b4d0f459a1a0055fb820ffdf138c4f7d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b4d0f459a1a0055fb820ffdf138c4f7d_JaffaCakes118
Size

349KB
MD5

b4d0f459a1a0055fb820ffdf138c4f7d
SHA1

805044f794f81c15da06b327ff2862dc5938684d
SHA256

74f6c2f83318dbca521ce59d0b32f8be3b4ebe26975133669c057df755a583bd
SHA512

82e721b35145ffeb9a5484e507023cd8929a1ad47d051258d21e3400db1c6c29c275f7a95fcca9aa83dfb29111c5afb6966029f3e826e5abf32b859af311c8ce
SSDEEP

6144:Jhmn/gaQ3DadsnnUl66h/CbbfTBXl7IAOppV7Xe:Jh47CxnnUg6h/CbjTRl7IJF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b4d0f459a1a0055fb820ffdf138c4f7d_JaffaCakes118

Files

b4d0f459a1a0055fb820ffdf138c4f7d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a7b9b9da58a5dafdb6a3b18d3e7e8eac

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindResourceA
WinExec
CreateJobObjectW
GetFileSize
CreateFileA
GetModuleFileNameA
GetModuleHandleA
LoadLibraryExW
TerminateProcess
Sleep
GetSystemDirectoryW
WideCharToMultiByte
ExitProcess
DeleteFileW
SearchPathA
GetShortPathNameA
MultiByteToWideChar
GetLastError
CreateMutexW
SearchPathW
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
GetCommandLineW
GetCommandLineA
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GetSystemTime
SystemTimeToFileTime
LoadResource
ReadFile
GetProcAddress
GetTickCount
GetModuleHandleW
SizeofResource
CreateFileW
CloseHandle
WriteFile
LoadLibraryA
GetShortPathNameW
GetModuleFileNameW
AllocateUserPhysicalPages
LockResource
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
SetHandleCount
SetFilePointer
FlushFileBuffers
GetConsoleMode
GetConsoleCP
HeapSize
GetStdHandle
HeapAlloc
HeapFree
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
RaiseException
RtlUnwind
ExitThread
ResumeThread
CreateThread
GetVersionExA
GetProcessHeap
GetStartupInfoW
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
VirtualFree
VirtualAlloc
HeapReAlloc
HeapDestroy
HeapCreate

user32

GetWindowLongA
DialogBoxParamW
SetWindowLongW
ShowWindow
UpdateWindow
GetWindowRect
SetDlgItemTextA
GetDC
SetTimer
UnregisterClassW
DefWindowProcW
KillTimer
BeginPaint
EndPaint
PostQuitMessage
CreateWindowExW
GetClientRect
GetMessageW
TranslateMessage
DispatchMessageW
DrawTextW
GetWindowDC
ReleaseDC
CreateWindowExA
GetDesktopWindow

gdi32

SetBkMode
SetTextColor
CreateCompatibleBitmap
CreateCompatibleDC
BitBlt
GetDIBits
DeleteDC
CreatePen
SelectObject
CreateSolidBrush
Rectangle
DeleteObject
SetDIBitsToDevice
CreateFontW

advapi32

RegOpenKeyExW
RegCloseKey
RegCreateKeyExW
RegSetValueExW
RegQueryValueExW

shell32

SHGetFolderPathA

rpcrt4

UuidCreate
RpcStringFreeW
UuidToStringW

wininet

InternetReadFile
HttpSendRequestW
HttpOpenRequestW
InternetConnectW
InternetOpenW
InternetCrackUrlW
InternetCloseHandle

Sections

.text
Size: 255KB - Virtual size: 254KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 41KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a7b9b9da58a5dafdb6a3b18d3e7e8eac

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

rpcrt4

wininet

Sections

.text Size: 255KB - Virtual size: 254KB

.rdata Size: 52KB - Virtual size: 51KB

.data Size: 41KB - Virtual size: 49KB

.rsrc Size: 512B - Virtual size: 16B

.text
Size: 255KB - Virtual size: 254KB

.rdata
Size: 52KB - Virtual size: 51KB

.data
Size: 41KB - Virtual size: 49KB

.rsrc
Size: 512B - Virtual size: 16B