2af0788b6a754fcc5cc1fd0ef1907d0c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2af0788b6a754fcc5cc1fd0ef1907d0c_JaffaCakes118
Size

340KB
MD5

2af0788b6a754fcc5cc1fd0ef1907d0c
SHA1

fe7039d0ed23c591b3088189ba8e8b4e720f8d7b
SHA256

f3251b6bdc21e2f171012a7dfc6cfe7e4f0ceb13d31f0720509c7f3fceb40126
SHA512

7e38033904b7d79092d7bc487d755a63b6d0a791ca40858af53bceed06c827c8c7722fbd8fe7c54249d93576ca37687d52dac0b3eabfd8470367a6448bda290f
SSDEEP

6144:Wu2ie43gJUDBqMx6SFonBfW9GLyJUB45KLUQMHCOhruwM3yqSFzalBAVzc:W0eQGUDwg6+onJWb6kQBgRi9XSFz/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2af0788b6a754fcc5cc1fd0ef1907d0c_JaffaCakes118

Files

2af0788b6a754fcc5cc1fd0ef1907d0c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2f76f2e30d057ac76a147db2bc9622d9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnumCalendarInfoW
SetErrorMode
CreateDirectoryA
ConnectNamedPipe
VirtualFree
CreateMutexW
GlobalFindAtomW
GetConsoleCursorInfo
PrepareTape
SetNamedPipeHandleState
IsProcessorFeaturePresent
Beep
AreFileApisANSI
IsDBCSLeadByteEx
SuspendThread
CreateMutexA
GetSystemTimeAdjustment
CompareStringW
WritePrivateProfileSectionW
SetThreadLocale
WritePrivateProfileStructA
SystemTimeToFileTime
GetPrivateProfileStringA
SetFileTime
GetDriveTypeW
DosDateTimeToFileTime
EnumSystemCodePagesW
InitializeCriticalSection
VirtualLock
GetShortPathNameW
GetStartupInfoA
GetBinaryTypeA
AllocConsole
TryEnterCriticalSection
GlobalFindAtomA
EnumDateFormatsW
GetConsoleMode
GetCommConfig
GetModuleFileNameW
GetWindowsDirectoryA
GlobalGetAtomNameW
lstrcmpA
GetPrivateProfileStringW
WriteFile
FreeResource
GlobalFlags
SetupComm
GetSystemDefaultLangID
GetTapeParameters
GlobalDeleteAtom
FillConsoleOutputCharacterA
PurgeComm
ReadDirectoryChangesW
GetCommandLineW
GetVersionExA
VirtualProtect
GetProfileIntA
OpenMutexA
_hread
VirtualAlloc
SetThreadPriorityBoost
GetShortPathNameA
FindFirstFileA
GetCurrentProcess
GlobalAddAtomA
QueryDosDeviceA
GetCompressedFileSizeW
CreateIoCompletionPort
SetStdHandle
GetHandleInformation
FreeEnvironmentStringsA
GlobalFree
CreateWaitableTimerA
GetDiskFreeSpaceW
LoadLibraryExA
CreateProcessA
GetLocaleInfoW
LocalSize
WritePrivateProfileStringA
ReadConsoleOutputA
GetCommandLineA
MoveFileW
ExitProcess

user32

FindWindowExA
DrawMenuBar
CheckMenuRadioItem
mouse_event
CascadeWindows
CharToOemA
GetWindowTextLengthA
UnregisterDeviceNotification
OemToCharBuffW
ShowCaret
GetWindowRect
BroadcastSystemMessageW
VkKeyScanA
CreateIconIndirect
ChangeDisplaySettingsW
SystemParametersInfoA
EnumDisplayMonitors
SetCaretPos
GetScrollRange
GetDlgCtrlID
MsgWaitForMultipleObjects
SetMessageQueue
CopyIcon
CreatePopupMenu
OpenIcon
DrawTextExA
SetRectEmpty
GetTopWindow
GetMenuCheckMarkDimensions
BringWindowToTop
UnregisterHotKey
MapVirtualKeyExW
LoadKeyboardLayoutW
EnumDisplaySettingsExW
GetMessageTime
ScrollDC
CreateWindowExA
WaitForInputIdle
LoadMenuIndirectA
DrawTextW
CheckMenuItem
InternalGetWindowText
GetMenuItemID
DispatchMessageA
ShowWindowAsync
NotifyWinEvent
DrawAnimatedRects
CharLowerA
RegisterWindowMessageW
RegisterClassW
BroadcastSystemMessageA
LoadBitmapW
SetKeyboardState
GetScrollInfo
UnloadKeyboardLayout
EnumDisplaySettingsA
DefMDIChildProcA
IsCharAlphaW

gdi32

PolyBezier
RemoveFontResourceW
SetWindowOrgEx
GetTextExtentPointW
GetTextCharsetInfo
GetCharWidth32W
CreateEllipticRgn
SetPixelV
EnumFontsA
SaveDC
StartDocW
CreatePenIndirect
SetDIBits
PathToRegion
GetMetaFileBitsEx
GetPixelFormat
SetROP2
GetMapMode
CreateEnhMetaFileW

comdlg32

GetSaveFileNameW
PageSetupDlgA

advapi32

DeleteAce
InitiateSystemShutdownA
CreateServiceA
RegSetValueExW
ReadEventLogW

ole32

OleSave

comctl32

ImageList_Duplicate

shlwapi

StrStrA
wvnsprintfW
PathCompactPathW
StrCpyW
PathIsDirectoryA
PathSkipRootW
UrlGetPartA
PathAddBackslashW

setupapi

SetupOpenAppendInfFileA
SetupInstallFromInfSectionW

Sections

.text
Size: 304KB - Virtual size: 302KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

2f76f2e30d057ac76a147db2bc9622d9

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

ole32

comctl32

shlwapi

setupapi

Sections

.text Size: 304KB - Virtual size: 302KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 24KB - Virtual size: 21KB

.text
Size: 304KB - Virtual size: 302KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 24KB - Virtual size: 21KB