f02d258c9fe58c06b5fdb5d584c7f9d3_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f02d258c9fe58c06b5fdb5d584c7f9d3_JaffaCakes118
Size

34KB
MD5

f02d258c9fe58c06b5fdb5d584c7f9d3
SHA1

29423c0470f12ac35d7cef78f980b8bd8a432e12
SHA256

11b89a45f0d9d5a6a9f26b001afe91ad7e299fa267f4513daf5ef6f10346a412
SHA512

94c99b1de026aae135af82c7a53a14b19d0c908a2f162ada719c634f5340a24f52c951df5c7b18feeeab2b82e39144a363a3868dd12f8e3f242bf94becb64fff
SSDEEP

384:AHg/YDnCYBxmECsKsW4g8HtVhIBiLd5LoZngQColgjJzqZe1TCVamTW99B93:AA/sBxm3x6riBsoZZCpJX+MmTW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f02d258c9fe58c06b5fdb5d584c7f9d3_JaffaCakes118

Files

f02d258c9fe58c06b5fdb5d584c7f9d3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

94a1899b9f4e5a8974c20f0c293d01c8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BuildCommDCBA
BuildCommDCBW
CloseHandle
CreateDirectoryW
CreateFiber
CreateMailslotA
CreateTapePartition
CreateToolhelp32Snapshot
EnterCriticalSection
EnumDateFormatsW
EnumSystemLocalesW
ExitProcess
ExpandEnvironmentStringsW
FileTimeToDosDateTime
FileTimeToLocalFileTime
FileTimeToSystemTime
FindClose
FlushInstructionCache
FreeResource
GetCommandLineW
GetConsoleAliasesW
GetConsoleCommandHistoryA
GetConsoleFontInfo
GetConsoleFontSize
GetConsoleOutputCP
GetCurrentDirectoryA
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetDiskFreeSpaceW
GetFileAttributesW
GetFileAttributesExA
GetLastError
GetLocalTime
GetModuleFileNameA
GetModuleHandleW
GetPrivateProfileSectionNamesA
GetProfileSectionA
GetProfileStringW
GetStartupInfoW
GetStdHandle
GetSystemPowerStatus
GetSystemTime
GetThreadSelectorEntry
GetTimeFormatW
GetVersion
GetVersionExA
GetVolumeInformationW
GlobalFlags
GlobalGetAtomNameA
GlobalUnWire
GlobalUnfix
HeapCompact
HeapDestroy
HeapLock
InterlockedExchangeAdd
InvalidateConsoleDIBits
IsBadCodePtr
IsBadStringPtrW
IsDBCSLeadByte
IsDBCSLeadByteEx
LoadModule
LocalFree
LocalReAlloc
LocalSize
Module32First
MoveFileWithProgressA
MultiByteToWideChar
OpenMutexA
OpenProfileUserMapping
PeekConsoleInputA
Process32Next
RaiseException
ReadConsoleOutputCharacterA
ReadProcessMemory
RtlZeroMemory
ScrollConsoleScreenBufferA
SetComputerNameW
SetConsoleCursorInfo
SetConsoleFont
SetEnvironmentVariableW
SetHandleCount
SetHandleInformation
SetLastError
SetProcessShutdownParameters
SetVolumeLabelW
TransmitCommChar
UpdateResourceW
VirtualProtect
WideCharToMultiByte
WriteConsoleInputW
WritePrivateProfileSectionA
WriteProcessMemory
_lopen
lstrcmpA
lstrcmpW
lstrcmpiA
lstrcmpiW

user32

AnyPopup
AppendMenuW
AttachThreadInput
BeginDeferWindowPos
CallMsgFilterW
CharNextW
CharToOemW
CharUpperA
CharUpperW
CheckRadioButton
CopyAcceleratorTableA
CreateIcon
CreateMDIWindowA
DdeGetQualityOfService
DdeReconnect
DefFrameProcW
DlgDirListA
DrawIcon
DrawIconEx
DrawStateA
DrawTextExA
EnumDesktopsA
EnumDisplaySettingsExA
FlashWindow
FrameRect
FreeDDElParam
GetAltTabInfoA
GetAncestor
GetCaretBlinkTime
GetClipCursor
GetClipboardData
GetComboBoxInfo
GetCursor
GetCursorInfo
GetFocus
GetForegroundWindow
GetInputState
GetLastInputInfo
GetMenu
GetMenuItemRect
GetMessageA
GetMessageW
GetMessageExtraInfo
GetParent
GetPriorityClipboardFormat
GetPropA
GetScrollInfo
GetShellWindow
GetTitleBarInfo
GetUserObjectInformationW
GetWindowDC
GetWindowLongA
GetWindowTextW
GetWindowTextLengthA
IMPGetIMEA
IMPGetIMEW
IsCharAlphaA
IsWindowUnicode
IsZoomed
LoadCursorFromFileW
LoadImageW
MessageBoxA
MessageBoxW
MessageBoxExA
MessageBoxIndirectA
MsgWaitForMultipleObjectsEx
OemToCharA
OemToCharBuffA
OpenDesktopW
PostMessageA
RedrawWindow
RegisterWindowMessageW
ReuseDDElParam
ScrollDC
SendIMEMessageExW
SetActiveWindow
SetClipboardData
SetDebugErrorLevel
SetDoubleClickTime
SetForegroundWindow
SetParent
SetRectEmpty
SetScrollInfo
SetUserObjectInformationW
ToAscii
TrackPopupMenuEx
ValidateRgn
WINNLSEnableIME
WINNLSGetIMEHotkey
WinHelpA

gdi32

AnimatePalette
CreateDIBPatternBrush
CreateDiscardableBitmap
CreateHalftonePalette
CreateHatchBrush
CreatePatternBrush
CreatePolygonRgn
CreateScalableFontResourceA
DPtoLP
EnumFontFamiliesExA
EnumFontsW
ExtTextOutW
GdiComment
GdiGetBatchLimit
GetBitmapBits
GetBkColor
GetBkMode
GetBoundsRect
GetCharacterPlacementA
GetClipBox
GetClipRgn
GetColorSpace
GetCurrentObject
GetDIBits
GetDeviceGammaRamp
GetKerningPairsA
GetLogColorSpaceW
GetMetaFileA
GetPath
GetPixel
GetWinMetaFileBits
OffsetRgn
PatBlt
PlgBlt
PolyDraw
Polygon
PolylineTo
SetAbortProc
SetDeviceGammaRamp
SetMagicColors
StrokePath

Sections

.text
Size: 5KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sqer
Size: 4KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.wyoz
Size: 5KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

94a1899b9f4e5a8974c20f0c293d01c8

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 5KB - Virtual size: 6KB

.data Size: 17KB - Virtual size: 26KB

.sqer Size: 4KB - Virtual size: 12KB

.wyoz Size: 5KB - Virtual size: 12KB

.reloc Size: 1024B - Virtual size: 7KB

.text
Size: 5KB - Virtual size: 6KB

.data
Size: 17KB - Virtual size: 26KB

.sqer
Size: 4KB - Virtual size: 12KB

.wyoz
Size: 5KB - Virtual size: 12KB

.reloc
Size: 1024B - Virtual size: 7KB