227e30a556d3c13e50a0ee94a4186124_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

227e30a556d3c13e50a0ee94a4186124_JaffaCakes118
Size

78KB
MD5

227e30a556d3c13e50a0ee94a4186124
SHA1

590d3162198a78edb4b86f1d311bf6ab966673f7
SHA256

df5493932df04bd650cf443696fc934e92f8acad86b8d60f0b969f3508c6b691
SHA512

99c490730a0918c31e2d24a30d4437b52680a79d7a45c0bf455511eff655e5f3c7f0ac75896d9b3da4510e61ad2ea373358e3dd7ff9e5a8fbacc83b8ddd1b99b
SSDEEP

1536:HsEcbF3lsAaFUHzLn+zKGeGyT+BCDXTLu2BaHM7p+63xz+:HsNsrFk+2GeGySCLT8HMl+63x6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
227e30a556d3c13e50a0ee94a4186124_JaffaCakes118

Files

227e30a556d3c13e50a0ee94a4186124_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b7ebda2ae5802d8d14fc0ce08ba9bb23

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

UnmapViewOfFile
MapViewOfFile
VirtualFree
CopyFileA
CreateFileW
ReadFile
WriteFile
GetFileSize
SetEndOfFile
CloseHandle
LoadLibraryA
LoadLibraryW
GetProcAddress
CreateFileA
GetCommandLineA
InterlockedCompareExchange
CreateThread
GetCurrentThreadId
GetCurrentThread
ResumeThread
SetThreadPriority
ExitThread
GetStdHandle
SetUnhandledExceptionFilter
IsDBCSLeadByte
GlobalHandle
FileTimeToDosDateTime
GetDiskFreeSpaceA
GlobalLock
TlsAlloc
TlsGetValue
TlsFree
FindFirstFileW
FindNextFileW
FindClose
HeapAlloc
HeapCreate
HeapDestroy
GetProcessHeap
HeapReAlloc
HeapSize
HeapFree
VirtualQuery
FindFirstFileA
FindNextFileA
GetTempFileNameA
SetHandleCount
RemoveDirectoryA
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
GetCPInfo
CreateEventA
SetEvent
ResetEvent
WriteConsoleA
IsBadReadPtr
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
MulDiv
GetStartupInfoA
CreateDirectoryA
GetDateFormatA
CreateEventW
FindResourceA
LoadResource
SizeofResource
FreeResource
TlsSetValue
FileTimeToSystemTime
CreateMutexA
ReleaseMutex
OpenMutexA
lstrcpynA
GlobalFree
EnumCalendarInfoA
LoadLibraryExA
GetWindowsDirectoryA
LCMapStringW
GetTickCount
GetCurrentProcessId
FileTimeToLocalFileTime
GetModuleHandleW
DeleteFileA
GetACP
GlobalAlloc
QueryPerformanceCounter
CompareFileTime
LocalAlloc
OpenProcess
SetFileAttributesA
OutputDebugStringA
MoveFileA
IsValidCodePage
LocalFree
GetSystemInfo
GetSystemDirectoryW
SetFilePointer
GetUserDefaultLCID
GetEnvironmentVariableA
FormatMessageA
LocalFileTimeToFileTime
GetFileAttributesA
GetLocalTime
LCMapStringA
GetExitCodeProcess
GetStringTypeExA
lstrlenW
LoadLibraryExW
LockResource
GlobalUnlock
SetFileAttributesW
UnhandledExceptionFilter
RaiseException
GetPrivateProfileStringA
GetConsoleOutputCP
GetFileType
GetEnvironmentStringsW
GetSystemDirectoryA
GetCurrentProcess
DeleteFileW
GetUserDefaultLangID
GetCommandLineW
lstrcmpiW
lstrlenA
TerminateThread
WideCharToMultiByte
CreateFileMappingA
ExitProcess
SetLastError
CompareStringW
VirtualAlloc
IsDebuggerPresent
GetModuleHandleA
GetShortPathNameA
CreateProcessW
GetFileTime
GetThreadLocale
GetModuleFileNameW
GetTempPathA
SetThreadLocale
GetVersion
WaitForMultipleObjects
FindResourceW
GetLastError
lstrcmpiA
InterlockedIncrement
DisableThreadLibraryCalls

