2a5dc03666e9aae0225c9a9cc92d7066_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2a5dc03666e9aae0225c9a9cc92d7066_JaffaCakes118
Size

556KB
MD5

2a5dc03666e9aae0225c9a9cc92d7066
SHA1

d2c0b35703e9ee3c02b18c678b757a63ee51022e
SHA256

0e70bd62a4cca380f5eb16c512da78a977bcbd5c34d991a954c2ffeb6b80d14b
SHA512

562ea2dccfb1c8a5e98485961b51e20c0ffaa07bea7ede43c92ecde19fc57996ba7cbbbb943b79fbfcb7081f7cd302a3b0f4838ab9c57d160942f282b89d6a82
SSDEEP

12288:zUY5DDJtFvEYPRixfWCOmgCKgwCP/D/VMnF+AAu:3tFDP0x9WYO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2a5dc03666e9aae0225c9a9cc92d7066_JaffaCakes118

Files

2a5dc03666e9aae0225c9a9cc92d7066_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1ef936d0fc8c041c0c657d2c06918601

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx
DrawStatusTextA

user32

DdeUnaccessData
SetUserObjectInformationW
LoadIconA
GetDlgCtrlID
GetKeyboardLayoutList
GetTabbedTextExtentW
OemKeyScan
GetMenuState
CharNextExA
DispatchMessageW
CharUpperW
LoadImageW
TabbedTextOutA
DdeDisconnect
TranslateAcceleratorA
CreateWindowStationW
CharPrevA
FlashWindow
GetClipboardSequenceNumber
GetUserObjectInformationW
SetProcessDefaultLayout
CreateWindowExA
GetKeyboardLayoutNameW
GetClipboardOwner
SetDebugErrorLevel
EnumThreadWindows
ToUnicodeEx
CharToOemBuffA
GetTabbedTextExtentA
RegisterClassExA
DrawIcon
SetActiveWindow
LoadCursorFromFileW
UnionRect
LoadKeyboardLayoutW
EnumWindowStationsA
GetFocus
DdeImpersonateClient
SetMessageQueue
ScrollDC
DefWindowProcA
EnumDisplayDevicesA
InsertMenuW
SetScrollInfo
CreateAcceleratorTableA
CharLowerW
SetKeyboardState
CopyImage
DdeAbandonTransaction
DdeAccessData
OemToCharA
CharNextA
SetFocus
GetMenuItemInfoW
CheckRadioButton
DestroyWindow
UnregisterHotKey
DdeInitializeA
GetWindowThreadProcessId
GetMenu
DrawCaption
LookupIconIdFromDirectory
PeekMessageW
DdeUninitialize
CharLowerBuffA
AppendMenuW
GetForegroundWindow
DrawTextExW
PeekMessageA
IsCharLowerW
GetSysColor
RegisterClassA
SetDlgItemInt
SetMenuInfo
GetOpenClipboardWindow
MessageBoxExW
MessageBeep
CallMsgFilterA
MessageBoxA
GetMonitorInfoA
SetSystemCursor
IsWindowEnabled
ReleaseCapture
ModifyMenuW
CharLowerBuffW
MsgWaitForMultipleObjectsEx
GetTopWindow
GetActiveWindow
SystemParametersInfoW
GetCaretPos
GetDlgItemInt
ShowScrollBar
SetWindowContextHelpId
EnumChildWindows
OemToCharBuffW
ScrollWindowEx
SetWindowLongW
IsDialogMessageW
ShowWindow

kernel32

VirtualFree
GetStringTypeW
IsValidLocale
Sleep
WaitNamedPipeA
UnhandledExceptionFilter
GetEnvironmentStrings
SetEnvironmentVariableA
GetCurrentThreadId
GetSystemTimeAdjustment
GetCurrentProcessId
VirtualAlloc
GetCommandLineA
InterlockedExchange
CompareStringW
CreateFileA
WriteConsoleW
GetModuleFileNameW
OpenMutexA
GetSystemTimeAsFileTime
GetCurrencyFormatA
GetFileType
MapViewOfFile
lstrcat
ReadFile
GetStdHandle
SetFilePointer
GetModuleHandleA
GetProcAddress
CompareStringA
GetACP
FlushFileBuffers
lstrcpynA
SetConsoleCtrlHandler
MoveFileExA
GlobalFlags
GlobalFindAtomW
InitializeCriticalSection
FreeEnvironmentStringsW
GetConsoleCP
GetStartupInfoA
SetVolumeLabelA
MultiByteToWideChar
WriteConsoleOutputA
GetTimeZoneInformation
ExitProcess
GetModuleFileNameA
ReleaseSemaphore
GetPrivateProfileIntW
HeapValidate
EnumCalendarInfoExW
TlsFree
GlobalReAlloc
GetProcessHeap
IsValidCodePage
GetLastError
DeleteAtom
CloseHandle
DebugActiveProcess
SetStdHandle
HeapReAlloc
GetConsoleOutputCP
RtlFillMemory
SetConsoleScreenBufferSize
FreeLibrary
GetCPInfo
SetThreadLocale
GetVersionExA
RtlUnwind
GetStringTypeA
GetOEMCP
InterlockedIncrement
GetUserDefaultLCID
LCMapStringW
EnterCriticalSection
CreateMutexA
HeapCreate
GetCurrentProcess
FindFirstFileA
TlsGetValue
GetTickCount
WriteFile
GetCurrentThread
HeapAlloc
TlsAlloc
WritePrivateProfileStructW
GlobalSize
GetConsoleMode
GetCommandLineW
TerminateProcess
HeapDestroy
WriteConsoleOutputCharacterA
GetStartupInfoW
InterlockedDecrement
VirtualQuery
FreeEnvironmentStringsA
EnumSystemCodePagesW
HeapLock
CommConfigDialogW
FlushConsoleInputBuffer
LoadLibraryA
DeleteCriticalSection
GetLocaleInfoA
EnumSystemLocalesA
SetUnhandledExceptionFilter
GetEnvironmentStringsW
WritePrivateProfileStringW
GetDateFormatA
GetTimeFormatA
GetSystemDefaultLCID
QueryPerformanceCounter
SetThreadContext
LeaveCriticalSection
IsDebuggerPresent
SetHandleCount
SetLastError
TlsSetValue
HeapFree
WideCharToMultiByte
SetComputerNameA
LCMapStringA
DeleteFileA
GetLocaleInfoW
WriteConsoleA
HeapSize
SetVolumeLabelW

Sections

.text
Size: 103KB - Virtual size: 103KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 259KB - Virtual size: 259KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 114KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 69KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1ef936d0fc8c041c0c657d2c06918601

Headers

File Characteristics

Imports

comctl32

user32

kernel32

Sections

.text Size: 103KB - Virtual size: 103KB

.rdata Size: 259KB - Virtual size: 259KB

.data Size: 114KB - Virtual size: 114KB

.rsrc Size: 69KB - Virtual size: 69KB

.text
Size: 103KB - Virtual size: 103KB

.rdata
Size: 259KB - Virtual size: 259KB

.data
Size: 114KB - Virtual size: 114KB

.rsrc
Size: 69KB - Virtual size: 69KB