6f32d1e271d0575cb6ac8f30db0b8ccc_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

6f32d1e271d0575cb6ac8f30db0b8ccc_JaffaCakes118
Size

392KB
MD5

6f32d1e271d0575cb6ac8f30db0b8ccc
SHA1

411abd117cbd5503503be52ec10988102a864cb6
SHA256

4c550d89849ea0fba2edeee9ee578b3f9faa501a7a0dcdb3e0a1d70e2e3bf1d3
SHA512

b49ba7e6f3e058718f5f5d6d71cc3bab16960b2186631434940b587dad04aa2268239ddb4c8092424bd30ef7b6b727ed73dbb5b01bed2b825c53572c731cc083
SSDEEP

3072:75cr54mqPH4n+plGE4tI8FsTY7kQu+sQI+UvrOMgHYxYO9iZDyh77MMKKQTMqnLU:Fc2mqf4ksBQY7k/HT+wglOIZD7MKKWI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6f32d1e271d0575cb6ac8f30db0b8ccc_JaffaCakes118

Files

6f32d1e271d0575cb6ac8f30db0b8ccc_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6426a8028f2a546a5a667341266b7dd0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentDirectoryA
GetThreadTimes
SetConsoleNumberOfCommandsA
SetConsoleCursor
GetSystemDirectoryA
GetConsoleOutputCP
GetCurrentConsoleFont
GetVolumeNameForVolumeMountPointA
SetProcessPriorityBoost
Thread32Next
UpdateResourceA
GetVolumePathNamesForVolumeNameA
WriteFileGather
SetInformationJobObject
VirtualQuery
GetConsoleAliasesLengthA
WriteProfileStringA
GetConsoleCharType
GetVolumeInformationA
FindFirstFileExA
GetFileSizeEx
GetConsoleAliasExesW
RegisterWaitForInputIdle
OpenWaitableTimerA
GetVersion
SetFileAttributesA
GlobalHandle
GetConsoleAliasExesLengthW
SetThreadPriority
SetVDMCurrentDirectories
SetConsoleInputExeNameA
GetConsoleWindow
GetLogicalDriveStringsA
IsProcessorFeaturePresent
WaitCommEvent
DuplicateConsoleHandle
GetCommModemStatus
RegisterWaitForSingleObjectEx
GetSystemInfo
LZOpenFileA
GetStdHandle
GetTickCount
ReadConsoleA
GetTimeFormatA
GetConsoleAliasExesLengthA
GetWindowsDirectoryA
GetConsoleCursorMode
DisconnectNamedPipe
VerifyVersionInfoA
WriteConsoleOutputA
OpenMutexA
GetDefaultCommConfigA
FileTimeToSystemTime
IsBadCodePtr
MoveFileA
GetLocaleInfoA
GetDiskFreeSpaceExA
MultiByteToWideChar
GetProcessVersion
CreateSocketHandle
SizeofResource
SetPriorityClass
GetFileInformationByHandle
IsDebuggerPresent
GetCommMask
GetPriorityClass
IsBadWritePtr
GetExitCodeProcess
GetFileTime
Process32Next
GetProcessHeap
GetDriveTypeA
GetEnvironmentStringsA
CancelWaitableTimer
GetSystemTimes
SetHandleInformation
FlushViewOfFile
GetProcAddress
GetVersionExA
VerifyVersionInfoA
GetTempPathA
ResetEvent
GlobalSize
SetThreadAffinityMask
GetTickCount
LoadLibraryExA
VirtualAlloc
IsValidCodePage
GetFileAttributesExA
GetLocalTime
GetConsoleInputExeNameA
GetLocaleInfoA
GetFileAttributesA
FlushInstructionCache
lstrcat
GetVersionExA
GetVersionExA
MulDiv
GetVolumePathNameA
UnlockFile
GetFileType
IsDebuggerPresent
ReleaseMutex
FindResourceExA
SetCommBreak
SetConsoleTextAttribute
GetVersionExA
GetComputerNameA
FindAtomA
VirtualProtectEx
ClearCommBreak
HeapSize
GetDefaultCommConfigA
LockFile
GetTickCount
ExitProcess
GetCurrentProcessId
GetStringTypeExA
SetDllDirectoryA
LockFileEx
GetTempPathA
UnlockFile
SetComputerNameExW
FindFirstVolumeMountPointA
SetFilePointerEx
GlobalSize
VirtualAlloc
SetTapeParameters
CreateSemaphoreA
LZCloseFile
GetDevicePowerState
WaitForDebugEvent
VerifyVersionInfoA
GetDiskFreeSpaceA
GetProcessHeap
GetFileAttributesExA
PeekConsoleInputA
DeleteTimerQueue
SetConsoleMaximumWindowSize
GetConsoleAliasesA
UnregisterConsoleIME
CreateDirectoryExA
GetDiskFreeSpaceExA
FindAtomA
LocalFlags
ReadConsoleOutputA
GetVersionExA
ResumeThread
ReadConsoleInputA
CopyFileExW
GetConsoleMode
SetFileTime
IsValidCodePage
HeapAlloc
WriteConsoleOutputCharacterA
OpenFileMappingA
WritePrivateProfileStringA
GlobalUnfix
GetEnvironmentVariableA
SetConsoleDisplayMode
WriteConsoleOutputCharacterA
EnumSystemLanguageGroupsA
VirtualFree
WaitForMultipleObjectsEx
GetCommState
CreateDirectoryExW
LoadModule
GetModuleHandleA
Heap32First
GetCurrentProcessId
DeleteFileA
VirtualUnlock
GetLongPathNameA
ReadConsoleOutputAttribute
IsWow64Process
GetConsoleCommandHistoryLengthA
SetConsoleMaximumWindowSize
GetVolumePathNameA
MapViewOfFileEx
IsBadStringPtrA

