9fcfe9c1eceb4774db15dd689bc7590d_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

9fcfe9c1eceb4774db15dd689bc7590d_JaffaCakes118
Size

415KB
MD5

9fcfe9c1eceb4774db15dd689bc7590d
SHA1

d65d97ba85d51f00cf8fcfcc5b06188ea92613c0
SHA256

ec0bb39411ef2e2a8422dc6c1097c6bb21ed8b89770b829fa36c2a69fa00c172
SHA512

f5bc90cf181de8cfe3d3cb2d066365768dcda5e6effa6194ddb27ec9843a963c83ff5d12ca92fb1d81568cf19c66858f1976e53b94ead89761ac1584953ae6c6
SSDEEP

12288:g7VjswQnZoAd8YtYTGS+9nFbngf0aZJMziFj:aKwQnZoAd83UFbnyYiV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9fcfe9c1eceb4774db15dd689bc7590d_JaffaCakes118

Files

9fcfe9c1eceb4774db15dd689bc7590d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

88b88fa530f8d0142a02840882b8ee75

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

FindTextW
GetOpenFileNameA
ReplaceTextA
PrintDlgA

wininet

InternetFindNextFileW
InternetReadFileExW
HttpCheckDavCompliance
InternetConfirmZoneCrossingW
RetrieveUrlCacheEntryStreamW
FindCloseUrlCache
FreeUrlCacheSpaceW
InternetHangUp
InternetShowSecurityInfoByURLA
InternetGetCertByURLA
InternetSetCookieA
InternetConnectA
InternetSetOptionExW
CreateUrlCacheEntryW
SetUrlCacheEntryGroup
FtpGetFileSize
GetUrlCacheConfigInfoW
DeleteUrlCacheEntryA
InternetCrackUrlW
RegisterUrlCacheNotification
GopherGetLocatorTypeW
InternetGetCookieA

user32

AnimateWindow
GetMenuInfo
DdeKeepStringHandle
IsCharLowerW
CheckMenuItem
RealGetWindowClass

advapi32

CryptGetDefaultProviderW
CryptSetProviderW
CryptDuplicateKey
CryptSignHashW
RegDeleteValueA
CryptEnumProviderTypesA
CryptEnumProvidersA
RegReplaceKeyA
CryptDeriveKey
RegSetValueA
CryptGetDefaultProviderA
RegSetValueExW
RegSaveKeyA
CryptVerifySignatureW
RegLoadKeyA
RegCreateKeyExA
CryptDuplicateHash
CryptContextAddRef
CryptSignHashA
LookupAccountNameW
CryptGetProvParam

kernel32

SetConsoleCtrlHandler
HeapReAlloc
OpenEventA
GetLogicalDriveStringsA
RtlUnwind
VirtualLock
SetCriticalSectionSpinCount
GetThreadPriorityBoost
LoadLibraryA
SetEnvironmentVariableW
GetModuleFileNameA
GetCurrentProcessId
EnumCalendarInfoExA
VirtualAlloc
CloseHandle
GetProcAddress
VirtualProtectEx
GetDiskFreeSpaceExW
TerminateProcess
GetCurrentThreadId
GetCurrentProcess
ReadConsoleOutputW
GetTickCount
FindFirstFileW
HeapAlloc
ExitProcess
EnumResourceLanguagesW
GetTimeFormatW
GetModuleHandleA
QueryPerformanceCounter
GetSystemTimeAdjustment
InterlockedExchange
VirtualQuery
HeapFree
GetSystemTimeAsFileTime
lstrlen

gdi32

GetMetaFileBitsEx
GetTextExtentPoint32W
LPtoDP
FlattenPath
EnumICMProfilesA
GetBoundsRect
EnumEnhMetaFile
MaskBlt
DeleteMetaFile
SetRectRgn
GetTextColor
GetCharWidthFloatA
GetBitmapBits

Sections

.text
Size: 137KB - Virtual size: 137KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 264KB - Virtual size: 264KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

88b88fa530f8d0142a02840882b8ee75

Headers

File Characteristics

Imports

comdlg32

wininet

user32

advapi32

kernel32

gdi32

Sections

.text Size: 137KB - Virtual size: 137KB

.data Size: 264KB - Virtual size: 264KB

.rsrc Size: 12KB - Virtual size: 11KB

.text
Size: 137KB - Virtual size: 137KB

.data
Size: 264KB - Virtual size: 264KB

.rsrc
Size: 12KB - Virtual size: 11KB