71179998eadcbd3acfe7e0fec535e03f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

71179998eadcbd3acfe7e0fec535e03f_JaffaCakes118
Size

252KB
MD5

71179998eadcbd3acfe7e0fec535e03f
SHA1

297f844fda44e5c0ffec3ed6ed38cb3f85826754
SHA256

06f17f7cb233beb569ade2ce7c2e49c651a892d89c6a595701a48a80106a7a83
SHA512

5b2d586bdd51b952bbd2fdffb3f2010614f6f30f464c12aa2eb6d9173c1764f264aa62dfbab31b2f671fa8ab96926a72ea336766282648294c1161c639c9c45b
SSDEEP

3072:WNjW2CAldh7GWGlcRqdEsvQ+LFmuvpXyINJRGFg2KD16T4Yu:yqBAXh7EQ+vQ+LzT1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
71179998eadcbd3acfe7e0fec535e03f_JaffaCakes118

Files

71179998eadcbd3acfe7e0fec535e03f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

37b562e8669b28065e8efa6144afcc4d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetThreadSelectorEntry
LocalShrink
HeapFree
ReadConsoleOutputCharacterA
HeapReAlloc
GetThreadIOPendingFlag
ConnectNamedPipe
VirtualLock
GetEnvironmentVariableA
GetTempPathA
EndUpdateResourceA
GetUserDefaultLangID
GetModuleFileNameA
SetHandleInformation
GetVolumePathNameA
OpenFileMappingA
VirtualUnlock
GetSystemWindowsDirectoryA
GetLocalTime
GetProcessShutdownParameters
lstrlen
WriteProfileStringA
IsValidCodePage
GetPrivateProfileSectionNamesW
TermsrvAppInstallMode
GetConsoleOutputCP
GetWindowsDirectoryA
IsSystemResumeAutomatic
lstrlenA
WriteConsoleOutputA
ResumeThread
HeapCreate
CreateFileA
GetFileInformationByHandle
GetBinaryTypeA
OpenProcess
GetDiskFreeSpaceA
AddAtomA
SetFileAttributesA
lstrcpyA
GetProcessIoCounters
GetNumberOfConsoleMouseButtons
BeginUpdateResourceA
GetProcessId
GetVolumePathNamesForVolumeNameA
LZOpenFileA
OutputDebugStringW
HeapCompact
OpenJobObjectA
CreateTimerQueue
GetEnvironmentStringsA
OpenProfileUserMapping
CloseHandle
FindFirstFileA
GetProcessTimes
IsSystemResumeAutomatic
OutputDebugStringA
GlobalFindAtomA
VirtualAllocEx
GetTempFileNameA
CloseConsoleHandle
IsBadWritePtr
GetThreadContext
ReadConsoleInputA
FileTimeToDosDateTime
SetInformationJobObject
GetThreadTimes
FreeEnvironmentStringsA
WaitNamedPipeA
GetFileAttributesExA
DeleteTimerQueueTimer
GetFileTime
UnregisterWait
Module32First
FlushConsoleInputBuffer
GetProcessHeap
FlushFileBuffers
VirtualQuery
UpdateResourceA
SetComputerNameExA
SetLocalPrimaryComputerNameA
GetStartupInfoA
SetEndOfFile
SetThreadAffinityMask
SetConsoleWindowInfo
ReadConsoleOutputCharacterA
GetEnvironmentVariableA
ExitVDM
GetFullPathNameA
GetTimeZoneInformation
WritePrivateProfileStructA
FindFirstFileExA
lstrcmpiA
LocalFileTimeToFileTime
OpenEventA
UpdateResourceA
GetLocalTime

winmm

timeBeginPeriod

user32

GetUpdateRect
SendDlgItemMessageA
PrivateExtractIconExA
GetKeyboardLayout
AllowForegroundActivation
RegisterShellHookWindow
GetAsyncKeyState
UnregisterHotKey
LoadKeyboardLayoutEx
GetWindowTextA
CharToOemA
ReplyMessage
EnumClipboardFormats
SetMenu
DestroyIcon
GetInputDesktop
CloseClipboard
SetClipboardData
GetPropA
UpdatePerUserSystemParameters
PaintDesktop
GetRawInputData
SetScrollPos
CharUpperBuffA
LoadAcceleratorsA
IsCharLowerA
LoadMenuIndirectW
ModifyMenuA
OemToCharBuffA
GetWindowRgnBox
DialogBoxIndirectParamA
LoadCursorA
GetFocus
GetDlgItemTextA
AttachThreadInput
ShowStartGlass
EqualRect
CalcMenuBar
EnumPropsA
CharLowerBuffA
CharLowerA
SetDoubleClickTime
CopyAcceleratorTableA
DrawMenuBar
IsWindowVisible
AnyPopup
ChildWindowFromPoint
GetDlgCtrlID
SetCursorContents
RegisterDeviceNotificationA
GetWindowRgn
SetCapture
GetShellWindow
TileWindows
MenuWindowProcA
GetUpdateRect
GetWindowTextLengthW
RegisterClassExA
SetMenuContextHelpId
PostMessageA
DlgDirSelectExA
EnumDisplayMonitors
GetIconInfo
GetInputState
SetKeyboardState
GetLayeredWindowAttributes
BeginPaint
BroadcastSystemMessageExA
CreateIcon
GetMenuState
CreateMDIWindowA
RegisterHotKey
ChangeDisplaySettingsExW
GetKeyNameTextA
SendMessageCallbackA
EnumWindowStationsA
KillTimer
RemovePropA
EnumWindowStationsA
CreateIconFromResource
GetInternalWindowPos
SetWindowWord
CreateIconIndirect
PostThreadMessageA
GetScrollInfo
SetWindowWord
GetUserObjectSecurity
GetDialogBaseUnits
SetScrollPos
EndTask
DestroyWindow
MessageBoxTimeoutA

Exports

Exports

Nqprnir
Orousgucnoy
Miongbnu

Sections

.idata
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.itext
Size: 236KB - Virtual size: 570KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

37b562e8669b28065e8efa6144afcc4d

Headers

File Characteristics

Imports

kernel32

winmm

user32

Exports

Exports

Sections

.idata Size: - Virtual size: 3KB

.itext Size: 236KB - Virtual size: 570KB

.idata Size: 8KB - Virtual size: 4KB

.rsrc Size: 4KB - Virtual size: 1KB

.idata
Size: - Virtual size: 3KB

.itext
Size: 236KB - Virtual size: 570KB

.idata
Size: 8KB - Virtual size: 4KB

.rsrc
Size: 4KB - Virtual size: 1KB