8647b9f56d45e6083055a1a232fafefc_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

8647b9f56d45e6083055a1a232fafefc_JaffaCakes118
Size

288KB
MD5

8647b9f56d45e6083055a1a232fafefc
SHA1

c889ac0a5448e33d8968a6e3da3b708a7f61ec59
SHA256

6bc7fb584966119672ef378a625e5f64348cafe9291961cbcb48845007f865df
SHA512

9aa3d0e5b03ef6bdeef822de9187692c054876de03d065ab15294d89cfbfa29dfac161ce4f6fb1655ba587972b422ba6f3c74195120a044d815fc21d366de60d
SSDEEP

6144:mp1SsA/P52FgL9SGt/e/KsPjtkGspC5PeKRuhQb40XXU4q:w1YYF4NiPBmpC5ahn4XU4q

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8647b9f56d45e6083055a1a232fafefc_JaffaCakes118

Files

8647b9f56d45e6083055a1a232fafefc_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1d2dcd8ee8e9eed2045004803bf37d59

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WaitForSingleObject
GetProcessWorkingSetSize
SetDefaultCommConfigA
GetVolumePathNameA
Module32Next
SetHandleInformation
GetWindowsDirectoryA
SetTapePosition
OpenProcess
SetConsoleDisplayMode
OpenEventA
LockResource
SetThreadContext
OpenSemaphoreA
GetVersionExA
SetVolumeMountPointA
SetSystemTime
IsProcessorFeaturePresent
UnregisterConsoleIME
WritePrivateProfileSectionA
SetConsoleCursor
GetCommandLineA
SetFileValidData
GetFileAttributesExA
ReleaseSemaphore
SetTimeZoneInformation
WriteConsoleOutputCharacterA
IsBadWritePtr
WriteFileGather
SetFirmwareEnvironmentVariableA
IsBadHugeReadPtr
PulseEvent
ExpandEnvironmentStringsA
ClearCommBreak
CreateMutexA
ConnectNamedPipe
GetFileAttributesExA
GetTickCount
WriteConsoleA
OpenJobObjectA
GetCommMask
GetSystemWindowsDirectoryA
GetProcessHeaps
EndUpdateResourceA
GetFileTime
GetFileType
GlobalHandle
GetCommTimeouts
ReadConsoleA
HeapCreate
WriteConsoleOutputA
GetVolumePathNamesForVolumeNameA
GetAtomNameA
GetConsoleTitleA
lstrcpynA
SizeofResource
TerminateJobObject
VerifyVersionInfoA
UpdateResourceA
CompareStringA
GetCompressedFileSizeA
GetExitCodeThread
GetLongPathNameA
SetLocalTime
GetTapePosition
SetInformationJobObject
GetProcessShutdownParameters
GetBinaryTypeA
GetTapeStatus
GetCommModemStatus
CreateNamedPipeA
GetUserGeoID
GetProfileStringA
GetThreadPriority
GetConsoleAliasExesA
GlobalWire
SetEndOfFile
SuspendThread
FlushInstructionCache
VirtualAllocEx
GetStdHandle
GetModuleHandleA
GetUserDefaultLCID
GetTempPathA
SetFileAttributesA
HeapDestroy
HeapFree
GetVolumeNameForVolumeMountPointA
GetSystemDefaultLCID
ResetEvent
EnumSystemLanguageGroupsA
FormatMessageA
EnumUILanguagesA
AddAtomA
LocalLock
OpenProcess
Thread32First
LocalFlags
LocalAlloc
GetSystemDirectoryA
GetCurrentProcess
SetFileAttributesA
LZCopy
GetProcessPriorityBoost
GetWriteWatch
ReadConsoleOutputAttribute
GetCurrentProcessId
GlobalHandle
GetEnvironmentStringsA
CreateDirectoryExA
GetExitCodeThread
IsBadCodePtr
GetFileSizeEx
PeekConsoleInputA
SizeofResource
FatalExit
VirtualFreeEx
EnumResourceTypesA
GetLocaleInfoA
GetConsoleWindow
GetConsoleMode
GetStdHandle
CreateEventA
SetMailslotInfo
GetCPInfo
GetTickCount
LocalLock
Sleep
DefineDosDeviceA
CloseHandle
lstrcmpA
GetTickCount
GetSystemRegistryQuota
GetCurrentDirectoryA
ReadConsoleOutputCharacterA
FreeConsole
DuplicateConsoleHandle
CreateNamedPipeA
DeleteTimerQueueTimer
GetNativeSystemInfo
GetTickCount
GetCurrentThreadId
SetConsoleHardwareState
OpenFileMappingA
GetEnvironmentStringsA
MapViewOfFileEx
SetupComm
GetProfileSectionA
VirtualAlloc
OpenFileMappingA
WideCharToMultiByte
CreateDirectoryExA
RequestWakeupLatency
GetEnvironmentVariableA
GlobalWire
lstrcmpA
OpenFileMappingA
SetSystemPowerState
FillConsoleOutputCharacterA
Process32Next
EnumSystemLanguageGroupsA
GetVersionExA
ShowConsoleCursor
SetUserGeoID
SetDllDirectoryA
WriteConsoleOutputAttribute
TransmitCommChar
SetConsoleNumberOfCommandsA
FillConsoleOutputCharacterA
MapUserPhysicalPages
GetConsoleWindow
GetVolumeInformationA
CallNamedPipeA
SetHandleInformation
SetProcessPriorityBoost
GetPrivateProfileSectionNamesA
CancelWaitableTimer
SetConsoleHardwareState
CreateFileMappingA

