c7bfd78b1a39a9ba25d3ffdfaa2b99ec_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

c7bfd78b1a39a9ba25d3ffdfaa2b99ec_JaffaCakes118
Size

579KB
MD5

c7bfd78b1a39a9ba25d3ffdfaa2b99ec
SHA1

6c2b37e93d0448b330a52feda62ff0df8b2c7541
SHA256

6927931e36d3f5c60cb40bec01f51fd5596f339633e8d8ecc6c75f32df70c964
SHA512

2383d88072051b68c0069ab7e12399b63225af1874280a249e3d0088ba2336e30bb3ce272de2b78289b6149346231ec2bd71f33077103212a58d7b2c07f56dcd
SSDEEP

12288:DJQOPkqnqZtGRPVeeTiC4Ycpr3vMextEwZvUe9fim1OxZzzxUpIBmRd+BbUYQtNF:VrnqZkRdeeTdcpr39vYehiPP/Gym

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c7bfd78b1a39a9ba25d3ffdfaa2b99ec_JaffaCakes118

Files

c7bfd78b1a39a9ba25d3ffdfaa2b99ec_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c35c8a00321d8a27ae76245ef159cb78

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

d:\offoj\ohrttas\ljee\ztmqaaitza\kuefenf.pdb

Imports

wininet

FindNextUrlCacheEntryW
InternetAutodial
SetUrlCacheEntryGroupA
FtpCommandA

kernel32

GetDateFormatA
ReadFile
GetTimeFormatA
InitializeCriticalSection
HeapCreate
IsValidCodePage
SetFileAttributesW
GetLocaleInfoA
LCMapStringA
TerminateProcess
LoadLibraryA
GetEnvironmentStrings
InterlockedExchange
GetCompressedFileSizeW
GetUserDefaultLCID
TlsGetValue
TlsAlloc
WritePrivateProfileStringW
VirtualAlloc
SetEnvironmentVariableA
SetConsoleTextAttribute
GetCommandLineA
GetOEMCP
GetStartupInfoW
GetStringTypeW
GetTickCount
IsBadWritePtr
GetStartupInfoA
EnumSystemLocalesA
VirtualFree
FreeEnvironmentStringsW
FlushFileBuffers
GetCurrentThreadId
CloseHandle
GetACP
CompareStringA
UnhandledExceptionFilter
SetLastError
HeapFree
HeapDestroy
TlsFree
WideCharToMultiByte
WriteFile
GetSystemInfo
GetTimeZoneInformation
SetConsoleMode
GetFullPathNameA
CreateProcessW
ExitProcess
QueryPerformanceCounter
GetFileType
IsValidLocale
GetStdHandle
GetCPInfo
SetHandleCount
OpenMutexA
GetShortPathNameW
GetCurrentProcess
GetModuleFileNameA
HeapSize
GetLastError
GetStringTypeA
HeapAlloc
LCMapStringW
GetLocaleInfoW
CompareStringW
MultiByteToWideChar
GetModuleFileNameW
FreeEnvironmentStringsA
GetModuleHandleA
GetSystemTimeAsFileTime
SetFilePointer
GetCommandLineW
GetCurrentProcessId
VirtualProtect
HeapReAlloc
SetStdHandle
LeaveCriticalSection
DeleteCriticalSection
GetProcAddress
EnterCriticalSection
GetEnvironmentStringsW
GetCurrentThread
RtlUnwind
TlsSetValue
VirtualQuery
CreateMutexA
lstrcatW
GetVersionExA

comctl32

ImageList_GetBkColor
InitCommonControlsEx
CreatePropertySheetPageW
CreateToolbarEx
CreateToolbar
ImageList_GetFlags
ImageList_LoadImageA
ImageList_DragEnter
ImageList_AddIcon
ImageList_DragLeave
ImageList_AddMasked
ImageList_GetImageInfo

advapi32

CryptSetKeyParam
CryptDestroyHash

user32

CreateWindowExA
RegisterClassExA
SetRect
MessageBoxA
IsCharAlphaNumericA
GetMonitorInfoW
ShowCursor
DrawFrame
RegisterClassA
DestroyWindow
ShowWindow
DefWindowProcA
RegisterHotKey
WaitMessage
SetWindowLongW
EqualRect
GetDlgItemTextW
PostMessageA
FindWindowExA
RealChildWindowFromPoint
CreateDialogParamW
SetWindowsHookA

gdi32

StartDocW
SetSystemPaletteUse
ResetDCA
GetStockObject
GetCharWidthFloatW
GetTextExtentExPointW
FixBrushOrgEx
ExtCreatePen
GdiGetBatchLimit
CreateFontIndirectW
GetArcDirection
LPtoDP
ChoosePixelFormat

Sections

.text
Size: 155KB - Virtual size: 154KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 259KB - Virtual size: 259KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 105KB - Virtual size: 125KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 58KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c35c8a00321d8a27ae76245ef159cb78

Headers

File Characteristics

PDB Paths

Imports

wininet

kernel32

comctl32

advapi32

user32

gdi32

Sections

.text Size: 155KB - Virtual size: 154KB

.rdata Size: 259KB - Virtual size: 259KB

.data Size: 105KB - Virtual size: 125KB

.rsrc Size: 58KB - Virtual size: 58KB

.text
Size: 155KB - Virtual size: 154KB

.rdata
Size: 259KB - Virtual size: 259KB

.data
Size: 105KB - Virtual size: 125KB

.rsrc
Size: 58KB - Virtual size: 58KB