a7a420ce375e42930c247c9c1d3846ae_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a7a420ce375e42930c247c9c1d3846ae_JaffaCakes118
Size

678KB
MD5

a7a420ce375e42930c247c9c1d3846ae
SHA1

3d291114771a18693335148a1a1e16d4c125e4cc
SHA256

d5924ac68fadd79fd73971e986b1dbdd31b90af7ffc4c9fd13e319815b0c812d
SHA512

dde69a48d37ef750745945415a6c2ccb50d7be7a17971155673a1bea987e49ad50c4fe99a1a30d67cd6d95ce194916bc3a2f134717b001578ade83570270b270
SSDEEP

12288:Dsh4JSwUAHTyLf31iFiFqjKChtsZOS1b4YXOOVfuKlHZs0oa4RjlUBvNRwtC:O4JpTyzQieeZZbbHJtlHZs0oPAvjwt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a7a420ce375e42930c247c9c1d3846ae_JaffaCakes118

Files

a7a420ce375e42930c247c9c1d3846ae_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a8ea0f97bd6bb7671c90b31e307d4d58

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

e:\ekzovepo.pdb

Imports

comctl32

InitCommonControlsEx

user32

RegisterClassExA
DdeQueryNextServer
RegisterClassA

gdi32

EndPath
CreateHalftonePalette
GetRandomRgn
DescribePixelFormat
GetOutlineTextMetricsW
CreateScalableFontResourceA
FillRgn
GetPaletteEntries
CreateEnhMetaFileA
CreateRectRgn
CreatePenIndirect

wininet

FtpGetCurrentDirectoryA
InternetWriteFile
InternetGoOnlineA
InternetHangUp
UnlockUrlCacheEntryStream
FindNextUrlCacheContainerA
IncrementUrlCacheHeaderData
FtpPutFileW
ReadUrlCacheEntryStream

comdlg32

PrintDlgA

kernel32

CreateFileA
FlushInstructionCache
EnumSystemLocalesA
RtlUnwind
FreeEnvironmentStringsW
GetTimeZoneInformation
VirtualQuery
GetProcessHeap
MultiByteToWideChar
OpenEventW
GetEnvironmentStringsW
IsBadReadPtr
Sleep
GetModuleHandleA
WriteConsoleW
GetTickCount
GetConsoleOutputCP
GetProcAddress
lstrlenA
GetProfileSectionA
CompareStringW
GetLocaleInfoW
HeapFree
HeapReAlloc
GetLastError
GetLocaleInfoA
TlsFree
GetComputerNameA
LoadLibraryW
InterlockedExchange
UnmapViewOfFile
GetStringTypeW
LoadLibraryA
UnhandledExceptionFilter
OutputDebugStringW
LocalSize
GetStartupInfoA
FlushFileBuffers
GetOEMCP
ExitProcess
DeleteCriticalSection
CreateMutexA
InterlockedIncrement
HeapCreate
FreeEnvironmentStringsA
IsValidLocale
GetSystemTimeAsFileTime
GetConsoleMode
EnterCriticalSection
LCMapStringA
TlsAlloc
IsDebuggerPresent
SetEnvironmentVariableA
HeapAlloc
GetCommandLineA
GetConsoleCP
GetCurrentProcessId
TlsSetValue
VirtualAlloc
GetDiskFreeSpaceA
GetStdHandle
CompareStringA
GetCurrentThread
HeapDestroy
GetCurrentProcess
SetLastError
HeapSize
GetModuleFileNameA
EnumResourceTypesW
SystemTimeToTzSpecificLocalTime
LockResource
HeapValidate
FreeLibrary
SetHandleCount
SetFilePointer
InterlockedDecrement
QueryPerformanceCounter
GetACP
TerminateProcess
GetModuleHandleW
WideCharToMultiByte
LeaveCriticalSection
WritePrivateProfileStructA
DebugBreak
RaiseException
InitializeCriticalSectionAndSpinCount
OpenMutexA
SetUnhandledExceptionFilter
CloseHandle
WriteProfileStringA
GetStringTypeA
WriteConsoleA
GetCPInfo
LCMapStringW
GetDateFormatA
GetUserDefaultLCID
IsValidCodePage
GetPrivateProfileSectionW
OutputDebugStringA
GetEnvironmentStrings
GetModuleFileNameW
GetCurrentThreadId
SetConsoleCtrlHandler
SetStdHandle
EnumDateFormatsExW
GetFileType
ReadFile
TlsGetValue
GlobalHandle
VirtualFree
WriteFile
GetTimeFormatA

shell32

SHFormatDrive
SHAddToRecentDocs
SHEmptyRecycleBinA

Sections

.text
Size: 467KB - Virtual size: 467KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 93KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a8ea0f97bd6bb7671c90b31e307d4d58

Headers

File Characteristics

PDB Paths

Imports

comctl32

user32

gdi32

wininet

comdlg32

kernel32

shell32

Sections

.text Size: 467KB - Virtual size: 467KB

.rdata Size: 93KB - Virtual size: 116KB

.data Size: 108KB - Virtual size: 107KB

.rsrc Size: 9KB - Virtual size: 8KB

.text
Size: 467KB - Virtual size: 467KB

.rdata
Size: 93KB - Virtual size: 116KB

.data
Size: 108KB - Virtual size: 107KB

.rsrc
Size: 9KB - Virtual size: 8KB