fda344a7ad914aa24d7c9286a9deb282_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

fda344a7ad914aa24d7c9286a9deb282_JaffaCakes118
Size

664KB
MD5

fda344a7ad914aa24d7c9286a9deb282
SHA1

72f589dce79397ce14d025ae1e7597f14b667dca
SHA256

a870103b2383870a9430d6ae17900cecace4956a4fd2b124dea261d83a31d2d9
SHA512

4ca8bd1bf648a038debd816ff86fc1bff1315119fda11b2e640584db24597a116d19d0dfeb81f2f60d90e123fe6541b8257f88357c34fbd57497ce4caf9effad
SSDEEP

12288:w7tvh2mIwmJGyTvubosl05nlASql8PexaHs+OWoc:w7ph2y+vu3ls8xaMmoc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fda344a7ad914aa24d7c9286a9deb282_JaffaCakes118

Files

fda344a7ad914aa24d7c9286a9deb282_JaffaCakes118
.exe windows:4 windows x86 arch:x86

83a5f3ad4f031e7e1691bc091c3029ef

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_Read
CreateToolbar
ImageList_GetImageCount
ImageList_Copy
CreateStatusWindowW
ImageList_SetFilter
InitCommonControlsEx
CreateToolbarEx
ImageList_Duplicate
ImageList_Write
ImageList_SetBkColor
DrawStatusTextA
MakeDragList
ImageList_SetFlags
CreateMappedBitmap
ImageList_AddIcon
ImageList_GetFlags

comdlg32

ChooseColorW
GetSaveFileNameA
GetOpenFileNameW
ReplaceTextA

wininet

InternetSetDialState
FindNextUrlCacheEntryExW
HttpEndRequestW
IsHostInProxyBypassList
FtpDeleteFileW
InternetTimeFromSystemTimeA
InternetCombineUrlW
InternetCheckConnectionA
FtpRemoveDirectoryA

kernel32

GetOEMCP
ExitProcess
TlsAlloc
ReadConsoleW
FindNextChangeNotification
GetSystemTimeAsFileTime
PulseEvent
DeleteCriticalSection
SetConsoleWindowInfo
GetEnvironmentStrings
LeaveCriticalSection
SetConsoleCursorPosition
FlushViewOfFile
GetTimeFormatA
RtlUnwind
EnumCalendarInfoExW
LCMapStringW
CreateWaitableTimerA
LCMapStringA
RaiseException
LocalShrink
CreateFileMappingA
lstrcpyA
VirtualFree
CompareStringW
TlsGetValue
WideCharToMultiByte
GetLocaleInfoW
lstrcmpW
GlobalCompact
SetStdHandle
GlobalDeleteAtom
FlushFileBuffers
lstrcat
GetStringTypeW
lstrcmp
GlobalFlags
ConnectNamedPipe
TransmitCommChar
IsValidLocale
GetStringTypeA
LoadLibraryA
GetCurrentProcessId
SetEnvironmentVariableA
GetCurrentThread
VirtualQuery
TerminateProcess
HeapDestroy
FormatMessageW
CreateDirectoryExW
HeapCreate
GetProcAddress
GetDateFormatA
ExpandEnvironmentStringsW
VirtualAlloc
HeapReAlloc
GetThreadContext
GetFileType
GetTimeZoneInformation
GetThreadLocale
GetCurrentThreadId
VirtualProtect
TlsFree
IsBadWritePtr
InitializeCriticalSection
SetThreadLocale
GetTickCount
CloseHandle
MapViewOfFileEx
GetFileSize
HeapAlloc
WriteConsoleOutputW
GetStdHandle
CreateMutexA
GetModuleFileNameA
IsValidCodePage
DebugBreak
CreateProcessA
GetCPInfo
FreeLibrary
GetUserDefaultLCID
CommConfigDialogA
GetNumberFormatA
GetModuleHandleA
GetStartupInfoA
GetLocaleInfoA
OpenMutexA
GetPrivateProfileStructW
HeapSize
GetCurrentProcess
HeapFree
ReadFile
GetVersionExA
InterlockedExchange
CopyFileExA
lstrlenW
SetHandleCount
SetFilePointer
VirtualLock
MultiByteToWideChar
GetTempFileNameW
QueryPerformanceCounter
ReleaseSemaphore
EnterCriticalSection
GetCurrencyFormatA
FreeEnvironmentStringsW
GetSystemInfo
GetACP
TlsSetValue
FindFirstFileExA
AllocConsole
UnhandledExceptionFilter
GetProfileIntW
GetCommandLineA
GlobalFree
FillConsoleOutputCharacterA
WriteFile
OutputDebugStringW
EnumSystemLocalesA
GlobalGetAtomNameA
GetLastError
SetLastError
IsDebuggerPresent
GetConsoleMode
GetSystemDirectoryW
GetLogicalDriveStringsW
CompareStringA
FreeEnvironmentStringsA
GetThreadTimes
GetEnvironmentStringsW
EnumResourceLanguagesA

user32

GetMenuItemID
GetDialogBaseUnits
EnumChildWindows
DefFrameProcW
ShowWindow
DdeCmpStringHandles
GetUserObjectSecurity
ValidateRect
GetClassInfoExA
InsertMenuItemA
ChangeDisplaySettingsW
CallNextHookEx
DdeConnect
GetWindowLongW
DdeQueryNextServer
LoadBitmapA
EnumWindowStationsW
DrawEdge
CheckMenuItem
AnimateWindow
ScrollWindow
IsRectEmpty
MessageBoxA
GetClientRect
CreateDialogParamA
InvertRect
ChangeDisplaySettingsExW
RegisterClassA
DdeDisconnectList
PeekMessageW
MonitorFromWindow
SetWindowContextHelpId
FindWindowA
GetClassInfoExW
TrackPopupMenuEx
SetCapture
EnumDisplaySettingsExW
OpenDesktopW
ArrangeIconicWindows
GetIconInfo
PostMessageA
SetMenuInfo
IsWindowUnicode
GetDlgCtrlID
CallWindowProcA
CharLowerW
DestroyWindow
TranslateMessage
MsgWaitForMultipleObjects
RegisterClassExA
GetKeyNameTextA
UpdateWindow
CreateMDIWindowW
GetWindow
SendIMEMessageExA
WINNLSGetIMEHotkey
SendNotifyMessageW
CloseClipboard
OpenWindowStationA
CheckMenuRadioItem
DefWindowProcW
CreateWindowExW

Sections

.text
Size: 188KB - Virtual size: 184KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 260KB - Virtual size: 258KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 104KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 108KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

83a5f3ad4f031e7e1691bc091c3029ef

Headers

File Characteristics

Imports

comctl32

comdlg32

wininet

kernel32

user32

Sections

.text Size: 188KB - Virtual size: 184KB

.rdata Size: 260KB - Virtual size: 258KB

.data Size: 104KB - Virtual size: 111KB

.rsrc Size: 108KB - Virtual size: 105KB

.text
Size: 188KB - Virtual size: 184KB

.rdata
Size: 260KB - Virtual size: 258KB

.data
Size: 104KB - Virtual size: 111KB

.rsrc
Size: 108KB - Virtual size: 105KB