e9022da5427944410c202930fbacd03c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

e9022da5427944410c202930fbacd03c_JaffaCakes118
Size

396KB
MD5

e9022da5427944410c202930fbacd03c
SHA1

94e2c0b75d73196d8773af0836f7b1010423986e
SHA256

832450dd91f3b5f0e02ae1fd006620d0e17d22cf110147f0e6842391c617d8f5
SHA512

126da75a0af708e72c2466e01a75db3e4e1828833f6de6706555864176dd6a4c55e00a8e7c226bb2d1af73728962fd2eae7a78ebd024458df27e6bf326f6355c
SSDEEP

3072:kL+kG9fFJEB49fLSverWocXDQa36q14/DLY7bDUi1U94kxHb4Zpvn31Omc5m1tv1:kL+ddu4RLSvesQFnDL8cXqtsbQVlRsi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e9022da5427944410c202930fbacd03c_JaffaCakes118

Files

e9022da5427944410c202930fbacd03c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

096aa926aedf7dfb930d0f3edbe43bb6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetUserDefaultUILanguage
WriteConsoleOutputCharacterW
ProcessIdToSessionId
SetTapeParameters
GetConsoleCursorMode
OutputDebugStringA
QueryInformationJobObject
SetTimeZoneInformation
SetLocalPrimaryComputerNameA
LoadLibraryExA
FlushFileBuffers
MoveFileExW
ConnectNamedPipe
TransmitCommChar
WinExec
SizeofResource
RemoveDirectoryA
MultiByteToWideChar
EnumResourceTypesA
GetCommState
ExpandEnvironmentStringsA
GetFileAttributesA
GetBinaryType
GetCommModemStatus
FindFirstFileExA
GetLocaleInfoA
GetExitCodeProcess
VerifyVersionInfoA
OpenMutexA
SetupComm
SizeofResource
ReadConsoleA
SetThreadUILanguage
CompareStringA
ExpungeConsoleCommandHistoryA
SetHandleContext
SetUnhandledExceptionFilter
LoadResource
MapViewOfFile
GetVersionExA
VirtualAlloc
DeleteTimerQueueTimer
OpenSemaphoreA
GetModuleHandleA
GetFileAttributesExA
UnlockFileEx
BuildCommDCBAndTimeoutsA
WriteProfileSectionA
GetTickCount
GetTickCount
GetPrivateProfileIntA
GetThreadLocale
EnumSystemLanguageGroupsA
GetDefaultCommConfigA
EnumTimeFormatsA
GetConsoleMode
EnumSystemLocalesA
WriteConsoleOutputCharacterA
ReleaseSemaphore
SetVolumeLabelA
GetFileTime
AllocConsole
GetDllDirectoryA
GlobalMemoryStatus
WaitForDebugEvent
GetConsoleTitleA
SetConsoleNumberOfCommandsA
_hread
RequestWakeupLatency
ResetEvent
GetCommandLineA
SetThreadPriorityBoost
SetVDMCurrentDirectories
SetDllDirectoryA
GetVolumeNameForVolumeMountPointA
GetExitCodeThread
GetStdHandle
GetFileSize
DeleteAtom
CancelWaitableTimer
GetThreadContext
SetFileApisToANSI
IsBadCodePtr
SetEndOfFile
SuspendThread
FlushInstructionCache
GetDiskFreeSpaceA
PeekConsoleInputA
WriteProcessMemory
BuildCommDCBAndTimeoutsA
WriteConsoleOutputA
GetProcessHandleCount
GetNumberOfConsoleFonts
SetEndOfFile
GetLogicalDriveStringsA
WriteProfileSectionA
CopyFileA
TransmitCommChar
LoadModule
HeapValidate
WriteConsoleInputA
ExpungeConsoleCommandHistoryA
FindNextFileA
WritePrivateProfileStructA
QueueUserAPC
CreateWaitableTimerA
lstrcatA
lstrcpy
WriteConsoleOutputA
SetFileValidData
CreateFileMappingW
CopyFileExA
WritePrivateProfileStringA
GetTempFileNameA
GetConsoleOutputCP
EnumResourceLanguagesA
CreateWaitableTimerA
IsValidCodePage
ReleaseMutex
CloseHandle
SetThreadLocale
ReadConsoleOutputCharacterA
GetFileInformationByHandle
BuildCommDCBAndTimeoutsW
CreateDirectoryExA
WriteConsoleOutputCharacterA
GetFileAttributesExA
FormatMessageA
FatalExit
GetTickCount
WriteProcessMemory
CreateWaitableTimerA
ReadConsoleA
GetConsoleTitleA
WriteConsoleOutputCharacterA
GetSystemTimes
WriteConsoleOutputA
lstrcmpiA
CompareFileTime
SetConsoleKeyShortcuts
FindNextVolumeMountPointW
CopyFileExA
PeekNamedPipe
GetQueuedCompletionStatus
IsProcessorFeaturePresent
GetStdHandle
IsProcessorFeaturePresent
GetCompressedFileSizeA
GetConsoleWindow
SystemTimeToTzSpecificLocalTime
IsProcessorFeaturePresent
WriteConsoleInputA
GetFileSize
SetInformationJobObject
SetDllDirectoryA
WriteConsoleOutputCharacterA
Process32Next
WritePrivateProfileStringA
PeekConsoleInputA
TerminateThread
GetStringTypeExA
GetVersionExA
IsBadHugeWritePtr
GetProcAddress
CancelWaitableTimer
OpenEventA
PeekNamedPipe
GetModuleHandleA
SetProcessWorkingSetSize
GetDiskFreeSpaceExA
CompareFileTime

