acf4246c5353d59d1b3e53271066768f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

acf4246c5353d59d1b3e53271066768f_JaffaCakes118
Size

251KB
MD5

acf4246c5353d59d1b3e53271066768f
SHA1

f02074859d086df4fafd9ca818cccab6f1eddb5a
SHA256

b376d142d200f3491924b734a31ea550b01859878e6876beb91e53e88a634614
SHA512

ee39890d91ec4e257e28b32ded57a037e72a666f016a25d7154c0969fba75bd963765e36a129c79811df4239532f3288ad0dfb77b1da89d753fd00d4deac85c0
SSDEEP

6144:SRSsIBzFqZlz+ECNVgErG17KOoQCpmt1SLBRdVjLBOm:mdoc7KDLBnVj0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
acf4246c5353d59d1b3e53271066768f_JaffaCakes118

Files

acf4246c5353d59d1b3e53271066768f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e12da86f11f5cc8c9346240e4936a724

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

FindTextW

wininet

InternetShowSecurityInfoByURL
UrlZonesDetach
GopherGetAttributeA
SetUrlCacheEntryGroupA
HttpOpenRequestW
InternetWriteFileExW
HttpQueryInfoW
FindFirstUrlCacheEntryA

kernel32

GetProcAddress
WriteProfileSectionW
GetTimeFormatA
WideCharToMultiByte
GetEnvironmentStringsW
TlsSetValue
GetModuleHandleA
ExitProcess
EnumCalendarInfoW
VirtualProtect
QueryPerformanceCounter
GetFileType
LoadLibraryA
IsValidLocale
GetLocaleInfoW
HeapAlloc
HeapFree
IsValidCodePage
CompareStringW
HeapReAlloc
GetStringTypeW
GetModuleFileNameA
TlsGetValue
HeapDestroy
EnterCriticalSection
GetCurrentThread
EnumSystemLocalesA
GetCurrentProcessId
InterlockedExchange
DeleteCriticalSection
IsBadWritePtr
GetCommandLineA
SetHandleCount
VirtualAlloc
GetTickCount
GetStdHandle
TerminateProcess
LCMapStringA
GetACP
GetOEMCP
GetDateFormatA
GetSystemInfo
FreeEnvironmentStringsA
CompareStringA
GetLastError
GetUserDefaultLCID
GetLocaleInfoA
SetEnvironmentVariableA
WriteFile
VirtualQuery
GetTimeZoneInformation
GetStringTypeA
TlsAlloc
FormatMessageA
GetCPInfo
HeapSize
VirtualFree
UnhandledExceptionFilter
GetVersionExA
LeaveCriticalSection
LocalReAlloc
GetStartupInfoA
GetCurrentThreadId
InitializeCriticalSection
MultiByteToWideChar
LCMapStringW
GetEnvironmentStrings
GetSystemTimeAsFileTime
RtlUnwind
SetLastError
HeapCreate
FreeEnvironmentStringsW
GetCurrentProcess
TlsFree

Sections

.text
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 135KB - Virtual size: 135KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e12da86f11f5cc8c9346240e4936a724

Headers

File Characteristics

Imports

comdlg32

wininet

kernel32

Sections

.text Size: 100KB - Virtual size: 99KB

.rdata Size: 7KB - Virtual size: 14KB

.data Size: 135KB - Virtual size: 135KB

.rsrc Size: 7KB - Virtual size: 7KB

.text
Size: 100KB - Virtual size: 99KB

.rdata
Size: 7KB - Virtual size: 14KB

.data
Size: 135KB - Virtual size: 135KB

.rsrc
Size: 7KB - Virtual size: 7KB