78fa80917887fd642cbdf237954387e6_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

78fa80917887fd642cbdf237954387e6_JaffaCakes118
Size

280KB
MD5

78fa80917887fd642cbdf237954387e6
SHA1

9056bb14042f30f747e377b94c58c092e58c6c20
SHA256

e3a3b0b910ff8032fcdecbe8b3059d31846f986cf8284853d8099783148edff9
SHA512

3738707555954821207b3399213f9b5c909ccc64e6b209958938387d6edd420fc07276f8f73728e3390e8a5f836e1a4cf0c7c46a3e72f4e65ea623ee0731a20e
SSDEEP

6144:DZbwMlGYoA68UcIfRIK8K6cCCBdx13s0zRcivDvz4Q44Ap8/u:DZnlHoT86h6cCCp180Vc6zj44Ad

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
78fa80917887fd642cbdf237954387e6_JaffaCakes118

Files

78fa80917887fd642cbdf237954387e6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4de3e1be71f7f9297c1adf6830960107

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetEnvironmentStrings
FreeEnvironmentStringsW
DebugActiveProcess
GetSystemTime
SetFilePointer
QueryPerformanceCounter
GetModuleFileNameW
GetLocalTime
GlobalFindAtomW
UnhandledExceptionFilter
GetCommandLineA
LCMapStringA
DeleteCriticalSection
HeapReAlloc
GetStringTypeA
EnterCriticalSection
FindClose
TlsGetValue
GetStdHandle
CompareStringW
FlushFileBuffers
GetCurrentProcess
lstrcatA
SetStdHandle
InterlockedExchange
InterlockedDecrement
LoadLibraryA
HeapFree
LCMapStringW
VirtualAlloc
TlsFree
GetCurrentThreadId
WriteFile
WriteConsoleOutputCharacterW
GetStartupInfoA
MultiByteToWideChar
OpenSemaphoreA
GetCurrentProcessId
GetCommandLineW
ReadConsoleOutputAttribute
SetEnvironmentVariableA
IsDebuggerPresent
CreateWaitableTimerA
VirtualQuery
VirtualFree
GetFileType
GetModuleFileNameA
ExitProcess
InterlockedIncrement
GetTimeZoneInformation
InitializeCriticalSection
GetProcAddress
HeapAlloc
HeapCreate
VirtualUnlock
SetConsoleOutputCP
SetHandleCount
IsBadWritePtr
lstrcmpi
GetSystemTimeAsFileTime
FreeEnvironmentStringsA
WideCharToMultiByte
GetVersion
GetTickCount
TlsAlloc
GetSystemInfo
CreateMutexA
TerminateProcess
CompareStringA
HeapDestroy
SetLastError
ReadFile
LeaveCriticalSection
GetStringTypeW
RtlUnwind
GetEnvironmentStringsW
GetLastError
GetCurrentThread
CloseHandle
OpenMutexA
FindFirstFileExW
GetConsoleTitleA
GetModuleHandleA
TlsSetValue
GetStartupInfoW
GetCPInfo
DebugBreak

user32

GetPropW
RegisterClassExA
ValidateRgn
TranslateAcceleratorA
EnumPropsA
RegisterClassA
CheckMenuItem
WinHelpW
IsCharAlphaNumericW

shell32

SHGetPathFromIDListW

gdi32

PolyTextOutA
PolyBezier
GetCharacterPlacementA
GetMetaFileW
CreatePolyPolygonRgn
EnumICMProfilesW
GetCharacterPlacementW
CreateEllipticRgnIndirect
GetObjectType
GetRandomRgn
EnumFontFamiliesExW
Escape
GetPixelFormat
SelectClipPath
UpdateICMRegKeyW
CreateColorSpaceW
SetMapperFlags
GetEnhMetaFileDescriptionW
MaskBlt
EnumFontFamiliesExA
DeleteDC
AbortPath
GetArcDirection
PolylineTo

comdlg32

GetOpenFileNameA
ReplaceTextW

comctl32

InitCommonControlsEx

wininet

InternetAttemptConnect
FtpDeleteFileW
InternetSecurityProtocolToStringW
InternetSetCookieW
InternetShowSecurityInfoByURLW
InternetCrackUrlW
FtpRenameFileA

Sections

.text
Size: 128KB - Virtual size: 127KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 144KB - Virtual size: 143KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4de3e1be71f7f9297c1adf6830960107

Headers

File Characteristics

Imports

kernel32

user32

shell32

gdi32

comdlg32

comctl32

wininet

Sections

.text Size: 128KB - Virtual size: 127KB

.rdata Size: 5KB - Virtual size: 24KB

.data Size: 144KB - Virtual size: 143KB

.rsrc Size: 2KB - Virtual size: 2KB

.text
Size: 128KB - Virtual size: 127KB

.rdata
Size: 5KB - Virtual size: 24KB

.data
Size: 144KB - Virtual size: 143KB

.rsrc
Size: 2KB - Virtual size: 2KB