user32

SetForegroundWindow
DrawIconEx
RegisterDeviceNotificationA
GetAltTabInfoA
GetRawInputData
SetMenuItemBitmaps
DrawEdge
ActivateKeyboardLayout
GetRawInputData
CharUpperBuffW
CharUpperBuffA
DeviceEventWorker
TileWindows
GetMenuItemID
GetLastActivePopup
TrackPopupMenu
GetMenuItemInfoA
SubtractRect
UpdatePerUserSystemParameters
GetWindowTextA
UnhookWindowsHook
CheckDlgButton
CopyImage
CopyIcon
ChangeMenuA
IsDialogMessage
CreateCursor
GetMenuBarInfo
GetTaskmanWindow
GetMenuItemID
SetWindowTextA
EnumWindows
MapDialogRect
GetClassLongA
GetWindowLongA
CharNextExA
SetPropA
GetDlgItemTextA
GetNextDlgTabItem
CallNextHookEx
GetAltTabInfo
DrawTextA
AttachThreadInput
NotifyWinEvent
SetMessageQueue
ToUnicodeEx
ShowWindow
CharUpperBuffA
DrawMenuBarTemp
SendIMEMessageExA
IsCharAlphaNumericW
ScrollWindowEx
CreateIcon
FindWindowExA
UpdateLayeredWindow
TabbedTextOutA
ToUnicodeEx
ToAscii
SetWindowRgn
InSendMessageEx
UnregisterDeviceNotification
CreateDialogIndirectParamA
SetClassLongA
EnumWindowStationsA
DialogBoxIndirectParamA
CallNextHookEx
MessageBoxTimeoutA
GetDC
PrivateExtractIconsA
GetProcessWindowStation
GetKeyboardType
GetClipCursor
EnumDisplaySettingsExA
GetDoubleClickTime
DragDetect
ShowCursor
EndDeferWindowPos
TrackPopupMenu
SetClassLongA
PeekMessageA
IsWindowInDestroy
GetClassInfoExA
PackDDElParam
SystemParametersInfoA

ws2_32

closesocket

Exports

Exports

Dpigwptl
Gxonecayw
BeginNfygajvsc
ReadRcldtopti
CreateKsbaymhsum
AddSayqlck

Sections

.itext
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 48KB - Virtual size: 660KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 256KB - Virtual size: 253KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 88KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

096aa926aedf7dfb930d0f3edbe43bb6

Headers

File Characteristics

Imports

kernel32

user32

ws2_32

Exports

Exports

Sections

.itext Size: - Virtual size: 3KB

.text Size: 48KB - Virtual size: 660KB

.idata Size: 256KB - Virtual size: 253KB

.rsrc Size: 88KB - Virtual size: 86KB

.itext
Size: - Virtual size: 3KB

.text
Size: 48KB - Virtual size: 660KB

.idata
Size: 256KB - Virtual size: 253KB

.rsrc
Size: 88KB - Virtual size: 86KB