08914eb657302bfd953164e6ab96d5e6_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

08914eb657302bfd953164e6ab96d5e6_JaffaCakes118
Size

428KB
MD5

08914eb657302bfd953164e6ab96d5e6
SHA1

886dc316174f12d61beca7852bcbae38509c0c03
SHA256

f4dde23d788198d0e3826ea07c9e8ce59238b4229d1401c5b001e68a8f31996b
SHA512

d6d728085fd71eb7e4ebe963873f65519bcee7ced88f76aa5f185215794241f0bf4b8648dde1924eb1b0d0f20988dce4f1392b364f46eff8be34cbd5199e12ac
SSDEEP

12288:dBBcdkv4vY8Z/XFiy8f27cz3pdrLVQ2JlO1AdfZg:dMd483p37cL3r22lO1m

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
08914eb657302bfd953164e6ab96d5e6_JaffaCakes118

Files

08914eb657302bfd953164e6ab96d5e6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5479adbc944fb911236d6d0d38d524b2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersionExA
GetOEMCP
SetConsoleMode
GetPrivateProfileSectionNamesW
GetDateFormatA
GetCompressedFileSizeA
HeapAlloc
LoadLibraryA
TlsAlloc
IsValidLocale
TlsSetValue
FileTimeToDosDateTime
DosDateTimeToFileTime
GetSystemDefaultLangID
SetHandleCount
SetLastError
WriteConsoleInputW
GetLastError
GetLocaleInfoA
SetConsoleCursorPosition
MultiByteToWideChar
EnterCriticalSection
GetLocaleInfoW
EnumSystemLocalesA
WriteFile
GetStringTypeA
TlsGetValue
GetFileType
GetProcAddress
GetWindowsDirectoryW
GetEnvironmentStrings
VirtualProtect
GetEnvironmentStringsW
DeleteCriticalSection
FindResourceExA
GetStringTypeW
VirtualQuery
IsValidCodePage
VirtualFree
LCMapStringW
InitializeCriticalSection
GetTimeFormatA
TlsFree
GetCurrentThread
HeapReAlloc
IsBadWritePtr
ExitProcess
GetDiskFreeSpaceW
FindFirstFileW
VirtualAlloc
WideCharToMultiByte
QueryPerformanceCounter
GetCurrentProcess
HeapCreate
GetModuleHandleA
GetACP
GetTimeZoneInformation
GetUserDefaultLCID
GetCurrentThreadId
LeaveCriticalSection
UnhandledExceptionFilter
CompareStringW
GetCPInfo
GetCurrentProcessId
GetModuleFileNameA
HeapDestroy
CompareStringA
VirtualProtectEx
GetTickCount
GetStdHandle
SetSystemTime
FreeEnvironmentStringsW
SetEnvironmentVariableA
LCMapStringA
RtlUnwind
FreeEnvironmentStringsA
GetSystemTimeAsFileTime
InterlockedExchange
HeapSize
SetLocaleInfoA
RtlZeroMemory
GetCommandLineA
GetExitCodeProcess
GetStartupInfoA
GetSystemInfo
HeapFree
TerminateProcess

user32

ActivateKeyboardLayout
CharPrevA
CallWindowProcW
CopyAcceleratorTableA
EnumDisplayMonitors
GetDlgItemInt
WINNLSGetIMEHotkey
LoadMenuIndirectW

wininet

IncrementUrlCacheHeaderData
HttpSendRequestW
SetUrlCacheGroupAttributeA
CreateUrlCacheContainerW
InternetSetFilePointer
InternetGetConnectedStateEx
DeleteIE3Cache
InternetSecurityProtocolToStringW
InternetGetConnectedState
InternetTimeToSystemTimeW
InternetWriteFileExA
HttpCheckDavCompliance
InternetHangUp
GetUrlCacheConfigInfoA
FindNextUrlCacheEntryW
LoadUrlCacheContent
GetUrlCacheConfigInfoW
InternetFindNextFileW
HttpQueryInfoW
FindNextUrlCacheEntryExA
RetrieveUrlCacheEntryFileA
FindNextUrlCacheContainerA
FtpRenameFileA
GetUrlCacheEntryInfoExW
UnlockUrlCacheEntryFile

advapi32

CryptGetDefaultProviderW
RegCreateKeyExW
CryptDestroyKey
RegQueryInfoKeyA
CryptGenRandom
CryptDuplicateHash
LookupSecurityDescriptorPartsA
RegDeleteKeyA
RevertToSelf
GetUserNameA
CryptGetHashParam
InitiateSystemShutdownW
RegOpenKeyExW
RegNotifyChangeKeyValue
RegEnumKeyA
DuplicateTokenEx
CryptGetProvParam
GetUserNameW
CryptSignHashW
RegOpenKeyW
LookupPrivilegeValueW

Sections

.text
Size: 110KB - Virtual size: 109KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 307KB - Virtual size: 320KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5479adbc944fb911236d6d0d38d524b2

Headers

File Characteristics

Imports

kernel32

user32

wininet

advapi32

Sections

.text Size: 110KB - Virtual size: 109KB

.data Size: 307KB - Virtual size: 320KB

.rsrc Size: 10KB - Virtual size: 10KB

.text
Size: 110KB - Virtual size: 109KB

.data
Size: 307KB - Virtual size: 320KB

.rsrc
Size: 10KB - Virtual size: 10KB