b9b0bf7072758a7a3dcdc368d85e49be_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b9b0bf7072758a7a3dcdc368d85e49be_JaffaCakes118
Size

360KB
MD5

b9b0bf7072758a7a3dcdc368d85e49be
SHA1

da17a1445b0d7a22ecf070ea5480cd5933b30b47
SHA256

ba5d70ec04c55cd58f8092a00b246b8c825886d0d190b746b8040aad322948b1
SHA512

2e04f62616828044ab44b621965a71b44e7f9fde3f8c563b0c47c318a1cc95d93358c1c4466e35f8de8ccb2c8f11771645902496220ae91178e4617032b26860
SSDEEP

6144:/Z/TmwxfL8d/lZBVMSsMqFcS0nv2WOY5tWv:/ZdL85lZB+LhGv2WOS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b9b0bf7072758a7a3dcdc368d85e49be_JaffaCakes118

Files

b9b0bf7072758a7a3dcdc368d85e49be_JaffaCakes118
.exe windows:4 windows x86 arch:x86

66cf6ef56d037e66f0871240cee8bb14

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

DrawInsert
CreatePropertySheetPageW
ImageList_Copy
ImageList_Read
ImageList_SetDragCursorImage
DrawStatusText
ImageList_GetBkColor
ImageList_Create
ImageList_ReplaceIcon
InitMUILanguage
CreateMappedBitmap
GetEffectiveClientRect
ImageList_EndDrag
ImageList_GetIconSize
CreatePropertySheetPage
InitCommonControlsEx
ImageList_Remove
ImageList_AddMasked
ImageList_SetOverlayImage
ImageList_SetFilter
ImageList_GetImageRect

kernel32

HeapValidate
GetCurrentProcess
GetConsoleTitleW
GetLogicalDriveStringsW
GetSystemTimeAsFileTime
FindAtomW
GetEnvironmentStrings
SetLastError
HeapDestroy
GetProfileStringW
VirtualFree
GlobalFree
GetPrivateProfileIntA
SetEnvironmentVariableA
EnumDateFormatsExW
MultiByteToWideChar
GetFileAttributesExW
WaitForSingleObject
GetFileType
SetCriticalSectionSpinCount
WritePrivateProfileStringW
WriteConsoleOutputW
GlobalGetAtomNameW
VirtualQuery
GetLocalTime
FindFirstFileExA
lstrcat
GetOEMCP
TlsGetValue
GetProcAddress
GetLastError
SetEnvironmentVariableW
lstrcmpA
GetACP
GetStartupInfoA
GetTimeZoneInformation
GetModuleFileNameA
GetCPInfo
HeapAlloc
GetCurrentProcessId
Sleep
DebugBreak
LocalReAlloc
InterlockedExchange
QueryPerformanceCounter
InterlockedIncrement
UnhandledExceptionFilter
TlsAlloc
IsValidCodePage
GlobalFindAtomW
WideCharToMultiByte
GetSystemTimeAdjustment
CreateDirectoryExW
OpenSemaphoreW
GetModuleHandleA
GetProfileIntA
GetTickCount
GetCompressedFileSizeA
InterlockedDecrement
GetComputerNameA
GetFullPathNameW
FreeEnvironmentStringsA
SetConsoleCP
CreateEventW
GetDateFormatA
CompareStringW
SetStdHandle
OpenProcess
SetFilePointer
RtlUnwind
IsValidLocale
DeleteFileA
OpenMutexA
TlsSetValue
LocalSize
CreateSemaphoreA
GetEnvironmentStringsW
GlobalLock
UnmapViewOfFile
HeapCreate
GetCurrentThread
LeaveCriticalSection
GetSystemTime
ReadFile
GetThreadPriority
GetComputerNameW
GetThreadLocale
FreeEnvironmentStringsW
CloseHandle
GetProfileIntW
DeleteCriticalSection
HeapFree
VirtualAlloc
InitializeCriticalSection
EnumCalendarInfoExA
EnumResourceTypesW
LoadLibraryA
EnumResourceNamesW
IsBadWritePtr
HeapLock
OutputDebugStringA
GetVersion
TlsFree
IsBadReadPtr
GetStringTypeA
LCMapStringW
WaitForMultipleObjectsEx
ExitProcess
HeapSize
FlushFileBuffers
WriteFile
SetConsoleCursorPosition
LCMapStringA
GetCurrentThreadId
HeapReAlloc
GetFullPathNameA
CreateMutexA
VirtualProtectEx
GetStringTypeW
TerminateProcess
GetCommandLineA
GetWindowsDirectoryW
SetHandleCount
GetStdHandle
ReadFileEx
GetCurrentDirectoryA
InitializeCriticalSectionAndSpinCount
GlobalReAlloc
GetCompressedFileSizeW
UnlockFile
SetPriorityClass
CompareStringA
ReadConsoleOutputCharacterW
SetConsoleCtrlHandler
EnterCriticalSection
WaitNamedPipeA

user32

InflateRect
TrackPopupMenu
MessageBoxW
SetCursorPos
ShowWindow
ChildWindowFromPoint
DrawMenuBar
GetClipboardOwner
IsRectEmpty
DrawAnimatedRects
LoadIconW
WaitMessage
SetMenu
FlashWindowEx
CreateDialogIndirectParamW
DefWindowProcW
DestroyWindow
SendMessageTimeoutW
RegisterClassA
GetScrollInfo
CreateWindowExA
InternalGetWindowText
BlockInput
RegisterClassExA
SetThreadDesktop
DdeInitializeW
CopyAcceleratorTableW

wininet

InternetCheckConnectionW
ShowCertificate

Sections

.text
Size: 136KB - Virtual size: 134KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 76KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 52KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

66cf6ef56d037e66f0871240cee8bb14

Headers

File Characteristics

Imports

comctl32

kernel32

user32

wininet

Sections

.text Size: 136KB - Virtual size: 134KB

.rdata Size: 76KB - Virtual size: 72KB

.data Size: 92KB - Virtual size: 110KB

.rsrc Size: 52KB - Virtual size: 48KB

.text
Size: 136KB - Virtual size: 134KB

.rdata
Size: 76KB - Virtual size: 72KB

.data
Size: 92KB - Virtual size: 110KB

.rsrc
Size: 52KB - Virtual size: 48KB