f3a1cce1a04067ce33eb80a189646a0d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f3a1cce1a04067ce33eb80a189646a0d_JaffaCakes118
Size

396KB
MD5

f3a1cce1a04067ce33eb80a189646a0d
SHA1

92eda5d5e456f688edfd62f0313f8a1f3dbb9fcc
SHA256

fb55b7e0ea7a692810c22a1af574f4381a90c4512107860f56573fe9a56c2ff4
SHA512

bd29f1de17bb0f85ae8d6fbff7480e76e7c68ad45e8308838bb502cbb4f397fd8b242f7527cfabb62da525fb87da03fd0ca49c1febe0f790aae79654ce02db68
SSDEEP

6144:MiG4IDmaaZaLeAJ/coD4t5cfKDt8IYCi7:MU4XvD4t5QAwCi7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f3a1cce1a04067ce33eb80a189646a0d_JaffaCakes118

Files

f3a1cce1a04067ce33eb80a189646a0d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e2a262328194d6aa3be96f8c280db50e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CancelWaitableTimer
GetAtomNameA
WriteConsoleA
_hread
FileTimeToSystemTime
RegisterWaitForSingleObject
_lread
ReleaseSemaphore
SuspendThread
IsBadWritePtr
EnumResourceLanguagesA
SetFirmwareEnvironmentVariableA
lstrcmpA
GetFileInformationByHandle
SetEndOfFile
GetExitCodeThread
lstrlen
ReplaceFile
lstrcat
GetPrivateProfileStringA
OutputDebugStringA
LoadLibraryExA
PeekNamedPipe
GetModuleHandleA
GetModuleFileNameA
SetProcessWorkingSetSize
GetLogicalDrives
GetNumberFormatA
GetExitCodeProcess
ReadConsoleA
OpenEventA
GetVersionExA
GetTickCount
GetFileTime
GetEnvironmentVariableA
LZClose
VerifyVersionInfoA
SetConsoleCursorPosition
BeginUpdateResourceA
ChangeTimerQueueTimer
GetUserGeoID
VirtualAlloc
SetFilePointerEx
IsBadReadPtr
IsBadStringPtrA
ClearCommBreak
EnumSystemLocalesA
SizeofResource
SetFileApisToOEM
SetDllDirectoryA
GetAtomNameA
WaitForDebugEvent
GetVersionExA
GetConsoleCharType
SetThreadExecutionState
GetSystemWindowsDirectoryA
SetFileAttributesA
GetDriveTypeA
ResetWriteWatch
DisconnectNamedPipe
GetTickCount
GetProcessVersion
VirtualQuery
GetCurrentProcessId
SetHandleInformation
GetPrivateProfileStringA
AddConsoleAliasA
LZInit
GetConsoleKeyboardLayoutNameA
ReadConsoleOutputCharacterA
GetSystemWindowsDirectoryA
ReadFile
GlobalGetAtomNameA
EndUpdateResourceA
LZRead
OpenSemaphoreA
OpenJobObjectA
GetVolumePathNameA
FindNextVolumeMountPointA
ProcessIdToSessionId
LocalLock
SetConsoleTitleA
GetFileType
QueueUserAPC
LZCloseFile
GlobalCompact
GetLongPathNameA
lstrcmpi
LZSeek
MoveFileExA
GetFileSize
GlobalFix
HeapSize
CopyFileExA
RemoveDirectoryA
SetHandleContext
FlushConsoleInputBuffer
GetConsoleAliasExesLengthW
WriteProfileSectionA
SetCommTimeouts
WaitForMultipleObjectsEx
GetCommModemStatus
ClearCommError
IsBadCodePtr
GetTempPathA
GetConsoleAliasExesLengthA
GetConsoleAliasesA
SetTimerQueueTimer
GetExitCodeProcess
ExpandEnvironmentStringsA
lstrcatA
WriteConsoleOutputA
GetEnvironmentStringsA
_hwrite
BuildCommDCBAndTimeoutsA
ReadFileScatter
LocalCompact
WaitForDebugEvent
OpenSemaphoreA
ResumeThread
GetThreadIOPendingFlag
FlushViewOfFile
UnlockFile
CloseHandle
GlobalSize
BeginUpdateResourceA
WritePrivateProfileStructA
CreateTimerQueueTimer
Heap32First
GetTempPathA
GetCommState
GetTapeStatus
ChangeTimerQueueTimer
GetSystemTimes
HeapCreate
GetProcessIoCounters
CreateEventA
GetDevicePowerState
GetTempPathA
GetCommandLineA
DisconnectNamedPipe
SetEvent
lstrlenA
SetDllDirectoryA
EnumResourceTypesA
SetTimerQueueTimer
GetProcessId
SetEvent
GetDllDirectoryA
GetTickCount
SetInformationJobObject
WriteConsoleOutputAttribute
GetDiskFreeSpaceExA
GetProcessShutdownParameters
BuildCommDCBA
CopyFileExA
GetCPInfoExA
GetCommandLineA
GetConsoleFontInfo
VirtualFree
GetFileAttributesA
PurgeComm
WriteFileGather
GetConsoleCommandHistoryLengthA
GetConsoleTitleA
OpenJobObjectA
GetProcessId
EnumResourceTypesA
OpenWaitableTimerA
GetProcessHandleCount
WriteProfileStringA
GetConsoleAliasesLengthW
GetEnvironmentStringsA
FindFirstChangeNotificationA
GetProcAddress
GetProcessId
IsWow64Process
SetCommState
GetNumberOfConsoleMouseButtons
GetProcessHeap
GlobalCompact
SetLocalPrimaryComputerNameA
GetNamedPipeHandleStateA

