6fc90dcf1adfe549e8ce53a151be99b6_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

6fc90dcf1adfe549e8ce53a151be99b6_JaffaCakes118
Size

206KB
MD5

6fc90dcf1adfe549e8ce53a151be99b6
SHA1

fe3afe3d80270b23d4daa097d991d43cada61d68
SHA256

748baabf32108233c4895306a253ef97d630454f81ac99de7ef03035d5e9d228
SHA512

e45d45c0ecda80c9d8a41a7569a7614b12ab3cd0c98d26d020aff8c0486324c3a284c114e16bfdcad53028c9b94be94284e62b6120563151ad8072e2e5d3fb9b
SSDEEP

3072:ZKynuxONCwJnWXhZfmyjUeCd3DO8LK1g4IZBPNRatw:RjJ2hZ+yjUeCd3DO4vLG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
6fc90dcf1adfe549e8ce53a151be99b6_JaffaCakes118

Files

6fc90dcf1adfe549e8ce53a151be99b6_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0e65678801da0be168d5a51cf72c8f1a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
LocalAlloc
HeapFree
GetProcessHeap
HeapAlloc
CreateProcessA
OpenMutexA
OpenEventA
UnmapViewOfFile
CreateFileA
CreateFileMappingA
MapViewOfFile
DeviceIoControl
SetLastError
SizeofResource
LockResource
LoadResource
FindResourceA
GlobalUnlock
GlobalLock
GlobalAlloc
WTSGetActiveConsoleSessionId
GlobalFree
GetCurrentProcessId
TlsGetValue
GlobalReAlloc
GlobalHandle
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
GetProcAddress
GetModuleHandleA
InterlockedDecrement
FreeLibrary
InterlockedIncrement
GlobalGetAtomNameA
lstrcmpA
GetThreadLocale
WriteFile
WaitForSingleObject
VirtualQuery
VirtualAlloc
TerminateProcess
Sleep
SetThreadLocale
SetFilePointer
SetEvent
SetErrorMode
SetEndOfFile
ResumeThread
ResetEvent
ReadFile
OpenProcess
MultiByteToWideChar
MulDiv
LoadLibraryExA
GetVersionExW
FindClose
FindNextFileW
DeleteFileW
FindFirstFileW
SetCurrentDirectoryW
GetCurrentDirectoryW
GetShortPathNameW
GetSystemDefaultUILanguage
LoadLibraryExW
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetSystemTimeAsFileTime
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
LocalFree
lstrcpyW
lstrcmpW
lstrcmpiW
GetLastError
SetFileAttributesW
GetFileAttributesW
lstrcpynW
lstrlenW
ExpandEnvironmentStringsW
CreateDirectoryW
GetModuleHandleW
GetSystemDirectoryW
LoadLibraryW
ExitProcess
lstrcpynA
lstrcmpiA
LoadLibraryA

user32

DdeInitializeW
DdeGetData
IMPGetIMEA
GetWindowTextLengthW
ShowWindowAsync
ChangeDisplaySettingsA
RegisterClassA
GetFocus
GetMonitorInfoW
IsWindowVisible
DlgDirSelectComboBoxExW
GetClipboardSequenceNumber
RegisterClassExA
CallWindowProcA
FillRect
CreateDialogParamA
SetForegroundWindow
UpdateWindow
CreateDialogIndirectParamA
PostQuitMessage
CreatePopupMenu
CreateMenu
DestroyMenu
DeleteMenu
GetMenuItemCount
GetMenuItemInfoA
InsertMenuItemA
UnhookWindowsHookEx
OffsetRect
SetRectEmpty
DrawMenuBar
GetSubMenu
GetMenuItemRect
RemovePropA
GetPropA
CallNextHookEx
SetPropA
SetWindowsHookExA
IsRectEmpty
DrawFocusRect
DefFrameProcA
SetCursor
DrawTextA
DrawStateA
DefMDIChildProcA
PtInRect
GetCapture
GetClassNameA
ReleaseCapture
GetMenu
IsDialogMessageA
InvalidateRect
IsChild
GetWindowRect
SetWindowPos
GetWindowDC
GetDCEx
BeginPaint
GetWindowLongA
SetWindowLongA
LoadIconA
CreateCursor
CreateIcon
GetSysColorBrush
LoadCursorA
DestroyCursor
DestroyAcceleratorTable
UnregisterClassA
GetSysColor
SystemParametersInfoA
LoadStringA
wvsprintfA
GetWindowTextLengthA
GetWindowTextA
CreateWindowExA
EndPaint
EnumChildWindows
SendMessageA
IsWindowEnabled
EnableWindow
MoveWindow
GetClientRect
GetDlgItem
SetFocus
MessageBoxA
PostMessageA
DefWindowProcA
IsWindow
SetMenu
GetDC
ReleaseDC
GetMessageA
TranslateMessage
GetParent
DispatchMessageA
DestroyWindow
GetSystemMetrics
DestroyIcon
MessageBeep
ShowWindow
IsMenu
SetWindowTextA
SetCapture
GetDesktopWindow
LoadImageA
SetActiveWindow
IsCharUpperW
VkKeyScanW
OpenIcon
GetClipboardData
CharNextA
IsClipboardFormatAvailable
GetActiveWindow
GetCaretBlinkTime
CharLowerW
GetDialogBaseUnits
CloseWindow
CharNextW
IsCharAlphaNumericA

gdi32

GetStockObject
GetTextAlign
RealizePalette
EndDoc
GetDCPenColor
AddFontResourceA
FillPath
DeleteDC
SaveDC
EndPage
WidenPath
CreateCompatibleDC

advapi32

RegOpenKeyA
RegQueryValueExA
GetUserNameW

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 111KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 69KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0e65678801da0be168d5a51cf72c8f1a

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.text Size: 3KB - Virtual size: 3KB

.rdata Size: 21KB - Virtual size: 20KB

.data Size: 111KB - Virtual size: 111KB

.rsrc Size: 69KB - Virtual size: 68KB

.text
Size: 3KB - Virtual size: 3KB

.rdata
Size: 21KB - Virtual size: 20KB

.data
Size: 111KB - Virtual size: 111KB

.rsrc
Size: 69KB - Virtual size: 68KB