a62978f3345d2eafd51e21154cc206fe_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a62978f3345d2eafd51e21154cc206fe_JaffaCakes118
Size

380KB
MD5

a62978f3345d2eafd51e21154cc206fe
SHA1

b0de0ded9d0413fc8a02d0f9011515046d649c49
SHA256

76201ff5d09edc71104e75948e8b7faf3bd27b0b3abbf67dafe06d9298a2f775
SHA512

c57c2edc0210c0e3637b708eede6ec2e754fc975420006f74c82d8db8ef51b3bcb9a5c83903175d0ac78143c34161158b226152f2b13e7192535374a340ae647
SSDEEP

6144:NOzAq2oHfSPFCLrMUgNBR1CqlP/gasm2Zwan2zxOLBSIvNysT9T9D03DAGzORVU:NOzv1HfO08UgNBWqlPRPan2Vk8IvNyso

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a62978f3345d2eafd51e21154cc206fe_JaffaCakes118

Files

a62978f3345d2eafd51e21154cc206fe_JaffaCakes118
.exe windows:4 windows x86 arch:x86

65d3eab124d6029bdb00df1d837fb1dd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DefWindowProcA
GetClassInfoW
CreateDesktopW
CreateWindowExA
MessageBoxW
LoadKeyboardLayoutW
DestroyWindow
ShowWindow
ShowOwnedPopups
RegisterClassA
RegisterClassExA

wininet

InternetOpenA

comctl32

CreatePropertySheetPageW
CreateToolbarEx
ImageList_LoadImage
ImageList_SetIconSize
CreateStatusWindow
ImageList_Duplicate
ImageList_GetDragImage
ImageList_Add
InitCommonControlsEx
ImageList_Destroy
_TrackMouseEvent
ImageList_BeginDrag
CreateUpDownControl
ImageList_ReplaceIcon
ImageList_DrawIndirect
ImageList_GetIconSize
MakeDragList
ImageList_DragEnter
CreateMappedBitmap
ImageList_GetBkColor
ImageList_SetImageCount

kernel32

EnumSystemLocalesA
WriteConsoleW
TlsSetValue
Sleep
UnhandledExceptionFilter
CloseHandle
GetModuleFileNameW
GetLocaleInfoA
GetFileType
SetEnvironmentVariableA
SetConsoleCtrlHandler
GetCurrentThread
InterlockedDecrement
VirtualAlloc
GetCurrentThreadId
FlushFileBuffers
CreateFileA
FreeEnvironmentStringsW
RtlUnwind
GetTimeFormatA
HeapCreate
GetLocaleInfoW
HeapAlloc
OpenMutexA
GetLastError
GetModuleHandleA
OpenEventA
GetConsoleOutputCP
HeapReAlloc
SetFilePointer
MultiByteToWideChar
HeapSize
QueryPerformanceCounter
GetUserDefaultLCID
GetCPInfo
CreateMutexA
GetStringTypeA
LoadLibraryA
IsDebuggerPresent
GetCurrentProcess
EnterCriticalSection
ReadFile
GetCommandLineA
GetModuleFileNameA
WriteConsoleA
GetStartupInfoA
TerminateProcess
GetModuleHandleW
LeaveCriticalSection
InitializeCriticalSectionAndSpinCount
LCMapStringA
DeleteCriticalSection
GetProcAddress
LCMapStringW
VirtualQuery
GetConsoleCP
TlsGetValue
FreeLibrary
GetStringTypeW
GetTimeZoneInformation
GetEnvironmentStringsW
TlsFree
ExitProcess
GetACP
HeapFree
GetStartupInfoW
WriteFile
SetUnhandledExceptionFilter
SetStdHandle
InterlockedIncrement
GetOEMCP
GetSystemTimeAsFileTime
GetDateFormatA
GetCommandLineW
GetTickCount
WideCharToMultiByte
CompareStringA
IsValidCodePage
InterlockedExchange
IsValidLocale
VirtualFree
GetStdHandle
SetLastError
GetCurrentProcessId
TlsAlloc
CompareStringW
SetHandleCount
HeapDestroy
GetConsoleMode

Sections

.text
Size: 142KB - Virtual size: 142KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 91KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 89KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

65d3eab124d6029bdb00df1d837fb1dd

Headers

File Characteristics

Imports

user32

wininet

comctl32

kernel32

Sections

.text Size: 142KB - Virtual size: 142KB

.rdata Size: 91KB - Virtual size: 120KB

.data Size: 89KB - Virtual size: 88KB

.rsrc Size: 56KB - Virtual size: 56KB

.text
Size: 142KB - Virtual size: 142KB

.rdata
Size: 91KB - Virtual size: 120KB

.data
Size: 89KB - Virtual size: 88KB

.rsrc
Size: 56KB - Virtual size: 56KB