c7c46e4bc49c782ff66b3b5f81c84d9d_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

c7c46e4bc49c782ff66b3b5f81c84d9d_JaffaCakes118
Size

597KB
MD5

c7c46e4bc49c782ff66b3b5f81c84d9d
SHA1

c4a5ae5f6af76f11eeafcc6560c1546fe89ae9cf
SHA256

975aa5a06d7a637db0fe4c6153dfeeae2352fc4f9b95cd3c31da04ca8a4f1253
SHA512

242cba8af74b969a795710f84973518ec173eb45f283ffd340993c057f3402c2877016dbf0e2611610c63d14e7100e7cc64d0a969c9e0191775542e4de3f2403
SSDEEP

12288:t7elMPUy2oudCfy7PoCL6OnOwtNaZaI5feuhWr6qXS9mSooQhTQl:Ml17jd2MIaIs6YHoQhTI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c7c46e4bc49c782ff66b3b5f81c84d9d_JaffaCakes118

Files

c7c46e4bc49c782ff66b3b5f81c84d9d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9bc195aa70fe5e16c3a6ca98bc43d9e0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegEnumValueW
CryptDestroyHash
RegSetValueW
LookupPrivilegeValueW
RegSetValueA
CreateServiceA
CryptSetProviderW
CryptCreateHash

gdi32

GetLogColorSpaceA
UpdateICMRegKeyA
ResetDCA
StartPage
GdiSetBatchLimit
ScaleViewportExtEx
CreateEllipticRgnIndirect
DeleteDC
CreatePatternBrush
GetGraphicsMode
GetCharABCWidthsW
GetLayout

user32

LoadBitmapA
SetClassLongW
DlgDirListW
DrawIcon
DrawStateA
AppendMenuA
DdeDisconnect
SetWindowLongA
CharPrevW
DdeClientTransaction
InternalGetWindowText
CreateCaret
DrawAnimatedRects
LoadBitmapW
SetMenuContextHelpId
GetMenuItemCount
SetDebugErrorLevel

comdlg32

ChooseColorA
ChooseFontA
FindTextA
ChooseColorW

kernel32

GetCurrentThreadId
QueryPerformanceCounter
GetCPInfo
VirtualQuery
GetConsoleOutputCP
IsBadReadPtr
HeapValidate
DeleteCriticalSection
GetModuleHandleW
GetModuleHandleA
Sleep
ExitProcess
EnumSystemLocalesA
InterlockedDecrement
DebugBreak
GetModuleFileNameW
IsValidCodePage
SuspendThread
GetEnvironmentStringsW
HeapCreate
ResetEvent
TlsAlloc
GetTickCount
InterlockedExchange
GetLocaleInfoW
GetCompressedFileSizeA
CompareFileTime
RtlUnwind
TlsSetValue
TlsGetValue
GetTimeZoneInformation
SetFilePointer
GetConsoleCP
GetConsoleMode
LeaveCriticalSection
CloseHandle
FreeEnvironmentStringsA
SetHandleCount
HeapReAlloc
FreeEnvironmentStringsW
IsValidLocale
FreeLibrary
LCMapStringA
VirtualAlloc
OutputDebugStringW
LoadLibraryW
GetStringTypeW
CompareStringA
GetLocaleInfoA
WideCharToMultiByte
SetConsoleCtrlHandler
GetLastError
GetCurrentProcessId
OutputDebugStringA
GetDateFormatA
HeapAlloc
VirtualFree
SetEnvironmentVariableA
lstrlenA
GetStringTypeA
GetProcessAffinityMask
HeapDestroy
GetUserDefaultLCID
GetTempFileNameA
GetCurrentProcess
GetStartupInfoA
CompareStringW
FlushFileBuffers
GetSystemInfo
SetLastError
CreateFileA
MultiByteToWideChar
SetStdHandle
LocalShrink
WriteConsoleW
GetProcAddress
InterlockedIncrement
LCMapStringW
InitializeCriticalSectionAndSpinCount
TerminateProcess
SetUnhandledExceptionFilter
TlsFree
IsDebuggerPresent
GetTimeFormatA
GetStdHandle
GetCurrentThread
LoadLibraryA
HeapFree
HeapSize
OpenEventW
WaitCommEvent
GetEnvironmentStrings
WriteFile
GetOEMCP
CreateFileMappingA
WriteConsoleA
RaiseException
GetModuleFileNameA
GetCommandLineA
GetProcessHeap
LockFileEx
UnhandledExceptionFilter
EnterCriticalSection
GetSystemTimeAsFileTime
GetACP
WaitNamedPipeA
GetFileType

wininet

FtpPutFileW
FindNextUrlCacheContainerW
FtpCommandW
ResumeSuspendedDownload
CommitUrlCacheEntryW
GetUrlCacheGroupAttributeA
InternetReadFileExW
CreateUrlCacheGroup
FtpCommandA
HttpOpenRequestW
InternetFindNextFileW
InternetConfirmZoneCrossingW
FtpFindFirstFileW
InternetQueryFortezzaStatus
InternetDial
InternetTimeToSystemTimeA
FtpCreateDirectoryA

Sections

.text
Size: 273KB - Virtual size: 273KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 311KB - Virtual size: 335KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9bc195aa70fe5e16c3a6ca98bc43d9e0

Headers

File Characteristics

Imports

advapi32

gdi32

user32

comdlg32

kernel32

wininet

Sections

.text Size: 273KB - Virtual size: 273KB

.data Size: 311KB - Virtual size: 335KB

.rsrc Size: 11KB - Virtual size: 10KB

.text
Size: 273KB - Virtual size: 273KB

.data
Size: 311KB - Virtual size: 335KB

.rsrc
Size: 11KB - Virtual size: 10KB