8658cbf10b06ef273949ec06ba27e940_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

8658cbf10b06ef273949ec06ba27e940_JaffaCakes118
Size

480KB
MD5

8658cbf10b06ef273949ec06ba27e940
SHA1

5bef3610e5a641b0d4df529ac52b30876f421de0
SHA256

99370d6dbfa0fe731f7396e5e95b2adceeae1045b7b36779918c958d21793350
SHA512

3af32765c9daa97edd2cb445402a490b4989841804786a60cfa20e68f9d64ec182d04c2053bd032e17167742a8e9d5a935844b50f503f7477d136f723c71a319
SSDEEP

12288:H9tHaIXE5BZ+8mHPWEVOeQe7vaLbyAdiF7Kf:H9tHCTmH6eF7yPyRF7K

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
8658cbf10b06ef273949ec06ba27e940_JaffaCakes118

Files

8658cbf10b06ef273949ec06ba27e940_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b0cc140d93ba34a2830e2ec9fafb65af

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadStringA
MapVirtualKeyA
MapVirtualKeyW
MapWindowPoints
OpenClipboard
LoadKeyboardLayoutA
PeekMessageW
PostMessageA
PostMessageW
PostQuitMessage
ShowWindow
LoadIconA
LoadCursorA
LoadBitmapA
KillTimer
IsZoomed
IsWindowVisible
IsWindowUnicode
IsWindowEnabled
IsWindow
IsRectEmpty
IsIconic
IsDialogMessageW
IsDialogMessageA
IsChild
InvalidateRect
IntersectRect
InsertMenuItemA
InsertMenuA
InflateRect
GetWindowThreadProcessId
GetWindowTextLengthW
GetWindowLongA
GetWindowDC
GetTopWindow
GetSystemMetrics
GetSystemMenu
GetSysColorBrush
GetSubMenu
GetScrollRange
GetScrollPos
GetScrollInfo
GetPropA
GetParent
GetWindow
GetMessagePos
GetMenuStringW
GetMenuStringA
GetMenuState
GetMenuItemInfoW
GetMenuItemInfoA
GetMenuItemID
GetMenuItemCount
GetMenu
GetLastActivePopup
GetKeyboardState
GetKeyboardLayoutNameA
GetKeyboardLayoutList
GetKeyboardLayout
GetKeyState
GetKeyNameTextW
GetKeyNameTextA
GetIconInfo
GetForegroundWindow
GetFocus
GetDesktopWindow
GetDCEx
GetDC
GetCursorPos
GetCursor
GetClipboardData
GetClientRect
GetClassNameW
GetClassNameA
GetClassLongA
GetClassInfoW
GetClassInfoA
GetCapture
GetActiveWindow
FrameRect
FindWindowA
FillRect
ExitWindowsEx
EqualRect
EnumWindows
DefWindowProcW
DefWindowProcA
DefMDIChildProcW
DefMDIChildProcA
DefFrameProcW
DefFrameProcA
CreatePopupMenu
CreateMenu
CreateMDIWindowW
CreateIcon
CloseClipboard
ClientToScreen
ChildWindowFromPoint
CheckMenuItem
CharUpperBuffW
CharPrevW
CharNextW
CharLowerBuffW
CallWindowProcW
CallWindowProcA
CallNextHookEx
BringWindowToTop
GetSysColor
VkKeyScanExA
PeekMessageA

gdi32

ModifyWorldTransform
GetStretchBltMode
FlattenPath
SetROP2

kernel32

GetACP
RtlUnwind
InitializeCriticalSectionAndSpinCount
GetCPInfo
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
InterlockedDecrement
GetCurrentThreadId
SetLastError
InterlockedIncrement
TlsFree
TlsSetValue
TlsGetValue
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetLastError
GetModuleFileNameA
GetStdHandle
WriteFile
ExitProcess
GetProcAddress
Sleep
GetModuleHandleW
HeapCreate
HeapReAlloc
VirtualAlloc
GetOEMCP
HeapFree
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
GetTimeZoneInformation
WideCharToMultiByte
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetStartupInfoA
GetCommandLineA
HeapAlloc
GetSystemTimeAsFileTime
GetExitCodeProcess
GetExitCodeThread
GetEnvironmentStrings
LoadLibraryA
FindNextFileA
TlsAlloc
GetModuleHandleA
GetUserDefaultLCID
GetModuleFileNameW
LocalFree
SetProcessWorkingSetSize
ClearCommBreak
AreFileApisANSI
IsValidCodePage
LCMapStringA
MultiByteToWideChar
LCMapStringW
GetStringTypeA
GetStringTypeW
HeapSize
GetLocaleInfoA
CompareStringA
CompareStringW
VirtualFree
SetEnvironmentVariableA

Sections

.text
Size: 68KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 154KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.BSS
Size: 380KB - Virtual size: 379KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b0cc140d93ba34a2830e2ec9fafb65af

Headers

File Characteristics

Imports

user32

gdi32

kernel32

Sections

.text Size: 68KB - Virtual size: 66KB

.rdata Size: 20KB - Virtual size: 17KB

.data Size: 4KB - Virtual size: 154KB

.BSS Size: 380KB - Virtual size: 379KB

.rsrc Size: 4KB - Virtual size: 1KB

.text
Size: 68KB - Virtual size: 66KB

.rdata
Size: 20KB - Virtual size: 17KB

.data
Size: 4KB - Virtual size: 154KB

.BSS
Size: 380KB - Virtual size: 379KB

.rsrc
Size: 4KB - Virtual size: 1KB