609a30c61cb48a60bae477b33b966ae1_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

609a30c61cb48a60bae477b33b966ae1_JaffaCakes118
Size

420KB
MD5

609a30c61cb48a60bae477b33b966ae1
SHA1

4b41c950549240c2058d581f3df291462039175e
SHA256

a7144cc5955b193b8d60e5eb49a502efae3c18eac2b33aab8ddd8d146511b4f5
SHA512

9de69e1c9fc342d195ab5e2f3ecf94b03557d763fc9b5985d0b5f00a6ff938291834b4b0713770ae0ccf23175893a7a55cc14f032e161ed076bfdd73980bb1d9
SSDEEP

12288:ZQpNLa25DZ1OiNktDzIdvFWCCaU+FZlys:Zojg6kpmDFZlys

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
609a30c61cb48a60bae477b33b966ae1_JaffaCakes118

Files

609a30c61cb48a60bae477b33b966ae1_JaffaCakes118
.exe windows:4 windows x86 arch:x86

79f5a5f5d412bc455b7d347680beeea7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

SetUrlCacheEntryInfoA
ResumeSuspendedDownload
GetUrlCacheConfigInfoA
FtpDeleteFileW
HttpEndRequestA
GetUrlCacheEntryInfoA
InternetQueryOptionW
FtpRenameFileA

advapi32

RegOpenKeyA
CryptExportKey
RegSetValueExA
RegNotifyChangeKeyValue
CryptSetHashParam
CryptAcquireContextW
DuplicateToken
LookupPrivilegeNameW
RegCreateKeyA
RegQueryValueA
CryptEnumProvidersA
RegLoadKeyW
RegQueryValueW
CryptContextAddRef
RegQueryValueExA
CryptVerifySignatureA
CreateServiceA
RegEnumValueW
CryptSignHashA
CryptDeriveKey
CryptCreateHash
CreateServiceW
RegReplaceKeyA
CryptDestroyKey
RegSaveKeyW

comdlg32

GetFileTitleA

shell32

SHEmptyRecycleBinA

gdi32

CreateFontA
CreateRectRgn
ExtTextOutA
GetTextCharacterExtra
GetRasterizerCaps
GetMetaFileW
EnumMetaFile
ExtCreateRegion

kernel32

SetLastError
InterlockedExchange
IsValidCodePage
EnumSystemLocalesA
MultiByteToWideChar
GetVersionExA
GetStringTypeA
GetOEMCP
GetEnvironmentStringsW
EnumCalendarInfoW
GetDiskFreeSpaceExA
GetEnvironmentStrings
SetConsoleMode
GetProcAddress
ExitProcess
GetCurrentThread
GetTickCount
VirtualQuery
EnumDateFormatsW
GetSystemInfo
LeaveCriticalSection
SetUnhandledExceptionFilter
GetStartupInfoA
HeapFree
GetCommandLineA
SetEnvironmentVariableA
TlsGetValue
FindNextChangeNotification
QueryPerformanceCounter
GetLocaleInfoA
GetACP
SetHandleCount
FreeEnvironmentStringsW
GetFileType
TlsFree
GetThreadSelectorEntry
SetComputerNameA
InitializeCriticalSectionAndSpinCount
HeapCreate
CreateDirectoryW
GetLocaleInfoW
TlsSetValue
LoadLibraryA
SetThreadLocale
HeapAlloc
CompareStringA
GetConsoleCP
RtlUnwind
Sleep
GetCurrentThreadId
GetUserDefaultLCID
LCMapStringA
GetModuleHandleA
TerminateProcess
EnterCriticalSection
GetStdHandle
GetMailslotInfo
GetTimeZoneInformation
GetNamedPipeHandleStateW
EnumSystemCodePagesW
DebugBreak
HeapDestroy
VirtualProtect
VirtualAlloc
GetLastError
WriteFile
UnhandledExceptionFilter
FreeEnvironmentStringsA
UnlockFile
LCMapStringW
IsBadWritePtr
GetCurrentProcessId
GetDateFormatA
WritePrivateProfileStringW
InitializeCriticalSection
TlsAlloc
HeapReAlloc
IsValidLocale
SystemTimeToFileTime
GetSystemTimeAsFileTime
WideCharToMultiByte
GetCPInfo
DeleteCriticalSection
CompareStringW
VirtualFree
GetTimeFormatA
GetCurrentProcess
GetAtomNameW
GetStringTypeW
HeapSize
GetModuleFileNameA

Sections

.text
Size: 124KB - Virtual size: 124KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 277KB - Virtual size: 277KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

79f5a5f5d412bc455b7d347680beeea7

Headers

File Characteristics

Imports

wininet

advapi32

comdlg32

shell32

gdi32

kernel32

Sections

.text Size: 124KB - Virtual size: 124KB

.rdata Size: 8KB - Virtual size: 22KB

.data Size: 277KB - Virtual size: 277KB

.rsrc Size: 9KB - Virtual size: 8KB

.text
Size: 124KB - Virtual size: 124KB

.rdata
Size: 8KB - Virtual size: 22KB

.data
Size: 277KB - Virtual size: 277KB

.rsrc
Size: 9KB - Virtual size: 8KB