8f56f0585d53134e177154f6e1c054b6_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

8f56f0585d53134e177154f6e1c054b6_JaffaCakes118
Size

289KB
MD5

8f56f0585d53134e177154f6e1c054b6
SHA1

869bdb3b561a6c1923132d5cc13430e837e9c829
SHA256

86a5cda3bb2780b11ea5969f49a311b95ab33a2686aa4b54e35d866c7011a260
SHA512

ca2ceaa0cf10293ff9a05ad92eac810b90246a5802d30148ed99c8ba1230aa141b06f4e9bf5e98404ce0b729f646668fdc28dbe381f17adc63d0175ab8ec6d6e
SSDEEP

6144:q57G4+6Bxe2KUWoEcWPXNx5UhcVeNG6vRKqM5B732yS9Msh:q5i4+0xEFPXNx5UhcYNuqM5ky1s

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8f56f0585d53134e177154f6e1c054b6_JaffaCakes118

Files

8f56f0585d53134e177154f6e1c054b6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ea13550bdf011e059393c880326cd8e9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoUninitialize
CoTaskMemAlloc
StringFromGUID2
CoGetClassObject
CLSIDFromString
CoTaskMemRealloc
OleRun
CoInitializeEx
CoTaskMemFree
CoCreateInstance

user32

CharNextW
UnregisterClassA

oleaut32

LoadRegTypeLi
SafeArrayGetVartype
SafeArrayDestroy
SysStringLen
SafeArrayRedim
SafeArrayGetUBound
VariantInit
VariantClear
SafeArrayGetLBound
VariantCopyInd
SysAllocString
VarUI4FromStr
RegisterTypeLi
GetErrorInfo
SafeArrayCreate
SafeArrayCopy
UnRegisterTypeLi
LoadTypeLi
SafeArrayLock
SysFreeString
SafeArrayUnlock
SysAllocStringByteLen
DispCallFunc

shlwapi

PathAppendW
PathStripPathW
PathRemoveFileSpecW

advapi32

RegDeleteKeyW
RegQueryValueExW
RegSetValueExW
RegEnumKeyExW
RegDeleteValueW
RegCreateKeyExW
RegQueryInfoKeyW
RegCloseKey
RegOpenKeyExW

urlmon

FindMimeFromData
CoInternetGetSession
CoInternetCreateSecurityManager

kernel32

LCMapStringA
DeleteCriticalSection
HeapSize
CreateEventW
FindResourceW
GetConsoleMode
VirtualFree
CreateThread
WideCharToMultiByte
SizeofResource
lstrcmpiW
CreateFileW
CreateFileA
LocalFree
ResumeThread
SetLastError
IsValidCodePage
SetThreadLocale
SignalObjectAndWait
RaiseException
TlsAlloc
RtlUnwind
FlushFileBuffers
GetModuleHandleA
UnhandledExceptionFilter
GetFileType
GetOEMCP
SetHandleCount
IsDebuggerPresent
ResetEvent
WriteFile
LCMapStringW
OutputDebugStringW
ReleaseMutex
CloseHandle
TlsGetValue
OpenEventW
WaitForSingleObject
GetACP
FreeEnvironmentStringsW
HeapDestroy
FreeLibrary
GetTempPathW
GetStdHandle
WriteConsoleW
SetFilePointer
CreateMutexW
LoadLibraryExW
SetUnhandledExceptionFilter
GetConsoleCP
LockResource
WaitForMultipleObjects
HeapFree
GetThreadLocale
GetUserDefaultLangID
TlsFree
HeapReAlloc
WriteConsoleA
FreeEnvironmentStringsA
FormatMessageW
GetLocalTime
GetSystemTimeAsFileTime
VirtualAlloc
EnterCriticalSection
GetModuleHandleW
GetConsoleOutputCP
HeapAlloc
GetCurrentThreadId
LoadResource
GetCommandLineA
TlsSetValue
SetStdHandle
FindResourceExW
LeaveCriticalSection
GetProcessHeap
lstrlenW
LocalAlloc
VirtualAllocEx

wininet

DeleteUrlCacheEntryW

resutils

ResUtilCreateDirectoryTree
ResUtilEnumResources
ResUtilFindDependentDiskResourceDriveLetter
ResUtilGetResourceName
ResUtilFindExpandSzProperty
ClusWorkerCreate
ResUtilGetPropertyFormats

iepeers

DllUnregisterServer

Sections

.text
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 264KB - Virtual size: 1.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ea13550bdf011e059393c880326cd8e9

Headers

File Characteristics

Imports

ole32

user32

oleaut32

shlwapi

advapi32

urlmon

kernel32

wininet

resutils

iepeers

Sections

.text Size: 18KB - Virtual size: 17KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 264KB - Virtual size: 1.1MB

.rsrc Size: 1KB - Virtual size: 3KB

.text
Size: 18KB - Virtual size: 17KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 264KB - Virtual size: 1.1MB

.rsrc
Size: 1KB - Virtual size: 3KB