8381ae7e8a15d74ec169b68a8837f792_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

8381ae7e8a15d74ec169b68a8837f792_JaffaCakes118
Size

493KB
MD5

8381ae7e8a15d74ec169b68a8837f792
SHA1

dbfed8b2a30e4ebc99b601d5cf1712850b5bb54d
SHA256

a0b9d66630dfb5017530f437a65b3dddd10571d8f151757571c35fc7a9c18bc1
SHA512

7fad119ca8bbb6bd062532a8d4b87ba34f03e63f7bf2628a29c6adaa455d46c01f48667d749ae7e72dac809a70886342f66ac24ce6c22581731c515e5c0df9e1
SSDEEP

12288:XMGRFGSI0knWNMajWuykHJBwD8Gc1Iun02:fGSIpliykHTwD8Gcyn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8381ae7e8a15d74ec169b68a8837f792_JaffaCakes118

Files

8381ae7e8a15d74ec169b68a8837f792_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b8fe72f52980c8fe832142bcdbff121f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

gdi32

GetMetaRgn
BitBlt
SetMapperFlags

user32

RegisterClassExA
SendIMEMessageExW
RegisterClassA
UnregisterClassA
CopyRect
GetKeyNameTextW
SetDlgItemInt
GetTabbedTextExtentA
CreateIconIndirect
TranslateMDISysAccel
PeekMessageA
SetActiveWindow
DrawIconEx
EnumWindowStationsW
SendNotifyMessageA
IsZoomed
GetWindowThreadProcessId
LoadAcceleratorsA
OffsetRect
IsClipboardFormatAvailable
WinHelpA
DdeSetQualityOfService
MapVirtualKeyA

advapi32

CryptAcquireContextA
CryptGetDefaultProviderW
CryptSetProvParam
CryptExportKey
CryptSetProviderW
RegEnumValueW
CryptSetProviderExA
LogonUserA
StartServiceW

kernel32

GetStdHandle
GetTickCount
CompareStringW
GetStringTypeA
VirtualFree
EnterCriticalSection
ReadConsoleOutputW
CommConfigDialogA
QueryPerformanceCounter
CreateMutexA
IsValidLocale
CreateDirectoryExA
HeapSize
HeapReAlloc
GetOEMCP
HeapAlloc
SetStdHandle
FillConsoleOutputAttribute
GetTimeZoneInformation
GetTimeFormatA
GetCPInfo
TlsFree
EnumSystemLocalesA
HeapDestroy
GetDateFormatA
IsBadWritePtr
InitializeCriticalSection
GetSystemInfo
CompareStringA
GetEnvironmentStringsW
HeapFree
GetCurrentThreadId
GetProcAddress
OpenMutexA
GetCommandLineA
EnumResourceNamesA
GetVersionExA
ExitProcess
GetEnvironmentStrings
LCMapStringW
TlsAlloc
LoadLibraryA
GetCurrentProcess
SetHandleCount
OpenWaitableTimerA
GetCurrentThread
LocalFlags
VirtualQuery
CreateProcessW
DeleteCriticalSection
FreeEnvironmentStringsW
GetLocaleInfoW
TerminateProcess
CreateProcessA
SetSystemTime
LockFileEx
GetModuleFileNameA
GetStringTypeW
TlsGetValue
SetConsoleCtrlHandler
GetLastError
SetFilePointer
GetSystemTimeAsFileTime
InterlockedExchange
IsValidCodePage
OpenFileMappingA
VirtualAlloc
LeaveCriticalSection
WriteFile
GetLocaleInfoA
GetWindowsDirectoryA
GetDiskFreeSpaceA
SetConsoleTitleW
SetEnvironmentVariableA
InitializeCriticalSectionAndSpinCount
ReadFile
GetACP
LCMapStringA
SetLastError
MultiByteToWideChar
CloseHandle
HeapCreate
CreateDirectoryExW
FreeEnvironmentStringsA
GetModuleHandleA
GetAtomNameA
VirtualProtect
GetFileType
UnhandledExceptionFilter
FlushFileBuffers
RtlUnwind
GetStartupInfoA
GetUserDefaultLCID
TlsSetValue
GetStartupInfoW
WideCharToMultiByte
GetCurrentProcessId

comdlg32

FindTextA
PrintDlgA

wininet

FtpRenameFileW
ShowClientAuthCerts
InternetWriteFileExW
InternetSetDialStateW
FtpCommandA

Sections

.text
Size: 162KB - Virtual size: 161KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 311KB - Virtual size: 310KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b8fe72f52980c8fe832142bcdbff121f

Headers

File Characteristics

Imports

comctl32

gdi32

user32

advapi32

kernel32

comdlg32

wininet

Sections

.text Size: 162KB - Virtual size: 161KB

.rdata Size: 9KB - Virtual size: 29KB

.data Size: 311KB - Virtual size: 310KB

.rsrc Size: 10KB - Virtual size: 10KB

.text
Size: 162KB - Virtual size: 161KB

.rdata
Size: 9KB - Virtual size: 29KB

.data
Size: 311KB - Virtual size: 310KB

.rsrc
Size: 10KB - Virtual size: 10KB