2bf553cccbd8f6940d7844f6fea50907_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2bf553cccbd8f6940d7844f6fea50907_JaffaCakes118
Size

72KB
MD5

2bf553cccbd8f6940d7844f6fea50907
SHA1

1fb115c72df0c87723d7dea790d03aa36e53ee3a
SHA256

42c4c94c8db62377ffeb0a5066923e7b9b60dca69c3f94949fbea206cc04505f
SHA512

08a8d5d2543d57a3ea15cc0959421baec6e13c6e283dd166ea869a7ef7eeb7ee3384b53dfe058164218288e9980dcf30654c60d5e8eaec4991c2710a7c1260b3
SSDEEP

1536:JnbgXXXocu54QmVl3Hfm0w9EWLFZ+3dMs0ISzQqQKJwUvbYe:NwXxO8l3HeVC3yVIXqPv8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2bf553cccbd8f6940d7844f6fea50907_JaffaCakes118

Files

2bf553cccbd8f6940d7844f6fea50907_JaffaCakes118
.dll windows:4 windows x86 arch:x86

41e2a5e35b5ed056de556aab21f18047

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

IsBadCodePtr
GetThreadPriorityBoost
SetVolumeLabelA
GetEnvironmentStringsA
SetCommMask
SetTapeParameters
SystemTimeToTzSpecificLocalTime
GetCurrentProcessId
WriteConsoleOutputA
GetDiskFreeSpaceExA
SignalObjectAndWait
IsDebuggerPresent
AddAtomA
DisconnectNamedPipe
GetDevicePowerState
LocalAlloc
DeleteAtom
GetDriveTypeA
GlobalFindAtomA
ReleaseSemaphore
GetDiskFreeSpaceA
GetModuleHandleA
GetComputerNameExA
UnregisterConsoleIME
OpenFileMappingA
UnregisterWait
GetConsoleTitleA
HeapUnlock
RemoveDirectoryA
LZSeek
SetHandleInformation
WriteConsoleOutputCharacterA
GetSystemInfo
FindNextFileA
SetVolumeMountPointA
GlobalLock
GetExitCodeThread
SetFileApisToOEM
IsValidCodePage
SetEnvironmentVariableA
GetVersionExA
GetConsoleKeyboardLayoutNameA
SetConsoleTextAttribute
WideCharToMultiByte
SetConsoleFont
GetFileSize
GetFileSize
GetModuleHandleA
UnlockFile
CreateDirectoryA
QueryDosDeviceA
SetInformationJobObject
GetTickCount
RaiseException
HeapDestroy
GetPrivateProfileIntA
WriteFileGather
QueryInformationJobObject
FillConsoleOutputCharacterA
EnumSystemLocalesA
GetVolumePathNameA
OpenEventA
MoveFileExA
GetBinaryTypeA
GetSystemTimes
EscapeCommFunction
_llseek
lstrcmpA
GetThreadSelectorEntry
GetFileAttributesA
GetFileInformationByHandle
VirtualAllocEx
Process32Next
GetProcessHandleCount
SetConsoleMode
GetProcAddress
SetLocaleInfoA
GetShortPathNameA
SetPriorityClass
WriteConsoleInputA
ReadConsoleA
GetConsoleCursorMode
ReleaseMutex
CloseHandle
GetFileTime
_lclose
ExitProcess
ClearCommError
GetDllDirectoryA
SetConsoleDisplayMode
PurgeComm
GetSystemDefaultUILanguage
MapUserPhysicalPagesScatter

winmm

timeGetSystemTime

user32

UnregisterClassA
GetInternalWindowPos
IsClipboardFormatAvailable
LoadMenuIndirectW
SetMenuItemInfoA
GetDlgItem
EnumClipboardFormats
PrintWindow
GetWindowTextLengthA
EnableWindow
SetClassLongA
UnregisterDeviceNotification
GetWindowTextA
FrameRect
SetRectEmpty
GetCursor
SetRectEmpty
OpenDesktopA
BuildReasonArray
SendNotifyMessageA
TranslateMDISysAccel
DefDlgProcA
DefWindowProcA
CharToOemBuffA
CopyRect
ShowWindow
MapVirtualKeyExA
RemovePropA
GetKeyboardLayoutNameA
CharToOemBuffW
TranslateAcceleratorA
DlgDirListComboBoxA
LoadIconA
EnumDisplaySettingsA
PostMessageA
AllowForegroundActivation
SubtractRect
SetProcessWindowStation
SendMessageCallbackA
SetLastErrorEx
SendNotifyMessageA
RegisterSystemThread
TrackPopupMenuEx
DefFrameProcA
UnregisterMessagePumpHook
SetActiveWindow
DrawIconEx
GetDlgItemInt
CreateIconFromResourceEx
CopyAcceleratorTableA
GetMenuItemRect
EnumDesktopWindows
TileChildWindows
GrayStringA
GetMenuItemInfoA
MonitorFromWindow
SetProcessWindowStation
GetMenuDefaultItem
TileWindows
SetWindowRgn
GetAltTabInfoA
DlgDirSelectExA
CliImmSetHotKey
IsServerSideWindow
LoadImageA
MessageBeep
OpenWindowStationA
CharUpperBuffA
RegisterClassExA
SetTaskmanWindow
DialogBoxParamA
SetLastErrorEx
DisableProcessWindowsGhosting
DestroyCursor
ToAscii
OpenDesktopA
ModifyMenuA
GetOpenClipboardWindow
GetDialogBaseUnits
IsIconic
SetWindowsHookA
TrackMouseEvent
UpdateWindow
BringWindowToTop
CreateCaret
IsCharAlphaA

Exports

Exports

Atqeocbk
Hkwnuwbsra
OpenWmjccyppi

Sections

.idata
Size: - Virtual size: 216B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.itext
Size: 56KB - Virtual size: 182KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

41e2a5e35b5ed056de556aab21f18047

Headers

File Characteristics

Imports

kernel32

winmm

user32

Exports

Exports

Sections

.idata Size: - Virtual size: 216B

.itext Size: 56KB - Virtual size: 182KB

.idata Size: 8KB - Virtual size: 4KB

.rsrc Size: 4KB - Virtual size: 1KB

.idata
Size: - Virtual size: 216B

.itext
Size: 56KB - Virtual size: 182KB

.idata
Size: 8KB - Virtual size: 4KB

.rsrc
Size: 4KB - Virtual size: 1KB