5cb70d9f9f95a6c32a8a9b0bb3ebdee9_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

5cb70d9f9f95a6c32a8a9b0bb3ebdee9_JaffaCakes118
Size

176KB
MD5

5cb70d9f9f95a6c32a8a9b0bb3ebdee9
SHA1

c0b351b8b5cdafd2adc2401e2b3a6d6caee30568
SHA256

0eb585da230606c68053ed5b8cde4548233589e58c1dead80e6c24aa27119b6d
SHA512

44e638573cb1c48e752cd30436022e9eea1e3d050cad9e64fee28ecc2ebeefa26531025614206de1b6fe58a4af754093a0a415422711803a0ea4e06ea2fc4874
SSDEEP

3072:Dqs2yGK0A2uuAWClbKmTgLVLpV6AbQWk8kMQdK7HYkkJgogn4CXu:mLnKK+KsgMhMQd8UC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5cb70d9f9f95a6c32a8a9b0bb3ebdee9_JaffaCakes118

Files

5cb70d9f9f95a6c32a8a9b0bb3ebdee9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9f17721df429643d998c316f712ab730

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

WSACleanup
WSAStartup

wininet

InternetGetLastResponseInfoA
InternetCrackUrlA
InternetQueryDataAvailable
InternetReadFile
InternetWriteFile
InternetSetFilePointer
InternetGetConnectedState
HttpQueryInfoA
InternetCanonicalizeUrlA
InternetQueryOptionA
InternetOpenA
InternetCloseHandle
InternetOpenUrlA
InternetSetOptionExA
InternetSetStatusCallback

version

VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA

kernel32

SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
lstrcpynA
GetFullPathNameA
lstrcmpiA
GetCurrentThreadId
GetCurrentThread
lstrcmpA
GlobalDeleteAtom
WaitForSingleObject
SetEvent
ResumeThread
SetThreadPriority
SuspendThread
CreateEventA
LoadResource
FindResourceA
LockResource
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
lstrcatA
FileTimeToSystemTime
FileTimeToLocalFileTime
EnterCriticalSection
LocalAlloc
InitializeCriticalSection
DeleteCriticalSection
LeaveCriticalSection
GetFileAttributesA
GetFileTime
SetErrorMode
TlsAlloc
GlobalHandle
TlsFree
GlobalReAlloc
WriteFile
LocalReAlloc
TlsGetValue
MulDiv
GlobalFlags
WritePrivateProfileStringA
GetCurrentDirectoryA
GetProcessVersion
GetCPInfo
GetOEMCP
RtlUnwind
ExitProcess
HeapFree
HeapAlloc
RaiseException
GetStartupInfoA
GetCommandLineA
CreateThread
ExitThread
GetTimeZoneInformation
GetSystemTime
GetLocalTime
GetACP
HeapReAlloc
HeapSize
SetStdHandle
GetFileType
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
IsBadWritePtr
LCMapStringA
LCMapStringW
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
CompareStringA
CompareStringW
SetEnvironmentVariableA
DuplicateHandle
lstrcpyA
SetLastError
FormatMessageA
LocalFree
lstrlenA
InterlockedDecrement
InterlockedIncrement
FreeLibrary
VirtualFree
VirtualAlloc
CreateFileA
GetFileSize
GlobalAlloc
GlobalLock
ReadFile
GlobalUnlock
GlobalFree
GetVersion
WideCharToMultiByte
TerminateProcess
CreateToolhelp32Snapshot
Process32First
Process32Next
GetCurrentProcess
GetVolumeInformationA
GetDriveTypeA
GetModuleHandleA
GetCurrentProcessId
SleepEx
GetModuleFileNameA
WinExec
CreateMutexA
GetLastError
CloseHandle
LoadLibraryA
GetProcAddress
MultiByteToWideChar
GetWindowsDirectoryA
MoveFileA
DeleteFileA
GetSystemDirectoryA
FindFirstFileA
FindNextFileA
FindClose
TlsSetValue

user32

GetDlgCtrlID
GetWindowTextA
GetMenuItemID
GetSubMenu
GetMenuItemCount
GetMenu
RegisterClassA
GetClassInfoA
WinHelpA
GetCapture
GetTopWindow
CopyRect
AdjustWindowRectEx
SetFocus
GetSysColor
MapWindowPoints
SendDlgItemMessageA
UpdateWindow
LoadIconA
IsDialogMessageA
SetWindowTextA
MoveWindow
LoadStringA
LoadCursorA
ClientToScreen
PtInRect
GetDC
ReleaseDC
TabbedTextOutA
DrawTextA
GrayStringA
GetSysColorBrush
DestroyMenu
CreateWindowExA
GetClassLongA
SetPropA
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessageTime
GetMessagePos
GetForegroundWindow
SetForegroundWindow
RegisterWindowMessageA
GetWindowPlacement
GetWindowRect
UnregisterClassA
SetActiveWindow
IsWindow
CreateDialogIndirectParamA
DestroyWindow
GetDlgItem
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
GetKeyState
ValidateRect
PeekMessageA
GetCursorPos
GetLastActivePopup
IsWindowEnabled
MessageBoxA
SetCursor
PostQuitMessage
CharUpperA
FindWindowExA
CallNextHookEx
SetWindowsHookExA
UnhookWindowsHookEx
GetClassNameA
GetWindowLongA
SetWindowPos
SendMessageA
GetWindow
IsWindowVisible
GetParent
GetSystemMetrics
EnableWindow
GetClientRect
KillTimer
IsIconic
ShowWindow
FindWindowA
SetTimer
SystemParametersInfoA
PostMessageA
wsprintfA
SetWindowLongA
EndDialog

gdi32

GetClipBox
SetTextColor
SetBkColor
GetObjectA
CreateBitmap
DeleteDC
SaveDC
RestoreDC
SelectObject
DeleteObject
Rectangle
GetStockObject
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
GetDeviceCaps
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
SetMapMode

comdlg32

GetFileTitleA

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

advapi32

RegCloseKey
RegOpenKeyExA
RegDeleteValueA
RegSetValueExA
RegCreateKeyExA
RegQueryValueExA

shell32

SHGetSpecialFolderPathA
ShellExecuteA

comctl32

ord17

url

InetIsOffline

Sections

.text
Size: 116KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9f17721df429643d998c316f712ab730

Headers

File Characteristics

Imports

ws2_32

wininet

version

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

url

Sections

.text Size: 116KB - Virtual size: 112KB

.rdata Size: 28KB - Virtual size: 26KB

.data Size: 16KB - Virtual size: 29KB

.rsrc Size: 12KB - Virtual size: 8KB

.text
Size: 116KB - Virtual size: 112KB

.rdata
Size: 28KB - Virtual size: 26KB

.data
Size: 16KB - Virtual size: 29KB

.rsrc
Size: 12KB - Virtual size: 8KB