84a0bc5062ea9885d44c0f27a056eb32_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

84a0bc5062ea9885d44c0f27a056eb32_JaffaCakes118
Size

404KB
MD5

84a0bc5062ea9885d44c0f27a056eb32
SHA1

92b4c67705a293f1559e18a4c18d1c44f91c9b31
SHA256

6c984d3b26607d651e64d0897c8e6c916b4e9406a77ddb65e4264cb0cf521827
SHA512

6f121b7af7203b3c057cddd5ecda89d14054e6ad6e72a962b1e77d59612a421a575a226d726213523e3293de13842fd398cc9f15991cc259382db05b330b3fe0
SSDEEP

6144:M8zLyRe3U2+QArnxRB0rg/qVoEnjTj0GCfpentPlg+6mB9tF8c5wEHxej:M8+iT4xRWrmq+Q7kReta+DztF8ZS4j

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
84a0bc5062ea9885d44c0f27a056eb32_JaffaCakes118

Files

84a0bc5062ea9885d44c0f27a056eb32_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bc99d716e9e78741e1250e6d7ffd0d5b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegConnectRegistryA

wininet

InternetFindNextFileW
InternetQueryDataAvailable
HttpAddRequestHeadersA
InternetHangUp
InternetConfirmZoneCrossingW
GetUrlCacheConfigInfoA
InternetCheckConnectionA
InternetAlgIdToStringA
GopherOpenFileA
InternetConfirmZoneCrossing
FindFirstUrlCacheEntryExA
InternetGetConnectedStateExA
FindFirstUrlCacheEntryW
FtpDeleteFileW
SetUrlCacheEntryGroup
UnlockUrlCacheEntryFile
SetUrlCacheEntryInfoW
CreateUrlCacheContainerA
GopherOpenFileW
InternetCanonicalizeUrlW
FindFirstUrlCacheGroup

shell32

FreeIconList
ExtractIconW
SHAppBarMessage
SHGetFileInfo
InternalExtractIconListW
ExtractIconA
SheGetDirA
SHEmptyRecycleBinA
SHBrowseForFolderW
SheChangeDirA
ShellExecuteA
SHGetDesktopFolder

comdlg32

ChooseColorW
GetFileTitleW
GetSaveFileNameA
FindTextA
ChooseFontW
ReplaceTextA
GetOpenFileNameA
GetOpenFileNameW
ChooseColorA
GetFileTitleA
PrintDlgW
PageSetupDlgA
GetSaveFileNameW
LoadAlterBitmap
FindTextW
PageSetupDlgW
ReplaceTextW
PrintDlgA

kernel32

GetEnvironmentStrings
HeapLock
SetHandleCount
VirtualAlloc
GetStringTypeA
InterlockedExchange
SetUnhandledExceptionFilter
GetModuleFileNameA
GetCurrentThreadId
lstrcmpi
DeleteCriticalSection
GetStartupInfoA
GetProcAddress
SetEnvironmentVariableA
WideCharToMultiByte
SetEndOfFile
VirtualFree
GetACP
HeapCreate
TlsSetValue
GetProcessHeap
GetStringTypeW
HeapAlloc
LeaveCriticalSection
LocalCompact
GetOEMCP
InitializeCriticalSection
UnhandledExceptionFilter
FreeEnvironmentStringsA
WriteFile
GetUserDefaultLCID
SuspendThread
SetSystemTime
InterlockedIncrement
HeapReAlloc
GetLocaleInfoW
GetLastError
GetTimeFormatA
FreeEnvironmentStringsW
GetCurrentProcessId
IsDebuggerPresent
HeapSize
GetDateFormatA
TlsGetValue
GetSystemTimeAsFileTime
GetCurrentThread
GetVersionExA
HeapFree
GetTickCount
GetCommandLineA
FreeLibrary
CompareStringW
GetEnvironmentStringsW
TlsAlloc
ExitProcess
EnumSystemLocalesA
HeapDestroy
SetLastError
CompareStringA
MultiByteToWideChar
QueryPerformanceCounter
LCMapStringW
InterlockedDecrement
TlsFree
GetCPInfo
IsValidCodePage
LoadLibraryA
Sleep
GetModuleHandleA
CreateFileMappingW
RtlUnwind
TerminateProcess
GetStdHandle
VirtualQuery
GetTimeZoneInformation
GetLocaleInfoA
GetCurrentProcess
LCMapStringA
SetConsoleCtrlHandler
GetFileType
EnterCriticalSection
IsValidLocale

gdi32

FillRgn
MoveToEx
PolyBezierTo
SetPaletteEntries
ExtFloodFill
GetMapMode
DeleteMetaFile
GetCharWidthFloatW
StartPage
GetCharacterPlacementA
DPtoLP
SetTextAlign
SetICMMode
GetBkColor
SetTextCharacterExtra
GetTextExtentPoint32W
CreateColorSpaceW

Sections

.text
Size: 125KB - Virtual size: 124KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 271KB - Virtual size: 279KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bc99d716e9e78741e1250e6d7ffd0d5b

Headers

File Characteristics

Imports

advapi32

wininet

shell32

comdlg32

kernel32

gdi32

Sections

.text Size: 125KB - Virtual size: 124KB

.data Size: 271KB - Virtual size: 279KB

.rsrc Size: 7KB - Virtual size: 6KB

.text
Size: 125KB - Virtual size: 124KB

.data
Size: 271KB - Virtual size: 279KB

.rsrc
Size: 7KB - Virtual size: 6KB