5437e1e704cbbaad5577aef2d981d710_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

5437e1e704cbbaad5577aef2d981d710_JaffaCakes118
Size

462KB
MD5

5437e1e704cbbaad5577aef2d981d710
SHA1

2f2f57ce47d40227059bd4660c3912fc27e1d7a0
SHA256

eedcb454a9e95542154cd79a453553601de4378205d6a5883a0fc3c1416d7fae
SHA512

dfa1dac6858edc6f4881fcbc9441c2b3661564422b338c8e1db8eb983c8c125ddbf5465e2c1d5f362333c5405152e8c17a6fff3cb7dc3802bcfbf0a558254d7f
SSDEEP

6144:LDe8bOfKK8WaS6B9s9B2QEKSBwNEMBrhF26vZWINCX477thsJ/vnRvBXEWG9FlNa:LyTYSA36EM//xWIYIsJ/vXUtL9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5437e1e704cbbaad5577aef2d981d710_JaffaCakes118

Files

5437e1e704cbbaad5577aef2d981d710_JaffaCakes118
.exe windows:4 windows x86 arch:x86

26454fff58a1a78c45a7f73eb5a6db7d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

EqualRgn
AbortDoc
SetICMProfileW
GetColorAdjustment
GetGlyphOutlineW
CreateMetaFileA
EndPath
SetWorldTransform
SetPolyFillMode
CreateICA
ScaleViewportExtEx
MoveToEx
SetArcDirection
GetCurrentPositionEx
GetBkMode
WidenPath
PaintRgn
CreateDIBPatternBrush
GdiFlush
CreateDIBPatternBrushPt
GetSystemPaletteEntries
GetPaletteEntries
GetColorSpace
GetDeviceCaps
StrokeAndFillPath

shell32

SHChangeNotify
SHGetSettings
ShellExecuteA
RealShellExecuteW
RealShellExecuteExW
ShellExecuteExW
SHUpdateRecycleBinIcon
ExtractIconExW
SHGetNewLinkInfo
SHBrowseForFolderA
SHBrowseForFolder

comdlg32

GetOpenFileNameA
ReplaceTextA
ChooseFontW
PrintDlgA
LoadAlterBitmap
FindTextW
ChooseFontA
GetSaveFileNameW
GetOpenFileNameW
PrintDlgW
PageSetupDlgW
PageSetupDlgA
GetFileTitleA
FindTextA

user32

EnumPropsW
SendMessageW
GetScrollInfo
CreateIconFromResourceEx
GetWindowInfo
GetTabbedTextExtentA
DdeCreateDataHandle
IsCharUpperA
InsertMenuItemA
GetDlgCtrlID
DdePostAdvise
EnumDisplaySettingsExW
DrawMenuBar
GetWindow
LoadMenuIndirectA
ClientToScreen
SystemParametersInfoA
SendMessageTimeoutW
GetPropW
OpenClipboard
DdeAddData
SetScrollPos
IsDialogMessageW
DrawAnimatedRects

kernel32

GetLocaleInfoA
EnumSystemLocalesA
GetFileType
WriteFile
CompareStringA
GetTickCount
HeapFree
GetStartupInfoW
SuspendThread
LeaveCriticalSection
TlsFree
Sleep
InterlockedDecrement
GetModuleFileNameW
GetCurrentThread
InitializeCriticalSection
GetLastError
IsValidCodePage
DeleteCriticalSection
GetStartupInfoA
HeapAlloc
GetProcessHeap
SetUnhandledExceptionFilter
GetLocaleInfoW
UnhandledExceptionFilter
CompareStringW
GetCommandLineW
WideCharToMultiByte
GetACP
TerminateProcess
GetModuleHandleA
InterlockedExchange
LoadLibraryA
IsDebuggerPresent
GetCPInfo
FreeEnvironmentStringsA
GetCommandLineA
GetSystemTimeAsFileTime
RtlUnwind
TlsSetValue
ExitProcess
GetCurrentThreadId
FreeEnvironmentStringsW
VirtualAlloc
EnterCriticalSection
InterlockedIncrement
GetDateFormatA
SetHandleCount
GetCurrentProcessId
GetStdHandle
GetProcessHeaps
VirtualQuery
SetConsoleCtrlHandler
GetProcAddress
HeapDestroy
IsValidLocale
HeapReAlloc
GetModuleFileNameA
TlsGetValue
GetOEMCP
GetTimeFormatA
GetEnvironmentStringsW
MultiByteToWideChar
HeapCreate
GetStringTypeA
QueryPerformanceCounter
GetCurrentProcess
LCMapStringW
HeapSize
GetEnvironmentStrings
LCMapStringA
SetEnvironmentVariableA
GetUserDefaultLCID
GetStringTypeW
GetTimeZoneInformation
SetLastError
FreeLibrary
TlsAlloc
VirtualFree
GetVersionExA

wininet

InternetConfirmZoneCrossingW
RetrieveUrlCacheEntryStreamW
InternetCreateUrlA
SetUrlCacheGroupAttributeA
DeleteUrlCacheEntryA
InternetSetOptionExW
InternetAttemptConnect
InternetWriteFileExW
InternetQueryOptionW
InternetReadFile
SetUrlCacheConfigInfoW
InternetGetCertByURLA
UnlockUrlCacheEntryFileW
FreeUrlCacheSpaceA
HttpSendRequestExA
ResumeSuspendedDownload
InternetCanonicalizeUrlW
FindFirstUrlCacheContainerA

Sections

.text
Size: 137KB - Virtual size: 137KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 311KB - Virtual size: 338KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

26454fff58a1a78c45a7f73eb5a6db7d

Headers

File Characteristics

Imports

gdi32

shell32

comdlg32

user32

kernel32

wininet

Sections

.text Size: 137KB - Virtual size: 137KB

.data Size: 311KB - Virtual size: 338KB

.rsrc Size: 12KB - Virtual size: 12KB

.text
Size: 137KB - Virtual size: 137KB

.data
Size: 311KB - Virtual size: 338KB

.rsrc
Size: 12KB - Virtual size: 12KB