35b1dd4b2845e66ec40df7eb3873acc7_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

35b1dd4b2845e66ec40df7eb3873acc7_JaffaCakes118
Size

21KB
MD5

35b1dd4b2845e66ec40df7eb3873acc7
SHA1

5916609c9beba2de0bb9d792887ad81e892068ad
SHA256

7617e5fe1d84f0933353fb30b5dff80bebf99002077eeac0ba14740acf6bd8d5
SHA512

9a4b5bc7b9aa94f3f6ed351ab6bdea887c8f8272e7f9f397929454226835f2481d0a3cd754fb85888cb303882274caa11261af03058d8c44668e43bbffd4eb0b
SSDEEP

384:FG4tMSg0C3neloGG/QDClPP0UnV7qy3nvZ1j5qy1KF4dl:ZtMbsl1GcC1sUV7qyRd5dwFMl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
35b1dd4b2845e66ec40df7eb3873acc7_JaffaCakes118

Files

35b1dd4b2845e66ec40df7eb3873acc7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

90d14c79f13c390f4eb48ce3f096a6a0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsProcessorFeaturePresent
GetPriorityClass
ReadConsoleInputA
GlobalUnlock
SearchPathA
GetSystemRegistryQuota
GetFileSizeEx
GetDiskFreeSpaceExA
LocalFileTimeToFileTime
GetConsoleCursorInfo
LocalReAlloc
FindFirstFileExA
GetProcAddress
VirtualQueryEx
GetConsoleCommandHistoryA
GetExitCodeThread
GetVolumePathNameA
GetVersion
FillConsoleOutputCharacterA
GetCurrencyFormatA
GetExitCodeProcess
EnumResourceTypesA
UpdateResourceA
GetTimeFormatA
GlobalSize
GetConsoleFontInfo
OpenThread
GetDefaultCommConfigA
ConnectNamedPipe
GetLastError
OpenFileMappingA
GetComputerNameExA
WideCharToMultiByte
DeleteFileA
_lcreat
SetConsoleOutputCP
FindFirstVolumeMountPointW
GetPrivateProfileSectionNamesW
SetThreadPriorityBoost
GetConsoleAliasA
OpenMutexA
GetConsoleAliasesLengthW
DuplicateConsoleHandle
GetEnvironmentStringsA
SetHandleInformation
FlushViewOfFile
TerminateThread
GetProcessTimes
Process32First
SetFileAttributesA
CreateDirectoryExW
TransactNamedPipe
SetConsoleCursorInfo
GlobalCompact
CancelWaitableTimer
GetProcessShutdownParameters
SetCalendarInfoA
Process32Next
IsDebuggerPresent
GetCurrentThreadId
GetSystemDefaultUILanguage
WriteConsoleOutputCharacterW
SetStdHandle
GetThreadPriority
GetProcessHeap
GetVolumeNameForVolumeMountPointA
AddAtomA
SetThreadContext
GetConsoleAliasExesW
SetEndOfFile
GetSystemWindowsDirectoryA
GetConsoleAliasExesLengthA
WaitCommEvent
CreateDirectoryExA
ReadFileEx
GetLogicalDrives
ReplaceFileA
GetCurrentDirectoryA
SetConsoleTextAttribute
OpenEventA
ProcessIdToSessionId
AddConsoleAliasA
CreateNamedPipeA
IsBadStringPtrA
CompareStringA
lstrcatA
OpenJobObjectA
FindFirstFileExA
GetConsoleOutputCP
ReadConsoleOutputCharacterA
Thread32First
GetSystemDirectoryA
WriteFileGather
SetFileValidData
GetUserDefaultUILanguage
PeekConsoleInputA
FindVolumeMountPointClose
GetVersionExA
GetModuleHandleA
GetPrivateProfileSectionA
LockResource
VirtualAlloc
GetFileAttributesA
GetCurrentProcess
GetStringTypeExW
GetSystemTime
GetBinaryTypeA
GetFileAttributesExA
GlobalUnWire
WriteConsoleOutputCharacterA
SetConsoleDisplayMode

winfax

FaxSetRoutingInfoA

user32

SetClipboardData
CreateDialogParamA
GetTaskmanWindow
CallWindowProcA
IsWindowUnicode
SetClassWord
EnumDisplaySettingsExW
GetClassWord
GetRegisteredRawInputDevices
SetRectEmpty
GetCursorPos
RegisterShellHookWindow
TranslateMessageEx
SetMenuItemBitmaps
PostMessageA
TranslateAccelerator
LoadMenuIndirectA
BroadcastSystemMessageA
DrawFrame
FrameRect
FindWindowExW
SwitchDesktop
LoadBitmapA
CloseWindowStation
SetLastErrorEx
GetMenuInfo
PaintMenuBar
DialogBoxIndirectParamA
GetPropA
GetUserObjectInformationA
SetClipboardViewer
GetMenuContextHelpId
GetRawInputData
CharLowerA
MapDialogRect
GetPriorityClipboardFormat
GetMenuItemRect
SendMessageTimeoutA
FindWindowA
CloseWindowStation
EndDeferWindowPos
UpdateWindow
DrawFocusRect
CreateMDIWindowA
CascadeChildWindows
EnumDesktopsA
GetLastInputInfo
LockSetForegroundWindow
LoadMenuIndirectA
AppendMenuA
GetParent
MoveWindow
CharLowerBuffA
MoveWindow
CharLowerBuffW
MessageBoxTimeoutA
IsCharLowerA
LockWorkStation
GetWindowRgn
GetMenuItemCount
DlgDirListComboBoxA
OemToCharBuffA
GetForegroundWindow
AnimateWindow
GetCursor
GetUpdateRect
InSendMessageEx
CharToOemBuffA
GetClassNameA
CharLowerA
RegisterClipboardFormatA
CharUpperBuffW
TrackPopupMenu
OpenDesktopA
DlgDirSelectExA
LockSetForegroundWindow
GetWindowModuleFileNameA
SetSystemMenu
SetRect
EnumChildWindows
BringWindowToTop
GetWindow
CreateWindowExA
ToAsciiEx
LoadCursorFromFileA
TileChildWindows
GetWindowPlacement
IsWindow
CreateWindowStationA
OpenWindowStationA
GetDoubleClickTime
GetWindowThreadProcessId
RedrawWindow
GetCursor
GetDC
DrawCaptionTempA
LoadCursorFromFileA
PaintMenuBar
PaintMenuBar
IsWindowEnabled
SetDlgItemTextA

gdi32

ChoosePixelFormat
GetDeviceCaps

opengl32

wglMakeCurrent

dsound

DirectSoundCaptureEnumerateA
DirectSoundCreate8
DirectSoundCaptureCreate8
DirectSoundCaptureEnumerateW

Exports

Exports

OpenKgicxdefcr
Juulkunfbf
Vtjqxxc
Kdfumlqkb

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 8KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 512B - Virtual size: 148B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

90d14c79f13c390f4eb48ce3f096a6a0

Headers

File Characteristics

Imports

kernel32

winfax

user32

gdi32

opengl32

dsound

Exports

Exports

Sections

.text Size: 7KB - Virtual size: 7KB

.idata Size: 8KB - Virtual size: 13KB

.data Size: 512B - Virtual size: 148B

.rsrc Size: 2KB - Virtual size: 1KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 7KB - Virtual size: 7KB

.idata
Size: 8KB - Virtual size: 13KB

.data
Size: 512B - Virtual size: 148B

.rsrc
Size: 2KB - Virtual size: 1KB

.reloc
Size: 2KB - Virtual size: 1KB