ac871e94a2b616b845b9d3a2e8992bfa_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

ac871e94a2b616b845b9d3a2e8992bfa_JaffaCakes118
Size

520KB
MD5

ac871e94a2b616b845b9d3a2e8992bfa
SHA1

ad21b626fe17e1f317f3c86233c40879d6284881
SHA256

4ffbbcd2d63772eaeb346d51d5151c07f61b2fd8e99fd4f4256472357044ca52
SHA512

d7660b137741bcf10bcffaf8085d9eaadc94e7e050951d215a64586b651dd88916b8a0c421a429de311898e7a81e750f4c4d8077eb757df0f5aa4d27593786e3
SSDEEP

12288:qHNB3WwmSJhs6RDAIT1a1IwJDLpNAxC+7UlNC:UNFWGf1RLT1jwJvEs7C

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ac871e94a2b616b845b9d3a2e8992bfa_JaffaCakes118

Files

ac871e94a2b616b845b9d3a2e8992bfa_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4dc06dadb73755b6b47e317c770f6b98

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetTextMetricsW
GdiPlayScript
DeleteEnhMetaFile
GetNearestPaletteIndex
SetBkColor
GetClipBox
PtVisible
GetTextExtentPoint32W
GetTextFaceA
GetDIBits
CreateICW
GetTextExtentExPointW
GetTextCharset
EndPage
GetEnhMetaFileDescriptionW
ExtSelectClipRgn
CreateScalableFontResourceW
CreatePolygonRgn

kernel32

VirtualFree
GetEnvironmentStrings
FlushFileBuffers
LoadLibraryA
CreateMutexA
GetCurrentThreadId
GetCurrentProcess
EnumCalendarInfoExW
GetStringTypeA
GetACP
IsBadWritePtr
SetLastError
FormatMessageA
GetStdHandle
GetCurrentThread
ReadFile
ReadFileEx
WriteFileEx
GetCurrentProcessId
DeleteCriticalSection
InterlockedIncrement
GetThreadPriorityBoost
TlsGetValue
MultiByteToWideChar
RtlUnwind
FreeEnvironmentStringsW
GetCPInfo
GetFileType
CompareStringW
TlsAlloc
GetProcAddress
GetCommandLineA
WideCharToMultiByte
QueryPerformanceCounter
GetLocalTime
CloseHandle
SetEnvironmentVariableA
InitializeCriticalSection
GetEnvironmentStringsW
GetTimeZoneInformation
EnumResourceTypesW
GetVersion
UnhandledExceptionFilter
TlsFree
GetEnvironmentStringsA
GetConsoleOutputCP
MoveFileExA
VirtualAlloc
HeapDestroy
GetConsoleScreenBufferInfo
TlsSetValue
LockFileEx
GetStartupInfoA
InterlockedExchangeAdd
LCMapStringA
InterlockedDecrement
ExitProcess
GetModuleFileNameA
GlobalFindAtomW
GetProfileSectionW
EnterCriticalSection
GlobalUnfix
LCMapStringW
GetTickCount
FreeEnvironmentStringsA
SetPriorityClass
SetFilePointer
SetCurrentDirectoryW
HeapCreate
GetSystemTimeAsFileTime
SetHandleCount
lstrlen
VirtualQuery
OpenMutexA
SetStdHandle
HeapFree
GetSystemTime
GetLastError
InterlockedExchange
HeapReAlloc
LeaveCriticalSection
TerminateProcess
GetStringTypeW
HeapAlloc
WriteFile
GetModuleHandleA
FlushConsoleInputBuffer
CompareStringA
GetOEMCP

user32

RegisterClassA
FlashWindow
IsDialogMessageW
RegisterClassExA
CreateDesktopW

comctl32

InitCommonControlsEx

wininet

GopherOpenFileW
DeleteIE3Cache
InternetAlgIdToStringA
SetUrlCacheHeaderData
FtpSetCurrentDirectoryA
InternetDialA
FindFirstUrlCacheEntryA

Sections

.text
Size: 192KB - Virtual size: 191KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 313KB - Virtual size: 312KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4dc06dadb73755b6b47e317c770f6b98

Headers

File Characteristics

Imports

gdi32

kernel32

user32

comctl32

wininet

Sections

.text Size: 192KB - Virtual size: 191KB

.rdata Size: 4KB - Virtual size: 18KB

.data Size: 313KB - Virtual size: 312KB

.rsrc Size: 9KB - Virtual size: 9KB

.text
Size: 192KB - Virtual size: 191KB

.rdata
Size: 4KB - Virtual size: 18KB

.data
Size: 313KB - Virtual size: 312KB

.rsrc
Size: 9KB - Virtual size: 9KB