62640c7618760e1dafb9cb63e261b346_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

62640c7618760e1dafb9cb63e261b346_JaffaCakes118
Size

179KB
MD5

62640c7618760e1dafb9cb63e261b346
SHA1

b3b417409df94bdbbc941dde137d81dafb2460b9
SHA256

578463e2d34433a33fc8c7f231fdd0f177647b37bde68e65c01df23e42f8a488
SHA512

054116917e5377185d058c6e2667f4a8bae715d5492b830034c0df9252cf3d20a918426614673a6023ca9c46b69272bf5f599aa4b45fe6ca7718a37735c30592
SSDEEP

3072:Yn5L7mkSxXiiuehLWPGw9xqJvScC6N5llqTJwLw4EoQd8SFRB:Yn5L7mtx/uwKGw9xqJvVvqTaLwF3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
62640c7618760e1dafb9cb63e261b346_JaffaCakes118

Files

62640c7618760e1dafb9cb63e261b346_JaffaCakes118
.exe windows:4 windows x86 arch:x86

117fe3d9fe356d5aa13cf1e376038d1c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateProcessA
CreateDirectoryA
GetCommandLineA
InterlockedIncrement
InterlockedDecrement
lstrlenW
GetModuleHandleA
MultiByteToWideChar
GetModuleFileNameA
GetLastError
WideCharToMultiByte
FreeLibrary
SizeofResource
LoadResource
FindResourceA
LoadLibraryExA
IsDBCSLeadByte
GetProcAddress
LoadLibraryA
GetShortPathNameA
GetWindowsDirectoryA
GetEnvironmentVariableA
DeleteFileA
GetCurrentProcess
GetSystemInfo
SetFilePointer
WaitForSingleObject
LocalFree
GetTickCount
GetCurrentProcessId
GetSystemDirectoryA
GetUserDefaultLangID
LockResource
MoveFileA
ExitProcess
LocalAlloc
FormatMessageA
CompareStringW
CompareStringA
SetStdHandle
FlushFileBuffers
LCMapStringW
LCMapStringA
GetStringTypeW
GetExitCodeProcess
CreateFileA
WriteFile
CloseHandle
lstrcmpA
lstrlenA
lstrcpyA
lstrcpynA
lstrcatA
lstrcmpiA
DeleteCriticalSection
InterlockedExchange
InitializeCriticalSection
RaiseException
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
GetTempPathA
GetStringTypeA
IsBadCodePtr
IsBadReadPtr
QueryPerformanceCounter
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetStdHandle
GetTimeZoneInformation
GetCPInfo
GetOEMCP
HeapSize
SetUnhandledExceptionFilter
TlsGetValue
TlsSetValue
TlsFree
GetCurrentThreadId
SetLastError
TlsAlloc
IsBadWritePtr
VirtualFree
HeapCreate
HeapDestroy
EnterCriticalSection
LeaveCriticalSection
HeapFree
RtlUnwind
TerminateProcess
HeapAlloc
VirtualProtect
VirtualAlloc
VirtualQuery
HeapReAlloc
GetSystemTimeAsFileTime
GetStartupInfoA
SetEnvironmentVariableA

user32

TranslateMessage
GetMessageA
DispatchMessageA
IsWindowUnicode
MsgWaitForMultipleObjects
GetMessageW
DispatchMessageW
GetDesktopWindow
CharNextA
LoadStringA
MessageBoxA
PeekMessageA
wsprintfA

advapi32

RegEnumKeyA
RegSetValueExA
RegEnumKeyExA
RegQueryInfoKeyA
RegDeleteValueA
RegCreateKeyExA
RegDeleteKeyA
RegQueryValueExA
RegOpenKeyExA
RegCloseKey

shell32

SHGetFolderPathA

ole32

CoTaskMemFree
CoTaskMemAlloc
CoTaskMemRealloc
CoCreateInstance

oleaut32

VarUI4FromStr

version

GetFileVersionInfoA
VerQueryValueA

wininet

InternetErrorDlg
InternetReadFile
InternetCloseHandle
HttpQueryInfoA
HttpSendRequestA
HttpOpenRequestA
InternetConnectA
InternetCrackUrlA
InternetOpenA

Sections

.text
Size: 64KB - Virtual size: 62KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15.7MB - Virtual size: 15.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

117fe3d9fe356d5aa13cf1e376038d1c

Headers

File Characteristics

Imports

kernel32

user32

advapi32

shell32

ole32

oleaut32

version

wininet

Sections

.text Size: 64KB - Virtual size: 62KB

.rdata Size: 16KB - Virtual size: 15KB

.data Size: 8KB - Virtual size: 12KB

.rsrc Size: 15.7MB - Virtual size: 15.7MB

.text
Size: 64KB - Virtual size: 62KB

.rdata
Size: 16KB - Virtual size: 15KB

.data
Size: 8KB - Virtual size: 12KB

.rsrc
Size: 15.7MB - Virtual size: 15.7MB