3afc1e842a76f2cecb20f395dfa71630_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

3afc1e842a76f2cecb20f395dfa71630_JaffaCakes118
Size

148KB
MD5

3afc1e842a76f2cecb20f395dfa71630
SHA1

8edd1247ceda6aa51100b5b2f9d98eeee8ff8e8e
SHA256

440c90dcf04b3314204ec4b3f2c3418c7ffb0547143500134e3a5ea379525fc1
SHA512

d3fb4424e8686b4aeb2162936359cb4256d25420e60a51d7b4ea1a6c41614096ff9b7efac4bedfb1aa7f52cd55e86e0022ab4ec5e8392d764b574a884d115ef5
SSDEEP

3072:XVR2y9+DulIevNL5lOj4pVNb0HSSSGVJtlhOOr:D2yZldvN91rb0ySZce

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3afc1e842a76f2cecb20f395dfa71630_JaffaCakes118

Files

3afc1e842a76f2cecb20f395dfa71630_JaffaCakes118
.exe windows:4 windows x86 arch:x86

fe23bb3d48f37c63709cb12468c84cad

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetSystemPowerState
FindNextFileW
GetCommandLineA
FindClose
FindFirstFileW
SetFileAttributesA
GetFileAttributesA
GetCurrentThread
SystemTimeToFileTime
GetLocalTime
GetProfileStringW
VirtualFree
VirtualAlloc
LCMapStringA
SetEnvironmentVariableA
GetOEMCP
GetACP
CompareStringW
CompareStringA
GetCPInfo
GetStringTypeW
GetStringTypeA
SetEndOfFile
LoadLibraryA
GetProcAddress
CreateFileA
FlushFileBuffers
SetStdHandle
WideCharToMultiByte
GetModuleFileNameA
WriteFile
RtlUnwind
GetStartupInfoA
GetFileType
GetStdHandle
SetHandleCount
GetCommandLineW
GetEnvironmentStrings
GetEnvironmentStringsW
FreeEnvironmentStringsW
MultiByteToWideChar
FreeEnvironmentStringsA
GetModuleFileNameW
UnhandledExceptionFilter
IsBadWritePtr
HeapReAlloc
HeapCreate
GetTimeZoneInformation
GetSystemTime
ExitProcess
TerminateProcess
GetCurrentProcess
HeapAlloc
HeapFree
GetModuleHandleA
GetStartupInfoW
GetVersion
GetLastError
CloseHandle
ReadFile
SetFilePointer
HeapDestroy
LCMapStringW

user32

GetSystemMetrics
DispatchMessageW
CreateDialogIndirectParamA
GetForegroundWindow
DialogBoxIndirectParamA
GetDesktopWindow
GetCursorPos
GetMessageA
CallWindowProcW
GetClassInfoExA
AppendMenuA
GetClientRect
GetWindowRect
SetFocus
RegisterClassExA
GetFocus
TrackPopupMenu

shlwapi

StrStrIW

wininet

InternetGetLastResponseInfoA
InternetCloseHandle
InternetCrackUrlA
InternetCanonicalizeUrlA
InternetQueryOptionA
InternetQueryDataAvailable
HttpQueryInfoA
InternetOpenA
InternetSetStatusCallbackW
InternetSetFilePointer
InternetWriteFile
InternetReadFile
InternetOpenUrlA

Sections

.text
Size: 80KB - Virtual size: 77KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 52KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fe23bb3d48f37c63709cb12468c84cad

Headers

File Characteristics

Imports

kernel32

user32

shlwapi

wininet

Sections

.text Size: 80KB - Virtual size: 77KB

.rdata Size: 52KB - Virtual size: 50KB

.data Size: 8KB - Virtual size: 87KB

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: 80KB - Virtual size: 77KB

.rdata
Size: 52KB - Virtual size: 50KB

.data
Size: 8KB - Virtual size: 87KB

.rsrc
Size: 4KB - Virtual size: 1KB