85007c720fae048e24c3735439e389ae_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

85007c720fae048e24c3735439e389ae_JaffaCakes118
Size

580KB
MD5

85007c720fae048e24c3735439e389ae
SHA1

bace496a30bac3e2998915551d955b63d68ed93a
SHA256

be385b778a0ec9377f8761adb9c409d978f85a402c44006754d256e9c1011fe2
SHA512

5db24353663e80034e2335b1cead6f157fdbfbc811e7e39b1bd400d5cef915b9ac544c4c2d1edf9b9de3eaadf1c60aa69111f96013bc23d515195e757e07cd6b
SSDEEP

12288:MPKJoS9Ob9Cbcb4Wc6pxqLy3rTNuSv29ugC3Yfx6pm:MPK6KObAbcb4Wc6pxqLy3rTRv2cgD6p

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
85007c720fae048e24c3735439e389ae_JaffaCakes118

Files

85007c720fae048e24c3735439e389ae_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f7e63bc3960234b9f9cf6bc0b63ef69e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SelectObject
EnumFontFamiliesA
CreateFontA
ExtCreateRegion
SetBitmapDimensionEx
FillPath
AbortPath
GetMetaFileA
GetBkColor
GetRgnBox
ExtFloodFill
CreateEllipticRgnIndirect
SetTextCharacterExtra
RemoveFontResourceA
EnumFontFamiliesExW
RestoreDC
GetTextCharsetInfo

comctl32

InitCommonControlsEx

kernel32

GetLocaleInfoA
InterlockedIncrement
RtlUnwind
GetLastError
FlushFileBuffers
VirtualFree
EnumSystemLocalesA
CloseHandle
FillConsoleOutputCharacterA
HeapReAlloc
IsBadWritePtr
HeapFree
CompareStringA
GetTimeFormatA
GetThreadTimes
WaitForDebugEvent
GetDateFormatA
GetCalendarInfoA
QueryPerformanceCounter
MoveFileA
GetStringTypeW
WideCharToMultiByte
SetConsoleCtrlHandler
WriteFile
CompareStringW
GetStdHandle
GetSystemInfo
EnumResourceLanguagesW
LCMapStringA
MultiByteToWideChar
ReadConsoleOutputA
FreeEnvironmentStringsW
FreeEnvironmentStringsA
EnterCriticalSection
VirtualProtect
IsBadReadPtr
InterlockedExchange
ExitProcess
GetTimeZoneInformation
GetEnvironmentStringsW
IsValidLocale
TlsAlloc
GetProfileIntW
GetCurrentThreadId
TlsFree
SetEnvironmentVariableA
GetStartupInfoW
VirtualAlloc
HeapValidate
GetProcAddress
SetFilePointer
GetFileType
GetOEMCP
GetCurrentProcess
GetACP
HeapCreate
OpenMutexA
GetTickCount
GetCurrentProcessId
HeapDestroy
GetCommandLineA
GetUserDefaultLCID
GetSystemTimeAsFileTime
GetStringTypeA
GetModuleHandleA
UnhandledExceptionFilter
DeleteCriticalSection
TlsGetValue
HeapAlloc
ReadFile
GetCPInfo
CreateMutexA
LoadLibraryA
SetHandleCount
GetCurrentThread
LCMapStringW
GetModuleFileNameA
InitializeCriticalSection
OutputDebugStringA
LeaveCriticalSection
GetCommandLineW
SetStdHandle
TlsSetValue
GetLocaleInfoW
SetLastError
GetEnvironmentStrings
TerminateProcess
GetModuleFileNameW
GetStartupInfoA
VirtualQuery
LocalFree
GetVersionExA
InterlockedDecrement
DebugBreak
IsValidCodePage

wininet

HttpSendRequestExA
GetUrlCacheEntryInfoExA
InternetFortezzaCommand
InternetCanonicalizeUrlW
GetUrlCacheHeaderData
CreateUrlCacheContainerA
InternetDialA

comdlg32

FindTextA
PrintDlgA
ChooseColorA

user32

SetCursorPos
CharLowerW
CallMsgFilter
RegisterClassA
OpenWindowStationA
RegisterClassExA
SendDlgItemMessageW
GetMenuItemRect
SetMenuDefaultItem
LoadBitmapA
EnumWindowStationsA
AppendMenuW

shell32

SHGetFileInfo

Sections

.text
Size: 240KB - Virtual size: 239KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 314KB - Virtual size: 314KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f7e63bc3960234b9f9cf6bc0b63ef69e

Headers

File Characteristics

Imports

gdi32

comctl32

kernel32

wininet

comdlg32

user32

shell32

Sections

.text Size: 240KB - Virtual size: 239KB

.rdata Size: 12KB - Virtual size: 30KB

.data Size: 314KB - Virtual size: 314KB

.rsrc Size: 12KB - Virtual size: 12KB

.text
Size: 240KB - Virtual size: 239KB

.rdata
Size: 12KB - Virtual size: 30KB

.data
Size: 314KB - Virtual size: 314KB

.rsrc
Size: 12KB - Virtual size: 12KB