94f95ec86535447619e1a8d5c0f7b831_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

94f95ec86535447619e1a8d5c0f7b831_JaffaCakes118
Size

728KB
MD5

94f95ec86535447619e1a8d5c0f7b831
SHA1

568fae7034e79522b023bcdd5f7703863ba34760
SHA256

88ea5f0333468e0d9e61065f9746892fccc8858f0d0cd361375315af5ff46ac3
SHA512

95009aea7ffb5e010cd366d4a38f768589f0fc41fde03d810da412d7ea1e91f7c71c5aca08ecd52a91c00e904c760c3b41f6e5e17b3d82e2a40d45fa14079fbe
SSDEEP

12288:aQE1LZx43PmIaMRXG7U9qVJ8hguZo0GBjw+gKsAOMuhTkmFetg6o1lz:j443PZjUU9OJ8hgw9Yw+nduhTkKetL8d

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
94f95ec86535447619e1a8d5c0f7b831_JaffaCakes118

Files

94f95ec86535447619e1a8d5c0f7b831_JaffaCakes118
.exe windows:4 windows x86 arch:x86

93cff5383f7ed5af4efdbc2ee39822c7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualQuery
FreeEnvironmentStringsW
CreateFileA
GetCurrentProcessId
GetConsoleCP
GetStringTypeA
GetOEMCP
TlsFree
HeapReAlloc
ReadFile
HeapDestroy
WriteConsoleA
GetModuleHandleA
HeapFree
SetConsoleCtrlHandler
CompareStringW
TlsAlloc
GetCurrentThreadId
GetCPInfo
GetStringTypeW
IsValidCodePage
GetEnvironmentStringsW
SetHandleCount
GetStartupInfoA
GetACP
RaiseException
GetCurrentThread
GetVersionExA
GetModuleFileNameA
WriteFile
GetCommandLineW
GetDateFormatA
LeaveCriticalSection
HeapAlloc
SetStdHandle
SetLastError
WideCharToMultiByte
Sleep
FreeEnvironmentStringsA
InterlockedExchange
InterlockedIncrement
GetUserDefaultLCID
GetStartupInfoW
HeapSize
RtlUnwind
TlsGetValue
FreeLibrary
EnterCriticalSection
GetLocaleInfoW
WriteConsoleW
SetEnvironmentVariableA
InitializeCriticalSection
GetProcessHeap
IsValidLocale
DeleteCriticalSection
GetModuleFileNameW
GetModuleHandleW
GetStdHandle
GetConsoleOutputCP
GetLocaleInfoA
HeapCreate
SetFilePointer
LocalFree
IsDebuggerPresent
UnhandledExceptionFilter
VirtualAlloc
CloseHandle
GetTimeFormatA
QueryPerformanceCounter
GetTimeZoneInformation
CompareStringA
GetTickCount
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
LCMapStringA
InterlockedDecrement
GetLastError
TlsSetValue
CreateMutexW
LoadLibraryA
GetCurrentProcess
FatalAppExitA
LCMapStringW
GetCommandLineA
VirtualFree
ExitProcess
TerminateProcess
GetProcAddress
GetEnvironmentStrings
GetConsoleMode
FlushFileBuffers
MultiByteToWideChar
GetFileType

advapi32

RegCloseKey
RegOpenKeyExA
RegEnumKeyA
OpenThreadToken
RegQueryValueA
RegCreateKeyA
FreeSid
RegDeleteValueA
RegQueryValueExA
RegQueryInfoKeyA
RegSetValueExA
RegOpenKeyA
GetLengthSid
RegCreateKeyExA
RegEnumKeyExA
SetSecurityDescriptorDacl
OpenServiceA

oleaut32

LoadTypeLi

user32

GetCapture
GetMenuCheckMarkDimensions
GetActiveWindow
SetScrollInfo
GetClassNameW
GetWindowPlacement
DestroyCaret
SetWindowsHookExW
GetMenu
MapWindowPoints
PeekMessageW
GetScrollInfo
GetParent
DestroyWindow
DrawFrameControl
RegisterClassW
CallWindowProcW
SetRectEmpty
GetSysColor
FindWindowW
BringWindowToTop
GetFocus
IsMenu
DefWindowProcW
ShowWindow
GetMenuItemID
LoadIconW
GetMessagePos
GetDlgCtrlID
SendDlgItemMessageA
FillRect
CreateWindowExW
LoadMenuW
IsWindow
ReleaseDC
GetSystemMetrics
MessageBeep
GetMonitorInfoW
PostMessageW
CopyRect
KillTimer
TrackPopupMenuEx
GetDlgItem
TranslateMessage
RegisterClassExW
TrackPopupMenu
ModifyMenuW
LockWindowUpdate
GetSubMenu
SetTimer
MessageBoxW
DeferWindowPos
SendMessageW
OpenClipboard
IsWindowVisible

wininet

HttpOpenRequestA
HttpQueryInfoA
InternetTimeFromSystemTime
InternetTimeToSystemTime
InternetOpenA
InternetCrackUrlA
InternetReadFile
InternetGetConnectedState

gdi32

GetTextCharsetInfo
GetStockObject
GetPaletteEntries
SetROP2
GetDeviceCaps
CreateDIBSection
GetNearestColor
LineTo
GetObjectA
CreateBitmap
ExtCreatePen
DeleteObject
SelectClipRgn
FrameRgn
GetClipBox
GetNearestPaletteIndex
CreatePatternBrush
StartPage
SelectPalette
EnumFontFamiliesA
CreateCompatibleDC
GetROP2
CreateCompatibleBitmap
GetDIBits
FillRgn
DPtoLP
GetWindowOrgEx
SetBkColor
LPtoDP
EndDoc
CreateFontIndirectA
RectVisible
Escape
ExtFloodFill
Ellipse
CombineRgn
GetPixel
SetBkMode
EndPage
BitBlt
CreateDCA
OffsetRgn
PtVisible
SetTextColor
IntersectClipRect
CreatePolygonRgn
GetTextExtentPointA
GetMapMode
GetCharWidthA
GetTextAlign
SetStretchBltMode
Rectangle
Polygon
CopyMetaFileA
CreateRectRgn
CreateSolidBrush
SetTextAlign
ExtTextOutA
GetBkColor
CreateFontA
CreateHatchBrush
SetWindowExtEx
CreatePen
StretchBlt
SetAbortProc
SetMapMode
SetViewportOrgEx
SetPixelV
ExtSelectClipRgn
Polyline
GetSystemPaletteEntries
CreateRectRgnIndirect
GetWindowExtEx
GetTextMetricsA
SetViewportExtEx
PatBlt
SetPixel

comctl32

ImageList_DrawEx
ImageList_Create
ImageList_LoadImageA
ImageList_Destroy
PropertySheetA
ImageList_ReplaceIcon
CreatePropertySheetPageA
InitCommonControlsEx

Sections

.text
Size: 116KB - Virtual size: 113KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 464KB - Virtual size: 460KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 104KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

93cff5383f7ed5af4efdbc2ee39822c7

Headers

File Characteristics

Imports

kernel32

advapi32

oleaut32

user32

wininet

gdi32

comctl32

Sections

.text Size: 116KB - Virtual size: 113KB

.rdata Size: 464KB - Virtual size: 460KB

.data Size: 104KB - Virtual size: 103KB

.rsrc Size: 40KB - Virtual size: 36KB

.text
Size: 116KB - Virtual size: 113KB

.rdata
Size: 464KB - Virtual size: 460KB

.data
Size: 104KB - Virtual size: 103KB

.rsrc
Size: 40KB - Virtual size: 36KB