e73a7bd70f87acdd4aa8f5ee52ba1f0c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

e73a7bd70f87acdd4aa8f5ee52ba1f0c_JaffaCakes118
Size

145KB
MD5

e73a7bd70f87acdd4aa8f5ee52ba1f0c
SHA1

0931cbff98a03ee8a83d5f79f8a3a7a762b0bd53
SHA256

f0e552d1726f318fcc0a3cf3c5746e0a091e27558b5a4aa99ee49889eac585ca
SHA512

7bdabc36a6fbb78a839e19b73447e46510e0b0da614fa5445bfbb2e871a2e9f23b113cd0d846aa6057fc1060407be76fe66e53d01e367b3cb87eb1ded2fa00f7
SSDEEP

3072:XEpZYr4kumKcHP3zEI+jhVRnzMACuHvC4kZ7VO719lll:CWr4efzEI+jhAp1ZVk19lj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e73a7bd70f87acdd4aa8f5ee52ba1f0c_JaffaCakes118

Files

e73a7bd70f87acdd4aa8f5ee52ba1f0c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

90fc6bd6fabf8f45036b878f497268e5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
FindResourceA
LoadResource
SizeofResource
LockResource
FreeResource
GetWindowsDirectoryA
GetExitCodeProcess
GetShortPathNameA
GetTickCount
HeapAlloc
HeapCreate
HeapDestroy
GetProcessHeap
HeapReAlloc
HeapSize
HeapFree
CreateFileMappingA
FindFirstFileA
FindNextFileA
FindClose
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
VirtualQuery
FindResourceW
FileTimeToLocalFileTime
CreateFileA
ReadFile
WriteFile
GetFileSize
SetEndOfFile
CloseHandle
lstrcmpiA
SystemTimeToFileTime
GetCPInfo
LoadLibraryA
LoadLibraryW
LoadLibraryExA
GetProcAddress
InterlockedCompareExchange
CreateThread
GetCurrentThreadId
GetCurrentThread
ResumeThread
SetThreadPriority
ExitThread
GetModuleFileNameA
VirtualAlloc
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
WideCharToMultiByte
DisableThreadLibraryCalls
GetCommandLineA
CreateEventA
SetEvent
ResetEvent
DeleteFileW
SetUnhandledExceptionFilter
CreateEventW
OpenProcess
IsValidCodePage
MoveFileA
GetConsoleOutputCP
TerminateThread
ExpandEnvironmentStringsA
MultiByteToWideChar
GetStringTypeExA
LocalAlloc
GetTempPathA
GetFileAttributesW
CreateFileW
GetPrivateProfileStringA
GetSystemTimeAsFileTime
GetUserDefaultLCID
FindFirstFileW
FindNextFileW
GetCurrentProcessId
LCMapStringW
GetCommandLineW
lstrcmpA
UnmapViewOfFile
MapViewOfFile
VirtualFree
FlushFileBuffers
GetOEMCP
FormatMessageA
GetEnvironmentStrings
GetSystemDirectoryW
GetStringTypeA
CreateMutexA
ReleaseMutex
InterlockedDecrement
GetExitCodeThread
LoadLibraryExW
WaitForSingleObject
GlobalLock
InterlockedIncrement
OpenMutexA
IsDBCSLeadByte
GetLocaleInfoA
GetFileType
LocalFree
GlobalReAlloc
WaitForMultipleObjects
FreeEnvironmentStringsW
TerminateProcess
WriteConsoleA
FileTimeToDosDateTime
GetDateFormatA
CompareFileTime
SetFileAttributesW
GetVersionExW
DuplicateHandle
GetStdHandle
RtlUnwind
FreeEnvironmentStringsA

