ce2711ca5d3b8d337c425902c2638312_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

ce2711ca5d3b8d337c425902c2638312_JaffaCakes118
Size

716KB
MD5

ce2711ca5d3b8d337c425902c2638312
SHA1

4bc449eba5c1694495d0b913edf09e2f07acfa8f
SHA256

5a65d9e75fd52b2868f41b2c3b5527e88f64da6fed3ad71a1e1ec09db30e420d
SHA512

115ae431051290377fc2c553eb6eae9a8199e30a80c4cbad89eac2704229f99a26a199c8db32684927513a28b19ea349837949eac987914457737e795da2421e
SSDEEP

12288:TV4beUfkxRjVUyHbeFameVwIqNqbgqB4Cu772mNxV:TVDUfkx1VUy7eFamUqNXCXAxV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ce2711ca5d3b8d337c425902c2638312_JaffaCakes118

Files

ce2711ca5d3b8d337c425902c2638312_JaffaCakes118
.exe windows:4 windows x86 arch:x86

43f8aa8dab3ec5112d9826153b2c4fe1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
CreateEventA
SetEvent
CloseHandle
ReadFile
SetCommTimeouts
SetCommState
GetCommState
PurgeComm
FlushFileBuffers
SetupComm
CreateFileA
GetOverlappedResult
WriteFile
CreateThread
ExitThread
ResetEvent
GetTickCount
WaitForMultipleObjects
GetExitCodeThread
CompareStringW
CompareStringA
GetLocaleInfoW
SetEndOfFile
GetOEMCP
GetACP
GetVersionExA
GetUserDefaultLCID
EnumSystemLocalesA
GetLocaleInfoA
IsValidCodePage
IsValidLocale
GetCPInfo
LCMapStringW
LCMapStringA
GetStringTypeW
GetStringTypeA
MultiByteToWideChar
IsBadCodePtr
SetStdHandle
VirtualAlloc
HeapReAlloc
HeapAlloc
VirtualFree
HeapFree
HeapCreate
HeapDestroy
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
WideCharToMultiByte
Sleep
SetUnhandledExceptionFilter
FatalAppExitA
SetConsoleCtrlHandler
GetCurrentProcess
TerminateProcess
DeleteCriticalSection
GetFileType
SetHandleCount
SetFilePointer
GetCurrentThread
TlsGetValue
SetLastError
TlsFree
TlsAlloc
TlsSetValue
GetCurrentThreadId
InitializeCriticalSection
HeapValidate
IsBadReadPtr
IsBadWritePtr
LeaveCriticalSection
EnterCriticalSection
LoadLibraryA
GetProcAddress
OutputDebugStringA
SetEnvironmentVariableA
GetStdHandle
DebugBreak
ExitProcess
GetVersion
GetCommandLineA
RtlUnwind
GetModuleFileNameA
RaiseException
InterlockedDecrement
InterlockedIncrement
GetTimeZoneInformation
GetSystemTime
GetLocalTime
GetModuleHandleA
GetStartupInfoA

user32

DestroyWindow
UpdateWindow
GetParent
SendDlgItemMessageA
GetDlgItemTextA
GetFocus
MoveWindow
GetClientRect
SetWindowTextA
SetDlgItemInt
SetFocus
PostMessageA
SetWindowLongA
ShowWindow
InvalidateRect
GetDlgCtrlID
EndDialog
SendMessageA
SetDlgItemTextA
GetDlgItem
SetParent
MessageBoxA
GetWindowRect
LoadAcceleratorsA
GetMessageA
TranslateAcceleratorA
IsDialogMessageA
TranslateMessage
DispatchMessageA
WaitMessage
DialogBoxParamA
GetDlgItemInt
PostQuitMessage
DefWindowProcA
GetKeyState
LoadStringA
LoadIconA
LoadCursorA
RegisterClassExA
CreateWindowExA
CheckRadioButton
CreateDialogParamA

comdlg32

GetOpenFileNameA
GetSaveFileNameA
GetFileTitleA

ws2_32

WSACleanup
closesocket
WSACloseEvent
WSARecv
ntohs
getsockname
bind
WSAGetLastError
setsockopt
socket
WSAStartup
connect
htons
WSAGetOverlappedResult
WSASend
sendto
htonl

Sections

.text
Size: 172KB - Virtual size: 170KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 314KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

43f8aa8dab3ec5112d9826153b2c4fe1

Headers

File Characteristics

Imports

kernel32

user32

comdlg32

ws2_32

Sections

.text Size: 172KB - Virtual size: 170KB

.rdata Size: 16KB - Virtual size: 14KB

.data Size: 8KB - Virtual size: 314KB

.rsrc Size: 8KB - Virtual size: 7KB

.text
Size: 172KB - Virtual size: 170KB

.rdata
Size: 16KB - Virtual size: 14KB

.data
Size: 8KB - Virtual size: 314KB

.rsrc
Size: 8KB - Virtual size: 7KB