1b78fc6c20e60b545849ea6f69fee510_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

1b78fc6c20e60b545849ea6f69fee510_JaffaCakes118
Size

396KB
MD5

1b78fc6c20e60b545849ea6f69fee510
SHA1

2960bc9a3d7b39b83c0bf25538a407cac4b7c306
SHA256

2f0efcf49633e64abb916bbb2092c92537fd56e09e18200028006cb49149ffcc
SHA512

f85100059f5c4ab34a18916368d52f63f909bc127207ecb6f9f51a5e120e44e03db00814ad95bd51ea33dd16e8684c22c9c55e0a6c14cdeae21753cd00eaaeb8
SSDEEP

6144:kL+ddu4RLSvesQFnDL8c4l7zsbQVlRsi:1dQO2WsQFnDLUHsbQNs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1b78fc6c20e60b545849ea6f69fee510_JaffaCakes118

Files

1b78fc6c20e60b545849ea6f69fee510_JaffaCakes118
.exe windows:4 windows x86 arch:x86

096aa926aedf7dfb930d0f3edbe43bb6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetUserDefaultUILanguage
WriteConsoleOutputCharacterW
ProcessIdToSessionId
SetTapeParameters
GetConsoleCursorMode
OutputDebugStringA
QueryInformationJobObject
SetTimeZoneInformation
SetLocalPrimaryComputerNameA
LoadLibraryExA
FlushFileBuffers
MoveFileExW
ConnectNamedPipe
TransmitCommChar
WinExec
SizeofResource
RemoveDirectoryA
MultiByteToWideChar
EnumResourceTypesA
GetCommState
ExpandEnvironmentStringsA
GetFileAttributesA
GetBinaryType
GetCommModemStatus
FindFirstFileExA
GetLocaleInfoA
GetExitCodeProcess
VerifyVersionInfoA
OpenMutexA
SetupComm
SizeofResource
ReadConsoleA
SetThreadUILanguage
CompareStringA
ExpungeConsoleCommandHistoryA
SetHandleContext
SetUnhandledExceptionFilter
LoadResource
MapViewOfFile
GetVersionExA
VirtualAlloc
DeleteTimerQueueTimer
OpenSemaphoreA
GetModuleHandleA
GetFileAttributesExA
UnlockFileEx
BuildCommDCBAndTimeoutsA
WriteProfileSectionA
GetTickCount
GetTickCount
GetPrivateProfileIntA
GetThreadLocale
EnumSystemLanguageGroupsA
GetDefaultCommConfigA
EnumTimeFormatsA
GetConsoleMode
EnumSystemLocalesA
WriteConsoleOutputCharacterA
ReleaseSemaphore
SetVolumeLabelA
GetFileTime
AllocConsole
GetDllDirectoryA
GlobalMemoryStatus
WaitForDebugEvent
GetConsoleTitleA
SetConsoleNumberOfCommandsA
_hread
RequestWakeupLatency
ResetEvent
GetCommandLineA
SetThreadPriorityBoost
SetVDMCurrentDirectories
SetDllDirectoryA
GetVolumeNameForVolumeMountPointA
GetExitCodeThread
GetStdHandle
GetFileSize
DeleteAtom
CancelWaitableTimer
GetThreadContext
SetFileApisToANSI
IsBadCodePtr
SetEndOfFile
SuspendThread
FlushInstructionCache
GetDiskFreeSpaceA
PeekConsoleInputA
WriteProcessMemory
BuildCommDCBAndTimeoutsA
WriteConsoleOutputA
GetProcessHandleCount
GetNumberOfConsoleFonts
SetEndOfFile
GetLogicalDriveStringsA
WriteProfileSectionA
CopyFileA
TransmitCommChar
LoadModule
HeapValidate
WriteConsoleInputA
ExpungeConsoleCommandHistoryA
FindNextFileA
WritePrivateProfileStructA
QueueUserAPC
CreateWaitableTimerA
lstrcatA
lstrcpy
WriteConsoleOutputA
SetFileValidData
CreateFileMappingW
CopyFileExA
WritePrivateProfileStringA
GetTempFileNameA
GetConsoleOutputCP
EnumResourceLanguagesA
CreateWaitableTimerA
IsValidCodePage
ReleaseMutex
CloseHandle
SetThreadLocale
ReadConsoleOutputCharacterA
GetFileInformationByHandle
BuildCommDCBAndTimeoutsW
CreateDirectoryExA
WriteConsoleOutputCharacterA
GetFileAttributesExA
FormatMessageA
FatalExit
GetTickCount
WriteProcessMemory
CreateWaitableTimerA
ReadConsoleA
GetConsoleTitleA
WriteConsoleOutputCharacterA
GetSystemTimes
WriteConsoleOutputA
lstrcmpiA
CompareFileTime
SetConsoleKeyShortcuts
FindNextVolumeMountPointW
CopyFileExA
PeekNamedPipe
GetQueuedCompletionStatus
IsProcessorFeaturePresent
GetStdHandle
IsProcessorFeaturePresent
GetCompressedFileSizeA
GetConsoleWindow
SystemTimeToTzSpecificLocalTime
IsProcessorFeaturePresent
WriteConsoleInputA
GetFileSize
SetInformationJobObject
SetDllDirectoryA
WriteConsoleOutputCharacterA
Process32Next
WritePrivateProfileStringA
PeekConsoleInputA
TerminateThread
GetStringTypeExA
GetVersionExA
IsBadHugeWritePtr
GetProcAddress
CancelWaitableTimer
OpenEventA
PeekNamedPipe
GetModuleHandleA
SetProcessWorkingSetSize
GetDiskFreeSpaceExA
CompareFileTime

