da6398adebcbe1a939b46573aca32189_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

da6398adebcbe1a939b46573aca32189_JaffaCakes118
Size

628KB
MD5

da6398adebcbe1a939b46573aca32189
SHA1

4dab746288f17226e9c76384a707b6854b911988
SHA256

84d54396a0366be4ed72cfc1629b7baa138e60a2306b6150a6bf317e2aa21107
SHA512

0d42d6516548c34a740a53b99ac7732383113db0cbc8398a3bf002f21454f8e4c3ee1e877d3dffd54647d57a9e5ecd8cab4965dce20b6e6fa087cbf49f111cca
SSDEEP

12288:p9xx4HqupDO1mewkqTYEALFYjUOUOsc9JsjrJwEVQd8s8cHL1+kfjQ:zxwhO1m/kGYEAxvOFswWQdJHL1ZfjQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
da6398adebcbe1a939b46573aca32189_JaffaCakes118

Files

da6398adebcbe1a939b46573aca32189_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4a8242b519ffa459bb4720a41eddcac4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleFileNameW
CompareStringW
IsValidLocale
HeapSize
VirtualQuery
GetVersion
GetStringTypeA
CreateRemoteThread
ExitProcess
GetFileType
LCMapStringA
GetEnvironmentStrings
TerminateProcess
TlsFree
VirtualProtect
HeapFree
EnterCriticalSection
TlsGetValue
GlobalReAlloc
FreeEnvironmentStringsA
GetCPInfo
SetEnvironmentVariableA
EnumSystemLocalesA
GetStdHandle
IsValidCodePage
GetCurrentThread
TlsSetValue
SetLocaleInfoW
Sleep
GetCommandLineW
GetModuleHandleA
InitializeCriticalSection
FlushFileBuffers
GetOEMCP
GetFullPathNameW
QueryPerformanceCounter
GetCommandLineA
ReadFile
GetTickCount
OpenMutexA
HeapAlloc
DeleteCriticalSection
LeaveCriticalSection
HeapDestroy
GetProcAddress
WideCharToMultiByte
GetLocaleInfoA
CreateMutexA
GetACP
GetStartupInfoW
HeapCreate
GetVersionExA
FreeEnvironmentStringsW
GetDateFormatA
GetLastError
InterlockedExchange
VirtualFree
GetCurrentProcessId
SetFilePointer
UnhandledExceptionFilter
GetModuleFileNameA
GetCurrentProcess
GetPrivateProfileIntA
GetSystemTimeAsFileTime
GetLocaleInfoW
GetEnvironmentStringsW
LCMapStringW
GetStringTypeW
CloseHandle
GetCurrentThreadId
GetStartupInfoA
LoadLibraryA
IsBadWritePtr
TlsAlloc
SetLastError
SetStdHandle
GetUserDefaultLCID
GetTimeFormatA
MultiByteToWideChar
SetHandleCount
HeapReAlloc
WriteFile
GetTimeZoneInformation
RtlUnwind
VirtualAlloc
GetSystemInfo
GetLogicalDriveStringsA
CompareStringA

comctl32

ImageList_SetFlags
GetEffectiveClientRect
ImageList_SetFilter
ImageList_Draw
ImageList_SetIconSize
ImageList_GetImageCount
InitCommonControlsEx
DrawStatusText
CreatePropertySheetPageW
ImageList_LoadImageW
DrawStatusTextW
ImageList_Merge
CreateStatusWindow
ImageList_DrawIndirect
ImageList_Add
ImageList_ReplaceIcon
ImageList_SetOverlayImage
MakeDragList
ImageList_Copy
ImageList_SetImageCount

comdlg32

GetSaveFileNameA
PageSetupDlgW
FindTextA
ReplaceTextW

user32

CreateWindowStationW
MessageBoxExA
ShowWindow
DrawStateA
EnumDisplaySettingsA
FrameRect
GetTitleBarInfo
CreateWindowExW
GetTabbedTextExtentW
TrackPopupMenu
DefWindowProcW
DdeSetUserHandle
DdeInitializeA
LoadKeyboardLayoutA
RegisterClassA
SendMessageA
TranslateAccelerator
SetMenuItemBitmaps
DdeFreeStringHandle
DestroyWindow
GetForegroundWindow
MapVirtualKeyExW
MessageBoxW
CallWindowProcW
LookupIconIdFromDirectory
DrawTextW
RegisterClassExA
GetScrollRange

wininet

FtpOpenFileA
InternetInitializeAutoProxyDll
FreeUrlCacheSpaceA
InternetErrorDlg
FtpGetFileA

Sections

.text
Size: 212KB - Virtual size: 210KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 252KB - Virtual size: 251KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 125KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4a8242b519ffa459bb4720a41eddcac4

Headers

File Characteristics

Imports

kernel32

comctl32

comdlg32

user32

wininet

Sections

.text Size: 212KB - Virtual size: 210KB

.rdata Size: 252KB - Virtual size: 251KB

.data Size: 116KB - Virtual size: 125KB

.rsrc Size: 44KB - Virtual size: 40KB

.text
Size: 212KB - Virtual size: 210KB

.rdata
Size: 252KB - Virtual size: 251KB

.data
Size: 116KB - Virtual size: 125KB

.rsrc
Size: 44KB - Virtual size: 40KB