6a29cf973f1d66268030cc5e5a4d2d1cJaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

6a29cf973f1d66268030cc5e5a4d2d1cJaffaCakes118
Size

580KB
MD5

6a29cf973f1d66268030cc5e5a4d2d1c
SHA1

786e7571fe983e9ed1b5f9c144096a038629462b
SHA256

ebb50394bcadbc9bcf4f6814b6e0cf72ef6f153d8c8d69472b20b4c9e431cf39
SHA512

380c10d5d03fc521a6a01d9cf0ab578ffb7ede5906ffbf96a2597d556168b39cf02221be4e2d619e7c62a1124261868244f688b36d2e91c66a336897e6688722
SSDEEP

6144:qPrmCDMLRhprsSgSM7Fs9Icg0bAJHALCV:+rX+pA7FGEJe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
6a29cf973f1d66268030cc5e5a4d2d1cJaffaCakes118

Files

6a29cf973f1d66268030cc5e5a4d2d1cJaffaCakes118
.exe windows:4 windows x86 arch:x86

21b79149a4763aff69de30dd077f6aa9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemTime
GetLocalTime
RaiseException
ExitProcess
TerminateProcess
GetStartupInfoA
GetCommandLineA
HeapAlloc
HeapFree
GetACP
HeapReAlloc
HeapSize
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetEnvironmentVariableA
GetTimeZoneInformation
HeapDestroy
HeapCreate
IsBadWritePtr
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetDriveTypeA
IsBadReadPtr
IsBadCodePtr
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
RtlUnwind
SetErrorMode
GetOEMCP
GetCPInfo
GetProcessVersion
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
LocalAlloc
GlobalFlags
FileTimeToLocalFileTime
FileTimeToSystemTime
FindNextFileA
GetFileTime
GetFileSize
GetFileAttributesA
GetFullPathNameA
GetVolumeInformationA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
GetCurrentProcess
DuplicateHandle
GlobalAlloc
lstrcmpA
GetCurrentThread
LocalFree
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
GetModuleFileNameA
CloseHandle
MulDiv
SetLastError
MultiByteToWideChar
WideCharToMultiByte
GetVersion
GetCurrentThreadId
GetTickCount
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GetModuleHandleA
GlobalLock
GlobalUnlock
GlobalFree
GetLastError
FindResourceA
LoadResource
LockResource
GetCurrentDirectoryA
InterlockedIncrement
CreateThread
InitializeCriticalSection
lstrcpynA
SetFileTime
SetFileAttributesA
FindClose
EnterCriticalSection
InterlockedDecrement
LeaveCriticalSection
GlobalDeleteAtom
FreeLibrary
VirtualFree
VirtualAlloc
LoadLibraryA
GetProcAddress
DeleteFileA
FindFirstFileA
CopyFileA
lstrcatA
lstrlenA
WinExec
lstrcpyA
GetVersionExA

user32

AdjustWindowRectEx
SetFocus
GetFocus
DispatchMessageA
PeekMessageA
MapWindowPoints
SendDlgItemMessageA
IsDialogMessageA
SetWindowTextA
MoveWindow
ShowWindow
EnableMenuItem
SetMenuItemBitmaps
ModifyMenuA
GetMenuState
LoadBitmapA
GetMenuCheckMarkDimensions
BeginPaint
EndPaint
LoadStringA
WaitMessage
ValidateRect
TranslateMessage
GetMessageA
PostQuitMessage
CharUpperA
DestroyMenu
GetClassNameA
PtInRect
GetSysColorBrush
GetTopWindow
WinHelpA
wsprintfA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetMenuItemID
TrackPopupMenu
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
CreateWindowExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
RegisterWindowMessageA
SystemParametersInfoA
GetNextDlgTabItem
EndDialog
SetActiveWindow
IsWindow
CreateDialogIndirectParamA
DestroyWindow
GetDlgItem
IsWindowEnabled
GetKeyState
SetWindowPos
IsIconic
GetSystemMetrics
DrawIcon
GetCursorPos
LoadMenuA
GetSubMenu
CheckMenuItem
DeleteMenu
DestroyIcon
IsWindowVisible
LoadIconA
PostMessageA
KillTimer
SetTimer
UpdateWindow
MessageBeep
GetDC
ReleaseDC
SetWindowLongA
MessageBoxA
GrayStringA
DrawTextA
TabbedTextOutA
GetWindowRect
GetClientRect
SetCursor
GetWindowLongA
CopyRect
FillRect
GetSysColor
OffsetRect
SendMessageA
GetActiveWindow
GetParent
GetCapture
SetCapture
ClientToScreen
WindowFromPoint
ReleaseCapture
InvalidateRect
LoadImageA
GetIconInfo
RedrawWindow
EnableWindow
SetWindowsHookExA
LoadCursorA
GetWindowPlacement
UnregisterClassA

gdi32

CreateBitmap
DeleteDC
SaveDC
RestoreDC
SetBkMode
SetMapMode
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
SetTextAlign
SetBkColor
GetDeviceCaps
SetTextColor
GetClipBox
GetViewportOrgEx
SetViewportOrgEx
DeleteObject
GetObjectA
CreateFontIndirectA
GetStockObject
CreateSolidBrush
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
CreateCompatibleBitmap
CreateCompatibleDC
SelectObject
BitBlt

comdlg32

GetFileTitleA
GetSaveFileNameA
GetOpenFileNameA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegDeleteKeyA
RegCreateKeyExA
RegDeleteValueA
RegCloseKey
RegSetValueExA
RegQueryValueExA
RegOpenKeyExA
RegQueryValueA

shell32

Shell_NotifyIconA
ShellExecuteA

comctl32

ord17

wsock32

htons
listen
WSACleanup
WSAStartup
inet_addr
gethostbyname
gethostname
WSASetLastError
WSAGetLastError
ntohs
getpeername
accept
ioctlsocket
bind
htonl
closesocket
recv
send
WSAAsyncSelect
inet_ntoa
socket
recvfrom
sendto
connect

winmm

sndPlaySoundA

Sections

.text
Size: 156KB - Virtual size: 152KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 300KB - Virtual size: 311KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 84KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

21b79149a4763aff69de30dd077f6aa9

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

wsock32

winmm

Sections

.text Size: 156KB - Virtual size: 152KB

.rdata Size: 36KB - Virtual size: 32KB

.data Size: 300KB - Virtual size: 311KB

.rsrc Size: 84KB - Virtual size: 80KB

.text
Size: 156KB - Virtual size: 152KB

.rdata
Size: 36KB - Virtual size: 32KB

.data
Size: 300KB - Virtual size: 311KB

.rsrc
Size: 84KB - Virtual size: 80KB