msvcrt

putchar
fgets
strtoul
qsort
longjmp
_wcsnicmp
_setmode
wcsstr
atexit
_exit
ungetc
_amsg_exit
sqrt
_iob
iswspace
__p__environ
ceil
isdigit
abort
fputc
realloc
_mbsrchr
__pioinfo
strcpy
memcmp
_acmdln
__mb_cur_max
_flsbuf
rand
_wcsupr
_ismbblead
strspn
rename
_purecall
_strcmpi
_osver
atof
fflush
clock
tolower
wctomb
pow
_assert
_fdopen
isxdigit
_dup
__getmainargs
_except_handler3
strcmp
__p__commode
ctime
calloc
fprintf
vsprintf
setlocale
_umask
wcscspn
_open_osfhandle
_pctype
sprintf
wcschr
_strlwr
_lseeki64
_mkdir
_wtol
fputs
_mktemp
_getpid
wcscmp
_strnicmp
_lseek
_utime
__lc_codepage
strpbrk
fseek
__dllonexit
cos
time
strchr
_setjmp
towupper
_fullpath
fgetpos
__set_app_type
srand
exit
_CIsqrt
_ultoa
sin
_errno
wcstoul
__initenv
_write
gmtime
_mbsicmp
strtok
wcsrchr
wcslen
isspace
_dup2
_getcwd
atol
_unlock
_stat
__CxxFrameHandler
_stricmp
_isatty
_snwprintf
_c_exit
_pipe
strcat
_wtoi
_CIpow
_fileno
_filelengthi64
swprintf
toupper
memcpy
strrchr
bsearch
rewind
towlower
_kbhit
_getch
_controlfp
clearerr
_putenv
_wfopen
_initterm
strncmp
sscanf
wcstol
_unlink
memset
_close
_fstat
malloc
memmove
log
_strdup
wcscat
memchr
puts
_itoa
free
_XcptFilter
_lock
_read
getenv
localeconv
iswdigit
_mbscmp
printf
fread
__setusermatherr
_open
wcsncmp
ftell
_beginthreadex
_isctype
strcspn
_ftol
__badioinfo
_snprintf
fwrite
_itow
_wcsicmp
_get_osfhandle
strlen
iswctype
_onexit
atoi
fgetc
_cexit
strncpy
fsetpos
_setjmp3
_chmod
wcstombs
strncat
swscanf
remove
strerror
strstr
_filbuf
__p__fmode
isleadbyte
wcsncpy
_vsnprintf
_wcslwr
floor
_vsnwprintf
fopen
_adjust_fdiv
__p___initenv

user32

GetFocus
KillTimer
GetDlgItem
GetTopWindow
LoadBitmapA
UnhookWindowsHookEx
ReleaseDC
DefWindowProcA
SetForegroundWindow
GetDC
GetWindowTextA
LoadStringA
GetMenuStringA
OpenClipboard
GetMenuItemCount
SetWindowLongA
DrawMenuBar
IsWindowEnabled
DrawEdge
GetCapture
SetTimer
IsZoomed
SetCapture
GetMessagePos
IsDialogMessageA
SetScrollRange
DestroyMenu
SetRect
GetSystemMenu
OffsetRect
PeekMessageA
GetWindowDC
SetWindowPos
SetClassLongA
PostMessageA
GetMenuItemID
RemovePropA
GetPropA
InsertMenuItemA
DestroyCursor
GetSysColor
FrameRect
wsprintfA
IsIconic
GetClassNameA
ShowCursor
UnregisterClassA
DrawTextA
IntersectRect
IsRectEmpty
InsertMenuA
LoadCursorA
EndPaint
GetWindowPlacement
SetFocus
GetDCEx
DrawIcon
EnumWindows
GetWindowLongA
CallNextHookEx
RegisterWindowMessageA
WindowFromPoint
SetMenu
GetSysColorBrush
MessageBeep
UpdateWindow
ClientToScreen
TrackPopupMenu
GetSubMenu
IsChild
IsWindowVisible
EnableMenuItem
SetActiveWindow
SetCursor
RedrawWindow
GetKeyState
EqualRect
GetDesktopWindow
CharLowerA
TranslateMessage
GetParent
CreatePopupMenu
GetIconInfo
SetPropA
SetScrollInfo
GetMenuState
GetScrollRange
DeleteMenu
PtInRect
CreateWindowExA
GetWindow
IsWindow
ShowWindow
FillRect
DrawFrameControl
InvalidateRect
CreateMenu
FindWindowA
RegisterClipboardFormatA
SendDlgItemMessageA
GetMenu
SetWindowTextA
DispatchMessageA
DialogBoxParamA
DestroyWindow
SendMessageA
MapWindowPoints
GetWindowRect
EndDialog
GetMessageA
ReleaseCapture
GetClassInfoA
GetCursorPos
WinHelpA
GetKeyboardType
SetWindowPlacement
GetActiveWindow
RegisterClassA
EmptyClipboard
EnableWindow
GetWindowThreadProcessId
SystemParametersInfoA
CharNextA
PostQuitMessage
GetScrollPos
DrawIconEx
ScreenToClient
DestroyIcon
CallWindowProcA
GetForegroundWindow
GetScrollInfo
OemToCharA
CheckMenuItem
EnumThreadWindows
ScrollWindow
GetSystemMetrics
GetClientRect
ShowOwnedPopups
SetWindowsHookExA
BeginPaint

Sections

.text
Size: 37KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b7ebda2ae5802d8d14fc0ce08ba9bb23

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

Sections

.text Size: 37KB - Virtual size: 36KB

.rdata Size: 11KB - Virtual size: 11KB

.data Size: 48KB - Virtual size: 48KB

.rsrc Size: 2KB - Virtual size: 4KB

.text
Size: 37KB - Virtual size: 36KB

.rdata
Size: 11KB - Virtual size: 11KB

.data
Size: 48KB - Virtual size: 48KB

.rsrc
Size: 2KB - Virtual size: 4KB