29f47243c1d9c380146a097baa9f5550_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

29f47243c1d9c380146a097baa9f5550_JaffaCakes118
Size

63KB
MD5

29f47243c1d9c380146a097baa9f5550
SHA1

1a52934bae2b93013a79dcc6382f1f9157c983fc
SHA256

1db596334408f75e563ee9f4058be28cf9c26f7a7817b6e659ae9f9ada257852
SHA512

7aeb56b330f3184a1fc22629f3e7bb0ff3e553c52692f2813a8d734d39d435511bf21dc1384a760794945915fa30467f711e20bef8f3a6c1d13165e2844cde8a
SSDEEP

1536:sfShlwBfU4BT2cq4vii0LjC8ktKIW1ilVzzA:yShyxnkcqLL3MKItl1A

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
29f47243c1d9c380146a097baa9f5550_JaffaCakes118

Files

29f47243c1d9c380146a097baa9f5550_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4ea583541b9d5242449a747f4c18b0cd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

AddAtomA
AddConsoleAliasA
ClearCommBreak
ClearCommError
CloseHandle
CmdBatNotification
CommConfigDialogW
CreateDirectoryW
CreateFileW
CreateMutexW
CreateNamedPipeA
CreateNamedPipeW
DeviceIoControl
DuplicateHandle
EnumSystemCodePagesW
EnumSystemLocalesW
EnumTimeFormatsA
ExitProcess
FindNextFileA
FindResourceExA
FlushInstructionCache
FreeLibraryAndExitThread
FreeResource
GetCPInfoExW
GetCommandLineW
GetComputerNameA
GetComputerNameW
GetConsoleAliasW
GetConsoleAliasesW
GetConsoleDisplayMode
GetCurrentDirectoryA
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetFileAttributesW
GetFullPathNameA
GetLastError
GetLocalTime
GetModuleHandleW
GetOEMCP
GetPrivateProfileStructW
GetProcessHeap
GetProcessShutdownParameters
GetProcessVersion
GetProfileIntA
GetProfileStringW
GetShortPathNameA
GetStartupInfoA
GetStartupInfoW
GetStringTypeExW
GetSystemTime
GetTapePosition
GetVersion
GetVersionExW
HeapCompact
HeapSummary
HeapWalk
InitializeCriticalSectionAndSpinCount
IsBadWritePtr
IsValidLocale
MoveFileA
MoveFileExA
OpenFile
PeekConsoleInputW
ReadFileEx
RegisterConsoleVDM
SetCommTimeouts
SetConsoleCursorPosition
SetConsoleDisplayMode
SetConsoleHardwareState
SetConsoleNumberOfCommandsW
SetLastConsoleEventActive
SetLastError
SetProcessPriorityBoost
SetThreadPriority
SetUnhandledExceptionFilter
SizeofResource
SuspendThread
TransactNamedPipe
UnlockFile
UnlockFileEx
UnmapViewOfFile
VDMConsoleOperation
VirtualProtect
WaitNamedPipeW
WriteConsoleOutputW
WriteConsoleOutputCharacterA
WriteConsoleOutputCharacterW
WriteFileGather
_llseek
lstrcmpA
lstrcmpW
lstrcmpiA
lstrcmpiW
lstrlenA

user32

ActivateKeyboardLayout
AdjustWindowRect
AnyPopup
BeginDeferWindowPos
BroadcastSystemMessageW
CallMsgFilterW
CallWindowProcW
CharNextA
CharToOemBuffW
CharUpperA
CharUpperW
CharUpperBuffW
CopyIcon
CopyRect
CreateMDIWindowW
CreateWindowStationW
DdeClientTransaction
DdeCreateDataHandle
DdeFreeStringHandle
DdeGetQualityOfService
DdeInitializeA
DefFrameProcW
DestroyCaret
DestroyMenu
DlgDirListComboBoxW
DlgDirSelectExW
DrawFrame
DrawTextA
EnumDisplaySettingsW
EnumDisplaySettingsExW
EnumPropsW
EnumWindowStationsA
FillRect
GetClassInfoA
GetClassInfoExA
GetClipCursor
GetCursor
GetCursorInfo
GetFocus
GetForegroundWindow
GetKBCodePage
GetMenu
GetMenuCheckMarkDimensions
GetMenuContextHelpId
GetMenuInfo
GetNextDlgTabItem
GetParent
GetProcessWindowStation
GetShellWindow
GetThreadDesktop
GetWindowDC
IMPGetIMEA
InvalidateRgn
InvertRect
IsCharAlphaA
IsCharUpperA
IsDlgButtonChecked
LoadKeyboardLayoutW
MessageBoxIndirectW
MonitorFromRect
OemToCharBuffA
OpenClipboard
PackDDElParam
PeekMessageA
PostMessageW
PtInRect
RealGetWindowClassA
RedrawWindow
RegisterClipboardFormatW
RegisterDeviceNotificationW
ScreenToClient
ScrollDC
SendNotifyMessageW
SetCaretPos
SetClassWord
SetDlgItemTextW
SetLayeredWindowAttributes
SetMessageExtraInfo
SetProcessWindowStation
SetRectEmpty
SetWindowPlacement
SetWindowPos
ShowWindow
ShowWindowAsync
TranslateMDISysAccel
UnionRect
UnpackDDElParam
UnregisterDeviceNotification
WindowFromDC

gdi32

CreateBitmapIndirect
CreateCompatibleDC
CreateDiscardableBitmap
CreateEllipticRgnIndirect
CreatePalette
EnumFontFamiliesA
GdiComment
GdiGetBatchLimit
GdiSetBatchLimit
GetBkColor
GetBkMode
GetBoundsRect
GetCharWidthFloatA
GetClipBox
GetClipRgn
GetColorSpace
GetCurrentObject
GetDIBits
GetEnhMetaFileDescriptionA
GetFontData
GetGlyphOutlineW
GetMiterLimit
GetNearestPaletteIndex
GetObjectA
GetPixel
GetStretchBltMode
GetSystemPaletteUse
GetTextAlign
GetTextCharset
GetTextColor
GetWindowOrgEx
GetWorldTransform
Pie
PolyTextOutA
Polygon
PtVisible
ScaleWindowExtEx
SelectBrushLocal
SelectClipRgn
SetBkColor
SetBkMode
SetMetaFileBitsEx
SetPixelV
SetROP2
SetRelAbs
SetSystemPaletteUse
SetViewportOrgEx
TextOutA
UpdateICMRegKeyA

comdlg32

ChooseColorW
GetFileTitleA

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 51KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bKon
Size: 4KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4ea583541b9d5242449a747f4c18b0cd

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

Sections

.text Size: 6KB - Virtual size: 6KB

.data Size: 51KB - Virtual size: 82KB

.bKon Size: 4KB - Virtual size: 31KB

.reloc Size: 1024B - Virtual size: 4KB

.text
Size: 6KB - Virtual size: 6KB

.data
Size: 51KB - Virtual size: 82KB

.bKon
Size: 4KB - Virtual size: 31KB

.reloc
Size: 1024B - Virtual size: 4KB