8a8f48fcb003abce99a4767af9f2548f_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

8a8f48fcb003abce99a4767af9f2548f_JaffaCakes118
Size

555KB
MD5

8a8f48fcb003abce99a4767af9f2548f
SHA1

d86f9e888e88e381a36948be68af584ac3a34229
SHA256

660b524c8ddd12b680c89a9c33497608a1f82b944575c8d74e67cd596929c20b
SHA512

2f840372ea5f327bc13587112d713f42c896593ad1951e7ca3b0eca2f287e7078a6929e9371dbbeb77501fe217cb98f09986734f2f13f05619be079088cc1374
SSDEEP

12288:1GvQ8SQxdLQF0+6zN3MHAgxI+AO66Pxgz+eVB3dtiS6DW:1GvQpQxdP+QN3MHAcX766P6zB3bi9DW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8a8f48fcb003abce99a4767af9f2548f_JaffaCakes118

Files

8a8f48fcb003abce99a4767af9f2548f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ad061fcb62f14823464b81ef79395220

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

FtpRenameFileW
InternetShowSecurityInfoByURLW
FtpCreateDirectoryA
FindFirstUrlCacheContainerW
DeleteUrlCacheEntry

kernel32

FoldStringW
GetUserDefaultLCID
GetLastError
GetTimeZoneInformation
GetEnvironmentStringsW
TlsSetValue
LCMapStringW
IsValidCodePage
FlushFileBuffers
ReadFile
CreateFileA
GetConsoleMode
GetCommandLineA
WideCharToMultiByte
SetUnhandledExceptionFilter
WriteConsoleA
TlsFree
GetCurrentProcessId
GetStringTypeA
VirtualAlloc
FreeEnvironmentStringsW
ReadConsoleInputW
GetModuleHandleA
GetTickCount
SetStdHandle
RtlUnwind
IsDebuggerPresent
GetModuleFileNameW
IsValidLocale
HeapDestroy
MoveFileA
GetPrivateProfileSectionW
InitializeCriticalSectionAndSpinCount
TlsAlloc
CompareStringA
TlsGetValue
HeapFree
LeaveCriticalSection
GetProfileStringA
LCMapStringA
ReleaseMutex
GetLongPathNameW
HeapCreate
GetStartupInfoW
GetCommandLineW
GetFileType
InterlockedDecrement
GetACP
GetCPInfo
CreateMutexA
GetConsoleOutputCP
MultiByteToWideChar
GetCurrentThread
GetOEMCP
GetProcAddress
OpenSemaphoreW
EnterCriticalSection
HeapReAlloc
InterlockedIncrement
GetStartupInfoA
CloseHandle
UnhandledExceptionFilter
GetDateFormatA
CreateDirectoryExW
GetSystemTimeAsFileTime
EnumSystemLocalesA
GetCurrentProcess
VirtualFree
FreeLibrary
GetStringTypeW
GetModuleHandleW
CompareStringW
GetConsoleCP
GetModuleFileNameA
DeleteCriticalSection
GetTimeFormatA
HeapSize
GetStdHandle
GetLocaleInfoW
InterlockedExchange
GetCurrentThreadId
VirtualQuery
WriteConsoleW
QueryPerformanceCounter
LoadLibraryA
Sleep
SetConsoleCtrlHandler
SetLastError
GetLocaleInfoA
ExitProcess
HeapAlloc
OpenMutexA
SetHandleCount
SetEnvironmentVariableA
SetFilePointer
WriteFile
TerminateProcess

user32

GetWindowContextHelpId
RegisterClassA
CreateWindowStationW
GetListBoxInfo
CheckMenuItem
TabbedTextOutW
DlgDirListA
ChildWindowFromPointEx
RemoveMenu
RegisterClassExA
GetKBCodePage
UnhookWinEvent
CreateDesktopW

comctl32

InitCommonControlsEx

gdi32

EnumObjects
UnrealizeObject
CreateDCW
PlayMetaFileRecord
GetOutlineTextMetricsA
EndDoc
DPtoLP
GetICMProfileA
TranslateCharsetInfo
SelectClipPath
PtInRegion
CreateColorSpaceA
ModifyWorldTransform
LPtoDP
CreateSolidBrush
GetNearestPaletteIndex
CreateMetaFileW
SetDIBits
GetTextFaceW
GetCurrentPositionEx

Sections

.text
Size: 223KB - Virtual size: 223KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 318KB - Virtual size: 317KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ad061fcb62f14823464b81ef79395220

Headers

File Characteristics

Imports

wininet

kernel32

user32

comctl32

gdi32

Sections

.text Size: 223KB - Virtual size: 223KB

.rdata Size: 10KB - Virtual size: 25KB

.data Size: 318KB - Virtual size: 317KB

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 223KB - Virtual size: 223KB

.rdata
Size: 10KB - Virtual size: 25KB

.data
Size: 318KB - Virtual size: 317KB

.rsrc
Size: 3KB - Virtual size: 2KB