4ac2ebae97dc34d03905ade2ed87e0bb_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

4ac2ebae97dc34d03905ade2ed87e0bb_JaffaCakes118
Size

168KB
MD5

4ac2ebae97dc34d03905ade2ed87e0bb
SHA1

fbee94b9670703c7fa0df71fc3d4f7a71fb8b4f7
SHA256

171a7dcd6053f4da5385b96dbb074c839694bb5b001073023d3b19228695b1e4
SHA512

4bb57d69a6f16554c58634dc37c5fe7c992f67e07fb72522254a3f596b3c45193eb10357b5e7f2c211ced3291b79adbebf32f844c0ae23e724c17aaa1d1e9a05
SSDEEP

3072:NoX1v4AUnYKcUYeFQ8rxcK9iJXtT2I4t0y1C:SXJ/EQaxfoJXsjqyw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4ac2ebae97dc34d03905ade2ed87e0bb_JaffaCakes118

Files

4ac2ebae97dc34d03905ade2ed87e0bb_JaffaCakes118
.exe windows:1 windows x86 arch:x86

336ba66187c372eb30cf2203c00bcdd0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_mbscpy
wcscmp
iswctype
__getmainargs
_snwprintf
_mbsnbicmp
_wcsicmp
wcschr
wcsncmp
wcslen
_mbsinc
_XcptFilter
_mbsnbcmp
_controlfp
_c_exit
setlocale
fwprintf
_vsnwprintf
__setusermatherr
_mbscmp
_acmdln
_wcsnicmp
__set_app_type
_mbsicmp
_exit
exit
memmove
_cexit
wcscpy
_initterm
_mbslwr
_iob
wcsrchr

advapi32

RegEnumValueW
RegDeleteValueW
RegOpenKeyExW
GetUserNameW
RegQueryValueExW
RegSetValueExW
RegCloseKey
RegDeleteKeyW

kernel32

_lwrite
LeaveCriticalSection
AreFileApisANSI
SetFileAttributesA
PostQueuedCompletionStatus
CloseConsoleHandle
GetNumberOfConsoleFonts
GetVersionExW
GetComputerNameW
GetConsoleHardwareState
SetMessageWaitingIndicator
WideCharToMultiByte
GetDiskFreeSpaceW
SetFileAttributesA
lstrcpyA
EnterCriticalSection
ReadConsoleOutputCharacterW
CreateSemaphoreW
CreateEventA
GetStartupInfoA
OpenJobObjectW
lstrcmpi
SetThreadLocale
LocalAlloc
OutputDebugStringW
FindResourceExA
ReadProcessMemory
SetSystemTimeAdjustment
GetConsoleSelectionInfo
GetThreadLocale
GetProcessHeap
InterlockedExchange
CopyFileExA
GetCurrentDirectoryA
FormatMessageW
CreateFileA
SetLastError
CreateProcessW
WriteConsoleOutputCharacterW
EnumSystemLocalesW
GetOverlappedResult
CreateMutexA
SizeofResource
FormatMessageA
IsProcessorFeaturePresent
GetWindowsDirectoryA
GlobalUnfix
DeleteAtom
WaitForMultipleObjects
CloseHandle
GetUserDefaultLCID
QueueUserWorkItem
MultiByteToWideChar
lstrcmpW
ReleaseMutex
FindFirstChangeNotificationA
ShowConsoleCursor
DeleteFileA
MoveFileExW
Sleep
FindFirstVolumeA
ReplaceFileA
IsDBCSLeadByteEx
VirtualAlloc
GetWindowsDirectoryW
FindResourceW
CreateMutexA
SetFilePointer
RaiseException
lstrlenA
UnlockFileEx
GetLastError
HeapAlloc
GetDriveTypeA
GetConsoleTitleA
HeapReAlloc
ExitProcess
DelayLoadFailureHook
OpenFile
SetEvent
DeleteCriticalSection
IsBadReadPtr
MapViewOfFile
LocalFree
GetVersionExA
SetThreadExecutionState
GlobalReAlloc
GetTapeStatus
GetCommModemStatus
HeapFree
AddConsoleAliasA
InterlockedIncrement
GetHandleContext
GetComputerNameA

