4d96c69873bc16c155aacbb444535725_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

4d96c69873bc16c155aacbb444535725_JaffaCakes118
Size

364KB
MD5

4d96c69873bc16c155aacbb444535725
SHA1

d26a6524a723adc40bcd5c43a6f0e87a1d34236d
SHA256

723876b561d93f3d3e3c4c41908b349f16d02f459f365d18a47340bf73be3693
SHA512

4e0cad217e8c07272dcfda7c9f648068408007e2bbfa7d91dc157b82fe2955bc79bfd658fb4f7af7bfdd5bbcf3265f9283d6679b4eceae4fc8289836819d7806
SSDEEP

6144:AOgWdDLkRDq1yd/eBGzGPylE4BLrR/bPCeGMaR0Qhfmw5vwUlM3O4b5h:AKloRDIczzGVaVDPh8Jmw1g

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4d96c69873bc16c155aacbb444535725_JaffaCakes118

Files

4d96c69873bc16c155aacbb444535725_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5457663e4c0c601a32f8359bb4f8de67

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetLastError
CreateFileA
MoveFileA
GetStdHandle
GetFileAttributesW
IsDebuggerPresent
WideCharToMultiByte
TlsFree
lstrcmp
GetConsoleMode
GetOEMCP
GetCommandLineA
RtlUnwind
MoveFileW
CompareStringA
GetMailslotInfo
InterlockedExchange
CloseHandle
lstrcpy
ExitProcess
LocalSize
lstrcmpW
CompareFileTime
GetSystemDirectoryW
GetProfileIntA
FreeLibrary
GetStartupInfoW
ReadConsoleInputW
TerminateProcess
InterlockedDecrement
VirtualAlloc
HeapReAlloc
GetEnvironmentStringsW
InitializeCriticalSection
HeapCreate
CompareStringW
FillConsoleOutputCharacterA
GetTimeFormatA
EnterCriticalSection
GetTickCount
FoldStringA
GetAtomNameA
GetPriorityClass
GetProcessAffinityMask
TlsAlloc
GetStringTypeW
TlsSetValue
LCMapStringW
SetHandleCount
IsValidLocale
GetFileType
DeleteAtom
FreeEnvironmentStringsA
LoadLibraryExA
FindNextFileW
SetUnhandledExceptionFilter
WriteConsoleW
InterlockedIncrement
WaitNamedPipeW
OpenMutexA
GetCPInfo
GetFullPathNameW
CommConfigDialogW
VirtualQuery
GetProcessHeap
LocalUnlock
FindClose
GetEnvironmentStrings
QueryPerformanceCounter
DeleteFileW
CreateDirectoryW
ReadConsoleOutputCharacterW
GetCurrentThread
IsValidCodePage
lstrcpyW
GetVersionExA
HeapFree
GlobalHandle
GetTimeZoneInformation
LoadLibraryA
GetLastError
HeapSize
GetCurrentThreadId
CreateMutexW
PulseEvent
GlobalDeleteAtom
GetSystemTimeAsFileTime
GetLocaleInfoW
HeapDestroy
GlobalFlags
GetProfileSectionA
GetDateFormatA
MapViewOfFileEx
GetDiskFreeSpaceExW
SetConsoleCtrlHandler
GetUserDefaultLCID
FlushViewOfFile
GetStartupInfoA
lstrlenA
GetProcAddress
LCMapStringA
WaitForMultipleObjectsEx
LeaveCriticalSection
GetConsoleCursorInfo
FindAtomW
GetThreadTimes
MultiByteToWideChar
WriteConsoleInputA
GetThreadPriority
GetTempFileNameW
CreateNamedPipeW
GetACP
WriteFile
GetCurrentProcess
WriteConsoleOutputCharacterA
GlobalAddAtomW
CreateMutexA
GetPrivateProfileIntW
GetModuleFileNameA
TlsGetValue
FlushInstructionCache
GlobalUnfix
GetShortPathNameA
SetConsoleOutputCP
GetStringTypeA
FlushFileBuffers
RtlZeroMemory
GetConsoleOutputCP
CreateSemaphoreA
GetLongPathNameA
Sleep
GetLocalTime
SetStdHandle
GetDiskFreeSpaceA
GetConsoleCP
FreeEnvironmentStringsW
GetCurrencyFormatW
DeleteCriticalSection
AllocConsole
EnumSystemLocalesA
CreateMailslotW
ReadFile
SetFilePointer
GetModuleHandleA
GetLocaleInfoA
WriteConsoleA
GetCurrentProcessId
SetEnvironmentVariableA
VirtualFree
HeapAlloc
CreateRemoteThread
GetCurrentDirectoryW
VirtualAllocEx
UnhandledExceptionFilter

