c8074e73b87cb207d8545ab31343b489_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

c8074e73b87cb207d8545ab31343b489_JaffaCakes118
Size

501KB
MD5

c8074e73b87cb207d8545ab31343b489
SHA1

9255ea30b28757eb904377b700ba64203d37c684
SHA256

7a3a9a1f9e8c070d6d5081c4b106b5f6cdffe7e686b2b0d42e1106e6be66ad40
SHA512

0ca3ee80eca043ea2ff94c7ee177116d55979fc0c0b647c23a17796cdab75780ace6a1b5e5b934f9ef030553d83325f19bd1f49fa9b192e2e4b024f734dc29c5
SSDEEP

12288:/AL+k/z7/5QkEekVdNhfl+MOVzL/yAyTZfd:/AKkbT5QjXVdXlPWLq/ld

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c8074e73b87cb207d8545ab31343b489_JaffaCakes118

Files

c8074e73b87cb207d8545ab31343b489_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b2cca80a884c2dd97f3d844759e52cae

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

DragQueryFileAorW
SHBrowseForFolderA
SHGetFileInfoW

advapi32

CryptSetProviderW
RegEnumKeyA
AbortSystemShutdownA
RegConnectRegistryW

kernel32

GetWindowsDirectoryW
ConnectNamedPipe
WriteConsoleA
HeapCreate
IsValidCodePage
QueryPerformanceCounter
WaitForDebugEvent
GetLongPathNameW
IsValidLocale
GetACP
LCMapStringA
GetConsoleMode
HeapAlloc
InterlockedExchangeAdd
CompareStringA
GetCurrentProcess
FreeLibrary
FreeEnvironmentStringsA
GetProcAddress
GetStringTypeW
CloseHandle
FlushFileBuffers
GetModuleHandleA
GetLocaleInfoA
GetEnvironmentStrings
ExitProcess
GetLocaleInfoW
SetLastError
SetHandleCount
GetSystemTimeAsFileTime
GetDateFormatA
GetTimeFormatA
GetCurrentThreadId
WriteFile
OpenMutexA
EnumSystemLocalesA
HeapReAlloc
SetConsoleWindowInfo
SetStdHandle
GetExitCodeProcess
UnlockFile
FreeEnvironmentStringsW
InterlockedDecrement
HeapFree
CompareStringW
GetCurrentProcessId
GetCommandLineA
GetFileType
HeapDestroy
RtlUnwind
TlsFree
VirtualQuery
DosDateTimeToFileTime
SetUnhandledExceptionFilter
GetCurrentThread
TransmitCommChar
GetEnvironmentStringsW
LeaveCriticalSection
InterlockedIncrement
ReadFile
GetOEMCP
CreateFileA
TerminateProcess
IsDebuggerPresent
WriteConsoleW
GetLastError
FindFirstFileW
GetTimeZoneInformation
GetProcessHeap
EnterCriticalSection
LCMapStringW
MultiByteToWideChar
ReadConsoleW
WideCharToMultiByte
InterlockedExchange
UnhandledExceptionFilter
Sleep
DeleteCriticalSection
GetUserDefaultLCID
VirtualAlloc
SetConsoleCtrlHandler
GetTickCount
LoadLibraryA
GetVersionExA
TlsGetValue
GetNamedPipeHandleStateA
InitializeCriticalSection
GetCPInfo
GetConsoleCP
SetFilePointer
HeapSize
SetEnvironmentVariableA
TlsSetValue
GetModuleFileNameA
EnumResourceTypesW
GetStartupInfoA
SetThreadPriority
CreateProcessA
WriteConsoleOutputCharacterW
GetStringTypeA
TlsAlloc
GetConsoleOutputCP
CreateMutexA
VirtualFree
CopyFileA
GetStdHandle

wininet

GopherCreateLocatorW
InternetShowSecurityInfoByURLA
ReadUrlCacheEntryStream
HttpCheckDavCompliance
ResumeSuspendedDownload

comdlg32

ReplaceTextW
PageSetupDlgW
GetFileTitleA
PageSetupDlgA

user32

WinHelpA
SetWindowContextHelpId
GetWindowThreadProcessId
RemovePropA
GetScrollPos
BroadcastSystemMessageW
RegisterClassExA
RegisterClassA
EnumDisplayDevicesA
SetDoubleClickTime
GetScrollInfo

comctl32

InitCommonControlsEx

Sections

.text
Size: 162KB - Virtual size: 162KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 313KB - Virtual size: 312KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b2cca80a884c2dd97f3d844759e52cae

Headers

File Characteristics

Imports

shell32

advapi32

kernel32

wininet

comdlg32

user32

comctl32

Sections

.text Size: 162KB - Virtual size: 162KB

.rdata Size: 10KB - Virtual size: 15KB

.data Size: 313KB - Virtual size: 312KB

.rsrc Size: 15KB - Virtual size: 14KB

.text
Size: 162KB - Virtual size: 162KB

.rdata
Size: 10KB - Virtual size: 15KB

.data
Size: 313KB - Virtual size: 312KB

.rsrc
Size: 15KB - Virtual size: 14KB