2e3eb96f342f5202bf08994e2b07cf92_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

2e3eb96f342f5202bf08994e2b07cf92_JaffaCakes118
Size

275KB
MD5

2e3eb96f342f5202bf08994e2b07cf92
SHA1

91167502e901a01920ef55db58ebcd1a1476b1b0
SHA256

c95eee08eba63d1f86978e82d80e473545fd1c4070015fbfaab6885cc5c26f28
SHA512

099e3e83701cfdfab3dac006f1bd197cc5880abbfb0e3e323bce55b4e2932bfd605d8dbd702970016a92300c9d72cf2f5dd15996308e92fa0dbb02aecb782b7e
SSDEEP

6144:DkihhlZ3iMczeEBkTMtv8uqye9HTmXrcoKMYRSZsVX+KgN1xPAUCT/JQ:Dk6SMczeVikie9HTmXrlKMYc29+KgNmD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2e3eb96f342f5202bf08994e2b07cf92_JaffaCakes118

Files

2e3eb96f342f5202bf08994e2b07cf92_JaffaCakes118
.exe windows:4 windows x86 arch:x86

612fd25d4f5580933ec1d6b00bffe2cd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

FindFirstUrlCacheGroup
InternetGetLastResponseInfoW

gdi32

Arc
PolyDraw
WidenPath
GetTextFaceA
PaintRgn
GetEnhMetaFileW
GetKerningPairsW
FlattenPath
GdiPlayDCScript
GetTextExtentExPointW
Polygon
GetLogColorSpaceA
GetMapMode
GetDeviceGammaRamp
CreateDiscardableBitmap
CreateBitmap
SetColorSpace
EqualRgn
GdiFlush
CreatePolygonRgn
GetStockObject
SetTextColor
SetICMProfileA
GetGlyphOutlineW
SetBkMode

advapi32

CryptGenRandom
LookupAccountSidW
InitializeSecurityDescriptor
CryptSetKeyParam
ReportEventW
InitiateSystemShutdownW
RegCreateKeyExW
LookupSecurityDescriptorPartsW
CryptSetProvParam
RegDeleteValueW
CryptGetKeyParam
CryptHashSessionKey
CryptEnumProvidersA
GetUserNameA
RegQueryValueExW
CryptAcquireContextA
RegQueryValueW
RegQueryInfoKeyA
CryptSignHashA
CryptContextAddRef
RegEnumKeyExW
LookupAccountSidA
CryptGenKey

comdlg32

GetFileTitleW
PageSetupDlgW
GetFileTitleA
ChooseFontA
ChooseColorW
GetSaveFileNameW
ChooseColorA
GetOpenFileNameW
FindTextA
PageSetupDlgA
FindTextW
ReplaceTextA
PrintDlgW

kernel32

GetModuleHandleA
GetLocaleInfoW
GetEnvironmentStrings
TlsGetValue
TlsSetValue
RtlUnwind
GetUserDefaultLCID
FreeEnvironmentStringsW
SetEnvironmentVariableA
GetCurrentThreadId
GetProcAddress
InitializeCriticalSection
DeleteCriticalSection
HeapDestroy
OpenFileMappingW
GetStringTypeW
EnumDateFormatsExW
GetFileType
GetCurrentProcess
InterlockedExchange
GetTimeFormatA
IsBadReadPtr
GetUserDefaultLangID
VirtualFree
SetConsoleTextAttribute
LeaveCriticalSection
TlsFree
CompareStringW
VirtualProtect
SetStdHandle
EnumSystemLocalesA
ExitProcess
HeapAlloc
VirtualAllocEx
GetACP
InterlockedIncrement
GetCurrentProcessId
GetDateFormatA
FlushViewOfFile
QueryPerformanceCounter
SetHandleCount
GetOEMCP
MultiByteToWideChar
GetCurrentThread
GetTimeZoneInformation
OutputDebugStringA
FlushFileBuffers
LCMapStringW
TerminateProcess
InterlockedDecrement
GetEnvironmentStringsW
HeapCreate
TlsAlloc
GetLocaleInfoA
GetSystemInfo
VirtualQuery
WideCharToMultiByte
EnterCriticalSection
GetStartupInfoA
GetStdHandle
IsBadWritePtr
HeapValidate
HeapReAlloc
FreeEnvironmentStringsA
IsValidLocale
GetStringTypeA
UnhandledExceptionFilter
RemoveDirectoryA
WriteFile
GetSystemTimeAsFileTime
HeapFree
SetFilePointer
FindResourceExA
GetTickCount
GetModuleFileNameA
GetVersionExA
LCMapStringA
CompareStringA
GetCommandLineA
SetLastError
CloseHandle
IsValidCodePage
DebugBreak
VirtualAlloc
GetCPInfo
GetLastError
LoadLibraryA
SetConsoleCtrlHandler

shell32

ExtractIconExW
SHUpdateRecycleBinIcon

Sections

.text
Size: 146KB - Virtual size: 146KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 119KB - Virtual size: 118KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

612fd25d4f5580933ec1d6b00bffe2cd

Headers

File Characteristics

Imports

wininet

gdi32

advapi32

comdlg32

kernel32

shell32

Sections

.text Size: 146KB - Virtual size: 146KB

.data Size: 119KB - Virtual size: 118KB

.rsrc Size: 9KB - Virtual size: 8KB

.text
Size: 146KB - Virtual size: 146KB

.data
Size: 119KB - Virtual size: 118KB

.rsrc
Size: 9KB - Virtual size: 8KB