28a92064323cd9f254d6502e1576f916_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

28a92064323cd9f254d6502e1576f916_JaffaCakes118
Size

518KB
MD5

28a92064323cd9f254d6502e1576f916
SHA1

aed6e0b9cddde7d8ce14aec75bed0559e8f583f7
SHA256

c57f0036fcc50440e5101c4802f5c766f5fe3cf107a0d8d98410d8b0ffc1e0b2
SHA512

edbbf799c0d0bfad1f7afe8b0beae2273bacdbbeb8381df6b3176068b36dc8edb59a2ccf8e884d646bb405429c00373c2dcbc12a922dc0ee8d301bd0500549c2
SSDEEP

12288:h7381nIpUqUcM2y3xtCPOjBpXwHh+bv4s2erQweylPDk:p3eIpScMpdjBxwHhSwyQwZPo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
28a92064323cd9f254d6502e1576f916_JaffaCakes118

Files

28a92064323cd9f254d6502e1576f916_JaffaCakes118
.exe windows:4 windows x86 arch:x86

49edf12d240226651596d55a13d58fb0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

ColorMatchToTarget
GetCharacterPlacementW
EnableEUDC
GetFontData
FrameRgn
GetWindowExtEx
GetStockObject
FixBrushOrgEx
ExtTextOutA
Chord
CreatePen
SetDIBits
CombineRgn
GetWindowOrgEx
SetPixelFormat
CreateRectRgn

wininet

ShowX509EncodedCertificate
InternetQueryOptionA
FindFirstUrlCacheEntryA
SetUrlCacheGroupAttributeW
FtpFindFirstFileW
FindCloseUrlCache

comdlg32

LoadAlterBitmap
ReplaceTextW

advapi32

AbortSystemShutdownW
CryptVerifySignatureA
RegConnectRegistryA
CryptGenRandom
RegQueryMultipleValuesW
CryptContextAddRef
RegRestoreKeyW
GetUserNameW
CryptEnumProvidersW
CryptSetHashParam
RegDeleteValueA
RegOpenKeyW
RegCreateKeyExA
RegLoadKeyW
CryptSignHashA
RegSetValueExA
RegRestoreKeyA
CryptReleaseContext

comctl32

InitCommonControlsEx

kernel32

MapViewOfFileEx
FlushFileBuffers
GetModuleHandleA
WideCharToMultiByte
CreateEventW
GetStdHandle
GlobalUnfix
GetCurrentProcessId
GetProcAddress
GetCurrentDirectoryW
InterlockedDecrement
GetStringTypeW
InterlockedIncrement
HeapCreate
SetConsoleCtrlHandler
CreateFileMappingW
SetConsoleTitleW
GetOEMCP
MultiByteToWideChar
TlsSetValue
GetModuleFileNameA
TerminateProcess
GetNumberFormatW
GetEnvironmentStringsW
GetLastError
SetFilePointer
ReadFile
GetCurrentProcess
UnlockFile
ExitProcess
InterlockedExchange
GetTickCount
LCMapStringA
HeapValidate
CloseHandle
SetHandleCount
HeapAlloc
GetSystemTimeAsFileTime
SetEnvironmentVariableA
DebugBreak
LeaveCriticalSection
TlsAlloc
SetLastError
CompareStringA
WriteFile
CreateMutexA
HeapFree
InitializeCriticalSection
GetCommandLineA
VirtualQueryEx
GetEnvironmentStrings
GetCurrentThread
WriteConsoleOutputCharacterW
GetStartupInfoA
LCMapStringW
GetTimeZoneInformation
GetTempPathW
QueryPerformanceCounter
GetFileType
IsBadReadPtr
GetPrivateProfileStringA
LoadLibraryW
DeleteCriticalSection
FreeEnvironmentStringsW
RtlUnwind
TlsFree
CompareStringW
GetStringTypeA
OutputDebugStringA
HeapDestroy
TlsGetValue
EnterCriticalSection
GetLocalTime
FreeEnvironmentStringsA
GetCurrentThreadId
LoadLibraryA
VirtualAlloc
VirtualFree
WritePrivateProfileStructW
GetVersion
IsBadWritePtr
GetSystemTime
SetStdHandle
HeapReAlloc
OpenMutexA
GetACP
UnhandledExceptionFilter
VirtualProtectEx
GetCPInfo
VirtualQuery
TransactNamedPipe

user32

EnumDisplaySettingsA
RegisterClassExA
GetMenuItemInfoW
RegisterClassA
LoadMenuA
GetMenuState
CreateWindowExW

Sections

.text
Size: 321KB - Virtual size: 320KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 67KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

49edf12d240226651596d55a13d58fb0

Headers

File Characteristics

Imports

gdi32

wininet

comdlg32

advapi32

comctl32

kernel32

user32

Sections

.text Size: 321KB - Virtual size: 320KB

.rdata Size: 67KB - Virtual size: 91KB

.data Size: 112KB - Virtual size: 111KB

.rsrc Size: 16KB - Virtual size: 15KB

.text
Size: 321KB - Virtual size: 320KB

.rdata
Size: 67KB - Virtual size: 91KB

.data
Size: 112KB - Virtual size: 111KB

.rsrc
Size: 16KB - Virtual size: 15KB