1aa7646f8be9ac17e1c31b07bb066271_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

1aa7646f8be9ac17e1c31b07bb066271_JaffaCakes118
Size

172KB
MD5

1aa7646f8be9ac17e1c31b07bb066271
SHA1

e209df3e3e09ecd9adf0c8db1e03469b727a5990
SHA256

d23b5cd2370d7e04b74f6bcb5eb70a9c317ccbfc5e4a516d4a8fa6be531c57c9
SHA512

0f74b853de0bf6f1559bcf7620f88e4c0acc006f79077615c1b022973afb923052ae118c6c17ab0699e70ae9c6b46ed012015bd3992f9fe47f8b81a27a4992c8
SSDEEP

3072:TjcbBU2Rvjzj5cChDnDAgHnMwhbti+/YjjQR9oIRnBNn4JNF6xJWpPJ0Wv4S:TjGbzxDnkoMwVYjjIGYB67cJWpP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1aa7646f8be9ac17e1c31b07bb066271_JaffaCakes118

Files

1aa7646f8be9ac17e1c31b07bb066271_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6c445a62906d425f5a781d1f06121cc2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileAttributesExA
GetLocalTime
ReadConsoleA
ClearCommError
VirtualAllocEx
GetFileSize
SuspendThread
GetEnvironmentVariableA
GetModuleFileNameA
HeapSize
WriteConsoleOutputCharacterW
GetDiskFreeSpaceExA
GetFileTime
SetThreadUILanguage
GetExitCodeProcess
HeapReAlloc
GlobalGetAtomNameA
GetConsoleAliasesA
EnumResourceNamesA
GetStdHandle
GetWindowsDirectoryA
lstrcpyA
GetLocaleInfoA
GetVolumePathNameA
RemoveDirectoryA
GetConsoleCursorInfo
EndUpdateResourceA
DeleteTimerQueueTimer
SetCurrentDirectoryA
GetProcessPriorityBoost
ReadConsoleOutputCharacterA
GetNamedPipeInfo
IsBadStringPtrA
GetComputerNameA
SetFileShortNameA
HeapDestroy
GetModuleHandleA
GetNumberFormatA
MapViewOfFile
ReadConsoleOutputCharacterA
CloseHandle
GetCurrentDirectoryA
QueryMemoryResourceNotification
GetEnvironmentVariableA
WriteFile
GetConsoleWindow
GetExitCodeThread
GetProfileSectionA
GetThreadPriorityBoost
IsBadHugeReadPtr
GetConsoleAliasesLengthW
WritePrivateProfileStringA
GetDiskFreeSpaceA
GetConsoleAliasExesW
OutputDebugStringA
VirtualProtect
GetEnvironmentVariableA
VirtualProtectEx
GetDiskFreeSpaceExA
EnumUILanguagesA
OpenMutexA
SetUnhandledExceptionFilter
GetProcessShutdownParameters
SetConsoleCursor
GetLogicalDriveStringsA
GetEnvironmentStringsA
PeekConsoleInputA
GetProcessId
GetConsoleOutputCP
CancelWaitableTimer
HeapSummary
HeapLock
GetProfileStringA
CreateEventA
CreateFileA
lstrcatA
ReleaseSemaphore
TransmitCommChar
EnumResourceLanguagesA
ReadConsoleInputA
GetProcessWorkingSetSize
GetStringTypeExA
FindNextChangeNotification
SetConsoleHardwareState
UnlockFile
SearchPathA
FindAtomA
_lclose
SetComputerNameExA
ProcessIdToSessionId

winmm

timeGetSystemTime

user32

GetMessageTime
PaintDesktop
GetLayeredWindowAttributes
DrawIcon
RemovePropA
SetDlgItemInt
SetFocus
IsWindowEnabled
KillTimer
MapVirtualKeyExA
CreateIconIndirect
GetMessageTime
SetForegroundWindow
CharToOemBuffA
SetShellWindowEx
FindWindowA
GetWindowInfo
SendDlgItemMessageA
EmptyClipboard
IsWinEventHookInstalled
EqualRect
SetInternalWindowPos
SetMessageQueue
LoadCursorFromFileA
SetProcessDefaultLayout
SetScrollRange
CopyAcceleratorTableA
EndPaint
SetClipboardData
SetMenuItemInfoA
TranslateAcceleratorA
GetSystemMetrics
EnumDesktopsA
MenuWindowProcA
CallWindowProcA
SetPropA
InflateRect
DrawMenuBarTemp
GetMessageExtraInfo
GetRawInputBuffer
SetMenuDefaultItem
SetClipboardViewer
GetPriorityClipboardFormat
LoadBitmapA
ScrollChildren
ChangeDisplaySettingsExA
RegisterUserApiHook
DrawTextA
GetLastInputInfo
SwitchDesktop
RegisterClassExA
UpdatePerUserSystemParameters
GetWindowLongA
GetProgmanWindow
LoadAcceleratorsA
CharPrevA
DefMDIChildProcA
SwitchDesktop
EnumDisplaySettingsExW
GetDesktopWindow
DrawAnimatedRects
DrawEdge
CreatePopupMenu
SetMenuItemBitmaps
AnimateWindow
AdjustWindowRect
CloseDesktop
SetActiveWindow
NotifyWinEvent
DeregisterShellHookWindow
SystemParametersInfoA
RedrawWindow
IsGUIThread
CreateDesktopA
GetDesktopWindow
GetActiveWindow
GetCursor
ChangeDisplaySettingsExA
DisplayExitWindowsWarnings
RemovePropA
SystemParametersInfoA
DefMDIChildProcA
GetWindowTextA
InvertRect

Sections

.idata
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.itext
Size: 156KB - Virtual size: 157KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6c445a62906d425f5a781d1f06121cc2

Headers

File Characteristics

Imports

kernel32

winmm

user32

Sections

.idata Size: - Virtual size: 2KB

.itext Size: 156KB - Virtual size: 157KB

.idata Size: 8KB - Virtual size: 4KB

.rsrc Size: 4KB - Virtual size: 1KB

.idata
Size: - Virtual size: 2KB

.itext
Size: 156KB - Virtual size: 157KB

.idata
Size: 8KB - Virtual size: 4KB

.rsrc
Size: 4KB - Virtual size: 1KB