2b08fa487843fd0739c7c1097ca8d72d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2b08fa487843fd0739c7c1097ca8d72d_JaffaCakes118
Size

464KB
MD5

2b08fa487843fd0739c7c1097ca8d72d
SHA1

11a4f1b208033aff5d045d234a38d43ae88084fe
SHA256

01aad8381bcf6c32bfebad340da104ee36530f1a7b0182bb23a60eb1d855e657
SHA512

a6c953f1614c98b2601f9b3ceada3e96ef0192db41089073fb81dc48272a642945097c18af6aea52dd209ae7087994c4eb0f9dde316b489a35a64ecd18df5a1e
SSDEEP

12288:aWL7uWlD/VocIGkyHXF3OAUsREc3XJ5C6UB0MI+mbG8X/osGH8tlYk:3L7B44XF3OAM+XJb4hI+cNYcr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2b08fa487843fd0739c7c1097ca8d72d_JaffaCakes118

Files

2b08fa487843fd0739c7c1097ca8d72d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

72dd601f37018baddac65f8c6d213953

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SelectPalette
GetViewportOrgEx
CreateRoundRectRgn
OffsetWindowOrgEx
SetPixel
AddFontResourceA
GetTextExtentPointA
GetLogColorSpaceW
StretchDIBits
DeleteColorSpace
ResetDCW
GetCharABCWidthsFloatA
GetGlyphOutlineA
AngleArc
GetCharABCWidthsW
GetKerningPairsA
CreatePen
PolyBezier
GetClipRgn
CreateHatchBrush
CreatePolygonRgn
GetTextCharsetInfo

advapi32

LookupSecurityDescriptorPartsA
LookupPrivilegeValueA
CryptAcquireContextA

comdlg32

ChooseColorA
FindTextA
PageSetupDlgW
FindTextW
ChooseFontW
ReplaceTextW
GetSaveFileNameW
LoadAlterBitmap
GetFileTitleW
ChooseColorW
GetOpenFileNameA
GetOpenFileNameW
GetSaveFileNameA

shell32

SHGetSettings
ShellHookProc
InternalExtractIconListW
SHGetDiskFreeSpaceA
SHGetPathFromIDList
RealShellExecuteExA
SHGetSpecialFolderPathA
SHGetDataFromIDListA
ExtractIconExW
DragQueryFile
ShellAboutA
SHGetNewLinkInfo
SHChangeNotify

kernel32

EnumSystemLocalesA
QueryPerformanceCounter
HeapSize
TlsGetValue
DeleteCriticalSection
VirtualFree
InterlockedDecrement
TlsAlloc
LoadLibraryA
GetTickCount
InterlockedExchange
RtlUnwind
FreeLibrary
FreeEnvironmentStringsW
GetCurrentDirectoryW
SetUnhandledExceptionFilter
GetLocaleInfoW
GetStdHandle
CompareStringW
GetCurrentProcess
WideCharToMultiByte
GetCurrentProcessId
GetProcessHeap
GetEnvironmentStringsW
TlsSetValue
TlsFree
GetCPInfo
HeapDestroy
GetLastError
SetHandleCount
GetFileType
GetCurrentThread
Sleep
VirtualAlloc
GetACP
TransmitCommChar
GetCurrentThreadId
GetDateFormatA
HeapFree
InterlockedIncrement
LCMapStringA
HeapReAlloc
GetOEMCP
TerminateProcess
IsValidCodePage
GetLocaleInfoA
SetConsoleCursorPosition
GetCommandLineA
OpenSemaphoreW
GetStringTypeW
HeapCreate
GetStringTypeA
GetVersionExA
IsValidLocale
GetTempPathA
GetModuleHandleA
UnlockFileEx
IsDebuggerPresent
CompareStringA
EnterCriticalSection
VirtualQuery
GetUserDefaultLangID
InitializeCriticalSection
SetConsoleCtrlHandler
ExitProcess
FreeEnvironmentStringsA
GetStartupInfoA
GetProcessHeaps
SetLastError
GetNamedPipeHandleStateW
GetEnvironmentVariableA
SetEnvironmentVariableA
HeapAlloc
LeaveCriticalSection
GetSystemTimeAsFileTime
GetModuleFileNameA
WaitCommEvent
GetTimeZoneInformation
UnhandledExceptionFilter
EnumResourceTypesW
GetProcAddress
LCMapStringW
GetEnvironmentStrings
WriteFile
MultiByteToWideChar
GetUserDefaultLCID
GetTimeFormatA

wininet

FtpSetCurrentDirectoryW
InternetCrackUrlA
FindNextUrlCacheEntryExA
InternetDialW
FindFirstUrlCacheEntryExW
InternetGetCookieW
InternetGoOnline
ShowCertificate
InternetCombineUrlW
DeleteUrlCacheEntry
FtpCreateDirectoryW
LoadUrlCacheContent
InternetInitializeAutoProxyDll
FtpSetCurrentDirectoryA
FreeUrlCacheSpaceW
InternetReadFileExA
HttpEndRequestW
InternetWriteFile
InternetWriteFileExA

Sections

.text
Size: 138KB - Virtual size: 137KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 310KB - Virtual size: 336KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

72dd601f37018baddac65f8c6d213953

Headers

File Characteristics

Imports

gdi32

advapi32

comdlg32

shell32

kernel32

wininet

Sections

.text Size: 138KB - Virtual size: 137KB

.data Size: 310KB - Virtual size: 336KB

.rsrc Size: 15KB - Virtual size: 14KB

.text
Size: 138KB - Virtual size: 137KB

.data
Size: 310KB - Virtual size: 336KB

.rsrc
Size: 15KB - Virtual size: 14KB