c7b39da6d23c745f1741eb491de9427a_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

c7b39da6d23c745f1741eb491de9427a_JaffaCakes118
Size

588KB
MD5

c7b39da6d23c745f1741eb491de9427a
SHA1

94603651c9c134487a958a94949941987b14ee19
SHA256

57ab1a258949b9b065538a203b13ec22b25c6d8e6f9e23fa3ec17a09fd58d22d
SHA512

8dd5de6e15bb2fe5513770be17b0b82e07d0ac8bbbf44d0bb094def643986245a6d43e59c2e62508929251d7332483092114aeb95f990ba158624c793759a4d2
SSDEEP

12288:uYxE/EvmEKnRULOc57GTEsRlMndEeIpZ13AKMSAf:uYxE1EsRULITEsR2d/kZdA+o

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c7b39da6d23c745f1741eb491de9427a_JaffaCakes118

Files

c7b39da6d23c745f1741eb491de9427a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

07a671b9153aeadf4f0a17e9cee7ebbb

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStdHandle
EnterCriticalSection
RemoveDirectoryW
TlsSetValue
VirtualQuery
GetLocaleInfoW
GetTimeFormatA
TlsFree
VirtualAlloc
TlsAlloc
QueryPerformanceCounter
CompareStringA
InterlockedExchange
UnhandledExceptionFilter
GetDateFormatA
FindFirstFileExW
GetSystemInfo
GetProfileStringW
LocalHandle
ExitProcess
InitializeCriticalSectionAndSpinCount
LCMapStringW
FreeEnvironmentStringsA
GetOEMCP
GetTimeZoneInformation
GetEnvironmentStringsW
ReadFile
SetVolumeLabelA
CompareStringW
GetProfileStringA
OpenSemaphoreW
SetEnvironmentVariableA
MultiByteToWideChar
TransactNamedPipe
GetCurrentProcessId
GlobalReAlloc
VirtualFree
GetSystemTimeAsFileTime
FlushFileBuffers
GetStringTypeA
GetCommandLineW
HeapAlloc
GetStartupInfoW
GetModuleFileNameW
CloseHandle
HeapFree
SetLastError
GetVersionExA
GetStringTypeW
TerminateProcess
FreeEnvironmentStringsW
SetFilePointer
LocalSize
GetACP
GetVolumeInformationW
GetNumberFormatW
HeapSize
GetTickCount
GetModuleFileNameA
SetStdHandle
GetConsoleScreenBufferInfo
HeapReAlloc
IsBadWritePtr
LeaveCriticalSection
GetCurrentThread
VirtualProtect
WideCharToMultiByte
RtlUnwind
GetFileType
GetEnvironmentStrings
InitializeCriticalSection
GetLastError
IsValidLocale
CreateWaitableTimerW
TlsGetValue
GetCurrentProcess
GetCPInfo
GetStartupInfoA
GetCommandLineA
MapViewOfFileEx
GetProcAddress
HeapDestroy
GetLocaleInfoA
SetHandleCount
GetModuleHandleA
WriteConsoleOutputCharacterA
CreateMutexA
HeapCreate
EnumSystemLocalesA
LCMapStringA
GetUserDefaultLCID
SetLocalTime
LoadLibraryA
CreateProcessW
WriteFile
OpenMutexA
DeleteCriticalSection
IsValidCodePage
GetCurrentThreadId

comctl32

InitCommonControlsEx

advapi32

LogonUserW
CryptGetDefaultProviderW
RegOpenKeyExW
CryptSetProviderExA
CryptSetKeyParam
CryptExportKey
RegQueryInfoKeyA
RegQueryInfoKeyW
RegEnumKeyExW
AbortSystemShutdownA
RegEnumKeyExA
RegEnumKeyA
CryptSetProvParam
RegDeleteKeyW
RegEnumValueW
GetUserNameA
RegConnectRegistryA

wininet

IsHostInProxyBypassList
GopherCreateLocatorW
IncrementUrlCacheHeaderData
GetUrlCacheEntryInfoA
InternetGetLastResponseInfoW
InternetCheckConnectionA
InternetCheckConnectionW
SetUrlCacheConfigInfoW
SetUrlCacheEntryGroupA

shell32

SheChangeDirExW
SHLoadInProc

user32

GetKeyNameTextA
CheckMenuRadioItem
IsWindowVisible
RegisterClassExA
AppendMenuW
GetGuiResources
RegisterClassA
SetParent
GetTopWindow
DdeAbandonTransaction

Sections

.text
Size: 214KB - Virtual size: 213KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 358KB - Virtual size: 357KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

07a671b9153aeadf4f0a17e9cee7ebbb

Headers

File Characteristics

Imports

kernel32

comctl32

advapi32

wininet

shell32

user32

Sections

.text Size: 214KB - Virtual size: 213KB

.rdata Size: 9KB - Virtual size: 40KB

.data Size: 358KB - Virtual size: 357KB

.rsrc Size: 6KB - Virtual size: 6KB

.text
Size: 214KB - Virtual size: 213KB

.rdata
Size: 9KB - Virtual size: 40KB

.data
Size: 358KB - Virtual size: 357KB

.rsrc
Size: 6KB - Virtual size: 6KB