d09669d5c741369cbf853ffb1f6dddfd_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

d09669d5c741369cbf853ffb1f6dddfd_JaffaCakes118
Size

552KB
MD5

d09669d5c741369cbf853ffb1f6dddfd
SHA1

be71c2c6d04ac3e7dd4a21e2ce2529de5773cd3e
SHA256

6fb52bdec8b99a7815ef6b8a85842747c9677451dfa918c9b3a155245e6bed32
SHA512

b2416a94faf7e88547648e53596f3b7b0c69176a412c04eafe287ee2bb458e8e35d07a5f01ecb4e61391630600501473f00392f07937fcf12c0f5cd0a851136c
SSDEEP

12288:xnO3A39OVXCuij5y3AHXETsTJlTjCJkvPH9NHdK:xnO3Axuij3XEGJlTCkvFNH4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d09669d5c741369cbf853ffb1f6dddfd_JaffaCakes118

Files

d09669d5c741369cbf853ffb1f6dddfd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ddfdccde1f5a3eb4a20b57312e1d7a44

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetEnvironmentStrings
UnhandledExceptionFilter
TransactNamedPipe
GetModuleHandleA
ReadConsoleOutputCharacterW
SetWaitableTimer
LocalLock
CreateMutexA
RtlUnwind
lstrcmpi
TlsFree
OpenEventA
GetLocaleInfoW
SetEnvironmentVariableA
FileTimeToSystemTime
LCMapStringW
LCMapStringA
SetEvent
GetPrivateProfileSectionNamesW
GetCommandLineW
GetEnvironmentStringsW
IsBadWritePtr
GetCommandLineA
LoadLibraryExW
GetSystemDirectoryA
GetFileSize
EnterCriticalSection
GetCurrentThread
FillConsoleOutputAttribute
ExitProcess
FlushInstructionCache
GlobalDeleteAtom
GetLastError
CreateFileA
InitializeCriticalSection
SetConsoleTitleA
WriteConsoleOutputW
DosDateTimeToFileTime
GetModuleFileNameW
ReadConsoleInputW
CreateProcessW
GetCurrentProcess
GetDateFormatA
GetExitCodeProcess
FreeEnvironmentStringsA
GetWindowsDirectoryW
SetStdHandle
GlobalCompact
FreeResource
InterlockedExchange
SetFilePointer
InterlockedIncrement
CreateSemaphoreA
GetPrivateProfileStructA
HeapFree
WritePrivateProfileSectionA
ExpandEnvironmentStringsW
WideCharToMultiByte
CommConfigDialogA
FreeEnvironmentStringsW
DeleteCriticalSection
GetConsoleOutputCP
HeapReAlloc
VirtualQueryEx
SetVolumeLabelW
GetModuleFileNameA
GlobalFix
InterlockedCompareExchange
HeapCreate
CreateNamedPipeA
SetThreadLocale
GetNumberFormatW
lstrcmpA
GetTickCount
ReadFile
RemoveDirectoryW
FormatMessageW
GetStdHandle
EnumDateFormatsExA
GlobalHandle
VirtualUnlock
DeleteFileA
GetPrivateProfileSectionNamesA
SetLocalTime
VirtualFree
EnumCalendarInfoExW
CreateMutexW
EnumCalendarInfoA
FindFirstFileA
TerminateProcess
CloseHandle
HeapDestroy
GetSystemTimeAsFileTime
GetTimeZoneInformation
TlsSetValue
LeaveCriticalSection
GetFileType
InterlockedDecrement
SetHandleCount
lstrcatW
EnumResourceTypesW
GetStartupInfoA
GetVersion
SetThreadAffinityMask
LoadLibraryA
VirtualAlloc
WriteFileEx
GetTimeFormatA
VirtualQuery
GetCurrentProcessId
GetProcAddress
SetConsoleMode
GetStringTypeA
GetCurrentThreadId
GetNamedPipeHandleStateW
CompareStringW
GetStringTypeW
CompareStringA
SetLastError
FlushFileBuffers
ReadConsoleOutputAttribute
SetLocaleInfoA
GetThreadPriority
GetUserDefaultLangID
TlsGetValue
TlsAlloc
GetProcessAffinityMask
GetLocalTime
GetLongPathNameW
GetCPInfo
MultiByteToWideChar
OpenMutexA
GetStartupInfoW
ReadConsoleW
QueryPerformanceCounter
WriteFile
EnumResourceNamesW
GetAtomNameW
GetSystemTime
HeapAlloc
lstrcmpiW

wininet

FtpDeleteFileW
InternetConnectW
FindCloseUrlCache
InternetSecurityProtocolToStringW
ResumeSuspendedDownload
FtpGetFileEx
IsUrlCacheEntryExpiredW
InternetReadFileExW
InternetGetCookieA

comdlg32

ChooseColorA
GetFileTitleA
PrintDlgA

comctl32

ImageList_SetIconSize
CreateStatusWindow
ImageList_SetOverlayImage
ImageList_DragShowNolock
ImageList_SetFilter
InitCommonControlsEx
ImageList_SetDragCursorImage
CreatePropertySheetPage

user32

RegisterClassExA
GetClassNameW
MessageBoxW
DefWindowProcA
DestroyWindow
GetCursor
GetAltTabInfo
IsZoomed
SetDeskWallpaper
DdeQueryStringW
SystemParametersInfoA
EnumDesktopWindows
GetClipboardSequenceNumber
CreateWindowExW
GetKeyboardType
DdeUnaccessData
GetClassInfoA
CreateWindowExA
ShowWindow
GetMenuStringW
EnumWindows
DeleteMenu
DdeInitializeA
GetDoubleClickTime
CopyAcceleratorTableA
GetClipboardFormatNameW
SwapMouseButton
SetMenuItemBitmaps
CharPrevA
RegisterClassA

shell32

SHGetNewLinkInfo
DragQueryFileAorW
ExtractAssociatedIconW
SHGetFileInfoW
SheChangeDirExW

advapi32

CryptEnumProvidersW
LookupAccountSidW
CryptVerifySignatureA
RegConnectRegistryW
RegQueryValueExW
RevertToSelf
RegQueryInfoKeyW
LookupPrivilegeValueA
CryptEnumProviderTypesW

Sections

.text
Size: 152KB - Virtual size: 149KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 252KB - Virtual size: 249KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ddfdccde1f5a3eb4a20b57312e1d7a44

Headers

File Characteristics

Imports

kernel32

wininet

comdlg32

comctl32

user32

shell32

advapi32

Sections

.text Size: 152KB - Virtual size: 149KB

.rdata Size: 252KB - Virtual size: 249KB

.data Size: 112KB - Virtual size: 136KB

.rsrc Size: 32KB - Virtual size: 30KB

.text
Size: 152KB - Virtual size: 149KB

.rdata
Size: 252KB - Virtual size: 249KB

.data
Size: 112KB - Virtual size: 136KB

.rsrc
Size: 32KB - Virtual size: 30KB