d5ed2d8fcd162ffa2f65bc711b820064_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

d5ed2d8fcd162ffa2f65bc711b820064_JaffaCakes118
Size

392KB
MD5

d5ed2d8fcd162ffa2f65bc711b820064
SHA1

2df6163a4b788812051a47d2a7a1a7a7bd07561e
SHA256

65e961c140eea26db655033cc0921a6cc667848ef3a6046a203b35a6d68fc8fa
SHA512

07d3fcff7f55c1f8c2cda671bf09d15989ece34c79a88f40efb3ac87b20851f207ac41c4d43ffed8b364c10cefba5dedc50d0708bdeba4eeca78dcc1770708dd
SSDEEP

6144:UNYA05kN5ac387pBSPI9KCRbFP3SZbv8EAfNtMLFiR/DiFE/Ta8NNWM6osbarDKi:O4WN5lUpBaI9KCXvSZb0MuF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d5ed2d8fcd162ffa2f65bc711b820064_JaffaCakes118

Files

d5ed2d8fcd162ffa2f65bc711b820064_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7ed5f7bb636e79464038943c0a3b3aaf

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

DeleteIE3Cache
InternetCombineUrlW
FtpCommandA
InternetQueryOptionA
FtpCreateDirectoryA
DeleteUrlCacheContainerW

kernel32

GetACP
OpenMutexA
GetTickCount
RtlUnwind
GetEnvironmentStringsW
WriteFile
InterlockedExchange
GetStartupInfoA
SetLastError
QueryPerformanceCounter
OutputDebugStringW
WideCharToMultiByte
FreeLibraryAndExitThread
HeapCreate
EnumSystemLocalesA
ExitProcess
LocalUnlock
GetLocaleInfoW
GetModuleHandleA
UnhandledExceptionFilter
TlsFree
GetCurrentProcess
GetLocaleInfoA
GetCPInfo
GetCommandLineA
LeaveCriticalSection
GetSystemInfo
TlsAlloc
ReadFile
GetSystemTimeAsFileTime
SetStdHandle
LoadLibraryA
GetProcAddress
HeapFree
VirtualAlloc
TlsGetValue
GetOEMCP
HeapSize
GetLastError
FreeEnvironmentStringsA
VirtualQuery
WriteFileEx
GetStdHandle
VirtualProtect
HeapAlloc
CloseHandle
DeleteCriticalSection
VirtualFree
EnterCriticalSection
GetUserDefaultLCID
GetCommandLineW
LCMapStringA
FlushFileBuffers
GetCurrentProcessId
GetThreadLocale
SetFilePointer
FindAtomA
GetStringTypeA
IsBadWritePtr
IsValidCodePage
FreeEnvironmentStringsW
CompareStringA
GetDateFormatA
CreateMutexA
GetTimeZoneInformation
TerminateProcess
GetUserDefaultLangID
TlsSetValue
GetCurrentThread
GetCurrencyFormatW
GetTimeFormatA
GetModuleFileNameA
GetModuleFileNameW
GetFileType
GetVersionExA
SetHandleCount
SetThreadContext
GetEnvironmentStrings
GetStringTypeW
GetCurrentThreadId
CompareStringW
IsValidLocale
HeapReAlloc
MultiByteToWideChar
InitializeCriticalSection
SetEnvironmentVariableA
HeapDestroy
GetStartupInfoW
LCMapStringW

shell32

SHBrowseForFolder

comctl32

ImageList_Create
ImageList_SetOverlayImage
ImageList_EndDrag
ImageList_GetFlags
ImageList_Duplicate
CreateStatusWindowA
ImageList_SetImageCount
InitCommonControlsEx
CreatePropertySheetPageW
ImageList_Destroy
DrawInsert
CreatePropertySheetPageA
ImageList_Write
ImageList_LoadImageA
ImageList_GetImageRect
ImageList_GetIconSize
ImageList_DragShowNolock

user32

SetWindowsHookW
CreateWindowExW
EndDeferWindowPos
IsWindow
OemToCharBuffA
GetMenuInfo
CreateIconFromResourceEx
WINNLSGetEnableStatus
ChangeDisplaySettingsExW
SendIMEMessageExW
SetParent
CharNextExA
SetWindowTextA
MoveWindow
CharToOemBuffW
GetClassInfoA
DdeInitializeA
GetClipboardFormatNameA
ShowWindow
GetWindowTextLengthA
PostMessageA
GetWindowLongW
SubtractRect
ChangeDisplaySettingsW
GetInputState
DefWindowProcA
LoadMenuA
SetWindowLongW
GetScrollInfo
RegisterClassA
RegisterClassExA
DestroyWindow
MessageBoxA
GetMenuItemID
SetFocus
GetGuiResources
CreateIconIndirect
GetKeyboardLayoutList
CopyRect

comdlg32

FindTextA
GetFileTitleA

gdi32

CancelDC
GetMiterLimit
EnumObjects
FrameRgn
DeleteObject
CreateFontW
CreateDCW
GdiPlayScript
SetColorAdjustment
OffsetClipRgn
CloseFigure
PlayMetaFileRecord
DeleteDC
EnumFontFamiliesW
ExtEscape
EnumFontsW
GetRasterizerCaps
GetTextExtentExPointW
CreatePolygonRgn
PolyBezier
GetDeviceCaps
SetPixelV
GetCharWidthW
Pie
SetPixel
PtVisible
GetObjectA
GetTextAlign
ModifyWorldTransform

Sections

.text
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 96KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 128KB - Virtual size: 125KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7ed5f7bb636e79464038943c0a3b3aaf

Headers

File Characteristics

Imports

wininet

kernel32

shell32

comctl32

user32

comdlg32

gdi32

Sections

.text Size: 72KB - Virtual size: 71KB

.rdata Size: 96KB - Virtual size: 92KB

.data Size: 92KB - Virtual size: 112KB

.rsrc Size: 128KB - Virtual size: 125KB

.text
Size: 72KB - Virtual size: 71KB

.rdata
Size: 96KB - Virtual size: 92KB

.data
Size: 92KB - Virtual size: 112KB

.rsrc
Size: 128KB - Virtual size: 125KB