d0862af6d6dd5047fc6238678431b953_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

d0862af6d6dd5047fc6238678431b953_JaffaCakes118
Size

530KB
MD5

d0862af6d6dd5047fc6238678431b953
SHA1

cea48c1ebb9a28a59307778c3f51cf94595dd082
SHA256

141d9b1e749da1836413264b3bc05bbc7a879326c6c3500209b55b80b0ea4b83
SHA512

9172e3a8671bd841bc7d471927c6363a294c65232ca44fe335e1465bd571f171391224e73035113016e32f91e09bbbd57f23d297bfbb043585b9e27e92198985
SSDEEP

12288:pA/culCZBqwrJNTCzMtZAyGExzponbMeZAwssM9ukYO9QQYIl:pA/cVZBVJhogeZAw7KukYOQQYIl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d0862af6d6dd5047fc6238678431b953_JaffaCakes118

Files

d0862af6d6dd5047fc6238678431b953_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c66c60c4aecee2619e0fc1965f0b41db

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

InternetGetConnectedStateExA
SetUrlCacheEntryGroupW
GetUrlCacheEntryInfoW
InternetGetConnectedStateEx

shell32

ShellAboutA
SHChangeNotify
RealShellExecuteW
SHBrowseForFolderA
ExtractAssociatedIconA

comdlg32

GetFileTitleW
ChooseColorW
LoadAlterBitmap
GetOpenFileNameA

kernel32

GetModuleFileNameA
GetOEMCP
TlsGetValue
InterlockedIncrement
GetStartupInfoA
FindAtomW
SetConsoleCtrlHandler
GetUserDefaultLCID
GetDateFormatA
WriteConsoleOutputAttribute
VirtualAlloc
GetProcessHeap
EnumSystemLocalesA
ExitProcess
SetLastError
HeapDestroy
IsValidLocale
SetEnvironmentVariableA
IsValidCodePage
SetConsoleTitleA
GetLastError
CreateProcessA
GetSystemTimeAsFileTime
CloseHandle
GetCommandLineA
MultiByteToWideChar
GetEnvironmentStringsW
GetCurrentThread
ReadConsoleOutputCharacterW
DeleteCriticalSection
TlsSetValue
GetCurrentProcessId
VirtualQuery
GetTempFileNameA
GetCurrentProcess
WriteConsoleA
LoadLibraryA
SetHandleCount
HeapReAlloc
GetProcAddress
EnumCalendarInfoExW
SetStdHandle
GetProfileIntA
FindFirstFileExW
LCMapStringA
GetCPInfo
GetCommandLineW
FlushFileBuffers
HeapFree
GetFileType
LCMapStringW
CreateFileA
TlsAlloc
InterlockedDecrement
HeapAlloc
lstrcmpiA
DeleteFiber
CreateMutexA
FreeEnvironmentStringsW
OpenMutexA
WriteConsoleW
GetTimeFormatA
UnhandledExceptionFilter
SetFilePointer
GetModuleFileNameW
FreeEnvironmentStringsA
Sleep
OutputDebugStringA
EnterCriticalSection
GetTickCount
GetStartupInfoW
GetConsoleOutputCP
GetEnvironmentStrings
GetStdHandle
HeapCreate
ReadFile
GetLocaleInfoA
TlsFree
GetConsoleCP
WritePrivateProfileStructW
IsDebuggerPresent
LeaveCriticalSection
FreeLibrary
CompareStringA
SetUnhandledExceptionFilter
RtlUnwind
GetStringTypeA
GetLocaleInfoW
GetVersionExA
WideCharToMultiByte
HeapSize
WriteFile
InitializeCriticalSection
GetStringTypeW
GetACP
TerminateProcess
GetModuleHandleA
MapViewOfFile
ReadConsoleInputW
CompareStringW
VirtualFree
GetConsoleMode
GetTimeZoneInformation
InterlockedExchange
GetCurrentThreadId
QueryPerformanceCounter
SetVolumeLabelW

user32

DlgDirListComboBoxW
PostMessageA
EnumDisplayMonitors
MapVirtualKeyA
GetQueueStatus
GetWindowLongA
SetTimer
SetMenuDefaultItem
WinHelpA
AdjustWindowRect
LookupIconIdFromDirectory
RegisterClassExA
LoadCursorFromFileW
EndMenu
InvertRect
CharNextA
InsertMenuW
SendMessageTimeoutW
CharNextExA
OffsetRect
CallWindowProcW
GetMonitorInfoW
UnpackDDElParam
SendNotifyMessageW
RegisterClassA

comctl32

InitCommonControlsEx

Sections

.text
Size: 192KB - Virtual size: 191KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 316KB - Virtual size: 316KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c66c60c4aecee2619e0fc1965f0b41db

Headers

File Characteristics

Imports

wininet

shell32

comdlg32

kernel32

user32

comctl32

Sections

.text Size: 192KB - Virtual size: 191KB

.rdata Size: 10KB - Virtual size: 32KB

.data Size: 316KB - Virtual size: 316KB

.rsrc Size: 10KB - Virtual size: 10KB

.text
Size: 192KB - Virtual size: 191KB

.rdata
Size: 10KB - Virtual size: 32KB

.data
Size: 316KB - Virtual size: 316KB

.rsrc
Size: 10KB - Virtual size: 10KB