d42e8c77585c8afc8ea1a1e13e64e356_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

d42e8c77585c8afc8ea1a1e13e64e356_JaffaCakes118
Size

692KB
MD5

d42e8c77585c8afc8ea1a1e13e64e356
SHA1

38023f27c1d51b30c6f20d54a6c9699e15e9ebb8
SHA256

bce3e480fc11407734ca8ee73a2c0f9ffc11a9eed79ea81598cf46edd11d84aa
SHA512

a5c682e1b1a120a14d394484c262a43e9cb64bef476f39d26a37e6e45502099f337305bae56e73caf80c5cd2ec7002394a55878e5ea2cd06295f4f6d461557c0
SSDEEP

12288:ie0fcmzPdNKa2WvrtWQV9M4ML4RqALrA+BytbX35SH:kcedN2Urr9M4ML4RHrA+Bwr8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d42e8c77585c8afc8ea1a1e13e64e356_JaffaCakes118

Files

d42e8c77585c8afc8ea1a1e13e64e356_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b178a653962b4c7424252e5892c724bf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_GetIcon
ImageList_GetImageRect
ImageList_DragLeave
CreateToolbarEx
ImageList_BeginDrag
ImageList_Destroy
ImageList_Draw
CreatePropertySheetPageW
ImageList_Replace
InitCommonControlsEx
InitMUILanguage
ImageList_GetImageCount
ImageList_LoadImageW

wininet

FindFirstUrlCacheContainerW
InternetAttemptConnect
InternetLockRequestFile
InternetAutodial
InternetCanonicalizeUrlA

user32

GetScrollInfo
CloseWindow
DdeSetUserHandle
CharToOemW
IsCharUpperW
TileWindows
ExitWindowsEx
UnregisterDeviceNotification
GetWindowTextLengthW
SetMessageQueue
FindWindowExA
OpenClipboard
SetWindowsHookExW
MsgWaitForMultipleObjectsEx
SetMenuItemInfoA
ClientToScreen
CharToOemBuffA
DlgDirSelectComboBoxExW
GetKeyboardLayout
CallMsgFilter
CharPrevExA
GetMenuContextHelpId
ValidateRgn
SetRect
DefWindowProcA
MsgWaitForMultipleObjects
DdeAbandonTransaction
GetMenuCheckMarkDimensions
IsChild
DestroyWindow
GetClassNameA
GetUpdateRgn
GetComboBoxInfo
EndDialog
DefMDIChildProcA
RegisterClassExA
GetScrollPos
TabbedTextOutW
SendNotifyMessageA
IsCharLowerW
EndMenu
CharPrevW
CharNextW
SetUserObjectInformationW
IsWindowUnicode
SetSystemCursor
GetClipboardData
ShowWindow
FindWindowExW
GetClassInfoA
GetUserObjectInformationA
DrawIconEx
GetMenuDefaultItem
GetAsyncKeyState
DrawEdge
DdeInitializeW
SetClassLongA
IntersectRect
IsZoomed
OemKeyScan
InvalidateRect
RemovePropW
DdeCmpStringHandles
LoadCursorFromFileA
CreateIconFromResource
SetDlgItemTextW
RealChildWindowFromPoint
DdeNameService
GetClassWord
WinHelpW
SetCaretBlinkTime
CheckMenuItem
MessageBoxA
EnumPropsA
EnumWindowStationsA
EnumDisplaySettingsA
GetWindowThreadProcessId
IsCharUpperA
RealGetWindowClass
GrayStringA
CharUpperW
SetPropA
RegisterClassA
ToAscii
GetUserObjectInformationW
SetForegroundWindow
EnumPropsExW
GetMenuItemCount
SubtractRect
AnyPopup
EnumThreadWindows
SendInput
GetTopWindow
SendMessageW
GetPropW
CreateWindowExW
GetMenuBarInfo
EditWndProc

kernel32

GetSystemTimeAdjustment
GetEnvironmentStringsW
TlsSetValue
DeleteCriticalSection
VirtualQueryEx
InterlockedExchange
FreeEnvironmentStringsA
HeapFree
VirtualProtect
DebugBreak
CreateMutexA
RtlUnwind
SetCurrentDirectoryW
InitializeCriticalSection
ReadFile
UnhandledExceptionFilter
GetLastError
GetStdHandle
RtlMoveMemory
GetStringTypeW
EnumSystemLocalesA
GetTimeFormatA
HeapDestroy
FlushFileBuffers
IsValidCodePage
GetStartupInfoA
GetLocaleInfoA
GetDateFormatA
GetSystemInfo
GetFileType
VirtualFree
LeaveCriticalSection
EnumTimeFormatsA
IsValidLocale
VirtualQuery
VirtualAlloc
GetLocaleInfoW
GetCurrentThreadId
CompareStringW
WriteFile
GetModuleFileNameA
GetCurrentThread
EnumSystemCodePagesW
GetTickCount
InterlockedDecrement
GetSystemTimeAsFileTime
InterlockedIncrement
CompareStringA
GetCurrentProcessId
GetVersionExA
GetProcAddress
HeapValidate
ExitProcess
GetEnvironmentStrings
HeapCreate
GetACP
GetCommandLineA
IsBadWritePtr
LCMapStringW
SetStdHandle
SetFileTime
EnterCriticalSection
SetEnvironmentVariableA
FreeEnvironmentStringsW
MultiByteToWideChar
SetConsoleCtrlHandler
LCMapStringA
GetCPInfo
OutputDebugStringA
SetLastError
TlsAlloc
GetUserDefaultLCID
OpenMutexA
GetModuleHandleA
GetStringTypeA
IsBadReadPtr
HeapAlloc
SetFilePointer
WideCharToMultiByte
GetTimeZoneInformation
LoadLibraryA
TlsFree
GetCurrentProcess
TlsGetValue
GetOEMCP
lstrcpyW
QueryPerformanceCounter
SetHandleCount
TerminateProcess
CloseHandle
HeapReAlloc

Sections

.text
Size: 248KB - Virtual size: 245KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 248KB - Virtual size: 244KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 138KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 76KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b178a653962b4c7424252e5892c724bf

Headers

File Characteristics

Imports

comctl32

wininet

user32

kernel32

Sections

.text Size: 248KB - Virtual size: 245KB

.rdata Size: 248KB - Virtual size: 244KB

.data Size: 116KB - Virtual size: 138KB

.rsrc Size: 76KB - Virtual size: 73KB

.text
Size: 248KB - Virtual size: 245KB

.rdata
Size: 248KB - Virtual size: 244KB

.data
Size: 116KB - Virtual size: 138KB

.rsrc
Size: 76KB - Virtual size: 73KB