user32

SetWindowLongA
GetRawInputDeviceInfoA
CreateAcceleratorTableA
ToUnicode
DefMDIChildProcA
MapVirtualKeyExW
GetDlgCtrlID
SetSysColorsTemp
SetDeskWallpaper
EndTask
LockSetForegroundWindow
DlgDirSelectComboBoxExA
EnumDisplaySettingsExA
GetGUIThreadInfo
SetMenuItemInfoA
EnumPropsA
DrawFrame
DlgDirListComboBoxA
IsCharUpperA
RecordShutdownReason
CharPrevExA
SetDebugErrorLevel
ChildWindowFromPointEx
GetWindowThreadProcessId
GetKeyboardLayoutNameA
CheckMenuRadioItem
ToAsciiEx
GetMenuDefaultItem
SetWinEventHook
FindWindowA
GetWindowTextA
LoadCursorFromFileW
MapWindowPoints
CreateMDIWindowA
MessageBoxExA
SetProcessWindowStation
EnumDisplaySettingsExA
CreateWindowStationA
SetMenuContextHelpId
OemToCharA
SetLayeredWindowAttributes
GetWindowTextLengthW
GetKeyboardLayoutList
GetCaretPos
GetTabbedTextExtentA
GetClassLongA
UnregisterMessagePumpHook
GetMessagePos
GetClassNameA
GetMessageExtraInfo
DestroyCursor
GetKeyboardLayoutNameA
LoadCursorA
PrivateExtractIconExA
GetComboBoxInfo
DestroyCursor
CreateAcceleratorTableA
SetWindowStationUser
SetMessageQueue
BroadcastSystemMessageExW
SetPropA
LoadStringA
ReasonCodeNeedsBugID
DrawCaption
SetWindowStationUser
ScrollDC
SetWinEventHook
SetWindowRgn
UnregisterClassA
DlgDirListComboBoxA
DispatchMessageA
GetDlgItemTextA
RegisterLogonProcess
PrivateExtractIconExA
GetWindowLongA
GetWindowDC
GetSystemMenu
SetWindowLongA
UnregisterDeviceNotification
DialogBoxParamA
UnhookWindowsHook
GetInputState
GetClassInfoA
DragObject
RealGetWindowClassA

ws2_32

closesocket

Exports

Exports

WriteGqdskkpjry
CloseNoltvvqyld
Mkqialivsn
Veptvnex
InitAcbakbjy
InitKbgepaejy

Sections

.itext
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 56KB - Virtual size: 673KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 260KB - Virtual size: 257KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6426a8028f2a546a5a667341266b7dd0

Headers

File Characteristics

Imports

kernel32

user32

ws2_32

Exports

Exports

Sections

.itext Size: - Virtual size: 3KB

.text Size: 56KB - Virtual size: 673KB

.idata Size: 260KB - Virtual size: 257KB

.rsrc Size: 72KB - Virtual size: 71KB

.itext
Size: - Virtual size: 3KB

.text
Size: 56KB - Virtual size: 673KB

.idata
Size: 260KB - Virtual size: 257KB

.rsrc
Size: 72KB - Virtual size: 71KB