a2679f7a689c9cafcc358af49cdfc080_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a2679f7a689c9cafcc358af49cdfc080_JaffaCakes118
Size

536KB
MD5

a2679f7a689c9cafcc358af49cdfc080
SHA1

cafb4af003db89af3382d54d846b459a24169ce9
SHA256

ae7b614f773ba0731b4f3d58ba14dc2e56434b47e705eafaa471258db73a0e7d
SHA512

ab7a596c79725347d45b952ba38e1fd6c03017864102f90039cdd3774749d9ea8190feffe945ba7f668ff2a00d5fe5c2f779b140c34b42f2344379b98975560d
SSDEEP

12288:gf+EIzoZeByS2qd/rOXgkbKZ7SNqM3rjwexFEax+/:g2ElZeBySXKXxm9qqgjwoG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a2679f7a689c9cafcc358af49cdfc080_JaffaCakes118

Files

a2679f7a689c9cafcc358af49cdfc080_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a4b3dc0ae0da88d342bcc5432a6d3025

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

user32

SetMenuInfo
OemToCharBuffA
ExitWindowsEx
GetMessageW
IsClipboardFormatAvailable
UnpackDDElParam
DdeCmpStringHandles
OemKeyScan
VkKeyScanW
LoadCursorA
GetWindowThreadProcessId
GetMessageTime
RegisterClassExA
ReleaseDC
RegisterClassA
CharToOemA
CharUpperBuffW
ToAsciiEx
IsCharAlphaNumericA

kernel32

EnumSystemLocalesA
TerminateProcess
FreeEnvironmentStringsA
GetFileAttributesA
WriteConsoleA
FlushViewOfFile
SetLocaleInfoA
GetProcessHeap
VirtualFree
GetModuleFileNameW
TlsSetValue
IsValidCodePage
GetSystemTimeAdjustment
TlsFree
SetConsoleCtrlHandler
VirtualQuery
GetEnvironmentStringsW
GetConsoleOutputCP
HeapLock
EnumCalendarInfoExA
DeleteCriticalSection
TlsAlloc
ReadFile
HeapCreate
GetThreadLocale
FlushFileBuffers
GetEnvironmentStrings
GetLocaleInfoW
HeapDestroy
FreeLibrary
GetVersionExA
GetFileType
GetTickCount
WaitForSingleObject
WriteFile
GetTimeZoneInformation
InterlockedExchange
WriteConsoleW
FreeEnvironmentStringsW
VirtualAlloc
InterlockedIncrement
Sleep
IsDebuggerPresent
GetModuleFileNameA
GetOEMCP
GetDateFormatW
GetCurrentThread
GetPrivateProfileSectionNamesA
GetSystemTimeAsFileTime
GetStartupInfoW
ReleaseMutex
GetStdHandle
GetConsoleMode
GetCommandLineW
GetCurrentProcessId
GetUserDefaultLCID
GetModuleHandleA
CreateFileA
InitializeCriticalSection
HeapSize
GetStartupInfoA
HeapReAlloc
UnhandledExceptionFilter
GetStringTypeW
SetLastError
SetHandleCount
SetUnhandledExceptionFilter
LCMapStringA
MultiByteToWideChar
GetLastError
CreateMutexA
GetConsoleCP
SetEnvironmentVariableA
SetStdHandle
TlsGetValue
GetTimeFormatA
HeapFree
LoadLibraryA
GetLocaleInfoA
LockFileEx
SetThreadPriority
WideCharToMultiByte
LoadModule
SetConsoleOutputCP
LeaveCriticalSection
CompareStringW
GetStringTypeA
GetCPInfo
CompareStringA
IsValidLocale
LCMapStringW
QueryPerformanceCounter
GetCurrentProcess
GetCurrentThreadId
CreateFileMappingA
HeapAlloc
GetACP
InterlockedDecrement
GetDateFormatA
CloseHandle
RtlUnwind
WaitForMultipleObjects
EnterCriticalSection
OpenMutexA
SetFilePointer
ExitProcess
GetCommandLineA
SuspendThread
GetProcAddress

gdi32

DeleteDC
GetColorAdjustment
SetTextJustification
ExtCreatePen
CreateColorSpaceW

wininet

InternetQueryOptionA
InternetGetLastResponseInfoW
ShowX509EncodedCertificate
GetUrlCacheGroupAttributeA

Sections

.text
Size: 203KB - Virtual size: 203KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 317KB - Virtual size: 316KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a4b3dc0ae0da88d342bcc5432a6d3025

Headers

File Characteristics

Imports

comctl32

user32

kernel32

gdi32

wininet

Sections

.text Size: 203KB - Virtual size: 203KB

.rdata Size: 10KB - Virtual size: 34KB

.data Size: 317KB - Virtual size: 316KB

.rsrc Size: 5KB - Virtual size: 4KB

.text
Size: 203KB - Virtual size: 203KB

.rdata
Size: 10KB - Virtual size: 34KB

.data
Size: 317KB - Virtual size: 316KB

.rsrc
Size: 5KB - Virtual size: 4KB