fc38dcea15b2025dc5b60c50631ea206_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

fc38dcea15b2025dc5b60c50631ea206_JaffaCakes118
Size

497KB
MD5

fc38dcea15b2025dc5b60c50631ea206
SHA1

0668d671b94ed3abb56ad7b2f0c27729a1985f42
SHA256

a28628f8127e3440eac7b10a4217545ac70cd291c43fbaaf0dd6fc4529fd74fd
SHA512

328b4d3f6c367caeb3e460eaabf1889d5edb57e458fde5aabf4d698f060d9fd9c4f3488c76b6a90020f745d2f83a2381adf088535a0c3962f4213f26bc22751d
SSDEEP

12288:SxY/TvLeEA3/B9FpaxTXVspDbtklYcXEN:Sa/TvL/e59LmTFsY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fc38dcea15b2025dc5b60c50631ea206_JaffaCakes118

Files

fc38dcea15b2025dc5b60c50631ea206_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d6c492cd0e2993366c47ab1103292193

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

EnumFontFamiliesExA
GetViewportExtEx
GetDeviceCaps
CreateDCW
GetBitmapBits
GetFontData
SetBkColor
ScaleViewportExtEx
SetColorSpace
GetColorSpace
GetStretchBltMode
SetTextCharacterExtra
CreateMetaFileA
GdiPlayJournal
SetMagicColors
SetColorAdjustment
EnumICMProfilesA
CreateRectRgn
GetMapMode
StartPage

comctl32

InitCommonControlsEx

kernel32

OpenMutexA
GetModuleFileNameA
InterlockedDecrement
SetStdHandle
VirtualFree
UnhandledExceptionFilter
FreeEnvironmentStringsW
HeapDestroy
LCMapStringW
SetLastError
QueryPerformanceCounter
ReadFile
GetTimeZoneInformation
GetTickCount
WideCharToMultiByte
GetVersion
CreateMutexA
GetStartupInfoA
GetStdHandle
GetStringTypeA
TlsGetValue
GetFileType
TerminateProcess
IsBadWritePtr
LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
CloseHandle
InterlockedExchange
MultiByteToWideChar
GetEnvironmentStringsW
VirtualQuery
GetCurrentThread
GlobalFindAtomW
RtlUnwind
WriteFile
InterlockedIncrement
HeapReAlloc
TlsSetValue
FlushFileBuffers
LCMapStringA
GetSystemTimeAsFileTime
SetHandleCount
GetProcAddress
LoadLibraryA
HeapCreate
SetFilePointer
HeapAlloc
FreeEnvironmentStringsA
VirtualFreeEx
CompareStringW
GetSystemTime
GetLastError
GetCPInfo
GetCommandLineA
EnterCriticalSection
GetCurrentProcess
ExitProcess
GetACP
TlsFree
HeapFree
GetCurrentProcessId
GetCurrentThreadId
GetLocalTime
GetOEMCP
GetEnvironmentStrings
CompareStringA
GetStringTypeW
TlsAlloc
GetModuleHandleA
VirtualAlloc
SetEnvironmentVariableA

user32

IsChild
DdeInitializeW
GetMessageTime
IsCharAlphaW
DlgDirSelectExW
UnhookWindowsHookEx
CreateIconFromResourceEx
CallWindowProcW
ImpersonateDdeClientWindow
CheckMenuItem
CharLowerW
EnumDisplayDevicesA
DdeCreateDataHandle
LoadMenuIndirectW
IsCharAlphaNumericW
ExcludeUpdateRgn
ClipCursor
RegisterClassExA
SendNotifyMessageA
DdeSetUserHandle
UnregisterDeviceNotification
RegisterClassA
GetDoubleClickTime
InsertMenuItemW
ShowWindow

wininet

FindNextUrlCacheEntryExW
UnlockUrlCacheEntryStream
DeleteUrlCacheContainerW
InternetGetCookieA
FindFirstUrlCacheEntryW
FtpGetFileW
InternetOpenUrlA
FtpRemoveDirectoryA
InternetCreateUrlA

shell32

ExtractIconExA
ShellExecuteExW
SHBrowseForFolderW
ShellExecuteExA
RealShellExecuteW

advapi32

RegNotifyChangeKeyValue
RegSaveKeyA
CryptVerifySignatureW
RegConnectRegistryW
CryptGenRandom
CryptHashSessionKey
RegQueryMultipleValuesA

Sections

.text
Size: 167KB - Virtual size: 167KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 311KB - Virtual size: 311KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d6c492cd0e2993366c47ab1103292193

Headers

File Characteristics

Imports

gdi32

comctl32

kernel32

user32

wininet

shell32

advapi32

Sections

.text Size: 167KB - Virtual size: 167KB

.rdata Size: 5KB - Virtual size: 15KB

.data Size: 311KB - Virtual size: 311KB

.rsrc Size: 12KB - Virtual size: 11KB

.text
Size: 167KB - Virtual size: 167KB

.rdata
Size: 5KB - Virtual size: 15KB

.data
Size: 311KB - Virtual size: 311KB

.rsrc
Size: 12KB - Virtual size: 11KB