93af6934b5118bfb6bdd6cd6427008c0_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

93af6934b5118bfb6bdd6cd6427008c0_JaffaCakes118
Size

660KB
MD5

93af6934b5118bfb6bdd6cd6427008c0
SHA1

6f6fe7f0fb85b0ab7a4cb3d25cc2700d21e70a2a
SHA256

f931ddb1b8ed3e4ecac3d2718d33a05f8878f6a90c5a6a0e781040b524497f37
SHA512

aff8e6424b8c2e8aef7ec46dae5e5df5da6933c9e4eb55209ad25e86b64487c43c9ec873ee95ace90881d52313782add63b81af62f8e5025fbde2811c78a35f4
SSDEEP

12288:B84czUszXQ02o9za36tQalTEjJJcoQHIfJoPMoQ0RrGEYtBSEmf4ArNs7RQh5Raj:2kAV9G3lMoQoYMoJ6VS5k2337E

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
93af6934b5118bfb6bdd6cd6427008c0_JaffaCakes118

Files

93af6934b5118bfb6bdd6cd6427008c0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

56a2677bfb89e00b75c1d3a8a20bdbd2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

e:\nemh\

Imports

comdlg32

PageSetupDlgA
PrintDlgA
ChooseFontA

comctl32

InitCommonControlsEx

kernel32

FlushFileBuffers
SetStdHandle
RtlMoveMemory
HeapReAlloc
GetEnvironmentStrings
GetConsoleMode
CloseHandle
HeapCreate
RtlUnwind
MultiByteToWideChar
InitializeCriticalSection
OutputDebugStringW
GetVersionExA
GetStdHandle
EnumSystemLocalesA
InterlockedExchangeAdd
LeaveCriticalSection
GetDateFormatA
VirtualFree
IsDebuggerPresent
GetLocaleInfoA
OutputDebugStringA
GetModuleFileNameA
WriteFile
GetCommandLineW
GetLastError
GetCurrentThread
VirtualAlloc
SetFilePointer
WriteConsoleW
GetModuleFileNameW
FreeEnvironmentStringsA
CompareStringA
GetEnvironmentStringsW
HeapDestroy
GetStartupInfoA
GetFileType
CreateMutexA
WriteConsoleA
FindResourceW
CreateFileA
SetEnvironmentVariableA
InterlockedDecrement
SetConsoleCtrlHandler
LCMapStringA
ReadFile
IsValidCodePage
EnterCriticalSection
FreeLibrary
TlsFree
TerminateProcess
GetTimeZoneInformation
GetSystemTimeAsFileTime
GetCurrentThreadId
RaiseException
GetStringTypeW
TlsSetValue
GetCommandLineA
GetCPInfo
GetStartupInfoW
FreeEnvironmentStringsW
TlsAlloc
CompareStringW
UnhandledExceptionFilter
SetLastError
GetProcessHeap
QueryPerformanceCounter
GetModuleHandleA
lstrlenA
SetUnhandledExceptionFilter
HeapValidate
GetUserDefaultLCID
GetProcAddress
GetConsoleCP
SetHandleCount
SetFileAttributesW
GlobalAlloc
WideCharToMultiByte
InterlockedExchange
LoadLibraryA
HeapFree
HeapAlloc
IsValidLocale
GetCurrentProcess
LoadLibraryW
ExitProcess
GetStringTypeA
VirtualQuery
GetTimeFormatA
InterlockedIncrement
InitializeCriticalSectionAndSpinCount
LCMapStringW
GetLocaleInfoW
GetCurrentProcessId
GetConsoleOutputCP
DebugBreak
GetTickCount
TlsGetValue
DeleteCriticalSection
GetACP
OpenMutexA
IsBadReadPtr
GetOEMCP

user32

GetClassInfoExA
CharNextExA
ChangeClipboardChain
LoadMenuIndirectA
SetMenuItemBitmaps
GetQueueStatus
ChangeMenuA
DdeCreateDataHandle
DrawMenuBar
RegisterClassA
FlashWindow
GetWindowTextA
EnumDisplaySettingsW
GetMonitorInfoW
GetKeyboardLayout
RegisterClassExA
DefMDIChildProcA
EnumThreadWindows
CharToOemBuffA
DdeSetQualityOfService

wininet

HttpOpenRequestA
InternetShowSecurityInfoByURLA
DeleteIE3Cache
SetUrlCacheEntryGroup
FreeUrlCacheSpaceA
InternetGetConnectedState

Sections

.text
Size: 458KB - Virtual size: 458KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 84KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 105KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

56a2677bfb89e00b75c1d3a8a20bdbd2

Headers

File Characteristics

PDB Paths

Imports

comdlg32

comctl32

kernel32

user32

wininet

Sections

.text Size: 458KB - Virtual size: 458KB

.rdata Size: 84KB - Virtual size: 105KB

.data Size: 105KB - Virtual size: 105KB

.rsrc Size: 11KB - Virtual size: 11KB

.text
Size: 458KB - Virtual size: 458KB

.rdata
Size: 84KB - Virtual size: 105KB

.data
Size: 105KB - Virtual size: 105KB

.rsrc
Size: 11KB - Virtual size: 11KB