ba2c51723c0153339ec7397a1510ff32_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

ba2c51723c0153339ec7397a1510ff32_JaffaCakes118
Size

420KB
MD5

ba2c51723c0153339ec7397a1510ff32
SHA1

3a4d4c298e2576ffacabf6a72e8e1007be5ad4c7
SHA256

a48d2dab5c7378dde0a6c356450750053c1504e2cc4477d147567f9910fabfe2
SHA512

e76f99fb4604470caaabe92c0ed40e3eacc21c6a241cca3745c5fbb07b1091ac58b163798e4cae56c398284476cf3953ea7a434a636f8ece8e6585356f03aeee
SSDEEP

6144:jCKsWUa8jxEbYSd2ou2Q8zaayvl7DMM8S13UgxUIUBtL26C3MGEK+BpfHc8:jCKWa8j6J8oS5X7DMM8WU/NtLlUMGEU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ba2c51723c0153339ec7397a1510ff32_JaffaCakes118

Files

ba2c51723c0153339ec7397a1510ff32_JaffaCakes118
.exe windows:4 windows x86 arch:x86

02d11c4a8a45eb21e891980fcead0a4a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

HttpEndRequestA
UnlockUrlCacheEntryFileA
FtpPutFileA
FtpFindFirstFileW
InternetSetDialStateA
UpdateUrlCacheContentPath
GetUrlCacheEntryInfoExA
InternetDialW
InternetSetOptionA

gdi32

MoveToEx
CreateMetaFileW
RestoreDC

shell32

SheChangeDirA

user32

EndDialog
MessageBeep
LookupIconIdFromDirectory
RegisterClassExA
RegisterClassA
GetMenuStringA
RegisterHotKey

kernel32

RtlUnwind
GetConsoleMode
WriteFile
GetProcessHeap
CreateThread
GetTimeZoneInformation
GetLocaleInfoW
LocalCompact
IsDebuggerPresent
InitializeCriticalSection
WriteConsoleA
InterlockedDecrement
GetProcAddress
GetStdHandle
GetCurrentProcessId
TlsAlloc
GetLastError
VirtualAlloc
CompareStringA
OpenEventW
GetFullPathNameW
UnlockFileEx
GetOEMCP
WriteConsoleW
CloseHandle
EnterCriticalSection
QueryPerformanceCounter
EnumSystemLocalesA
Sleep
GetStringTypeA
OpenFileMappingW
LCMapStringA
SetHandleCount
TlsGetValue
IsValidLocale
GetUserDefaultLCID
LCMapStringW
GetTickCount
FreeEnvironmentStringsA
DeleteCriticalSection
SetFilePointer
GetCurrentThreadId
HeapFree
VirtualQuery
GetModuleFileNameW
ExitThread
GetCurrentThread
LocalFlags
GetStringTypeW
IsValidCodePage
GetModuleHandleA
FlushFileBuffers
GetStartupInfoA
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
GetLocaleInfoA
SetLastError
SetConsoleOutputCP
CreateMutexA
WaitNamedPipeW
FreeLibrary
LeaveCriticalSection
ResetEvent
HeapReAlloc
UnhandledExceptionFilter
GetTimeFormatA
GetModuleFileNameA
LoadLibraryA
GetConsoleCP
GetEnvironmentStringsW
VirtualFree
FreeEnvironmentStringsW
GetDateFormatA
GlobalFlags
InterlockedIncrement
CompareStringW
HeapAlloc
SetConsoleTextAttribute
InterlockedExchange
TerminateProcess
GetCurrentProcess
GetStartupInfoW
HeapDestroy
ExitProcess
TlsSetValue
GetFileSize
GetCPInfo
ReadFile
GetEnvironmentStrings
MultiByteToWideChar
CreateFileA
IsBadReadPtr
TlsFree
GetFileType
OpenMutexA
SetConsoleCtrlHandler
HeapSize
WideCharToMultiByte
GetCommandLineA
GetVersionExA
LocalUnlock
GetConsoleOutputCP
HeapCreate
SetStdHandle
GetCommandLineW
SetEnvironmentVariableA
GetACP

advapi32

CryptEnumProvidersW
LogonUserW
CryptEnumProviderTypesA
AbortSystemShutdownA
RegQueryValueA
CryptCreateHash
RegEnumValueW
StartServiceA
RegQueryInfoKeyW
CryptDestroyHash
RegNotifyChangeKeyValue
ReportEventA

comctl32

InitCommonControlsEx

Sections

.text
Size: 273KB - Virtual size: 273KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 33KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 98KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

02d11c4a8a45eb21e891980fcead0a4a

Headers

File Characteristics

Imports

wininet

gdi32

shell32

user32

kernel32

advapi32

comctl32

Sections

.text Size: 273KB - Virtual size: 273KB

.rdata Size: 33KB - Virtual size: 44KB

.data Size: 98KB - Virtual size: 97KB

.rsrc Size: 14KB - Virtual size: 13KB

.text
Size: 273KB - Virtual size: 273KB

.rdata
Size: 33KB - Virtual size: 44KB

.data
Size: 98KB - Virtual size: 97KB

.rsrc
Size: 14KB - Virtual size: 13KB