855af2beb5e36fe1c6789721c7b2dbf7_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

855af2beb5e36fe1c6789721c7b2dbf7_JaffaCakes118
Size

52KB
MD5

855af2beb5e36fe1c6789721c7b2dbf7
SHA1

e3954c3822a1c9818bbd64f9f773774508276e1f
SHA256

0feff5d36aaec62b62115da6807906b6f1d7600292dd09e608803a859c2af0a2
SHA512

ec440ab5c9d25089acf81e9244add0cef3bb1ecbe9c3b6efdb26c9ab4d2a7259ab3b4d0ca83412178466471c8b832e7d3bab41bc16d1ed5b0a4b2fbbe54b9ded
SSDEEP

768:Vi1+wFDomEe6kXWRfc+2UrL1gVSGh9L1SFEsTyifF+Xj:Cb1ELdYUrL1WSGhJwpgX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
855af2beb5e36fe1c6789721c7b2dbf7_JaffaCakes118

Files

855af2beb5e36fe1c6789721c7b2dbf7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

91c8d9d8ac47084a7c738f75740c0731

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

AddAtomW
BackupSeek
ClearCommBreak
ClearCommError
CloseHandle
CreateConsoleScreenBuffer
CreateSemaphoreA
CreateWaitableTimerW
DebugActiveProcess
DisconnectNamedPipe
DosDateTimeToFileTime
EndUpdateResourceA
EnumResourceNamesW
EnumResourceTypesW
ExitProcess
FindNextFileA
FindNextFileW
FreeEnvironmentStringsA
FreeLibrary
GetCommandLineW
GetCompressedFileSizeW
GetConsoleAliasW
GetConsoleCP
GetConsoleDisplayMode
GetConsoleInputExeNameA
GetConsoleTitleA
GetCurrencyFormatW
GetCurrentDirectoryA
GetCurrentDirectoryW
GetCurrentProcess
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetDiskFreeSpaceA
GetDiskFreeSpaceW
GetFileSize
GetLastError
GetLocalTime
GetLogicalDriveStringsA
GetModuleHandleW
GetNamedPipeHandleStateW
GetNumberFormatW
GetPrivateProfileIntA
GetPrivateProfileSectionNamesW
GetProcessPriorityBoost
GetProcessVersion
GetProfileIntW
GetStartupInfoW
GetSystemDefaultLangID
GetSystemDirectoryA
GetSystemInfo
GetSystemTime
GetThreadPriorityBoost
GetVersion
GetVersionExA
GlobalReAlloc
GlobalUnfix
HeapFree
HeapValidate
LoadLibraryExA
LoadModule
LocalAlloc
LocalReAlloc
PrepareTape
PurgeComm
QueryDosDeviceW
QueueUserAPC
ReadFile
SetLastError
SetProcessWorkingSetSize
SizeofResource
UnhandledExceptionFilter
UnmapViewOfFile
UpdateResourceA
UpdateResourceW
VirtualFree
VirtualLock
VirtualProtect
WaitForMultipleObjectsEx
WaitForSingleObject
WaitForSingleObjectEx
WideCharToMultiByte
WriteConsoleA
WriteConsoleInputW
WriteConsoleOutputCharacterW
WriteFile
WritePrivateProfileSectionA
WritePrivateProfileStructA
_hwrite
_lclose
_lcreat
_llseek
_lread
lstrcmpA
lstrcmpW
lstrcmpiA
lstrcmpiW
lstrcpynW

user32

AnimateWindow
ArrangeIconicWindows
AttachThreadInput
CallNextHookEx
CascadeChildWindows
CharPrevA
CharPrevW
CharUpperA
CharUpperW
CheckDlgButton
CloseWindow
CloseWindowStation
CopyRect
CountClipboardFormats
CreateCursor
CreateDesktopA
CreateMDIWindowA
CreateMenu
DdeAccessData
DdeFreeStringHandle
DdeInitializeW
DdeQueryStringW
DdeSetQualityOfService
DdeSetUserHandle
DefFrameProcA
DestroyIcon
DialogBoxIndirectParamA
DialogBoxIndirectParamW
DrawAnimatedRects
DrawCaption
DrawEdge
DrawFrameControl
DrawIcon
DrawIconEx
DrawStateA
EnableScrollBar
EnumDesktopsA
FindWindowW
GetAltTabInfoW
GetClipCursor
GetClipboardFormatNameW
GetCursor
GetCursorInfo
GetFocus
GetForegroundWindow
GetMenu
GetParent
GetWindowContextHelpId
GetWindowDC
GetWindowModuleFileNameA
GetWindowRect
GetWindowTextW
GetWindowThreadProcessId
GetWindowWord
HideCaret
InvertRect
IsCharAlphaW
IsCharUpperA
IsChild
IsWindow
LoadAcceleratorsW
LoadCursorFromFileW
LoadIconA
LoadStringW
MessageBeep
MessageBoxIndirectA
OemToCharA
OffsetRect
OpenInputDesktop
RealGetWindowClassA
RedrawWindow
RegisterWindowMessageW
ReleaseCapture
SendIMEMessageExA
SendInput
SetKeyboardState
SetRectEmpty
SetWindowTextW
ShowCaret
SwitchDesktop
TabbedTextOutW
TileChildWindows
TileWindows
UnpackDDElParam
UnregisterClassA
UserHandleGrantAccess
WINNLSEnableIME
WINNLSGetEnableStatus
wvsprintfW

gdi32

CreateEllipticRgn
DeleteMetaFile
EnumEnhMetaFile
EnumMetaFile
ExtFloodFill
FillRgn
GdiComment
GdiGetBatchLimit
GetBkColor
GetBkMode
GetBoundsRect
GetBrushOrgEx
GetCharABCWidthsFloatA
GetClipBox
GetClipRgn
GetColorSpace
GetCurrentObject
GetEnhMetaFileBits
GetKerningPairsA
GetKerningPairsW
GetLogColorSpaceW
GetNearestPaletteIndex
GetPixel
GetRelAbs
GetRgnBox
GetStretchBltMode
GetTextMetricsA
GetWinMetaFileBits
GetWorldTransform
ModifyWorldTransform
Pie
PlayEnhMetaFile
PlayEnhMetaFileRecord
PolyTextOutA
RemoveFontResourceW
SetBoundsRect
SetDeviceGammaRamp
SetPixel
SetTextJustification
SetWindowExtEx
StretchBlt
StretchDIBits
UpdateICMRegKeyW

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 35KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.msdR
Size: 5KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rCpg
Size: 4KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

91c8d9d8ac47084a7c738f75740c0731

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 6KB - Virtual size: 6KB

.data Size: 35KB - Virtual size: 42KB

.msdR Size: 5KB - Virtual size: 14KB

.rCpg Size: 4KB - Virtual size: 11KB

.reloc Size: 1024B - Virtual size: 4KB

.text
Size: 6KB - Virtual size: 6KB

.data
Size: 35KB - Virtual size: 42KB

.msdR
Size: 5KB - Virtual size: 14KB

.rCpg
Size: 4KB - Virtual size: 11KB

.reloc
Size: 1024B - Virtual size: 4KB