user32

GetScrollRange
EndDeferWindowPos
OpenWindowStationA
CheckMenuRadioItem
DrawTextExA
GetKeyState
GetMessagePos
InsertMenuItemA
CharToOemA
CharToOemA
GetDesktopWindow
ToUnicode
GetScrollPos
CreateMenu
GetPriorityClipboardFormat
GetClassLongA
CharLowerBuffW
RegisterDeviceNotificationA
RegisterTasklist
CreateWindowStationA
RegisterClipboardFormatA
CharLowerBuffA
HideCaret
DrawFrame
EnumChildWindows
SetWindowsHookA
CreateAcceleratorTableA
CreateDesktopA
GetClientRect
GetWindowTextA
SetCursor
IsCharAlphaNumericW
GetDlgItemTextA
GetClipboardViewer
InvalidateRgn
AppendMenuA
GetClassInfoExA
RegisterUserApiHook
GetCapture
CharPrevExA
MapVirtualKeyExA
GetMenuStringA
DeregisterShellHookWindow
GetClipboardFormatNameA
LockWindowStation
GetListBoxInfo
ShowStartGlass
DestroyCaret
DrawCaptionTempA
CallWindowProcA
GetTabbedTextExtentA
CalcMenuBar
GetLayeredWindowAttributes
RemoveMenu
GetClipboardOwner
CharLowerBuffA
GetMenuStringA
DialogBoxIndirectParamAorW
ReleaseCapture
GetAppCompatFlags2
OpenInputDesktop
RealChildWindowFromPoint
GetCursorFrameInfo
ScrollWindow
SetSystemMenu
DrawIconEx
GetScrollInfo
SetWindowWord
MessageBeep
IsCharUpperA
EndDialog
DestroyAcceleratorTable
LoadCursorFromFileA
CreateAcceleratorTableA
PeekMessageA
GetCursorPos
ShowCaret
GetInputDesktop
GetAltTabInfoA
LoadBitmapA
EnumDesktopsA
GetProcessWindowStation
GetInternalWindowPos
ActivateKeyboardLayout
ChangeDisplaySettingsExA
IsWindowUnicode
OemToCharBuffA
DrawIconEx
LoadBitmapA

advapi32

IsValidSid

Sections

.itext
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 176KB - Virtual size: 504KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 100KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1d2dcd8ee8e9eed2045004803bf37d59

Headers

File Characteristics

Imports

kernel32

user32

advapi32

Sections

.itext Size: - Virtual size: 1KB

.text Size: 176KB - Virtual size: 504KB

.idata Size: 100KB - Virtual size: 98KB

.rsrc Size: 8KB - Virtual size: 5KB

.itext
Size: - Virtual size: 1KB

.text
Size: 176KB - Virtual size: 504KB

.idata
Size: 100KB - Virtual size: 98KB

.rsrc
Size: 8KB - Virtual size: 5KB