21e030c64613c10f1fceda1f1d866c71_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

21e030c64613c10f1fceda1f1d866c71_JaffaCakes118
Size

58KB
MD5

21e030c64613c10f1fceda1f1d866c71
SHA1

5f381d84d30386c71fb3c9004b601e84f4ad0c0d
SHA256

1a5fbb8d110700f4efe762692d6e49d835183a1173b41b0f7c3bc4299f174bf4
SHA512

5984d85b3a5ea36f529bf0bd9507010b231fe3acb8f75014cdb3e2bfe1a128ce19185de73240e0119c51180cb32d4267b131a575e9dc2784a1733e16b5bee585
SSDEEP

768:zbIElW8vOdhSxcA5Nohi10daKjTk2w6/k2akCOXcVZzjvcs8XtUKZw1VrV4:zbIEQ8vwAfSfXNPCRj4Xlw1VrV4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
21e030c64613c10f1fceda1f1d866c71_JaffaCakes118

Files

21e030c64613c10f1fceda1f1d866c71_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3843a3d358140c00bf2b2c3a38e59534

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetProcAddress
FindResourceA
GetCurrentThreadId
VirtualProtect
GlobalUnlock
GetCurrentThreadId
SetThreadLocale
EnterCriticalSection
SetThreadLocale
GetThreadLocale
CreateThread
WideCharToMultiByte
LocalAlloc
GlobalReAlloc
GetACP
VirtualFree
FindClose
MulDiv
GetLocalTime
GetLastError
GetCommandLineA
SetFilePointer
GetModuleHandleA
CreateFileA
MultiByteToWideChar
WaitForSingleObject
LoadLibraryA
FormatMessageA
GetVersion
TlsSetValue
GlobalHandle
InterlockedExchange
LocalFree
RaiseException
GetCPInfo
InitializeCriticalSection
UnhandledExceptionFilter
GetStdHandle
FreeResource
RtlUnwind
InitializeCriticalSection
TlsGetValue
VirtualAlloc
GetLocaleInfoA
InterlockedDecrement
GlobalFree
EnumCalendarInfoA
EnterCriticalSection
InterlockedIncrement
GetVersion
SizeofResource
GetModuleFileNameA
ExitProcess
GetModuleFileNameA
LoadResource

user32

CreateMenu
SendMessageA
InvalidateRect
GetIconInfo
DefWindowProcA
SetTimer
LoadStringA
GetParent
EnableWindow
UnregisterClassA
ReleaseCapture
GetTopWindow
EqualRect
GetKeyboardType
ScreenToClient
InsertMenuItemA
GetFocus
DefFrameProcA
SetScrollPos
LoadIconA
GetMenu
DestroyIcon
SetWindowPlacement
MapWindowPoints
GetMenuStringA
DrawTextA
TranslateMDISysAccel
RegisterClipboardFormatA
GetWindowLongA
FindWindowA
MessageBoxA
RemoveMenu
GetSysColor
CharNextA
ReleaseDC
GetWindowDC
GetClassInfoA
ActivateKeyboardLayout
ScrollWindow
GetWindowRect
GetCapture
EnumWindows
WinHelpA
RegisterWindowMessageA
GetSystemMenu
EnumThreadWindows
GetSysColorBrush
WaitMessage
DrawMenuBar
TrackPopupMenu
MapVirtualKeyA
GetMenuItemInfoA
DestroyWindow
ShowCursor
OffsetRect
GetMenuItemID
SetScrollRange
IsZoomed
GetForegroundWindow
ClientToScreen
SetCursor
WindowFromPoint
PostQuitMessage
GetScrollPos
EnableMenuItem
TranslateMessage
DestroyCursor
SetWindowLongA
IsChild
GetDCEx
CharToOemA
EndPaint
KillTimer
GetKeyboardState
CreateIcon
SetParent
IntersectRect
GetSystemMetrics
EnableScrollBar
MessageBoxA
GetMenuItemCount
CheckMenuItem
SetClassLongA
InsertMenuA
FrameRect
PostMessageA
GetMenuState
SetRect
RegisterClassA
GetPropA
GetSubMenu
DrawIcon
SetWindowPos
CharNextA
CreatePopupMenu
SetMenu
GetClassNameA
DeleteMenu
SetPropA
CreateWindowExA

gdi32

GetDeviceCaps
CreateCompatibleDC
SetPixel
PatBlt
GetObjectA
CreateSolidBrush
UnrealizeObject
SelectPalette
GetWindowOrgEx
GetClipBox
CreateDIBSection
SetStretchBltMode
RealizePalette
CreatePenIndirect
StretchBlt
SaveDC
GetSystemPaletteEntries
DeleteObject
BitBlt
SetBkColor
IntersectClipRect
GetCurrentPositionEx
SetDIBColorTable
MoveToEx
GetDCOrgEx
CreateHalftonePalette
RectVisible
GetPaletteEntries
RestoreDC
DeleteDC
CreateBitmap
GetBitmapBits
SetBrushOrgEx
GetDIBits
CreateFontIndirectA
SetROP2
CreateDIBitmap

Sections

sdfgsd
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

wqeter
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

zxcvdg
Size: - Virtual size: 120KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

adsfgt
Size: 2KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

ewtwer
Size: - Virtual size: 8B

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

fsatwe
Size: 512B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

weqter
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

taewtf
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

zxcgdt
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

dsatew
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3843a3d358140c00bf2b2c3a38e59534

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

sdfgsd Size: 33KB - Virtual size: 33KB

wqeter Size: 1024B - Virtual size: 2KB

zxcvdg Size: - Virtual size: 120KB

adsfgt Size: 2KB - Virtual size: 3KB

ewtwer Size: - Virtual size: 8B

fsatwe Size: 512B - Virtual size: 3KB

weqter Size: 2KB - Virtual size: 2KB

taewtf Size: 512B - Virtual size: 512B

zxcgdt Size: 4KB - Virtual size: 4KB

dsatew Size: 8KB - Virtual size: 8KB

.rsrc Size: 5KB - Virtual size: 8KB

sdfgsd
Size: 33KB - Virtual size: 33KB

wqeter
Size: 1024B - Virtual size: 2KB

zxcvdg
Size: - Virtual size: 120KB

adsfgt
Size: 2KB - Virtual size: 3KB

ewtwer
Size: - Virtual size: 8B

fsatwe
Size: 512B - Virtual size: 3KB

weqter
Size: 2KB - Virtual size: 2KB

taewtf
Size: 512B - Virtual size: 512B

zxcgdt
Size: 4KB - Virtual size: 4KB

dsatew
Size: 8KB - Virtual size: 8KB

.rsrc
Size: 5KB - Virtual size: 8KB