user32

GetScrollBarInfo
SetWindowsHookExA
SetLastErrorEx
GetWindowTextA
GetMonitorInfoA
MapVirtualKeyExW
LoadImageA
SetMenuContextHelpId
CloseDesktop
EnumPropsExW
EnumWindowStationsA
LoadCursorFromFileA
AnimateWindow
SetDoubleClickTime
DefRawInputProc
DeferWindowPos
CliImmSetHotKey
RegisterUserApiHook
SetScrollRange
GetDlgItemInt
GetKeyboardLayoutList
OemToCharA
GetInputState
DrawTextExA
GetSystemMenu
UnregisterClassA
SetCaretPos
SetSysColors
GetPropA
GetInputState
DestroyReasons
IsChild
LoadCursorA
GetTabbedTextExtentA
RegisterLogonProcess
SetProgmanWindow
ToUnicodeEx
MessageBoxTimeoutA
CreateDialogParamA
BeginDeferWindowPos
SetMenuItemInfoA
SetWindowPos
AdjustWindowRect
GetSysColor
GetMenuStringA
CountClipboardFormats
GetQueueStatus
GetDesktopWindow
GetScrollRange
ChangeMenuA
GetMessageTime
CopyIcon
GetMenu
GetInternalWindowPos
PeekMessageA
GetKeyNameTextA
OpenInputDesktop
BroadcastSystemMessageExA
RegisterUserApiHook
SetRect
SetWinEventHook
MessageBoxTimeoutA
RealGetWindowClassA
OemToCharBuffW
SetClassWord
MoveWindow
GetUserObjectInformationA
DrawTextExA
GetRawInputDeviceInfoA
CharNextExA
UnionRect
OpenWindowStationA
ExitWindowsEx
GetAppCompatFlags2
GetAppCompatFlags
MessageBoxTimeoutA
CharLowerBuffA
DisplayExitWindowsWarnings
GetClientRect
AppendMenuA
CreateIcon
RealGetWindowClassA
GrayStringA
GetClipboardData
GetLastActivePopup
DestroyIcon
AppendMenuA

ws2_32

closesocket

Exports

Exports

WriteVtixhxgqx
GetKhgnmslg
Iqgnowoiu
EndVcjdjvw
Uxgmmeatnd
Ichsxaegu

Sections

.itext
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 52KB - Virtual size: 679KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 268KB - Virtual size: 266KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e2a262328194d6aa3be96f8c280db50e

Headers

File Characteristics

Imports

kernel32

user32

ws2_32

Exports

Exports

Sections

.itext Size: - Virtual size: 3KB

.text Size: 52KB - Virtual size: 679KB

.idata Size: 268KB - Virtual size: 266KB

.rsrc Size: 72KB - Virtual size: 71KB

.itext
Size: - Virtual size: 3KB

.text
Size: 52KB - Virtual size: 679KB

.idata
Size: 268KB - Virtual size: 266KB

.rsrc
Size: 72KB - Virtual size: 71KB