75a0f8e50b5bfeabf5cf0367e0f8749b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

75a0f8e50b5bfeabf5cf0367e0f8749b_JaffaCakes118
Size

286KB
MD5

75a0f8e50b5bfeabf5cf0367e0f8749b
SHA1

a2a71ba5038203238fea6475125d976885d2aea3
SHA256

cf6583993a8338c51876f2cf27e482bba6345a3bacbbaa92d0d06dbeb85eda29
SHA512

df912f35f3df12142ae1b6bc798affb40834290fc2321860aebbd61ecd1da098f35ff7b35aad302c45dd62b94466d6ad7a683eaa21326f9ef0b35d0aa74983b2
SSDEEP

6144:6qc7+t3vL3lZUBpZ7Ndu5pGQumNonSIAyCuICW1EMLO1:6RevDEpZ7N05QQzXIF4E4O1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
75a0f8e50b5bfeabf5cf0367e0f8749b_JaffaCakes118

Files

75a0f8e50b5bfeabf5cf0367e0f8749b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1d3b053854e57d32fcd05464afebcba0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

PulseEvent
GetVersionExA
GetProfileIntW
LocalAlloc
GetFileInformationByHandle
GetModuleHandleA
CreateIoCompletionPort
GetConsoleScreenBufferInfo
Thread32Next
GetTimeFormatA
GetCurrentThreadId
LoadResource
WriteFileEx
GetStringTypeExA
GetNamedPipeHandleStateA
GetVersionExW
EnumCalendarInfoA
OpenFileMappingW
WritePrivateProfileSectionW
SetNamedPipeHandleState
SetConsoleTitleW
InterlockedCompareExchange
BuildCommDCBA
CloseHandle
EraseTape
FatalAppExitA
GetCommTimeouts
GetCurrentDirectoryA
GetDateFormatW
GetProcessShutdownParameters
CopyFileExW
FindAtomW
Thread32First
CreateWaitableTimerW
VirtualAllocEx
GlobalMemoryStatus
OpenSemaphoreW
GetProfileStringW
GetFileAttributesExA
GetTapeStatus
lstrcmpiA
EnumResourceTypesW
WriteProcessMemory
GetStartupInfoA
FindResourceW
LocalFree
SetConsoleScreenBufferSize
RemoveDirectoryW
SetEndOfFile
Heap32ListFirst
WaitCommEvent
FreeEnvironmentStringsW
GetLongPathNameA
GetNumberFormatA
WaitForSingleObject
GetFullPathNameW
GetEnvironmentStrings
GlobalUnfix
GetAtomNameA
FillConsoleOutputAttribute
lstrcatW
GetModuleFileNameA
SetupComm
CreateThread
HeapLock
GetProcessPriorityBoost
OpenFileMappingA
GetCPInfoExW
SystemTimeToFileTime
CreateMutexA
FreeLibraryAndExitThread

user32

CharToOemBuffW
GetShellWindow
CharNextA
GetKeyNameTextA
IsCharAlphaNumericA
TabbedTextOutA
GetActiveWindow
ChangeDisplaySettingsA
FlashWindow
FillRect
DefFrameProcA
EnumWindowStationsW
DlgDirSelectComboBoxExA
LoadKeyboardLayoutW
ValidateRect
DialogBoxParamA
ShowCursor
DialogBoxParamW
SetKeyboardState
SetWindowPlacement
GetWindowLongA
GetWindowTextA
EnumDisplaySettingsW
DestroyAcceleratorTable
FrameRect
CreateCaret
GetUserObjectSecurity
GetClipCursor
GetWindowPlacement
GetClassLongW
RemovePropW
GetKeyNameTextW
CharNextW
CloseClipboard
RegisterHotKey
IsDialogMessageA
BeginDeferWindowPos
ShowOwnedPopups
HideCaret
GetWindowContextHelpId
CharLowerBuffA
CreateIconFromResource
LookupIconIdFromDirectory
TileWindows
GetSystemMetrics
IsIconic
DestroyIcon
GetMenuItemInfoW
GetClipboardFormatNameW
SetFocus
ToAsciiEx
DrawEdge
GetMessagePos
GetMenuStringW
MapDialogRect

gdi32

Polygon
StartDocA
CreateEllipticRgn
ModifyWorldTransform
DeleteDC
SetEnhMetaFileBits
GetSystemPaletteUse
SetMetaRgn
SelectClipRgn
CloseMetaFile
CreateCompatibleDC
GetNearestPaletteIndex
GetWinMetaFileBits
GetBrushOrgEx
GdiComment
SetBrushOrgEx
GetCharacterPlacementA
GetPaletteEntries
SetPaletteEntries
GetGlyphOutlineW
GetWorldTransform
Rectangle
ExtTextOutW
PolyTextOutW
DeleteColorSpace
FixBrushOrgEx
EnumFontsA
CreatePen
FrameRgn
GdiFlush
CreateMetaFileW
EnumICMProfilesW
GetICMProfileW
SetGraphicsMode
GetTextMetricsA
GdiSetBatchLimit
CreateFontA
GetBitmapDimensionEx

advapi32

IsValidAcl
CryptSetProviderW
GetCurrentHwProfileA
RegCreateKeyExW
LockServiceDatabase
LookupPrivilegeNameW
RegDeleteValueW
GetExplicitEntriesFromAclW
IsValidSecurityDescriptor
RegEnumKeyA
SetEntriesInAclW
SetSecurityInfo
CryptGenRandom
ObjectCloseAuditAlarmA
CloseServiceHandle
GetAce
GetTrusteeTypeA
SetKernelObjectSecurity
AllocateLocallyUniqueId
CryptAcquireContextA
GetSidIdentifierAuthority
GetServiceDisplayNameW
CreateProcessAsUserA
AddAuditAccessAce

shell32

SHAppBarMessage
FindExecutableW
SHGetFileInfoA
ExtractIconExW
ExtractAssociatedIconExA
ExtractIconA
SHGetDataFromIDListW

msvcrt

_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit

Sections

.text
Size: 270KB - Virtual size: 272KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

r7z6jw9l
Size: 70B - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

687xgedz
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1d3b053854e57d32fcd05464afebcba0

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

msvcrt

Sections

.text Size: 270KB - Virtual size: 272KB

.rdata Size: 6KB - Virtual size: 8KB

.data Size: 8KB - Virtual size: 8KB

r7z6jw9l Size: 70B - Virtual size: 4KB

687xgedz Size: 512B - Virtual size: 4KB

.text
Size: 270KB - Virtual size: 272KB

.rdata
Size: 6KB - Virtual size: 8KB

.data
Size: 8KB - Virtual size: 8KB

r7z6jw9l
Size: 70B - Virtual size: 4KB

687xgedz
Size: 512B - Virtual size: 4KB