444655cc1639156697c9aab1bb1a29b7_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

444655cc1639156697c9aab1bb1a29b7_JaffaCakes118
Size

162KB
MD5

444655cc1639156697c9aab1bb1a29b7
SHA1

5e2981891fbd9518821bd7a5bcfce2121846eb28
SHA256

40ec6c2000cf0c2914be4cfa4ff0cc8fb4a008f35612b71d6dd6cad39e606f74
SHA512

f32d05a9f7f7f6c474dde3eb7ae95f63267e506d75d7508207525e86812c56d11e6c2c35f3c159dc274d44eea9943e7b2fe1aa2e9003c1942fafab46e1eb6e43
SSDEEP

3072:SvDEg+sRM8luxgoU33k56Z870rEJWDu33qYPB0gBJiKAQh7mBv9Q2Yf9:WHix7S0s870YWDu33hPia01QhCBzYf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
444655cc1639156697c9aab1bb1a29b7_JaffaCakes118

Files

444655cc1639156697c9aab1bb1a29b7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6f26e9ebca281c1a24565b4580fe2b33

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

AllocConsole
AreFileApisANSI
CallNamedPipeA
CancelWaitableTimer
CloseHandle
CmdBatNotification
ConsoleMenuControl
CreateMutexA
DebugActiveProcess
DebugBreak
EnumCalendarInfoW
EnumSystemCodePagesW
EraseTape
ExitProcess
FillConsoleOutputAttribute
FindAtomW
FindFirstFileExW
FindNextFileW
FlushFileBuffers
FreeEnvironmentStringsW
FreeLibrary
FreeLibraryAndExitThread
GetCPInfo
GetCPInfoExA
GetCommModemStatus
GetCommandLineW
GetConsoleAliasA
GetConsoleAliasW
GetConsoleAliasesW
GetConsoleCommandHistoryA
GetConsoleInputExeNameW
GetConsoleOutputCP
GetConsoleScreenBufferInfo
GetConsoleTitleW
GetCurrentConsoleFont
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetDateFormatA
GetFileAttributesA
GetFileInformationByHandle
GetLastError
GetLocalTime
GetModuleHandleW
GetNamedPipeInfo
GetNumberOfConsoleInputEvents
GetPrivateProfileStructA
GetProcessTimes
GetProfileStringW
GetQueuedCompletionStatus
GetShortPathNameA
GetStartupInfoW
GetSystemTime
GetSystemTimeAsFileTime
GetVersion
GetWindowsDirectoryA
GlobalAddAtomA
GlobalAddAtomW
GlobalGetAtomNameW
HeapAlloc
InitializeCriticalSectionAndSpinCount
IsProcessorFeaturePresent
LocalUnlock
MoveFileA
OpenSemaphoreA
PeekConsoleInputA
PeekConsoleInputW
ScrollConsoleScreenBufferW
SearchPathA
SetConsoleCursorPosition
SetConsoleFont
SetFileApisToOEM
SetLastError
SetLocalTime
SetLocaleInfoA
SetNamedPipeHandleState
SetProcessPriorityBoost
SetWaitableTimer
ShowConsoleCursor
SignalObjectAndWait
SizeofResource
UnlockFile
VerLanguageNameW
VerifyConsoleIoHandle
VirtualProtect
WriteConsoleOutputA
WriteFile
WritePrivateProfileStringW
WriteProfileStringA
WriteTapemark
_hread
_lcreat
_lread
lstrcmpA
lstrcmpW
lstrcmpiA
lstrcmpiW

user32

BroadcastSystemMessageW
CallWindowProcW
ChangeDisplaySettingsW
ChangeMenuA
CharLowerBuffW
CharUpperA
CharUpperW
ChildWindowFromPoint
CopyImage
CreateAcceleratorTableW
CreateDialogIndirectParamA
CreateIconFromResourceEx
CreateMDIWindowA
DdeCreateDataHandle
DdeEnableCallback
DdeFreeStringHandle
DdeImpersonateClient
DdePostAdvise
DdeUninitialize
DeleteMenu
DestroyCaret
DialogBoxIndirectParamA
DialogBoxIndirectParamW
DlgDirSelectComboBoxExA
DlgDirSelectExA
DrawFrameControl
DrawMenuBar
EndDeferWindowPos
EnumPropsW
EnumPropsExA
EnumWindowStationsA
ExitWindowsEx
FreeDDElParam
GetActiveWindow
GetCaretPos
GetClipCursor
GetCursor
GetCursorInfo
GetFocus
GetForegroundWindow
GetKBCodePage
GetMenu
GetMenuItemID
GetMessageW
GetParent
GetPropW
GetTopWindow
GetUserObjectInformationA
GetUserObjectInformationW
GetWindowDC
IMPQueryIMEA
IMPSetIMEW
InvalidateRgn
IsCharAlphaNumericA
IsCharUpperA
LoadCursorA
LoadImageW
ModifyMenuA
ModifyMenuW
MonitorFromRect
MsgWaitForMultipleObjects
OpenClipboard
RegisterClassW
RegisterClassExA
SetCapture
SetCaretBlinkTime
SetClassLongA
SetClassWord
SetCursorPos
SetDoubleClickTime
SetFocus
SetLayeredWindowAttributes
SetMenuDefaultItem
SetMessageExtraInfo
SetRectEmpty
SetScrollPos
SetUserObjectInformationW
SetWindowLongW
ShowScrollBar
SwitchDesktop
SystemParametersInfoW
UnhookWindowsHookEx
UpdateWindow
WINNLSGetEnableStatus
wsprintfA
wsprintfW

gdi32

CloseFigure
CreateDCW
CreateEllipticRgn
CreateEllipticRgnIndirect
CreatePenIndirect
CreateRectRgnIndirect
EnumICMProfilesA
FillPath
FillRgn
GdiComment
GdiGetBatchLimit
GetBkColor
GetBkMode
GetBoundsRect
GetClipBox
GetClipRgn
GetColorSpace
GetCurrentObject
GetEnhMetaFilePixelFormat
GetKerningPairsA
GetLogColorSpaceW
GetMiterLimit
GetObjectType
GetOutlineTextMetricsW
GetPaletteEntries
GetPixel
GetPixelFormat
GetTextColor
GetWindowExtEx
Pie
PolyDraw
RectVisible
ResetDCW
SetAbortProc
SetBkColor
SetPaletteEntries
SetPixelV
SetViewportOrgEx
SetWinMetaFileBits
SetWindowExtEx
StretchDIBits

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ocsJ
Size: 5KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aexh
Size: 5KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 84KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6f26e9ebca281c1a24565b4580fe2b33

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 6KB - Virtual size: 6KB

.data Size: 60KB - Virtual size: 86KB

.ocsJ Size: 5KB - Virtual size: 27KB

.aexh Size: 5KB - Virtual size: 26KB

.rsrc Size: 84KB - Virtual size: 87KB

.reloc Size: 1024B - Virtual size: 4KB

.text
Size: 6KB - Virtual size: 6KB

.data
Size: 60KB - Virtual size: 86KB

.ocsJ
Size: 5KB - Virtual size: 27KB

.aexh
Size: 5KB - Virtual size: 26KB

.rsrc
Size: 84KB - Virtual size: 87KB

.reloc
Size: 1024B - Virtual size: 4KB