2af504ab2500709c8e0b25cd7cb27eff_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2af504ab2500709c8e0b25cd7cb27eff_JaffaCakes118
Size

404KB
MD5

2af504ab2500709c8e0b25cd7cb27eff
SHA1

250594ff5e08f318a6df0f34369319a8722a1fcd
SHA256

db140594b43a5db042d7d15726dc506d07e70ead0ce2f0692f38680e696bbda7
SHA512

2d696bbb2856467533e22600eb7a3431cbcffe433eea6cf38198e44478c0c6c45ffde8702e818218fda82066ae4a4c36e25273ff7d2608192bf2fbd002b9aa92
SSDEEP

3072:S553xmsYy1xAeeOzk7YQznhyjGnPyfRXOKVaAOlh32VuV:SPxmsY0CWk7YeAKy5+KVaDlDV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2af504ab2500709c8e0b25cd7cb27eff_JaffaCakes118

Files

2af504ab2500709c8e0b25cd7cb27eff_JaffaCakes118
.exe windows:4 windows x86 arch:x86

50dabbe3983d2adc57c72a56fee1deb9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileAttributesExA
EnumResourceLanguagesA
_hwrite
ReleaseMutex
GetNumberOfConsoleFonts
GetFullPathNameA
GetEnvironmentVariableA
WriteConsoleOutputCharacterW
GetVersionExA
SetHandleCount
GetComputerNameA
FlushViewOfFile
GetFileType
GetTickCount
CommConfigDialogA
GetProfileSectionA
Process32First
SetFileShortNameA
FlushConsoleInputBuffer
SetLocalPrimaryComputerNameA
OpenFileMappingA
PrepareTape
GetProcessHeap
ProcessIdToSessionId
TransactNamedPipe
GetFileSizeEx
GlobalUnlock
lstrcpyn
GetDiskFreeSpaceA
VirtualAlloc
IsDebuggerPresent
GetStartupInfoA
WriteConsoleOutputCharacterA
SetFilePointer
FormatMessageA
DisconnectNamedPipe
OpenWaitableTimerA
SetConsoleWindowInfo
IsValidCodePage
GetProcessHeaps
GetOverlappedResult
GetTempPathA
GetProcessTimes
FindResourceExA
GetFileTime
ReadConsoleOutputA
WritePrivateProfileStructA
OpenSemaphoreA
ReadConsoleA
SetConsoleFont
GetEnvironmentStringsA
GetNumberFormatA
GetConsoleFontSize
GetCommModemStatus
GetConsoleTitleA
PurgeComm
GetStdHandle
GetWindowsDirectoryA
Sleep
GetCurrentDirectoryA
GetProcessWorkingSetSize
SizeofResource
FreeEnvironmentStringsA
GetCPInfoExA
VerifyVersionInfoA
WriteConsoleOutputCharacterA
GlobalAlloc
SetHandleInformation
GetVersionExA
ReadConsoleInputA
lstrcmpi
SetConsoleNumberOfCommandsA
IsBadCodePtr
GetVersionExA
GlobalHandle
PostQueuedCompletionStatus
GlobalWire
DeleteTimerQueue
GetThreadPriorityBoost
FindFirstFileA
DeleteFileA
ExitProcess
GetProcessShutdownParameters
SetHandleContext
EnumResourceNamesA
AddConsoleAliasA
GetSystemRegistryQuota
FindVolumeClose
GetProfileIntA
ReadConsoleInputA
HeapSize
GetCommProperties
GetConsoleCursorMode
GetProcessVersion
SetLastConsoleEventActive
GetProcessHeaps
lstrcpyn
GetOEMCP
GlobalAlloc
GlobalSize
WriteFileEx
GetDriveTypeA
LocalShrink
Sleep
DebugBreak
Module32First
GetPriorityClass
GetVersionExA
GetCurrentConsoleFont
GetVersionExA
RegisterWaitForSingleObject
GetLogicalDrives
GetCommTimeouts
Heap32ListFirst
SetEnvironmentVariableA
SetEndOfFile
SetCalendarInfoA
GetLogicalDriveStringsA
DisconnectNamedPipe
WritePrivateProfileSectionA
IsBadStringPtrA
GetCommState
WriteProfileSectionA
SetProcessPriorityBoost
SetConsoleInputExeNameA
GetSystemWindowsDirectoryA
CopyFileExA
CreateThread
CreateThread
GetDiskFreeSpaceExA
GetConsoleInputWaitHandle
ReadConsoleOutputCharacterA
GetTempPathA
GetFileSize
WriteConsoleOutputAttribute
CompareStringA
EnumResourceTypesA
TerminateThread
GetNumberOfConsoleInputEvents
GetPrivateProfileStringA
GetCurrentDirectoryA
OpenJobObjectA
_hread
SetConsoleNumberOfCommandsA
GetFileAttributesA
GetModuleHandleA
UnlockFileEx
GetTempFileNameA
OpenEventA
GetThreadPriorityBoost
GetTickCount
GetThreadPriorityBoost
RemoveDirectoryA
BuildCommDCBAndTimeoutsW
GlobalAddAtomA
GetFileAttributesExA
GetLogicalDriveStringsA
ClearCommBreak
ExpungeConsoleCommandHistoryA
GetThreadLocale
UpdateResourceA
ProcessIdToSessionId
GetSystemTime
GetProfileIntA
GetModuleFileNameA
UnmapViewOfFile
GetDiskFreeSpaceExA
GetTempPathA
GetProcessVersion
_hread
SetInformationJobObject
UnregisterConsoleIME
GetCurrentProcessId
RegisterWaitForSingleObject
DeleteTimerQueueTimer
GlobalSize
GlobalFindAtomA

