2e796a862565b98494358693578e46e4_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2e796a862565b98494358693578e46e4_JaffaCakes118
Size

451KB
MD5

2e796a862565b98494358693578e46e4
SHA1

5440d084e2ff9b93ed3096a1bb4b69b16fdf5924
SHA256

62beb2ce1d7fa291790e95d25e96a596226f3d12126baa017436d4c708ce544a
SHA512

79b0acf9079027fe9e3f08011dcf9840bdb330d2ea2c0d3b7d9896382ee89b1b4be77079fa8af69f5c92e277cf2b9baaebf3e9ece14290b7ac29b0a160ced2bd
SSDEEP

12288:lQWp2jnfjLfksDM5IbRLz1EInalEqiuPYgEacP23hSJjEU:fgfndDD56/hPYOcP2RSJgU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2e796a862565b98494358693578e46e4_JaffaCakes118

Files

2e796a862565b98494358693578e46e4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c36dd1b704b0c506e7f7e801cdf946ea

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalUnlock
LeaveCriticalSection
GetCPInfo
FindClose
HeapDestroy
TlsSetValue
WriteFile
OutputDebugStringA
SetEndOfFile
CreateFileA
IsDebuggerPresent
GetStartupInfoA
EnterCriticalSection
GetConsoleMode
CreateThread
SetUnhandledExceptionFilter
GetStringTypeA
InterlockedCompareExchange
RaiseException
FreeLibrary
GetModuleHandleW
GetStartupInfoW
UnmapViewOfFile
WriteConsoleA
HeapCreate
HeapFree
VirtualAlloc
MapViewOfFile
CreateMutexA
FileTimeToLocalFileTime
TerminateProcess
GetCurrentProcess
QueryPerformanceCounter
HeapReAlloc
GlobalLock
CreateEventW
ReleaseMutex
SetFileAttributesA
InterlockedDecrement
GetSystemInfo
LockResource
GetEnvironmentVariableA
SetEnvironmentVariableA
LCMapStringW
GetCurrentThreadId
GetVersionExA
LoadResource
FindResourceA
LoadLibraryExA
GetModuleHandleA
InitializeCriticalSection
FileTimeToSystemTime
GetSystemTimeAsFileTime
DeleteFileA
FindNextFileW
FindFirstFileA
SetEvent
CreateFileMappingA
WaitForMultipleObjects
GetFileType
GetProcessHeap
LocalFree
LocalAlloc
HeapSize
CreateDirectoryA
CloseHandle
DuplicateHandle
GetFileAttributesW
LoadLibraryExW
TlsAlloc
CreateEventA
IsValidCodePage
TlsGetValue
GetFileAttributesA
WideCharToMultiByte
MultiByteToWideChar
lstrcmpiW
GetModuleFileNameA
FormatMessageA
LoadLibraryW
GetLocalTime
GetFileSize
FindFirstFileW
InterlockedExchange
TlsFree
SizeofResource
FindResourceW
LoadLibraryA
FreeEnvironmentStringsW
GetEnvironmentStringsW
CompareStringA
CompareStringW
GetPrivateProfileStringA
GetThreadLocale
lstrlenW
GetOEMCP
MulDiv
GetLocaleInfoA
lstrcmpiA
LCMapStringA
FormatMessageW
GetTickCount
WaitForSingleObject
GetVersion
GetModuleFileNameW
UnhandledExceptionFilter
lstrcatA
GetConsoleOutputCP
GetSystemDirectoryA
GetConsoleCP
HeapAlloc
lstrlenA
GetLocaleInfoW
ExpandEnvironmentStringsA
SetFilePointer
GetLastError
FindNextFileA
CreateFileW
GetCurrentThread
GetCurrentDirectoryA
GetTempPathA
GetTimeZoneInformation
GetFullPathNameA
SetHandleCount
GlobalFree
GlobalAlloc
VirtualQuery
SetErrorMode
GetACP
GetCurrentProcessId
GetCommandLineA
ExitProcess
SetLastError
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStringTypeW
VirtualProtect
ReadFile
DeleteFileW
FlushFileBuffers
Sleep
InterlockedIncrement
DeleteCriticalSection
GetExitCodeProcess
GetCommandLineW
GetProcAddress
VirtualFree
WriteConsoleW
SetConsoleCtrlHandler
CreateProcessA
GetStdHandle
SetStdHandle

gdi32

SelectObject
DeleteDC
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt
SetTextColor
SetBkColor
CreateSolidBrush
GetDeviceCaps

advapi32

RegCloseKey
RegDeleteKeyA
RegOpenKeyExA
RegQueryValueExA
RegQueryValueExW
RegDeleteValueA
RegSetValueExA
RegCreateKeyExA
RegOpenKeyExW

user32

DispatchMessageA
EnableWindow
DestroyWindow
GetCursorPos
SendMessageA
PostQuitMessage
SetWindowPos
SetCursor
LoadCursorA
IsWindowEnabled
ScreenToClient
DefWindowProcA
IsIconic
InvalidateRect
LoadIconA
EndDialog
SetForegroundWindow
SetDlgItemTextA
CallWindowProcA
MessageBeep
GetClientRect
ClientToScreen
GetWindowLongA
IsWindow
BeginPaint
GetWindowRect
TranslateMessage
GetDC
RegisterClassA
EnableMenuItem
GetSysColor
ShowWindow
GetSystemMetrics
MoveWindow
SetWindowTextA
ReleaseDC
MapWindowPoints
GetDlgItem
UpdateWindow
GetParent
GetWindow
PeekMessageA
CreateWindowExA
GetSubMenu
SetCapture
MessageBoxA
FillRect
KillTimer
SetTimer
GetFocus
SetFocus
GetDesktopWindow
SystemParametersInfoA
EndPaint
ReleaseCapture
PostMessageA
IsWindowVisible
LoadStringA
GetMessageA

ole32

CoTaskMemFree
CoUninitialize

oleaut32

SysAllocString
SysFreeString
VariantClear
SysStringLen
SysAllocStringLen
VariantInit

Sections

qackui
Size: 450KB - Virtual size: 450KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c36dd1b704b0c506e7f7e801cdf946ea

Headers

File Characteristics

Imports

kernel32

gdi32

advapi32

user32

ole32

oleaut32

Sections

qackui Size: 450KB - Virtual size: 450KB

qackui
Size: 450KB - Virtual size: 450KB