7816ad3c0437f1413f3413ec99b9067e_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

7816ad3c0437f1413f3413ec99b9067e_JaffaCakes118
Size

467KB
MD5

7816ad3c0437f1413f3413ec99b9067e
SHA1

9eb281a3d37bf66cc2e7bc27d28c06e407a60df8
SHA256

79cbb734da992834000b82fb17cfc06b380a66b8c8d63160afb43adc852b4ea5
SHA512

5dea6f40002ed576ff111cd954ae8c71826eda281448c1f2a8387978aed092ddb1b21ab4c68c1314641844f2663d793a85ed9bf6abe65c09d929db89bd27c1a2
SSDEEP

12288:EFYZZeXmHE4grAS87f4V5drEsWyZFi/eK:EseX+erA37gV5drECZFd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7816ad3c0437f1413f3413ec99b9067e_JaffaCakes118

Files

7816ad3c0437f1413f3413ec99b9067e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

14bf552c607f766f27821e3142a180c3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

PageSetupDlgW
ChooseFontW

kernel32

GetSystemTimeAsFileTime
DeleteCriticalSection
HeapDestroy
GetEnvironmentStrings
TerminateProcess
GetCurrentProcessId
FlushFileBuffers
GetFileType
HeapCreate
CreateMutexA
GetStringTypeW
VirtualFree
GetStringTypeA
InterlockedExchange
CreateWaitableTimerW
SetStdHandle
TlsGetValue
GetOEMCP
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStringsW
WriteFile
IsValidCodePage
SetFilePointer
GetLocaleInfoW
LoadLibraryExW
TlsSetValue
LocalFileTimeToFileTime
TlsAlloc
GetModuleHandleA
GetTimeFormatA
ExpandEnvironmentStringsA
CompareStringA
GetDateFormatA
MultiByteToWideChar
InitializeCriticalSection
CompareStringW
GetACP
VirtualQuery
GetCPInfo
IsValidLocale
GetStdHandle
VirtualProtect
OpenMutexA
GetStartupInfoA
UnhandledExceptionFilter
ExitProcess
LeaveCriticalSection
EnterCriticalSection
HeapReAlloc
TlsFree
GetSystemInfo
GetVersionExA
SetEnvironmentVariableA
LCMapStringW
GetCurrentThreadId
SetHandleCount
LocalUnlock
GetModuleFileNameA
SetLastError
HeapFree
GetTimeFormatW
HeapSize
WriteConsoleW
CloseHandle
RtlUnwind
GetUserDefaultLCID
GetCommandLineA
ReadFile
GetTimeZoneInformation
GetTickCount
GetLastError
EnumSystemLocalesA
IsBadWritePtr
GetProcAddress
QueryPerformanceCounter
LoadLibraryA
GetCurrentProcess
LCMapStringA
VirtualAlloc
GetCurrentThread
GetLocaleInfoA
HeapAlloc
WideCharToMultiByte

user32

SetCapture
ScrollDC
GetInputState
RegisterClassA
GetUserObjectInformationW
MessageBoxW
GetOpenClipboardWindow
UnloadKeyboardLayout
CreateDialogIndirectParamW
SetCursor
CharToOemW
DrawIcon
ShowWindow
AdjustWindowRect
DdeDisconnectList
CreateWindowExW
RegisterClassExA
SendInput
MsgWaitForMultipleObjects
GetWindowTextLengthW
IsChild
LoadBitmapA

gdi32

CreateRectRgn
GetArcDirection
GetNearestPaletteIndex
CreateFontIndirectA
EnumMetaFile
CopyEnhMetaFileW
CreateDIBPatternBrush
GetEnhMetaFileDescriptionA
DeviceCapabilitiesExW
GetKerningPairs
CreateEllipticRgnIndirect

shell32

DragQueryFileAorW
SHLoadInProc
ExtractAssociatedIconExA
SHInvokePrinterCommandA
SHGetFileInfoA

wininet

RetrieveUrlCacheEntryStreamA
ReadUrlCacheEntryStream
InternetTimeFromSystemTime
FindFirstUrlCacheContainerW
InternetOpenUrlW
FtpGetFileW
FtpPutFileA
GetUrlCacheConfigInfoW

comctl32

InitCommonControlsEx

Sections

.text
Size: 294KB - Virtual size: 294KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 57KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 104KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

14bf552c607f766f27821e3142a180c3

Headers

File Characteristics

Imports

comdlg32

kernel32

user32

gdi32

shell32

wininet

comctl32

Sections

.text Size: 294KB - Virtual size: 294KB

.rdata Size: 57KB - Virtual size: 78KB

.data Size: 104KB - Virtual size: 103KB

.rsrc Size: 10KB - Virtual size: 10KB

.text
Size: 294KB - Virtual size: 294KB

.rdata
Size: 57KB - Virtual size: 78KB

.data
Size: 104KB - Virtual size: 103KB

.rsrc
Size: 10KB - Virtual size: 10KB