b1e39dbc549bf533b4ab95d09460cefd_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b1e39dbc549bf533b4ab95d09460cefd_JaffaCakes118
Size

479KB
MD5

b1e39dbc549bf533b4ab95d09460cefd
SHA1

d66c7f0da8ec406b2424ff01ce8a01733bc3739c
SHA256

dd8a4e438f3df4484a84ff5a12176c3d223534e34b6af7b5b5f25c3882b32123
SHA512

06bb7c7568a4e8efdc0ad2032152436acc69dd444a4da85d7d515425d5ccc6e0e05a2c91dd92993eddc9c1632e414e560fd91d9de4c1dbc5e216df5115f794ff
SSDEEP

12288:BpD17nxkidg4xAI/PE2cU88TYGflj5/WB2XJKhf1:BF1buiqs7/lNzV/7JKf1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b1e39dbc549bf533b4ab95d09460cefd_JaffaCakes118

Files

b1e39dbc549bf533b4ab95d09460cefd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

de7d3668d2e7cc5075084cd0a11206d7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

LookupPrivilegeDisplayNameA
RegRestoreKeyW
RegCreateKeyExW
LookupAccountNameW
LogonUserW

gdi32

CreateScalableFontResourceA
SetICMProfileA
GetOutlineTextMetricsA
CreateEllipticRgn
SetICMProfileW
PathToRegion
ChoosePixelFormat
Arc
StartPage
SetBkColor
ScaleViewportExtEx
ExtCreateRegion
SetArcDirection
MaskBlt
CloseFigure
SetBitmapDimensionEx

wininet

HttpEndRequestW
InternetCombineUrlA
GopherGetAttributeA
InternetConnectA
InternetCanonicalizeUrlA
GopherCreateLocatorA
InternetConnectW

kernel32

GetVersionExA
SetHandleCount
WritePrivateProfileStringW
GetVersionExW
CompareStringW
GetSystemInfo
GetLogicalDrives
SetLastError
IsValidLocale
IsBadWritePtr
GetTickCount
WriteFile
GetLocaleInfoA
GetCurrentThreadId
HeapSize
GetModuleFileNameA
DeleteFileW
GetModuleFileNameW
HeapLock
EnumResourceNamesA
OutputDebugStringW
GetSystemTimeAdjustment
WideCharToMultiByte
FreeEnvironmentStringsA
FlushFileBuffers
RtlUnwind
CompareStringA
LCMapStringW
GetPrivateProfileSectionNamesW
WriteConsoleInputW
GetTimeFormatA
GetLastError
GetUserDefaultLCID
GetEnvironmentStrings
GetModuleHandleA
GetCommandLineA
TerminateProcess
IsValidCodePage
GetStringTypeW
QueryPerformanceCounter
EnterCriticalSection
GetEnvironmentStringsW
SetFilePointer
SetStdHandle
TlsGetValue
GetCommandLineW
VirtualProtect
GetStartupInfoW
CloseHandle
InitializeCriticalSectionAndSpinCount
TlsSetValue
GetCurrentProcess
ReadFile
CreateMutexA
FreeEnvironmentStringsW
EnumSystemLocalesA
GetSystemTimeAsFileTime
GetAtomNameA
GetCurrentThread
HeapReAlloc
InterlockedExchange
MultiByteToWideChar
LoadLibraryA
CreateFileMappingW
HeapAlloc
InitializeCriticalSection
LCMapStringA
GetLocaleInfoW
VirtualQuery
GetStdHandle
GetDateFormatA
UnlockFile
GetThreadLocale
GetACP
GetTimeZoneInformation
GetProcAddress
ExitProcess
GetCurrentProcessId
HeapCreate
GetStringTypeA
LeaveCriticalSection
HeapDestroy
SetConsoleCursorPosition
TlsFree
SetEnvironmentVariableA
CreateEventA
CreateDirectoryW
GetFileType
UnhandledExceptionFilter
OpenMutexA
GlobalFindAtomA
TlsAlloc
GetStartupInfoA
HeapFree
DeleteCriticalSection
VirtualFree
GetDiskFreeSpaceA
GetOEMCP
VirtualAlloc
GetCPInfo

shell32

SHInvokePrinterCommandA

comctl32

InitCommonControlsEx

user32

RegisterClassExA
EnumThreadWindows
RegisterClassA
BroadcastSystemMessageW
MapVirtualKeyA
GetMessagePos
DdeImpersonateClient

Sections

.text
Size: 150KB - Virtual size: 150KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 311KB - Virtual size: 311KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

de7d3668d2e7cc5075084cd0a11206d7

Headers

File Characteristics

Imports

advapi32

gdi32

wininet

kernel32

shell32

comctl32

user32

Sections

.text Size: 150KB - Virtual size: 150KB

.rdata Size: 9KB - Virtual size: 35KB

.data Size: 311KB - Virtual size: 311KB

.rsrc Size: 7KB - Virtual size: 6KB

.text
Size: 150KB - Virtual size: 150KB

.rdata
Size: 9KB - Virtual size: 35KB

.data
Size: 311KB - Virtual size: 311KB

.rsrc
Size: 7KB - Virtual size: 6KB