msvcrt

rewind
_getpid
wctomb
strspn
wcsncmp
remove
_setmode
cos
swscanf
_iob
sprintf
fwrite
strrchr
fseek
wcsstr
towupper
wcstoul
strlen
_dup
strncpy
strncat
_putenv
fgetpos
_lseek
_lock
clearerr
_mbsicmp
qsort
_c_exit
isspace
memchr
free
fflush
_filbuf
_wcsicmp
_wcslwr
wcschr
strerror
memset
strcat
_strnicmp
clock
_except_handler3
__dllonexit
_itoa
_wcsnicmp
setlocale
_strcmpi
_exit
towlower
_vsnprintf
localtime
_wtol
_strlwr
toupper
wcscat
iswdigit
_wtoi
malloc
pow
signal
_purecall
fgets
_fullpath
__set_app_type
abort
fread
_pipe
_assert
_unlink
isxdigit
__mb_cur_max
memcpy
__badioinfo
atoi
atol
fputs
srand
sqrt
fputc
_open
_getch
ceil
_XcptFilter
_controlfp
_CIsqrt
putchar
_mbsrchr
strtok
atof
isdigit
gmtime
strcpy
fprintf
fsetpos
iswspace
_osver
_mkdir
atexit
bsearch
_filelengthi64
_onexit
_setjmp3
_getcwd
_utime
wcscmp
strtoul
_itow
_isatty
_chmod
fclose
ftell
wcscspn
strpbrk
ungetc
__CxxFrameHandler
iswctype
_isctype
memcmp
_beginthreadex
_pctype
_get_osfhandle
strtol
tolower
_ultoa
localeconv
_initterm
__pioinfo
__initenv
_stat
__p__fmode
sin
rename
floor
memmove
calloc
puts
sscanf
_setjmp
exit
_umask
wcstol
strchr
_close
strncmp
_dup2
getenv
__p___initenv
__lc_codepage
wcstombs
_snwprintf
vsprintf
_read
fopen
__setusermatherr
_stricmp
realloc
_acmdln
longjmp
swprintf
fgetc
_snprintf
wcslen
strcspn
_lseeki64
_write
isleadbyte
perror
_fstat
wcsrchr
__p__commode
_ftol
_unlock
_ismbblead
__getmainargs
_mbscmp
printf
_errno
_strdup
ctime
_flsbuf
_mktemp
_open_osfhandle
_wcsupr
rand
_wfopen
wcsncpy
_vsnwprintf
__p__environ
_cexit

user32

EndPaint
DestroyCursor
FindWindowA
CallWindowProcA
IsRectEmpty
SystemParametersInfoA
EqualRect
CreatePopupMenu
RemoveMenu
WinHelpA
wsprintfA
DestroyIcon
GetMessageA
OemToCharA
GetKeyState
WaitMessage
ShowWindow
GetWindowPlacement
GetPropA
GetClassNameA
DeleteMenu
SendDlgItemMessageA
GetForegroundWindow
DialogBoxParamA
DrawFrameControl
GetClientRect
SetCapture
BeginPaint
UnregisterClassA
SetWindowPlacement
PtInRect
OffsetRect
ShowCursor
ReleaseDC
CloseClipboard
PostQuitMessage
RedrawWindow
IsWindow
GetMessagePos
UnhookWindowsHookEx
IsWindowVisible
PeekMessageA
DestroyWindow
GetSystemMetrics
GetIconInfo
KillTimer
GetMenuStringA
GetFocus
InsertMenuItemA
TranslateMessage
IsIconic
GetWindowDC
SetWindowsHookExA
SetCursor
GetWindowRect
GetMenuItemID
GetSysColorBrush
GetActiveWindow
GetKeyboardType
GetMenuItemCount
RegisterWindowMessageA
GetCursorPos
GetTopWindow
IsWindowEnabled
GetSubMenu
GetScrollInfo
DrawIcon
SetScrollInfo
GetMenuState
SetWindowLongA
SetWindowTextA
GetWindowLongA
CheckMenuItem
GetClassInfoA
DispatchMessageA
DrawIconEx
GetSystemMenu
ScreenToClient
LoadBitmapA
GetDesktopWindow
EmptyClipboard
ClientToScreen
InsertMenuA
GetWindow
TrackPopupMenu
SetPropA
DrawMenuBar
SetClipboardData
SetScrollRange
AdjustWindowRectEx
IntersectRect
CallNextHookEx
WindowFromPoint
CreateWindowExA
GetDC
ReleaseCapture
SetMenu
RegisterClassA
FillRect
DefWindowProcA
GetCapture
GetDlgItem
CreateMenu
FrameRect
OpenClipboard
SetRect
UpdateWindow
GetLastActivePopup
GetScrollPos
MapWindowPoints
PostMessageA
RegisterClipboardFormatA
RemovePropA
DrawEdge
EndDialog
CharNextA
LoadStringA
SetTimer
SetClassLongA
LoadIconA
GetMenu
IsZoomed
EnableMenuItem
InvalidateRect
GetParent
MessageBoxA
SetScrollPos
EnableWindow
ShowOwnedPopups
SetWindowPos
CharLowerA
GetWindowThreadProcessId
GetWindowTextA
IsDialogMessageA
SetForegroundWindow
InflateRect
MessageBeep
DrawTextA
EnumThreadWindows
SetActiveWindow

Sections

.text
Size: 54KB - Virtual size: 54KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 79KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

90fc6bd6fabf8f45036b878f497268e5

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

Sections

.text Size: 54KB - Virtual size: 54KB

.rdata Size: 10KB - Virtual size: 10KB

.data Size: 79KB - Virtual size: 78KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 54KB - Virtual size: 54KB

.rdata
Size: 10KB - Virtual size: 10KB

.data
Size: 79KB - Virtual size: 78KB

.rsrc
Size: 1024B - Virtual size: 4KB