6589a178eaa19d5bef9d6ee492e8dccf_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

6589a178eaa19d5bef9d6ee492e8dccf_JaffaCakes118
Size

588KB
MD5

6589a178eaa19d5bef9d6ee492e8dccf
SHA1

5ffb818b20dac00429c52db0fcf16e8925e753a1
SHA256

971ee2c7d189691886315d64a5d85e68bda7057db7722f28689a85fe11f6d518
SHA512

afa828249d558b6b711444164c019df58a19f9102bf8b5db0fe30351dea1c00ed9388f00883d79a56f2c6a14c94bbe31ca83893f54efd6aacf684318ebc93502
SSDEEP

12288:PmKM8AWoyyVhTXXN92835/pdjrx5ZifLcHAi2BzSXlOxhBnFRtI:hvAWoHfTnN92835PrxgLcNWzilOxhBnS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6589a178eaa19d5bef9d6ee492e8dccf_JaffaCakes118

Files

6589a178eaa19d5bef9d6ee492e8dccf_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0c2fe59b478f7fa13ae36704006dda8e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_SetDragCursorImage
CreatePropertySheetPage
ImageList_DragMove
ImageList_Replace
MakeDragList
ImageList_EndDrag
ImageList_SetImageCount
DrawStatusTextW
InitCommonControlsEx
ImageList_GetIconSize
DestroyPropertySheetPage

kernel32

GetComputerNameA
GetTempPathW
LCMapStringW
LoadLibraryExW
GetEnvironmentStrings
InitializeCriticalSection
OpenFileMappingW
EnumDateFormatsExW
FindClose
ReadConsoleW
WriteProfileSectionW
SetLastError
VirtualQuery
HeapLock
SetEnvironmentVariableA
GetCalendarInfoA
TerminateThread
HeapDestroy
GetModuleHandleA
lstrcmpA
InterlockedIncrement
GetStdHandle
GetTimeFormatA
EnumCalendarInfoExA
SetConsoleOutputCP
ConnectNamedPipe
CommConfigDialogW
HeapAlloc
GetLocaleInfoA
GetProcessHeap
SetConsoleCP
GetAtomNameW
EnumSystemCodePagesW
ReadFile
SleepEx
TlsFree
SetPriorityClass
GetLocalTime
WriteConsoleA
FreeEnvironmentStringsA
GetNamedPipeHandleStateW
GetCurrentThread
GetConsoleMode
SetFilePointer
DebugActiveProcess
GetDateFormatA
CompareStringW
EnterCriticalSection
GetCommandLineA
GetTimeZoneInformation
FlushConsoleInputBuffer
TlsAlloc
FreeResource
CompareStringA
FlushFileBuffers
Sleep
GetConsoleOutputCP
QueryPerformanceCounter
ExitProcess
GetACP
LeaveCriticalSection
EnumSystemLocalesA
LocalShrink
GetFileType
GlobalUnfix
GetTempFileNameW
MapViewOfFile
SetConsoleWindowInfo
CloseHandle
EnumResourceLanguagesA
EnumResourceNamesW
OpenMutexA
VirtualAlloc
WritePrivateProfileStructW
HeapFree
SuspendThread
FreeLibrary
SetConsoleCtrlHandler
GetEnvironmentStringsW
HeapSize
GetThreadSelectorEntry
CreateFileA
GetFileTime
TlsSetValue
FindFirstFileExA
SetHandleCount
GetProfileSectionA
GetWindowsDirectoryA
HeapCreate
GetLocaleInfoW
CreateMailslotW
GetConsoleCP
GetLastError
InterlockedDecrement
GetFileSize
GetProfileSectionW
GetModuleFileNameA
GetSystemTimeAsFileTime
GetStringTypeA
IsValidCodePage
SetConsoleScreenBufferSize
GetTickCount
FreeEnvironmentStringsW
TerminateProcess
GetCurrentProcess
GetCurrentProcessId
lstrlen
GetOEMCP
InterlockedExchange
LCMapStringA
CreateMutexA
GetStringTypeW
HeapReAlloc
GetVersionExA
lstrlenW
DeleteCriticalSection
TlsGetValue
CreateEventW
GlobalDeleteAtom
WideCharToMultiByte
TransmitCommChar
GetProcAddress
GetStartupInfoA
IsValidLocale
LoadLibraryA
GetPrivateProfileIntA
SetEnvironmentVariableW
SetStdHandle
SetConsoleTitleA
SetThreadPriority
SetUnhandledExceptionFilter
GetMailslotInfo
GetCompressedFileSizeA
GetCurrentThreadId
GetCPInfo
WriteFile
MoveFileA
GetUserDefaultLCID
GlobalSize
CreateToolhelp32Snapshot
lstrcpy
UnhandledExceptionFilter
EnumResourceTypesA
DeleteAtom
MultiByteToWideChar
IsDebuggerPresent
OpenProcess
SetVolumeLabelA
WriteConsoleW
VirtualFree
GetSystemDefaultLCID
WriteFileEx
RtlUnwind

user32

MsgWaitForMultipleObjects
IsDialogMessageA
IsCharAlphaW
BroadcastSystemMessageA
CreateCaret
GetWindowTextLengthA
SendIMEMessageExA
RegisterDeviceNotificationW
RegisterClassExA
DrawCaption
ChangeDisplaySettingsA
ShowScrollBar
DdeCreateDataHandle
DdeReconnect
SetThreadDesktop
KillTimer
TranslateMessage
FindWindowExW
LoadCursorW
EnableWindow
WindowFromDC
EnumDisplaySettingsExA
RegisterClassA
ShowWindow
SetPropW
EndDeferWindowPos
ChildWindowFromPoint
SubtractRect
GetScrollBarInfo
ChangeMenuW
NotifyWinEvent
CreateIconIndirect
GetComboBoxInfo
GetWindowTextLengthW
LoadKeyboardLayoutW
FlashWindowEx
VkKeyScanExW
ArrangeIconicWindows
GetKeyState
ScreenToClient
GetUserObjectSecurity
GetDlgItemTextA
GetGUIThreadInfo
CreateMenu
DefWindowProcA
SendMessageTimeoutW
InvalidateRgn
SetWindowPlacement
DdeCreateStringHandleW
SetWinEventHook
GetForegroundWindow
DdePostAdvise
DlgDirListComboBoxW
DdeConnect
CreateWindowExW
SwitchDesktop
MessageBoxW
GetUserObjectInformationA
InsertMenuItemW
DdeQueryConvInfo
GetMessageW
DefMDIChildProcA
EnumDisplaySettingsW
GetSubMenu
IsZoomed
DestroyWindow

Sections

.text
Size: 196KB - Virtual size: 195KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 252KB - Virtual size: 250KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 123KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0c2fe59b478f7fa13ae36704006dda8e

Headers

File Characteristics

Imports

comctl32

kernel32

user32

Sections

.text Size: 196KB - Virtual size: 195KB

.rdata Size: 252KB - Virtual size: 250KB

.data Size: 116KB - Virtual size: 123KB

.rsrc Size: 20KB - Virtual size: 18KB

.text
Size: 196KB - Virtual size: 195KB

.rdata
Size: 252KB - Virtual size: 250KB

.data
Size: 116KB - Virtual size: 123KB

.rsrc
Size: 20KB - Virtual size: 18KB