gdi32

GetTextMetricsW
SelectObject
GetTextExtentPointW
CreateDCW
DeleteDC

user32

CharNextA
GetWindowTextA
DefMDIChildProcW
EnumWindowStationsA
OpenIcon
MessageBoxA
VkKeyScanExW
CreateDesktopW
OpenClipboard
MapVirtualKeyA
SetForegroundWindow
ShowScrollBar
PostMessageW
CharUpperA
GetCaretPos
GetWindowDC
DragDetect
RegisterTasklist
DdeDisconnectList
GetIconInfo
EnumDisplayMonitors
ChangeDisplaySettingsExA
GetActiveWindow
SetSystemCursor
InternalGetWindowText
LoadKeyboardLayoutA
SetTimer
SetCursor
EnumDisplaySettingsExW
SetPropW
CloseClipboard
EnumDisplayDevicesW
ShowOwnedPopups
KillTimer
GetCapture
ScrollWindowEx
TranslateAcceleratorW
PrivateExtractIconExA
GetMessagePos
TabbedTextOutW
TranslateMDISysAccel
UnpackDDElParam
GetKeyboardType
MessageBoxExA
PtInRect
EnumDisplayDevicesA
SetFocus
GetMenuItemInfoW
MessageBoxIndirectA
SetKeyboardState
UserRealizePalette
SystemParametersInfoA
BroadcastSystemMessageW
InSendMessage
GetWindowTextW
LoadRemoteFonts
EnumDisplaySettingsExA
SendMessageA
OemToCharA
EndDialog
UnregisterDeviceNotification
ShowWindow
ClientToScreen
MsgWaitForMultipleObjects
GetLastInputInfo
DialogBoxParamW
InSendMessageEx
GetUserObjectInformationW
EnterReaderModeHelper
GetKeyboardLayoutList
MessageBoxTimeoutA
TranslateMessageEx
DialogBoxParamW
CheckRadioButton
IsChild
GetMenuCheckMarkDimensions
GetScrollPos
GetWindowRect
GetInternalWindowPos
DrawEdge
MessageBoxW
SetDebugErrorLevel
SetMenu
IntersectRect
GetWindowModuleFileName
GetForegroundWindow
SetWindowTextA
CharLowerW
UserHandleGrantAccess
DdeGetLastError
KillTimer
SetWindowTextW
SetCursor
LockWindowUpdate
GetDlgCtrlID
CreateIconFromResourceEx
EnumPropsExA
SendIMEMessageExA
DeregisterShellHookWindow
GetKeyboardLayout
GetShellWindow
DdeAbandonTransaction
LoadCursorW
SendDlgItemMessageW
BuildReasonArray
RegisterClassExA
keybd_event
IsWindowVisible
GetWindowRect
CreateIcon
SendMessageW
CreateMDIWindowW
SetCapture
IsIconic
MenuItemFromPoint
GetReasonTitleFromReasonCode
DestroyIcon
MessageBoxA
AppendMenuA
DdeClientTransaction
GetDCEx
DlgDirSelectComboBoxExW

setupapi

SetupOpenLog
SetupCloseInfFile
SetupLogErrorW
SetupCloseLog

netapi32

NetApiBufferFree
NetUserSetInfo
NetUserGetInfo
NetUserModalsGet

comctl32

InitCommonControlsEx

cmutil

IsFarEastNonOSR2Win95
SzToWz
GetOSMajorVersion
CmLoadSmallIconA
CmConvertRelativePathW
WzToSzWithAlloc

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.achAAk
Size: 3KB - Virtual size: 47KB

IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 136KB - Virtual size: 272KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

336ba66187c372eb30cf2203c00bcdd0

Headers

File Characteristics

Imports

msvcrt

advapi32

kernel32

gdi32

user32

setupapi

netapi32

comctl32

cmutil

Sections

.text Size: 13KB - Virtual size: 12KB

.rdata Size: 7KB - Virtual size: 7KB

.achAAk Size: 3KB - Virtual size: 47KB

.data Size: 7KB - Virtual size: 39KB

.rsrc Size: 136KB - Virtual size: 272KB

.text
Size: 13KB - Virtual size: 12KB

.rdata
Size: 7KB - Virtual size: 7KB

.achAAk
Size: 3KB - Virtual size: 47KB

.data
Size: 7KB - Virtual size: 39KB

.rsrc
Size: 136KB - Virtual size: 272KB