38513009d2dbf4a0f2d042cd48427902_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

38513009d2dbf4a0f2d042cd48427902_JaffaCakes118
Size

643KB
MD5

38513009d2dbf4a0f2d042cd48427902
SHA1

929fce0c7eae5e78291aebc8e26abbaec647df44
SHA256

1553657c999f3a8a729f43d261b83380e28c5db39213e509f221eb6930ef6511
SHA512

0f520354e3c24c0385dd3f20e10d11805b03b79a8fcebaaf1faa5ae30c9546137da419dcdd47de29095dc626867dd74547b7f50e85751eec11e4dc27da01b19c
SSDEEP

12288:ZMe//91KJtYBNNGWyNwsNjbiNzQIe6jE4DttvuwNpEd:ZM6/PKJ6Nof4N8SjEKtBuww

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
38513009d2dbf4a0f2d042cd48427902_JaffaCakes118

Files

38513009d2dbf4a0f2d042cd48427902_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0ece9b3cbd352aedd6cdd25f559f9f90

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeEnvironmentStringsA
SetConsoleOutputCP
CompareStringA
GetModuleFileNameW
FindResourceW
QueryPerformanceCounter
GetDateFormatW
GetLocaleInfoA
GetTimeFormatA
TlsAlloc
MultiByteToWideChar
GetStdHandle
DeleteCriticalSection
HeapCreate
VirtualFree
GetModuleFileNameA
GetConsoleMode
LCMapStringW
IsValidLocale
SetHandleCount
GetNamedPipeHandleStateW
GetCurrentProcess
HeapFree
VirtualQuery
GetFileType
InitializeCriticalSection
GetCalendarInfoW
EnumSystemLocalesA
CompareStringW
TerminateProcess
GetModuleHandleA
ExitProcess
EnterCriticalSection
HeapValidate
GetProcAddress
GetCurrentThread
InterlockedDecrement
TlsGetValue
EnumResourceNamesA
GetProfileSectionW
GetCommandLineW
ExpandEnvironmentStringsW
HeapAlloc
InterlockedIncrement
FreeEnvironmentStringsW
HeapReAlloc
GetStartupInfoW
LoadLibraryA
WriteProfileStringA
SetLastError
LoadLibraryW
InterlockedExchange
GetStartupInfoA
WriteConsoleA
FlushFileBuffers
GetSystemTimeAsFileTime
SetEnvironmentVariableA
SetFilePointer
WritePrivateProfileSectionW
RtlUnwind
UnhandledExceptionFilter
HeapDestroy
GetCurrentThreadId
SetConsoleCursorInfo
RemoveDirectoryA
ReleaseMutex
IsBadReadPtr
GetACP
CreateFileA
CreateFileMappingW
GetCPInfo
OutputDebugStringA
GetTimeZoneInformation
MapViewOfFile
WideCharToMultiByte
TlsFree
CloseHandle
GetTickCount
GetLocaleInfoW
WaitForSingleObjectEx
RaiseException
VirtualAlloc
OutputDebugStringW
GetProcessHeap
DeleteFileW
GetLastError
GetDateFormatA
GetConsoleOutputCP
TlsSetValue
SetStdHandle
IsDebuggerPresent
LeaveCriticalSection
GetCommandLineA
lstrlenA
SetUnhandledExceptionFilter
GetStringTypeW
SetWaitableTimer
SetConsoleCtrlHandler
DebugBreak
GetStringTypeA
GetVersionExA
WriteConsoleW
IsValidCodePage
GetUserDefaultLCID
FreeLibrary
GetCurrentProcessId
GetOEMCP
GetConsoleCP
LCMapStringA
WriteFile
GetEnvironmentStrings
GetEnvironmentStringsW

advapi32

InitiateSystemShutdownW
LookupPrivilegeDisplayNameW
RegSaveKeyW
LookupPrivilegeDisplayNameA
RegConnectRegistryA
RegSetValueExA
CryptSignHashA
CryptGenKey
RegDeleteKeyW
CryptDeriveKey
StartServiceW
LookupSecurityDescriptorPartsW
CryptEnumProvidersA
CryptVerifySignatureW
RegOpenKeyW
CryptGetDefaultProviderW
RegEnumValueW

wininet

InternetSetOptionW
ShowClientAuthCerts
InternetErrorDlg
InternetOpenW
InternetCloseHandle
CreateUrlCacheContainerA

shell32

SHAppBarMessage
InternalExtractIconListW
ExtractAssociatedIconW

user32

CreateCursor
DrawTextExA
SetProcessWindowStation
ChangeMenuA
SetClassWord
CharPrevA
GetWindowInfo
CharLowerW
IsChild
LoadCursorA
SendMessageTimeoutW
DrawCaption
EnumPropsExW
GetWindowTextW
GetDlgItemTextA
EditWndProc
GetClipboardViewer
RegisterClassExA

Sections

.text
Size: 264KB - Virtual size: 263KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 44KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 329KB - Virtual size: 328KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0ece9b3cbd352aedd6cdd25f559f9f90

Headers

File Characteristics

Imports

kernel32

advapi32

wininet

shell32

user32

Sections

.text Size: 264KB - Virtual size: 263KB

.rdata Size: 44KB - Virtual size: 65KB

.data Size: 329KB - Virtual size: 328KB

.rsrc Size: 5KB - Virtual size: 4KB

.text
Size: 264KB - Virtual size: 263KB

.rdata
Size: 44KB - Virtual size: 65KB

.data
Size: 329KB - Virtual size: 328KB

.rsrc
Size: 5KB - Virtual size: 4KB