bb5ce3fde76fbc90373ebdb686b4b169_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

bb5ce3fde76fbc90373ebdb686b4b169_JaffaCakes118
Size

452KB
MD5

bb5ce3fde76fbc90373ebdb686b4b169
SHA1

ead4f736e4e715212615ba02b2309b9d27273711
SHA256

819034ab17ad7f73198e5840549c987ba65eaa0b0953301f4d927903dc9f1a2a
SHA512

0b47e99cef6b6bf5cd50a9fb3b020eb32993f2c4f34747448fe98aba5f66ed69ba3920bda755fe431d4ed20d4233149b3ab7485cbab380e6955e2aa24d5bdb0f
SSDEEP

6144:XQNm59eKwvD4dk2nFKXxBqjiWoX+hENl9xvJGlRsyYJ1Xtpp7A4b3:YmgvD4dk2nFWxEVxhE37BGrs5/b

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bb5ce3fde76fbc90373ebdb686b4b169_JaffaCakes118

Files

bb5ce3fde76fbc90373ebdb686b4b169_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f9b4c9f3cf1888ae35034825ccfff207

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadConsoleInputA
SetConsoleMode
GetConsoleMode
SetLastError
InterlockedExchange
LoadLibraryA
GetSystemDirectoryA
GetWindowsDirectoryA
GetModuleFileNameA
GetModuleHandleA
GetCurrentThreadId
FlushConsoleInputBuffer
GetStdHandle
GetCurrentProcessId
GlobalMemoryStatus
QueryPerformanceCounter
GetVersionExA
GetCurrentThread
GlobalDeleteAtom
WaitForSingleObject
CompareStringA
ResumeThread
SetThreadPriority
SuspendThread
InterlockedIncrement
InterlockedDecrement
lstrlenA
LocalFree
MulDiv
LoadResource
LockResource
GetVersion
EnterCriticalSection
LocalAlloc
InitializeCriticalSection
DeleteCriticalSection
LeaveCriticalSection
TlsAlloc
GlobalHandle
TlsFree
TlsSetValue
LocalReAlloc
TlsGetValue
GlobalFlags
GetProcessVersion
FindClose
DuplicateHandle
GetCurrentProcess
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
GetFileTime
FileTimeToSystemTime
FileTimeToLocalFileTime
SetErrorMode
ExitProcess
RtlUnwind
HeapAlloc
HeapFree
RaiseException
CreateThread
HeapReAlloc
GetTimeZoneInformation
GetSystemTime
SetConsoleCtrlHandler
TerminateProcess
HeapSize
SetStdHandle
GetFileType
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
GetCommandLineA
SetHandleCount
GetStartupInfoA
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
GetStringTypeA
LCMapStringA
IsBadReadPtr
IsBadCodePtr
CreateFileA
GetACP
GetOEMCP
SetEnvironmentVariableA
FreeLibrary
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalReAlloc
GlobalFree
GetPrivateProfileIntA
Sleep
GetTickCount
GetFileSize
GetLocalTime
ExitThread
GetLastError
CloseHandle
SetEvent
GetCommandLineW

user32

GetDlgItem
DestroyWindow
GetSystemMetrics
IsWindow
SetActiveWindow
EndDialog
GetWindowPlacement
IsIconic
SetWindowPos
GetWindow
GetForegroundWindow
GetMessagePos
GetMessageTime
UnhookWindowsHookEx
GetDlgCtrlID
GetMenuItemID
GetSubMenu
GetMenuItemCount
GetMenu
GetCapture
GetTopWindow
CopyRect
GetClientRect
AdjustWindowRectEx
SetFocus
MapWindowPoints
SendDlgItemMessageA
GetMenuState
PtInRect
GetSysColorBrush
DestroyMenu
GetNextDlgTabItem
TranslateMessage
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
GetCursorPos
GetParent
GetLastActivePopup
IsWindowEnabled
SetCursor
PostQuitMessage
ShowWindow
SetForegroundWindow
LoadImageA
GetWindowRect
GetDesktopWindow
ClientToScreen
GetSysColor
GetMenuCheckMarkDimensions
SetWindowRgn
ScreenToClient
ReleaseDC
GetDC
SetRect
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
UpdateWindow
GetFocus

gdi32

CreateBitmap
SaveDC
RestoreDC
GetStockObject
SetBkColor
SetBkMode
GetDeviceCaps
SetTextColor
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
GetClipBox
Escape
RectVisible
PtVisible
SelectObject
CreateCompatibleDC
BitBlt
DeleteDC
DeleteObject
CombineRgn
ExtCreateRegion
CreateDIBSection

packdll

CalcCompressFile
ReleasePackBuf
DecompressFile

comctl32

ord17

wininet

InternetConnectW
InternetQueryDataAvailable
InternetReadFile
InternetWriteFile
InternetSetFilePointer
InternetSetStatusCallback
InternetSetOptionExW
InternetCloseHandle
InternetOpenW
InternetCanonicalizeUrlW
InternetCrackUrlW
HttpOpenRequestW
HttpAddRequestHeadersW
HttpSendRequestW
HttpQueryInfoW
InternetGetLastResponseInfoW

advapi32

RegCloseKey

winspool.drv

ClosePrinter

Sections

.text
Size: 276KB - Virtual size: 276KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 56KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f9b4c9f3cf1888ae35034825ccfff207

Headers

File Characteristics

Imports

kernel32

user32

gdi32

packdll

comctl32

wininet

advapi32

winspool.drv

Sections

.text Size: 276KB - Virtual size: 276KB

.rdata Size: 56KB - Virtual size: 56KB

.data Size: 48KB - Virtual size: 71KB

.rsrc Size: 68KB - Virtual size: 68KB

.text
Size: 276KB - Virtual size: 276KB

.rdata
Size: 56KB - Virtual size: 56KB

.data
Size: 48KB - Virtual size: 71KB

.rsrc
Size: 68KB - Virtual size: 68KB