user32

BroadcastSystemMessageExW
CreateWindowExA
DialogBoxIndirectParamA
SendDlgItemMessageA
SetDlgItemTextA
ClipCursor
GetClassInfoA
PeekMessageA
GetWindowTextLengthA
GetClassInfoExA
SetPropA
IsRectEmpty
OpenWindowStationA
ScreenToClient
CallMsgFilterA
GetMonitorInfoA
PrintWindow
SystemParametersInfoA
GetTitleBarInfo
CreateDesktopA
InsertMenuItemA
DrawCaptionTempA
LoadCursorFromFileW
EditWndProc
GetMonitorInfoA
MessageBoxA
EmptyClipboard
IsServerSideWindow
GetMonitorInfoA
ChangeDisplaySettingsExA
ShowWindowAsync
TrackPopupMenuEx
InsertMenuItemW
CharLowerA
DrawStateA
UnlockWindowStation
ShowWindow
CreateMDIWindowA
GetClassLongA
OemKeyScan
IsCharAlphaNumericW
SwitchToThisWindow
RegisterSystemThread
GetDCEx
GetDesktopWindow
BuildReasonArray
ArrangeIconicWindows
InSendMessageEx
SetWindowsHookExW
RegisterClassExW
ReleaseDC
FindWindowExW
SetTaskmanWindow
GetWindowTextA
GetKeyboardLayoutNameA
HideCaret
LockWindowStation
CalcMenuBar
GetMonitorInfoA
ToUnicode
GetKeyboardLayout
SetProcessWindowStation
SendMessageTimeoutA
UnionRect
GetActiveWindow
GetDCEx
SetWindowsHookExA
AppendMenuA
DrawEdge
UnlockWindowStation
SetParent
SetSysColorsTemp
GetAltTabInfoA
AttachThreadInput
GetScrollInfo
GetWindowDC
CallMsgFilterA
GetComboBoxInfo
IsWindowInDestroy
IsCharLowerA
SetMenuItemInfoA
BlockInput
SetForegroundWindow
SendMessageTimeoutA
ReasonCodeNeedsBugID
CloseDesktop
SetLastErrorEx
EnableWindow

ws2_32

closesocket

Exports

Exports

CreateOqdsfda
EndSdeygectt
BeginAkdwytyblso
Slallsffnj
BeginVemdbluuid
ReadHfaxbbb

Sections

.itext
Size: - Virtual size: 288B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 56KB - Virtual size: 687KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 284KB - Virtual size: 282KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

50dabbe3983d2adc57c72a56fee1deb9

Headers

File Characteristics

Imports

kernel32

user32

ws2_32

Exports

Exports

Sections

.itext Size: - Virtual size: 288B

.text Size: 56KB - Virtual size: 687KB

.idata Size: 284KB - Virtual size: 282KB

.rsrc Size: 60KB - Virtual size: 58KB

.itext
Size: - Virtual size: 288B

.text
Size: 56KB - Virtual size: 687KB

.idata
Size: 284KB - Virtual size: 282KB

.rsrc
Size: 60KB - Virtual size: 58KB