72631cc267bddc1dc5b8b99c33e18ad6_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

72631cc267bddc1dc5b8b99c33e18ad6_JaffaCakes118
Size

744KB
MD5

72631cc267bddc1dc5b8b99c33e18ad6
SHA1

3504a593b8c071ead002f95934ba9e54cb05287f
SHA256

dc4bb7c076fdf75fb0a90df00fb7fdbe303206a91a5361deedc41de272281a15
SHA512

cc06300823e682e7e91a45e5ae2c84667ecfdd89c2e22081d5209a486dee3da3a4dfb407ff916a4cbaa697176cd6c930379e4219fe0277eb920693ce91066b49
SSDEEP

12288:KYQrUZ1Pw42dEjE5KASvQed3l4mz3rVEGHWyWKtzS5BEVGoe8GWjlsqZdfPjLgKq:KYQrU3v2dAE5NU3SmrxTWMt+gVje8GW+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
72631cc267bddc1dc5b8b99c33e18ad6_JaffaCakes118

Files

72631cc267bddc1dc5b8b99c33e18ad6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

896cebcd3b864a57f79f3cdc2d92a985

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_AddMasked
ImageList_Create
ImageList_GetImageInfo
ImageList_SetIconSize
DestroyPropertySheetPage
CreatePropertySheetPageA
InitCommonControlsEx
ImageList_BeginDrag
ImageList_Merge
MakeDragList
ImageList_Destroy
CreateMappedBitmap
ImageList_LoadImage
ImageList_Duplicate
GetEffectiveClientRect
ImageList_DragLeave
ImageList_SetDragCursorImage
ImageList_DragMove
ImageList_GetIcon
ImageList_Read

wininet

InternetAttemptConnect
FtpGetFileEx
GopherGetAttributeA
FindFirstUrlCacheEntryExW
InternetGetCertByURLA

kernel32

GetLogicalDriveStringsW
GetOEMCP
ExitProcess
TlsAlloc
GetVersion
LCMapStringW
GetTickCount
SetHandleCount
SetEnvironmentVariableA
HeapCreate
SetStdHandle
HeapReAlloc
EnterCriticalSection
FreeEnvironmentStringsA
GetCurrentProcessId
MultiByteToWideChar
GetACP
LCMapStringA
GetSystemTime
GetProcAddress
GetCurrentThreadId
WaitNamedPipeW
HeapAlloc
GetTimeZoneInformation
FlushFileBuffers
GetSystemTimeAsFileTime
ReadFile
TransmitCommChar
GetFileType
GetEnvironmentStringsW
RtlUnwind
OpenMutexA
InterlockedIncrement
GetPrivateProfileStructW
GetCurrentDirectoryA
GetModuleFileNameA
InterlockedDecrement
GetCommandLineA
VirtualQuery
IsBadWritePtr
CloseHandle
GetLastError
WideCharToMultiByte
SetFilePointer
GetStringTypeW
HeapFree
GetModuleHandleA
LeaveCriticalSection
QueryPerformanceCounter
GetLocalTime
FreeEnvironmentStringsW
GetStartupInfoA
TlsFree
DeleteCriticalSection
GetStringTypeA
UnhandledExceptionFilter
InterlockedExchange
CompareStringA
GetEnvironmentStrings
VirtualAlloc
LocalShrink
InitializeCriticalSection
GetCurrentProcess
TlsGetValue
LoadLibraryA
GetStdHandle
SetLastError
GetCurrentThread
TlsSetValue
VirtualFree
TerminateProcess
CompareStringW
GetCPInfo
WriteFile
CreateMutexA
HeapDestroy

shell32

ExtractAssociatedIconW
DragQueryFileA
SHBrowseForFolder
SHGetFileInfoA

advapi32

CryptGetDefaultProviderA
RegCreateKeyExW
RegQueryValueExA

user32

CharLowerBuffA
SetClipboardData
ImpersonateDdeClientWindow
GetAncestor
GetAltTabInfo
RegisterClassExA
EndDialog
CreateMDIWindowA
ChangeDisplaySettingsExW
SwitchToThisWindow
PostThreadMessageA
CreateWindowStationA
OpenIcon
CharPrevA
DestroyIcon
GetWindowInfo
GetClassLongA
LoadCursorW
RedrawWindow
GetTitleBarInfo
GetClipboardSequenceNumber
UnionRect
MessageBoxA
DdeCreateDataHandle
IsDialogMessageA
GetActiveWindow
MessageBoxExW
CharLowerA
UnregisterHotKey
CheckMenuRadioItem
SendMessageA
MonitorFromRect
GetClientRect
SendMessageW
DdeInitializeW
CharLowerBuffW
MessageBoxIndirectA
GetMessageW
ShowScrollBar
DdeDisconnectList
wsprintfW
RegisterClassA
DlgDirListW
GetMenuItemCount
LoadMenuA
GetScrollBarInfo
GetForegroundWindow
CharPrevW
LoadMenuIndirectA
DestroyWindow
WinHelpA
wvsprintfW
GetDlgCtrlID
DestroyCaret
ShowWindowAsync
AdjustWindowRect
OpenWindowStationA
CharToOemBuffW
DdeCreateStringHandleW
CreateDesktopW
EnumDisplayDevicesW
EnumDisplayMonitors
DefWindowProcA
EnumDisplaySettingsExA
IsWindow
UnhookWindowsHook
SendIMEMessageExA
CopyImage
GetMessageA
ShowWindow
GetMonitorInfoW
GetClipboardData
MonitorFromWindow
wvsprintfA
DdeSetUserHandle
CreateWindowExA

Sections

.text
Size: 88KB - Virtual size: 85KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 440KB - Virtual size: 436KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 148KB - Virtual size: 152KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

896cebcd3b864a57f79f3cdc2d92a985

Headers

File Characteristics

Imports

comctl32

wininet

kernel32

shell32

advapi32

user32

Sections

.text Size: 88KB - Virtual size: 85KB

.rdata Size: 440KB - Virtual size: 436KB

.data Size: 148KB - Virtual size: 152KB

.rsrc Size: 64KB - Virtual size: 61KB

.text
Size: 88KB - Virtual size: 85KB

.rdata
Size: 440KB - Virtual size: 436KB

.data
Size: 148KB - Virtual size: 152KB

.rsrc
Size: 64KB - Virtual size: 61KB