comctl32

ImageList_EndDrag
CreatePropertySheetPage
ImageList_ReplaceIcon
ImageList_LoadImage
InitMUILanguage
ImageList_DrawIndirect
CreateUpDownControl
ImageList_SetFlags
CreateMappedBitmap
CreateToolbar
ImageList_SetBkColor
ImageList_GetImageCount
CreateStatusWindow
InitCommonControlsEx
ImageList_DrawEx
ImageList_Draw
ImageList_DragMove
ImageList_Replace
ImageList_DragEnter
ImageList_LoadImageA
ImageList_AddMasked
ImageList_DragShowNolock
ImageList_GetIcon
ImageList_Copy
ImageList_AddIcon
ImageList_Merge

wininet

RegisterUrlCacheNotification
FtpGetCurrentDirectoryA
FindFirstUrlCacheEntryExA

comdlg32

GetSaveFileNameW

gdi32

EndPath
CreateDIBitmap
GetGraphicsMode
CreateRectRgnIndirect
RealizePalette
GetEnhMetaFileHeader
GetDIBColorTable
BeginPath
GdiPlayScript
SetBitmapBits
PolyPolygon
CreateScalableFontResourceW
DeleteDC
DescribePixelFormat
CopyMetaFileW
CreateFontW
GetCharWidthFloatW
ExtCreatePen
GetSystemPaletteUse
Pie
CreateHatchBrush
SetLayout
SetViewportOrgEx

user32

DrawTextExA
ReleaseCapture
GetScrollBarInfo
SetWindowRgn
CreateDesktopA
CharNextA
GetUserObjectInformationA
CopyAcceleratorTableA
FrameRect
GetWindowInfo
ValidateRgn
CreateDesktopW
DdeReconnect
DrawCaption
CharUpperW
SetShellWindow
AnimateWindow
GetAsyncKeyState
DdeCreateStringHandleA
SetWindowWord
RegisterClassA
GetThreadDesktop
SetDoubleClickTime
MapVirtualKeyExW
IsDialogMessageA
SetClipboardViewer
EditWndProc
IsWindowUnicode
GetKeyNameTextA
PeekMessageA
CharUpperA
DestroyAcceleratorTable
EnumDesktopWindows
DdeSetUserHandle
CloseDesktop
InsertMenuW
RegisterClassExW
ActivateKeyboardLayout
DestroyWindow
CreatePopupMenu
CreateDialogParamA
GetUpdateRgn
DrawTextExW
EnumWindowStationsA
CheckDlgButton
CreateWindowExW
DefWindowProcW
GetWindow
MsgWaitForMultipleObjects
InflateRect
CharToOemW
WINNLSEnableIME
SwitchDesktop
LoadIconW
EndMenu
ScrollDC
SetWindowsHookExW
GetListBoxInfo
DdeConnect
EnumPropsW
TileChildWindows
ShowWindow
SetClassLongA
SetWindowPos
GetKeyboardType
GetClassInfoA
CallNextHookEx
DispatchMessageA
GetClipboardViewer
GetGUIThreadInfo
IsWindowVisible
DdeQueryStringW
PackDDElParam
UnionRect
TranslateAcceleratorA
DestroyMenu
SetDlgItemInt
LoadImageW
DdeCreateStringHandleW
EnumDisplayDevicesW
GetOpenClipboardWindow
GetSysColorBrush
MessageBoxW
SetDlgItemTextW
GetAltTabInfo
IsWindowEnabled
DdeConnectList
OemKeyScan
SetFocus
SetWindowLongA
ChildWindowFromPointEx
DrawTextA
ShowWindowAsync
UnregisterDeviceNotification
RegisterWindowMessageW
VkKeyScanExW
RegisterClassExA

Sections

.text
Size: 136KB - Virtual size: 135KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 80KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 121KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 52KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5457663e4c0c601a32f8359bb4f8de67

Headers

File Characteristics

Imports

kernel32

comctl32

wininet

comdlg32

gdi32

user32

Sections

.text Size: 136KB - Virtual size: 135KB

.rdata Size: 80KB - Virtual size: 76KB

.data Size: 92KB - Virtual size: 121KB

.rsrc Size: 52KB - Virtual size: 49KB

.text
Size: 136KB - Virtual size: 135KB

.rdata
Size: 80KB - Virtual size: 76KB

.data
Size: 92KB - Virtual size: 121KB

.rsrc
Size: 52KB - Virtual size: 49KB