28ebadf121abe7f57b08584dbcc27768_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

28ebadf121abe7f57b08584dbcc27768_JaffaCakes118
Size

888KB
MD5

28ebadf121abe7f57b08584dbcc27768
SHA1

07aa29db7e713d2532adc55d3e8798f656e0cd8f
SHA256

1ee442df1bf610d2823e73f69f0fe98793d432bc379f28cf8f17520b7244504b
SHA512

df810e7d299e648236f0d3afb296542efbe422d04f565776c931f553975ae15f38f8083bb5164597d0f5f8c55fbcf8edb95a0ca02918444c9bbc7d55078e82ad
SSDEEP

24576:kEYgn4PYPx+S3NaEhsux6rJzeY9AzHEWD2:Bn4APx+YNaEh9qNeYyLK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
28ebadf121abe7f57b08584dbcc27768_JaffaCakes118

Files

28ebadf121abe7f57b08584dbcc27768_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e51078b2c5b62310ee110eab054edc7a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx
ImageList_Read
ImageList_SetDragCursorImage
DrawStatusTextW
ImageList_SetIconSize
ImageList_LoadImageW
GetEffectiveClientRect
ImageList_SetFilter
CreatePropertySheetPageA
DrawStatusTextA
ImageList_GetDragImage
ImageList_DragShowNolock
ImageList_Add

wininet

GetUrlCacheConfigInfoA
FtpOpenFileW
IsUrlCacheEntryExpiredA
FtpCommandA
InternetConnectA
InternetDialA

comdlg32

GetSaveFileNameW

gdi32

PlayEnhMetaFile
CreateFontIndirectA
SetPixel
GdiPlayScript
DeleteMetaFile
GetArcDirection
TextOutW
PtInRegion

kernel32

HeapDestroy
GetLocaleInfoA
RtlUnwind
TlsSetValue
TerminateProcess
GetLocaleInfoW
FreeEnvironmentStringsW
IsBadWritePtr
WideCharToMultiByte
GetConsoleOutputCP
GetTickCount
GetCurrentThread
VirtualQuery
LeaveCriticalSection
CompareStringW
HeapFree
VirtualProtect
TlsAlloc
FreeEnvironmentStringsA
HeapCreate
GetCommandLineA
MapViewOfFileEx
GetEnvironmentStringsW
EnumCalendarInfoA
QueryPerformanceCounter
GetUserDefaultLCID
CreateMutexA
IsValidCodePage
VirtualAlloc
LCMapStringW
LCMapStringA
DeleteCriticalSection
SetFilePointer
InitializeCriticalSection
GetStdHandle
CloseHandle
GetCurrentProcess
SetStdHandle
GetCurrentProcessId
GetTimeZoneInformation
OpenMutexA
GetDiskFreeSpaceExW
GetCurrentThreadId
HeapReAlloc
GetCPInfo
InterlockedExchange
EnterCriticalSection
GetLastError
LoadLibraryA
GetStartupInfoA
GetTimeFormatA
GetSystemTimeAsFileTime
GetACP
GetDateFormatA
SetHandleCount
GetModuleFileNameA
HeapSize
SetEnvironmentVariableA
HeapAlloc
TlsGetValue
UnhandledExceptionFilter
GetOEMCP
GetModuleHandleA
GetEnvironmentStrings
GetStringTypeA
CreatePipe
GetFileType
LoadLibraryExA
MultiByteToWideChar
CreateNamedPipeA
FlushFileBuffers
EnumSystemLocalesA
WriteFile
TlsFree
GetVersionExA
GetStringTypeW
IsValidLocale
CompareStringA
GetSystemInfo
ReadFile
ExitProcess
WritePrivateProfileStringA
SetLastError
VirtualFree
GetProcAddress

user32

WaitForInputIdle
InvertRect
DlgDirListA
DrawIcon
RegisterClassW
RegisterClassExW
GetDlgItemInt
SendNotifyMessageW
WINNLSGetIMEHotkey
RegisterClassExA
SetCursor
AnimateWindow
ChangeDisplaySettingsW
LoadIconW
DlgDirSelectExA
RegisterClassA
EnumChildWindows
AppendMenuW
CharLowerW
CopyRect
DefWindowProcW
GetDlgItemTextW
FindWindowExW
DdeQueryStringA
EnumDisplaySettingsW

Sections

.text
Size: 360KB - Virtual size: 357KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 300KB - Virtual size: 297KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 136KB - Virtual size: 154KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 88KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e51078b2c5b62310ee110eab054edc7a

Headers

File Characteristics

Imports

comctl32

wininet

comdlg32

gdi32

kernel32

user32

Sections

.text Size: 360KB - Virtual size: 357KB

.rdata Size: 300KB - Virtual size: 297KB

.data Size: 136KB - Virtual size: 154KB

.rsrc Size: 88KB - Virtual size: 84KB

.text
Size: 360KB - Virtual size: 357KB

.rdata
Size: 300KB - Virtual size: 297KB

.data
Size: 136KB - Virtual size: 154KB

.rsrc
Size: 88KB - Virtual size: 84KB