b81b1a0082ca70e76dc30524e9fa473d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b81b1a0082ca70e76dc30524e9fa473d_JaffaCakes118
Size

329KB
MD5

b81b1a0082ca70e76dc30524e9fa473d
SHA1

e01a3f1b057eb74e895adfae666c62a1613b312e
SHA256

a8c43629eab6b9cdf22c9653c6131aaf7dfc241b70c11bca5a36fbd350aa3783
SHA512

134f73886dd27713e0b5b6c6aa97b03cc9874c7d51b360528d511d85122e7712ef54d87ee4151a644bad7a0454bb708fce34fbab482a232e6b267e67aa6976d9
SSDEEP

6144:R8IBz4RZLJlkBrlDy7mlWu8QbqrKJNTB9l7NAOxS6zo4oJ7We0zow:Rd4TkBr6M8QFTLl7N+6zoB7P0zo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b81b1a0082ca70e76dc30524e9fa473d_JaffaCakes118

Files

b81b1a0082ca70e76dc30524e9fa473d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

eb3b2e177bb9de16e0b61aa7a7997228

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

PostQueuedCompletionStatus
GetModuleFileNameW
GetModuleHandleW
CreateFileMappingW
GetShortPathNameW
MoveFileWithProgressW
GetFileType
SetFileValidData
SetFilePointer
GetTempPathW
LockFileEx
SystemTimeToFileTime
GetSystemTime
ReadFileScatter
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
GetFileAttributesW
CreateIoCompletionPort
GetFileAttributesExW
SetFilePointerEx
UnmapViewOfFile
GetBinaryTypeW
ReadFileEx
OpenFileMappingW
LockFile
GetFileSize
CreateFileA
SetEndOfFile
MapViewOfFileEx
SetFileApisToOEM
GetModuleFileNameA
GetLongPathNameW
CreateHardLinkW
GetFileInformationByHandle
SetFileTime
FlushFileBuffers
GetCompressedFileSizeW
TerminateProcess
Sleep
AreFileApisANSI
GetTempFileNameW
GetProcAddress
UnlockFile
SetFileShortNameW
SetFileApisToANSI
FlushViewOfFile
CopyFileExW
WinExec
WriteFileEx
DeleteFileW
SearchPathA
GetShortPathNameA
DeleteFileA
MoveFileExW
GetSystemDirectoryW
ReplaceFileW
ExitProcess
WideCharToMultiByte
Process32NextW
Process32FirstW
CreateToolhelp32Snapshot
MultiByteToWideChar
GetLastError
CreateMutexW
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
GetLocaleInfoA
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
WriteFileGather
GetFullPathNameW
GetTickCount
GetFileSizeEx
FindFirstFileW
FindNextFileW
CopyFileW
MapViewOfFile
MoveFileW
CloseHandle
ReadFile
SearchPathW
UnlockFileEx
CancelIo
WriteFile
GetFileTime
CreateFileW
FindFirstFileExW
FindClose
GetQueuedCompletionStatus
LoadLibraryA
SetFileAttributesW
GetCommandLineW
GetCommandLineA
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
RaiseException
GetStartupInfoA
SetHandleCount
GetConsoleMode
GetConsoleCP
HeapSize
GetStdHandle
HeapAlloc
HeapFree
RtlUnwind
ExitThread
ResumeThread
CreateThread
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetVersionExA
GetProcessHeap
GetStartupInfoW
GetModuleHandleA
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
InterlockedIncrement
SetLastError
GetCurrentThreadId
InterlockedDecrement
GetCurrentProcess
IsDebuggerPresent
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
VirtualFree
VirtualAlloc
HeapReAlloc
HeapDestroy
HeapCreate

user32

GetClientRect
GetWindowDC
ReleaseDC
GetDesktopWindow
GetWindowRect
CreateWindowExW
DrawTextW
UpdateWindow
GetDC
GetWindowTextW
RegisterClassExW
ShowWindow
LoadCursorW
SetTimer
GetMessageW
TranslateMessage
DispatchMessageW
UnregisterClassW
DefWindowProcW
KillTimer
PostQuitMessage
BeginPaint
EndPaint

gdi32

SetBkMode
SetTextColor
CreateCompatibleBitmap
CreateCompatibleDC
BitBlt
GetDIBits
DeleteDC
CreatePen
SelectObject
CreateSolidBrush
Rectangle
DeleteObject
SetDIBitsToDevice
CreateFontW

advapi32

RegQueryValueExW
RegOpenKeyExW
RegSetValueExW
RegCloseKey
SetFileSecurityW
RegCreateKeyExW

shell32

SHGetFolderPathA

rpcrt4

UuidCreate
RpcStringFreeW
UuidToStringW

wininet

InternetReadFile
HttpSendRequestW
HttpOpenRequestW
InternetConnectW
InternetOpenW
InternetCrackUrlW
InternetCloseHandle

Sections

.text
Size: 215KB - Virtual size: 214KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 52KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

eb3b2e177bb9de16e0b61aa7a7997228

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

rpcrt4

wininet

Sections

.text Size: 215KB - Virtual size: 214KB

.rdata Size: 52KB - Virtual size: 52KB

.data Size: 60KB - Virtual size: 68KB

.rsrc Size: 512B - Virtual size: 16B

.text
Size: 215KB - Virtual size: 214KB

.rdata
Size: 52KB - Virtual size: 52KB

.data
Size: 60KB - Virtual size: 68KB

.rsrc
Size: 512B - Virtual size: 16B