a8ff7d3f158bb7f3129bb33a12a16bcb_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a8ff7d3f158bb7f3129bb33a12a16bcb_JaffaCakes118
Size

446KB
MD5

a8ff7d3f158bb7f3129bb33a12a16bcb
SHA1

22a83b9ac0db7fe9dc45edf7d54b2d00c93c2d56
SHA256

99ffe80ef5b1669a327e550611f3ca197bdc3ff40eab141c8feac59100b07783
SHA512

06cba028502f4a75b29f2eaadd9cacf4f417d3a9fee4ba38f2ca2216c166bd6db1d3be0db24ef8ff8d5bab37a303a6f291e8a2a51850383d0bfbeb7e442a5c54
SSDEEP

6144:5brJf5yjTdiqIKAT9woAQNHkzsF2C/1eRr9g5e9K8hMM5xKs/AFL:5/55ITdi0QzFHkzI1eRr0e9VhM2x4F

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a8ff7d3f158bb7f3129bb33a12a16bcb_JaffaCakes118

Files

a8ff7d3f158bb7f3129bb33a12a16bcb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5ba8b03220f0cb8ba142a6df23f17426

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

FindFirstUrlCacheContainerW
RetrieveUrlCacheEntryStreamW
UpdateUrlCacheContentPath
FtpPutFileW
IncrementUrlCacheHeaderData
GetUrlCacheEntryInfoA
HttpSendRequestW
InternetCheckConnectionA
GetUrlCacheEntryInfoExA

kernel32

WideCharToMultiByte
GetVersionExA
SetLastError
GetEnvironmentStrings
HeapCreate
TransmitCommChar
GetDiskFreeSpaceW
FreeEnvironmentStringsW
GetLocaleInfoA
HeapAlloc
GetModuleFileNameA
GetOEMCP
FlushInstructionCache
GetFileSize
VirtualFree
CreateMailslotA
GetLastError
ReleaseMutex
SetUnhandledExceptionFilter
GetProcessHeap
Sleep
TerminateProcess
CompareStringA
GetTimeFormatA
LCMapStringA
InitializeCriticalSection
VirtualQuery
GetDateFormatA
GetUserDefaultLCID
GetACP
TlsGetValue
GetModuleHandleA
LoadLibraryA
RtlUnwind
FindNextFileA
LCMapStringW
VirtualAlloc
LoadModule
InterlockedDecrement
QueryPerformanceCounter
GetCurrentProcess
GetCurrentProcessId
VirtualAllocEx
CreateSemaphoreW
FreeEnvironmentStringsA
InterlockedExchange
TlsFree
GetProcAddress
GetEnvironmentStringsW
GetProfileIntA
TlsAlloc
GetTimeZoneInformation
InterlockedIncrement
GetCurrentThread
CompareStringW
ReadConsoleOutputCharacterW
GetFileType
GetStringTypeW
EnterCriticalSection
IsDebuggerPresent
IsValidCodePage
HeapSize
GetStartupInfoA
GetStringTypeA
GetCPInfo
HeapReAlloc
ReadFile
HeapDestroy
MultiByteToWideChar
GetThreadTimes
SetConsoleCtrlHandler
CreateNamedPipeW
FreeLibrary
GetCurrentThreadId
LeaveCriticalSection
TlsSetValue
GetStartupInfoW
GetStdHandle
GetStringTypeExA
UnhandledExceptionFilter
WriteFile
GetSystemTimeAsFileTime
IsValidLocale
ExitProcess
ReadConsoleInputA
DeleteCriticalSection
SetEnvironmentVariableA
SetHandleCount
GetCommandLineA
GetTickCount
GetModuleFileNameW
GetNamedPipeHandleStateW
GlobalLock
HeapFree
FoldStringW
GetCommandLineW
EnumSystemLocalesA
GetLocaleInfoW

user32

DlgDirListComboBoxW
SetRectEmpty
EnumDisplayMonitors
TranslateAccelerator
IsZoomed
ShowCursor
IsWindowEnabled
GetMenuItemCount
EnumDisplayDevicesW

shell32

CommandLineToArgvW

gdi32

Escape
StrokePath
GetBitmapBits
DeleteObject
AnimatePalette
ExtTextOutW
ModifyWorldTransform
GetFontData
SetMetaFileBitsEx
GetViewportExtEx
SelectClipRgn
EnumFontFamiliesA
GetTextMetricsA
GetSystemPaletteEntries
SetFontEnumeration
CreatePalette
CreateDIBPatternBrush
GetPolyFillMode
SetBkColor

comdlg32

GetOpenFileNameW
ChooseColorW
FindTextW
LoadAlterBitmap

Sections

.text
Size: 139KB - Virtual size: 139KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 286KB - Virtual size: 285KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5ba8b03220f0cb8ba142a6df23f17426

Headers

File Characteristics

Imports

wininet

kernel32

user32

shell32

gdi32

comdlg32

Sections

.text Size: 139KB - Virtual size: 139KB

.rdata Size: 9KB - Virtual size: 13KB

.data Size: 286KB - Virtual size: 285KB

.rsrc Size: 10KB - Virtual size: 10KB

.text
Size: 139KB - Virtual size: 139KB

.rdata
Size: 9KB - Virtual size: 13KB

.data
Size: 286KB - Virtual size: 285KB

.rsrc
Size: 10KB - Virtual size: 10KB