user32

SetForegroundWindow
DrawIconEx
RegisterDeviceNotificationA
GetAltTabInfoA
GetRawInputData
SetMenuItemBitmaps
DrawEdge
ActivateKeyboardLayout
GetRawInputData
CharUpperBuffW
CharUpperBuffA
DeviceEventWorker
TileWindows
GetMenuItemID
GetLastActivePopup
TrackPopupMenu
GetMenuItemInfoA
SubtractRect
UpdatePerUserSystemParameters
GetWindowTextA
UnhookWindowsHook
CheckDlgButton
CopyImage
CopyIcon
ChangeMenuA
IsDialogMessage
CreateCursor
GetMenuBarInfo
GetTaskmanWindow
GetMenuItemID
SetWindowTextA
EnumWindows
MapDialogRect
GetClassLongA
GetWindowLongA
CharNextExA
SetPropA
GetDlgItemTextA
GetNextDlgTabItem
CallNextHookEx
GetAltTabInfo
DrawTextA
AttachThreadInput
NotifyWinEvent
SetMessageQueue
ToUnicodeEx
ShowWindow
CharUpperBuffA
DrawMenuBarTemp
SendIMEMessageExA
IsCharAlphaNumericW
ScrollWindowEx
CreateIcon
FindWindowExA
UpdateLayeredWindow
TabbedTextOutA
ToUnicodeEx
ToAscii
SetWindowRgn
InSendMessageEx
UnregisterDeviceNotification
CreateDialogIndirectParamA
SetClassLongA
EnumWindowStationsA
DialogBoxIndirectParamA
CallNextHookEx
MessageBoxTimeoutA
GetDC
PrivateExtractIconsA
GetProcessWindowStation
GetKeyboardType
GetClipCursor
EnumDisplaySettingsExA
GetDoubleClickTime
DragDetect
ShowCursor
EndDeferWindowPos
TrackPopupMenu
SetClassLongA
PeekMessageA
IsWindowInDestroy
GetClassInfoExA
PackDDElParam
SystemParametersInfoA

ws2_32

closesocket

Exports

Exports

Dpigwptl
Gxonecayw
BeginNfygajvsc
ReadRcldtopti
CreateKsbaymhsum
AddSayqlck

Sections

.itext
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 48KB - Virtual size: 660KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 256KB - Virtual size: 253KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 88KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

096aa926aedf7dfb930d0f3edbe43bb6

Headers

File Characteristics

Imports

kernel32

user32

ws2_32

Exports

Exports

Sections

.itext Size: - Virtual size: 3KB

.text Size: 48KB - Virtual size: 660KB

.idata Size: 256KB - Virtual size: 253KB

.rsrc Size: 88KB - Virtual size: 86KB

.itext
Size: - Virtual size: 3KB

.text
Size: 48KB - Virtual size: 660KB

.idata
Size: 256KB - Virtual size: 253KB

.rsrc
Size: 88KB - Virtual size: 86KB