c75e0211f73ef8bf37414b7e910b637e_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

c75e0211f73ef8bf37414b7e910b637e_JaffaCakes118
Size

48KB
MD5

c75e0211f73ef8bf37414b7e910b637e
SHA1

4afddb4070b666be2e218c9de3d0bec42a4a3418
SHA256

3d9bf30ea59b53483eac5fa9bed7432ea0c90ede00b774233c35efd6be046f6a
SHA512

4941f856a8517111ce3bd7e97599f9f170323b6cdf6e46ea49babd7bed7cd0c581d98fc4abbcc20739dc47936debb1d948dbbd84a9f323c8825f1eec71b71930
SSDEEP

768:bfO85hosYbLi5SYn6wUsm2qgyINqto/ykw:rTToiMy6wUF2qnvo/y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c75e0211f73ef8bf37414b7e910b637e_JaffaCakes118

Files

c75e0211f73ef8bf37414b7e910b637e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2d57aee033613f99081094853e944ea8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

InternetGetConnectedState
InternetOpenA
InternetOpenUrlA
HttpQueryInfoW
InternetReadFile
InternetCloseHandle

netapi32

Netbios

comctl32

_TrackMouseEvent
ord17

kernel32

GlobalLock
GlobalAlloc
GlobalFree
GlobalUnlock
GetProcAddress
_lclose
_lwrite
_llseek
_lcreat
lstrcpyW
_lread
_lopen
GetLogicalDriveStringsA
CreateMutexW
FreeLibrary
FindNextFileA
SetCurrentDirectoryA
FindFirstFileA
WideCharToMultiByte
lstrlenW
MultiByteToWideChar
GetWindowsDirectoryA
GetSystemDirectoryA
WaitForSingleObject
LoadLibraryW
GetSystemTime
GetShortPathNameA
GetStringTypeA
GetStringTypeW
GetLastError
LCMapStringW
LCMapStringA
LoadLibraryA
GetLogicalDriveStringsW
FindClose
CreateProcessA
GetDriveTypeA
VirtualAlloc
GetACP
GetCPInfo
GetOEMCP
RtlUnwind
HeapFree
WriteFile
HeapCreate
HeapDestroy
VirtualFree
HeapAlloc
GetFileType
GetStdHandle
SetHandleCount
HeapReAlloc
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
ExitProcess
GetVersion
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
CreateDirectoryA

user32

LoadCursorW
RegisterClassW
FindWindowW
wsprintfA
SetWindowLongW
SetClipboardData
GetWindowTextW
UpdateWindow
GetMessageW
PostMessageW
DispatchMessageW
TranslateMessage
IsWindowEnabled
EmptyClipboard
GetFocus
OpenClipboard
GetClipboardData
CloseClipboard
SendMessageW
EndDialog
SendDlgItemMessageA
SendDlgItemMessageW
GetWindowRect
SetWindowPos
ShowWindow
SetRect
SetTimer
SetFocus
EndPaint
PostQuitMessage
KillTimer
GetWindowTextA
GetWindowLongW
GetActiveWindow
InvalidateRect
EnumWindows
GetSystemMetrics
SetWindowTextA
MoveWindow
IsWindow
DialogBoxParamA
CreateWindowExW
DefWindowProcW
BeginPaint

gdi32

SelectObject
DeleteDC
StretchBlt
DeleteObject
CreateCompatibleDC
CreateDIBitmap
GetStockObject

advapi32

RegCloseKey
RegQueryValueExA
RegOpenKeyExA

shell32

ShellExecuteA

Sections

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2d57aee033613f99081094853e944ea8

Headers

File Characteristics

Imports

wininet

netapi32

comctl32

kernel32

user32

gdi32

advapi32

shell32

Sections

.text Size: 28KB - Virtual size: 27KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 4KB - Virtual size: 7KB

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: 28KB - Virtual size: 27KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 4KB - Virtual size: 7KB

.rsrc
Size: 4KB - Virtual size: 1KB