5eedc8647d3f16ffc602401f96add790_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

5eedc8647d3f16ffc602401f96add790_JaffaCakes118
Size

536KB
MD5

5eedc8647d3f16ffc602401f96add790
SHA1

80caec99cb495597a472a62d4dfa63058d4a82a6
SHA256

17a964ce62b310b3005a7e880d9fc99d6670fa1c2c6537a76c86618cca0c9552
SHA512

0bbecff68a4a6d433c8d1fb434c028d3863ec2250bf554243f1d3873d86d5c8f4a877077dedd28498e0a9140caef6fbb12cda385fbc56b6846364166eca08bd2
SSDEEP

6144:y9QXhhGUTBbU2f9iMZqSI4RPGSZd0i+ETUtX3xQLto3yaxr5OJdpmZbQ3Gzw:7uIbUs9i4KGbbJUh8to3yxJX+QWs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5eedc8647d3f16ffc602401f96add790_JaffaCakes118

Files

5eedc8647d3f16ffc602401f96add790_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7d4478b140ccc286d9edf5763d87a0be

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

h:\

Imports

user32

GetGuiResources
RegisterClassA
RegisterClassExA
GetScrollRange
CharPrevA
GetClassInfoExW
SubtractRect
MapWindowPoints
DlgDirSelectComboBoxExA
OpenClipboard
RealChildWindowFromPoint
SetMenuItemInfoA

comctl32

InitCommonControlsEx

wininet

RetrieveUrlCacheEntryStreamA
InternetGetCookieA
InternetAutodialHangup
InternetGetConnectedStateExA
FtpPutFileA
InternetQueryOptionA
RetrieveUrlCacheEntryFileW

kernel32

SetCurrentDirectoryA
GetConsoleMode
SetLastError
ReadFile
GetFileType
CreateEventW
EnumTimeFormatsA
RtlUnwind
SetThreadPriority
FlushFileBuffers
SetLocalTime
GetModuleHandleA
CompareStringW
CreateFileA
InterlockedIncrement
TlsGetValue
DeleteCriticalSection
HeapSize
GetTimeFormatA
WriteProfileStringA
HeapDestroy
OpenFile
GetStartupInfoA
VirtualProtectEx
InterlockedExchange
GetSystemTimeAsFileTime
LocalAlloc
GetLocaleInfoA
HeapAlloc
TlsAlloc
FreeEnvironmentStringsW
SetEnvironmentVariableA
MultiByteToWideChar
GetLastError
GetOEMCP
HeapCreate
GetCurrentProcessId
IsValidLocale
WideCharToMultiByte
GetEnvironmentStringsW
VirtualQueryEx
SetUnhandledExceptionFilter
ContinueDebugEvent
GetConsoleOutputCP
LoadLibraryExW
CompareStringA
GetTickCount
SetFilePointer
GetConsoleCP
TlsSetValue
GetTimeZoneInformation
FreeEnvironmentStringsA
GetCurrentThread
GetDateFormatA
IsValidCodePage
GetProcAddress
SetStdHandle
QueryPerformanceCounter
GetCommandLineA
WriteConsoleOutputCharacterW
GetProcessHeap
GetCPInfo
CreateMutexA
HeapFree
GetCompressedFileSizeA
GetACP
OpenMutexA
ExitProcess
EnterCriticalSection
GetEnvironmentStrings
WaitCommEvent
Sleep
GetVersionExA
CloseHandle
TlsFree
EnumSystemLocalesA
HeapReAlloc
WriteFile
IsDebuggerPresent
GetNamedPipeInfo
SetConsoleCtrlHandler
FreeLibrary
GetUserDefaultLCID
VirtualFree
LCMapStringA
FormatMessageW
TerminateProcess
VirtualAlloc
GetCurrentThreadId
LeaveCriticalSection
EnumCalendarInfoW
LCMapStringW
ResumeThread
GetConsoleCursorInfo
GetStdHandle
UnhandledExceptionFilter
GetCurrentProcess
GetLocaleInfoW
WriteConsoleA
SetHandleCount
InterlockedDecrement
GetStringTypeW
InitializeCriticalSection
VirtualQuery
LoadLibraryA
GetModuleFileNameA
GetStringTypeA
WriteConsoleW
GetModuleHandleW
ConnectNamedPipe

shell32

DragQueryPoint

gdi32

FlattenPath
CreatePalette
PolyBezier
RemoveFontResourceA
GetBitmapBits
SetMapMode
SetBkColor
GetPixel
GdiPlayScript
StartPage
ScaleViewportExtEx
SaveDC
PtInRegion
SetViewportOrgEx
GetBrushOrgEx
CreatePen

comdlg32

ChooseFontA
FindTextW
ChooseFontW

Sections

.text
Size: 354KB - Virtual size: 353KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 57KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 106KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7d4478b140ccc286d9edf5763d87a0be

Headers

File Characteristics

PDB Paths

Imports

user32

comctl32

wininet

kernel32

shell32

gdi32

comdlg32

Sections

.text Size: 354KB - Virtual size: 353KB

.rdata Size: 57KB - Virtual size: 75KB

.data Size: 106KB - Virtual size: 105KB

.rsrc Size: 18KB - Virtual size: 18KB

.text
Size: 354KB - Virtual size: 353KB

.rdata
Size: 57KB - Virtual size: 75KB

.data
Size: 106KB - Virtual size: 105KB

.rsrc
Size: 18KB - Virtual size: 18KB