312df2c367cee944852335eab6e2a04f_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

312df2c367cee944852335eab6e2a04f_JaffaCakes118
Size

19KB
MD5

312df2c367cee944852335eab6e2a04f
SHA1

3fc7ba31f96a4322d707b44430c446735cb717d0
SHA256

8c489230b9a684a16180899ae2b8e89059d276f3598df780397e6194de4e9b2d
SHA512

feef22c8ed93536e4e41812af6cf8ccb020cd806652093b381c74c64c7f82553870a58710a3299f7d98134e2bc7c5bb06657158db59bb51884d64b6e4d0fec0b
SSDEEP

384:a0qYE38hIxuA+Qjsh8KRJqfyqPVpn4t3Bh:FKGIxR+lfzqdVp4t33

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
312df2c367cee944852335eab6e2a04f_JaffaCakes118

Files

312df2c367cee944852335eab6e2a04f_JaffaCakes118
.exe windows:5 windows x86 arch:x86

2cfc4299f3992b4c4b8e3ee8bacfcfc3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BuildCommDCBAndTimeoutsW
ClearCommBreak
ClearCommError
CloseHandle
CompareStringA
CompareStringW
ContinueDebugEvent
CreateDirectoryExA
CreateHardLinkA
DeleteAtom
DeleteTimerQueue
DeleteVolumeMountPointW
EnumResourceLanguagesA
EnumSystemCodePagesA
ExitThread
FillConsoleOutputCharacterW
FindFirstFileExW
FindNextVolumeMountPointA
FlushInstructionCache
GetACP
GetAtomNameA
GetBinaryType
GetBinaryTypeA
GetCPInfo
GetCommTimeouts
GetComputerNameW
GetConsoleAliasesW
GetConsoleCP
GetCurrencyFormatW
GetCurrentThread
GetDiskFreeSpaceExW
GetEnvironmentStringsA
GetExitCodeProcess
GetLogicalDriveStringsW
GetModuleFileNameW
GetNamedPipeHandleStateA
GetPrivateProfileIntW
GetProcessShutdownParameters
GetStartupInfoA
GetStdHandle
GetSystemDefaultLCID
GetSystemInfo
GetSystemPowerStatus
GetThreadTimes
AreFileApisANSI
GetVolumeInformationW
GetVolumePathNameW
GlobalCompact
Heap32Next
HeapCompact
HeapUnlock
IsBadStringPtrW
IsDBCSLeadByteEx
IsSystemResumeAutomatic
LockFileEx
MapUserPhysicalPages
MoveFileW
OpenEventA
ReadConsoleA
ReadConsoleOutputA
ResumeThread
RtlFillMemory
SearchPathA
SetCommMask
SetCommState
SetComputerNameA
SetConsoleCursorInfo
SetConsoleOutputCP
SetDefaultCommConfigW
SetFileTime
SetHandleInformation
SetMailslotInfo
SetProcessPriorityBoost
SetTapePosition
SystemTimeToFileTime
TerminateThread
TlsGetValue
UnlockFileEx
VerLanguageNameA
VirtualAlloc
VirtualFree
VirtualQueryEx
WriteConsoleOutputCharacterW
WriteConsoleOutputW
WritePrivateProfileStructW
WriteProfileStringW
lstrcmpA
lstrcmpiW
lstrcpy
GetProcAddress
GetTimeFormatW
GetModuleHandleA

msvcrt

memset

user32

CloseClipboard
CloseWindowStation
CopyAcceleratorTableA
CreateIconFromResourceEx
CreateIconIndirect
CreateMDIWindowW
CreateWindowExA
DdeDisconnect
DdeDisconnectList
DdeQueryStringW
DefMDIChildProcA
DeferWindowPos
DestroyCaret
DestroyMenu
DestroyWindow
DialogBoxParamA
DlgDirListA
DlgDirSelectComboBoxExW
DragDetect
DrawFrame
DrawIcon
DrawIconEx
DrawMenuBar
DrawStateW
EnumDesktopsW
EnumDisplayMonitors
EnumWindowStationsW
EqualRect
ExitWindowsEx
GetCaretPos
GetClassInfoExA
GetClassLongW
GetClientRect
GetClipboardFormatNameA
GetClipboardViewer
GetDesktopWindow
GetKeyboardLayoutNameA
GetLastInputInfo
GetMenuDefaultItem
GetMenuItemInfoA
GetMenuStringW
GetProcessWindowStation
GetShellWindow
GetUserObjectInformationW
GrayStringA
HideCaret
IMPGetIMEW
IMPQueryIMEW
IMPSetIMEA
IMPSetIMEW
InSendMessage
IsCharAlphaNumericW
LoadCursorFromFileW
LoadImageA
LoadImageW
LoadMenuIndirectW
LoadMenuW
MapVirtualKeyExW
MessageBoxA
ModifyMenuW
MonitorFromWindow
OffsetRect
OpenClipboard
OpenIcon
PeekMessageA
PostMessageW
RealGetWindowClassW
RegisterClassW
RegisterDeviceNotificationA
ScreenToClient
SendDlgItemMessageA
SendIMEMessageExA
SendMessageW
SetCapture
SetDlgItemTextA
SetForegroundWindow
SetScrollRange
SetThreadDesktop
SetTimer
SetUserObjectInformationA
SetWindowLongA
SetWindowsHookExA
SubtractRect
SystemParametersInfoW
UnhookWindowsHook
UnloadKeyboardLayout
UnpackDDElParam
ValidateRgn
WinHelpA
WinHelpW
wsprintfW
CheckMenuItem

advapi32

RegOpenKeyExW
RegOpenKeyA

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text2
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 132B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2cfc4299f3992b4c4b8e3ee8bacfcfc3

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

advapi32

Sections

.text Size: 6KB - Virtual size: 6KB

.text2 Size: 9KB - Virtual size: 8KB

.data Size: 512B - Virtual size: 132B

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 6KB - Virtual size: 6KB

.text2
Size: 9KB - Virtual size: 8KB

.data
Size: 512B - Virtual size: 132B

.rsrc
Size: 2KB - Virtual size: 1KB