fdc658870f0437189cd1e25a1f8b36ca_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

fdc658870f0437189cd1e25a1f8b36ca_JaffaCakes118
Size

185KB
MD5

fdc658870f0437189cd1e25a1f8b36ca
SHA1

a6a617fba90f64a56caf6eb518f14a1b33dbadfd
SHA256

4681be9de166cdde7329c10f635d1338a8c8e3abbf6e3dfa50c3395e7d2ad010
SHA512

c0cdc81ebbfda7611df0e05161d20269c7e908d74a306792c5ad6e66f3ad4b8fcd1d133f7235209c6eeb1df15eb1bb0e8243a11854fa4d4eb31e3b8e05d1d58e
SSDEEP

3072:G8AkSbDZfP1C+q1MXWWgwuEHxLDHP14DGM8nM2MbbwAYQdQY1xVvCBcxx7K:G8/MZfPPmWhH9iDnYKbYiX1XNxx7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fdc658870f0437189cd1e25a1f8b36ca_JaffaCakes118

Files

fdc658870f0437189cd1e25a1f8b36ca_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0fee7c6ff56948cd657ff229b84e1a7a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SendNotifyMessageA
FindWindowA
SetWindowLongA
CharNextA
GetDlgItem
EqualRect
InvalidateRgn
ShowWindow
GetWindowTextLengthA
GetDesktopWindow
GetClassInfoExA
EndPaint
DispatchMessageA
UnregisterClassA
CallWindowProcA
GetParent
RegisterWindowMessageA
CreateDialogParamA
SendMessageTimeoutA
PostMessageA
ReleaseCapture
PostThreadMessageA
MoveWindow
EnumDisplayDevicesA
GetSysColor
GetWindowTextA
GetQueueStatus
SetWindowTextA
wsprintfA
CopyRect
GetWindowLongA
RedrawWindow
IsWindow
SendMessageA
CreateAcceleratorTableA
GetActiveWindow
KillTimer
GetClientRect
SetTimer
wvsprintfA
RegisterClassExA
ReleaseDC
DestroyAcceleratorTable
SetCapture
SetParent
DrawTextA
SetRect
GetWindow
SetFocus
CreateWindowExA
MsgWaitForMultipleObjects
DestroyWindow
IsChild
GetDC
BeginPaint
GetFocus
GetClassNameA
GetWindowRect
LoadCursorA
FillRect
DefWindowProcA
InvalidateRect
PeekMessageA
SetWindowPos

wininet

InternetReadFile
InternetOpenUrlA
InternetOpenA
InternetCloseHandle

shell32

SHGetSpecialFolderPathA
SHGetSpecialFolderPathW

advapi32

CryptGetHashParam
CryptAcquireContextA
CryptHashData
CryptReleaseContext
RegQueryInfoKeyA
CryptImportKey
RegOpenKeyExA
CryptCreateHash
RegQueryValueExA
RegEnumValueA
RegSetValueExA
CryptDestroyHash
CryptDestroyKey
RegCreateKeyExA
RegCloseKey
CryptEncrypt
RegEnumKeyExA
RegDeleteValueA
RegDeleteKeyA

ole32

GetRunningObjectTable
CoUninitialize
OleLockRunning
CoTaskMemRealloc
CreateBindCtx
StgCreateDocfile
CoTaskMemFree
CreateStreamOnHGlobal
CLSIDFromProgID
CoGetClassObject
StringFromGUID2
CoTaskMemAlloc
OleInitialize
OleUninitialize
StgOpenStorage
CoCreateInstance
BindMoniker
CoInitialize
CreateItemMoniker
CoInitializeSecurity
CoSetProxyBlanket
StgIsStorageFile
CLSIDFromString

setupapi

SetupDiGetDeviceRegistryPropertyA
SetupDiEnumDeviceInfo
SetupDiGetClassDevsA

shlwapi

PathFileExistsW
PathCombineW

gdi32

CreateDIBitmap
ExtEscape
SelectObject
DeleteDC
GetObjectA
CreateDIBSection
DeleteObject
GetDIBits
GetDeviceCaps
CreateCompatibleBitmap
CreateFontA
SetStretchBltMode
BitBlt
CreateSolidBrush
RealizePalette
GetStockObject
SelectPalette
StretchDIBits
CreateCompatibleDC
SetBkMode

kernel32

LocalAlloc
GetLongPathNameW
CreateFileMappingA
WriteFile
Sleep
UnmapViewOfFile
GetProcessHandleCount
GetFileSize
CreateFileW
LocalFree
ReadFile
WideCharToMultiByte
MapViewOfFile
EnumResourceTypesA
DisableThreadLibraryCalls
GlobalSize
GetFileAttributesA
GetTickCount
SetFilePointer
GlobalAlloc
CreateFileA
GlobalFree
CloseHandle

Sections

.text
Size: 106KB - Virtual size: 105KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 364KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0fee7c6ff56948cd657ff229b84e1a7a

Headers

File Characteristics

Imports

user32

wininet

shell32

advapi32

ole32

setupapi

shlwapi

gdi32

kernel32

Sections

.text Size: 106KB - Virtual size: 105KB

.rdata Size: 4KB - Virtual size: 4KB

.bss Size: 72KB - Virtual size: 72KB

.tls Size: 1024B - Virtual size: 364KB

.text
Size: 106KB - Virtual size: 105KB

.rdata
Size: 4KB - Virtual size: 4KB

.bss
Size: 72KB - Virtual size: 72KB

.tls
Size: 1024B - Virtual size: 364KB