b8ee034d4476e3f340593b26d015aaba_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b8ee034d4476e3f340593b26d015aaba_JaffaCakes118
Size

336KB
MD5

b8ee034d4476e3f340593b26d015aaba
SHA1

f10ad6db059692a7dd2d189cee252bb90588479b
SHA256

7394b44c2a918e86420436c6f8176fc69b89e6c6e10ccbbbccda6fafa39487de
SHA512

c3a359f83d37c5e3e55af06d9de8ddbc8a8833deadb2eca84b4f45de4cf3953544b6373aea546d862256d93043cb4f697ec8758b072e030ddbc3b9df1c2e6749
SSDEEP

6144:ZI3jAP0js9rtduRpvJukepJ9Hmust5N2XA9yCbFXlbgoV8Tyslv1XMiG0+nANinI:ZI0GAi9yCbd+ekNXMiGZ43Ofse1pPO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b8ee034d4476e3f340593b26d015aaba_JaffaCakes118

Files

b8ee034d4476e3f340593b26d015aaba_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6fedd06f6febea11c32a0df5cc66d566

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_Remove
DestroyPropertySheetPage
DrawStatusTextW
InitCommonControlsEx
ImageList_DragMove
ImageList_SetFlags
ImageList_Read
ImageList_GetFlags
CreateUpDownControl
ImageList_Draw
ImageList_BeginDrag
CreatePropertySheetPage
CreatePropertySheetPageA
ImageList_SetIconSize
ImageList_SetImageCount
ImageList_GetImageCount
ImageList_GetBkColor
ImageList_Add
ImageList_ReplaceIcon
CreateStatusWindow
ImageList_SetDragCursorImage

wininet

InternetSetCookieW
InternetSetOptionExA

user32

WINNLSEnableIME
FreeDDElParam
CopyImage
SetMenuDefaultItem
BroadcastSystemMessageA
DispatchMessageA
GetTopWindow
LoadMenuIndirectA
DrawTextExA
GetWindowTextLengthA
DialogBoxIndirectParamW
UnregisterClassA
HideCaret
MessageBoxA
FillRect
CharUpperA
ShowWindow
GetScrollPos
GetClipboardSequenceNumber
CreateWindowExW
CharUpperBuffA
DefWindowProcW
EnumWindowStationsW
TranslateAccelerator
PaintDesktop
SendIMEMessageExW
WinHelpW
OemToCharA
CallWindowProcW
GetQueueStatus
LoadCursorFromFileA
GetMenuItemCount
IsCharUpperA
SetActiveWindow
SwitchDesktop
LoadMenuIndirectW
DestroyWindow
BroadcastSystemMessageW
GetGuiResources
DrawFocusRect
DdeReconnect
IsWindowVisible
GetForegroundWindow
ChangeDisplaySettingsW
TranslateAcceleratorW
RegisterClassExA
GetClassWord
RegisterClassA
IsChild
EndDeferWindowPos
GetDlgItemInt
EnumDisplaySettingsW
MessageBoxExA

shell32

SHEmptyRecycleBinA

comdlg32

PageSetupDlgW
ChooseColorA
GetSaveFileNameW
PageSetupDlgA

kernel32

CloseHandle
CompareStringW
GetLastError
WideCharToMultiByte
HeapValidate
SetLastError
GetPrivateProfileSectionNamesA
GetConsoleCursorInfo
GetSystemTimeAsFileTime
HeapCreate
GetCPInfo
HeapAlloc
GetCurrentThread
GetSystemTime
GetCommandLineW
GetStringTypeA
GetFileType
GetVersion
GetStringTypeW
GetStartupInfoW
GetCommandLineA
GetStdHandle
TlsAlloc
DeleteCriticalSection
GetCurrentThreadId
VirtualFree
GetModuleFileNameA
WriteFile
TlsFree
FreeEnvironmentStringsA
GetTickCount
GetTempPathA
InterlockedExchange
InterlockedIncrement
GetLocalTime
LCMapStringA
LoadLibraryA
GetCurrentProcessId
InitializeCriticalSection
SetHandleCount
TlsSetValue
QueryPerformanceCounter
LCMapStringW
UnhandledExceptionFilter
GetProcAddress
HeapDestroy
CreateMutexA
VirtualAlloc
LeaveCriticalSection
TlsGetValue
GetPrivateProfileSectionW
TerminateProcess
GetStartupInfoA
GetEnvironmentStrings
CompareStringA
GetModuleHandleA
SetFilePointer
HeapFree
CreateRemoteThread
GetFileAttributesA
RtlUnwind
GetPrivateProfileStructW
SetEnvironmentVariableA
EnterCriticalSection
IsBadWritePtr
GetTimeZoneInformation
SetWaitableTimer
FreeEnvironmentStringsW
GetEnvironmentStringsW
FillConsoleOutputCharacterA
GetCurrentProcess
MultiByteToWideChar
VirtualQuery
ExitProcess
FlushFileBuffers
SetStdHandle
ReadFile
GetModuleFileNameW
InterlockedDecrement
OpenMutexA
EnumResourceTypesA
HeapReAlloc

Sections

.text
Size: 148KB - Virtual size: 145KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6fedd06f6febea11c32a0df5cc66d566

Headers

File Characteristics

Imports

comctl32

wininet

user32

shell32

comdlg32

kernel32

Sections

.text Size: 148KB - Virtual size: 145KB

.rdata Size: 68KB - Virtual size: 66KB

.data Size: 92KB - Virtual size: 110KB

.rsrc Size: 24KB - Virtual size: 20KB

.text
Size: 148KB - Virtual size: 145KB

.rdata
Size: 68KB - Virtual size: 66KB

.data
Size: 92KB - Virtual size: 110KB

.rsrc
Size: 24KB - Virtual size: 20KB