d6334ccc4ea63bf433e77f9d5630be22_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

d6334ccc4ea63bf433e77f9d5630be22_JaffaCakes118
Size

370KB
MD5

d6334ccc4ea63bf433e77f9d5630be22
SHA1

20c5260c13654f8a79fa76cea251eb2707cf6ce3
SHA256

8ad90492ebbceeb9a7d6940d7f0e94b4606f18941a8041ced7d2970d7c5d68ee
SHA512

4a39669973ab5d8ec0956bca6f292b5ed023f1220c99593cfb92bf133195513cc27a555566e1b6b183cc3bcef611a901e8bf46957381607b043767cd2cd590ce
SSDEEP

6144:UCqN5vz22o76gyUhYhY5M/c+4psYHNVx4ucxrwPIyNsuuu10ytilojL1xC:UnN5vz2776USckj4iYt4ucnyuZiLt8oj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d6334ccc4ea63bf433e77f9d5630be22_JaffaCakes118

Files

d6334ccc4ea63bf433e77f9d5630be22_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d5949fa99848ef375fc2066a67d5d867

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

FindTextA

advapi32

CreateServiceA
RegSetValueExW

wininet

GopherOpenFileW
FindNextUrlCacheContainerA
FtpOpenFileW
InternetOpenA
SetUrlCacheGroupAttributeW

comctl32

InitCommonControlsEx

kernel32

TerminateProcess
GetStartupInfoA
GetACP
SetFilePointer
OpenMutexW
WriteFile
LockResource
GetModuleFileNameW
CreateToolhelp32Snapshot
TlsGetValue
GetCurrentThreadId
GetLastError
OpenMutexA
GetUserDefaultLCID
SetEnvironmentVariableA
GetOEMCP
HeapFree
VirtualAlloc
FreeEnvironmentStringsW
GetTimeZoneInformation
CompareStringW
ReadFile
SetStdHandle
WideCharToMultiByte
lstrcmpW
FindClose
ExitProcess
MultiByteToWideChar
IsBadWritePtr
GetEnvironmentStringsW
TlsAlloc
GetCPInfo
GetDateFormatW
GetVersion
CloseHandle
LeaveCriticalSection
FoldStringA
LCMapStringW
WritePrivateProfileStringA
CompareStringA
GetFileAttributesA
GetProfileStringW
GetTickCount
SetCriticalSectionSpinCount
InterlockedIncrement
GetProcAddress
GetModuleFileNameA
HeapValidate
OutputDebugStringA
WriteConsoleInputA
InterlockedExchange
SetHandleCount
GlobalAlloc
GetFileType
FlushFileBuffers
LoadLibraryA
IsBadReadPtr
GetEnvironmentStrings
GetCurrentThread
GetSystemTime
HeapCreate
InterlockedCompareExchange
HeapDestroy
DeleteCriticalSection
GetStringTypeW
FreeEnvironmentStringsA
GetNumberFormatW
GetSystemTimeAsFileTime
HeapReAlloc
GetCurrentProcessId
GlobalReAlloc
TlsFree
CreateFileA
GetStringTypeA
CreateMailslotW
TlsSetValue
EnterCriticalSection
UnhandledExceptionFilter
GetStdHandle
LCMapStringA
GetCommandLineA
QueryPerformanceCounter
InitializeCriticalSection
RtlUnwind
GetModuleHandleA
VirtualQuery
GetDateFormatA
SetConsoleCtrlHandler
VirtualFree
GetLogicalDrives
GetLocalTime
HeapAlloc
InterlockedDecrement
FindNextFileW
SetLastError
CreateMutexA
DuplicateHandle
GetCurrentProcess
DebugBreak

user32

IsIconic
GetClassInfoW
RegisterClassA
InsertMenuA
CloseClipboard
CheckRadioButton
RegisterClassExA

gdi32

CreateColorSpaceA
EnumICMProfilesW
SetICMProfileW
GetDeviceGammaRamp
AnimatePalette
SetDIBColorTable
EnumFontFamiliesExW
GetArcDirection
PlayEnhMetaFileRecord
RectInRegion
EnumFontFamiliesW
SelectClipRgn
RealizePalette
GetColorSpace
PlayEnhMetaFile
GetSystemPaletteEntries
EqualRgn
CloseMetaFile
EnumFontFamiliesA
ArcTo
FlattenPath
ExtTextOutW
GetTextFaceW
SetBkColor
CreateDCA

Sections

.text
Size: 149KB - Virtual size: 149KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 205KB - Virtual size: 205KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d5949fa99848ef375fc2066a67d5d867

Headers

File Characteristics

Imports

comdlg32

advapi32

wininet

comctl32

kernel32

user32

gdi32

Sections

.text Size: 149KB - Virtual size: 149KB

.rdata Size: 8KB - Virtual size: 36KB

.data Size: 205KB - Virtual size: 205KB

.rsrc Size: 7KB - Virtual size: 6KB

.text
Size: 149KB - Virtual size: 149KB

.rdata
Size: 8KB - Virtual size: 36KB

.data
Size: 205KB - Virtual size: 205KB

.rsrc
Size: 7KB - Virtual size: 6KB