GetFullPathNameW
FormatMessageA
WriteConsoleW
VirtualQuery
GetUserDefaultLCID
CompareStringW
GetFileAttributesA
GetVersionExA
WaitForSingleObject
GetSystemDefaultLangID
RtlUnwind
GetConsoleOutputCP
GetOEMCP
LocalAlloc
FindFirstFileW
EnumCalendarInfoA
HeapAlloc
GetEnvironmentStrings
ReadFile
HeapDestroy
InterlockedExchange
UnhandledExceptionFilter
IsValidCodePage
GlobalAddAtomA
lstrcatW
ConnectNamedPipe
GetModuleFileNameA
VirtualFree
LCMapStringW
GetLocalTime
GetCurrentThreadId
TlsSetValue
GetTickCount
GetThreadSelectorEntry
InitializeCriticalSection
EnumDateFormatsA
GetFileType
IsBadWritePtr
EnumDateFormatsExA
LocalSize
EnterCriticalSection
TlsGetValue
OpenMutexA
TerminateProcess
GetLastError
GetNumberFormatA
HeapReAlloc
GetThreadPriorityBoost
CreateDirectoryExW
WriteConsoleInputW
FindAtomA
InterlockedIncrement
SetConsoleTextAttribute
GetCurrentThread
HeapFree
SetHandleCount
RemoveDirectoryW
HeapSize
lstrcmpiW
SetLastError
LoadLibraryA
GetDateFormatA
GetDiskFreeSpaceExW
CloseHandle
FreeResource
VirtualAlloc
TlsAlloc
IsValidLocale
ExitProcess
SetStdHandle
GetShortPathNameA
GetCurrentProcess
GetStringTypeA
TlsFree
GetProcAddress
lstrcmp
EnumTimeFormatsW
GetEnvironmentStringsW
OpenFileMappingA
VirtualFreeEx
SetFilePointer
GetCPInfo
GetLocaleInfoA
GetCurrentProcessId
GetACP
LeaveCriticalSection
GetCommandLineA
GetModuleHandleA
CompareStringA
GetFileAttributesExA
CompareFileTime
CreateMutexA
WriteFile
GetStringTypeW
EnumSystemLocalesA
InterlockedDecrement
WriteConsoleA
VirtualProtect
FreeEnvironmentStringsA
GetTimeZoneInformation
FlushFileBuffers
QueryPerformanceCounter
SetEnvironmentVariableA
CreateSemaphoreW
GetSystemTimeAsFileTime
LCMapStringA
GetLocaleInfoW
GlobalAlloc
GetStdHandle
MultiByteToWideChar
GetStartupInfoA
WideCharToMultiByte
FreeEnvironmentStringsW
GlobalGetAtomNameW
HeapCreate
GetSystemInfo
GlobalHandle
GetTimeFormatA
DeleteCriticalSection

user32

ChangeDisplaySettingsW
EndDeferWindowPos
DialogBoxParamA
LoadCursorFromFileA
SetCursorPos
SetClassLongA
EmptyClipboard
wsprintfW
DdeCreateDataHandle
TrackMouseEvent
DrawStateW
GetNextDlgTabItem
ToUnicode
GetWindowModuleFileNameW
GetActiveWindow
OpenInputDesktop
PeekMessageA
CreateWindowExW
SendNotifyMessageA
GetDialogBaseUnits
CreateDialogIndirectParamA
DefWindowProcA
InvalidateRgn
LoadCursorA
SetCaretBlinkTime
GetClientRect
IsCharAlphaNumericA
GetClipboardFormatNameW
RegisterClassA
GetWindowTextA
OpenWindowStationW
InvertRect
GetWindowWord
MessageBoxExA
DdeFreeDataHandle
RemovePropA
SetWindowLongW
RegisterHotKey
LoadMenuIndirectA
SendNotifyMessageW
LoadKeyboardLayoutA
CopyRect
TabbedTextOutW
GetMenuContextHelpId
DrawIcon
EqualRect
OpenClipboard
LoadAcceleratorsW
RegisterClassExA
GetScrollPos
GetKeyNameTextA
DefDlgProcA
SetMessageQueue
LoadMenuIndirectW
DefDlgProcW
OpenDesktopA
UnpackDDElParam
SendDlgItemMessageA
DrawTextA
IsMenu
EnumPropsA
GetWindowRect
GetWindowTextW
DestroyWindow
EndTask
ChildWindowFromPointEx
SetDoubleClickTime
SetDebugErrorLevel
LoadIconA
GetDlgItemTextA
EditWndProc
SetMessageExtraInfo
DdeAccessData
DrawCaption
IsDlgButtonChecked
InflateRect
ShowOwnedPopups
MessageBoxW
SubtractRect
CopyAcceleratorTableW
ImpersonateDdeClientWindow
IsDialogMessage
GetTitleBarInfo
IsWindowUnicode
LoadAcceleratorsA
GetComboBoxInfo
SetUserObjectInformationW
OemToCharBuffA
LoadKeyboardLayoutW
ShowWindow
GetTabbedTextExtentA
IsDialogMessageA
KillTimer
DdeAddData
DdeInitializeW
CloseWindowStation
ChangeDisplaySettingsExW
BringWindowToTop

wininet

ShowSecurityInfo
SetUrlCacheConfigInfoW
InternetReadFileExA

shell32

SHEmptyRecycleBinW
SHFreeNameMappings

advapi32

LookupAccountSidW
CryptEnumProviderTypesW
CryptGetKeyParam
RegNotifyChangeKeyValue
RegOpenKeyExW
RegEnumKeyA
CryptContextAddRef
LookupSecurityDescriptorPartsW
LookupPrivilegeNameW
CryptAcquireContextW
DuplicateToken
RegRestoreKeyW
ReportEventW
LookupAccountNameW
RegFlushKey

Sections

.text
Size: 100KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 260KB - Virtual size: 259KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8897d43ecb55e509f4a24a5fb8daa7ef

Headers

File Characteristics

Imports

comctl32

comdlg32

kernel32

user32

wininet

shell32

advapi32

Sections

.text Size: 100KB - Virtual size: 98KB

.rdata Size: 260KB - Virtual size: 259KB

.data Size: 100KB - Virtual size: 113KB

.rsrc Size: 32KB - Virtual size: 31KB

.text
Size: 100KB - Virtual size: 98KB

.rdata
Size: 260KB - Virtual size: 259KB

.data
Size: 100KB - Virtual size: 113KB

.rsrc
Size: 32KB - Virtual size: 31KB