8863a88b2b813000169022594dcb7ba5_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

8863a88b2b813000169022594dcb7ba5_JaffaCakes118
Size

89KB
MD5

8863a88b2b813000169022594dcb7ba5
SHA1

be718a73b02f9cd2a9bc7c66a790e70436680ad6
SHA256

42bcbd87c95cda34af3f94bfae9377a7573936334023bd4ea26c92583adcb850
SHA512

4825f38c7ff59ca9299fbc63a0bac77905987161015a073f7769365b6c30b288ffe44f7838a27d3f07cf71a71710a5a9a5052c0260965a79fa04ea22d570cab7
SSDEEP

1536:a890lOKsV9xKpVuQLdNkjTJKpzn0LQJ4IHkWSWnx3q7VoagHf:a890lOz9gVdYkz0L1BSxa7Voa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8863a88b2b813000169022594dcb7ba5_JaffaCakes118

Files

8863a88b2b813000169022594dcb7ba5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a4f141b2934690d9cc31d27c0733c8cd

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
VirtualFree
LocalFree
GetCurrentThreadId
VirtualQuery
WideCharToMultiByte
MultiByteToWideChar
lstrlenA
lstrcpynA
GetThreadLocale
GetStartupInfoA
GetModuleFileNameA
GetLocaleInfoA
GetLastError
FreeLibrary
ExitProcess
WriteFile
SetFilePointer
SetEndOfFile
RtlUnwind
ReadFile
RaiseException
GetFileSize
CreateFileA
CloseHandle
TlsSetValue
TlsGetValue
LocalAlloc
lstrcpyA
WriteFile
VirtualQuery
SizeofResource
SetFilePointer
SetEvent
SetErrorMode
SetEndOfFile
ReadFile
MulDiv
LockResource
LeaveCriticalSection
InitializeCriticalSection
GlobalReAlloc
GlobalHandle
GlobalLock
GlobalDeleteAtom
GlobalAlloc
GlobalAddAtomA
GetVersionExA
GetVersion
GetThreadLocale
GetStringTypeExA
GetStdHandle
GetModuleHandleA
GetLocaleInfoA
GetLastError
GetDiskFreeSpaceA
GetCurrentThreadId
GetCPInfo
FreeResource
FreeLibrary
FindResourceA
EnumCalendarInfoA
EnterCriticalSection
DeleteCriticalSection
CreateThread
CreateEventA
Sleep

user32

LoadStringA
MessageBoxA
CharNextA
WaitMessage
UnhookWindowsHookEx
TranslateMessage
TrackPopupMenu
SystemParametersInfoA
ShowWindow
SetWindowsHookExA
SetWindowLongA
SetTimer
SetScrollRange
SetScrollPos
SetScrollInfo
SetRect
SetFocus
SetCursor
SendMessageA
RemovePropA
RemoveMenu
ReleaseDC
ReleaseCapture
RegisterWindowMessageA
RegisterClipboardFormatA
RegisterClassA
PtInRect
PostQuitMessage
PostMessageA
OffsetRect
OemToCharA
MessageBoxA
MapWindowPoints
LoadStringA
LoadKeyboardLayoutA
LoadCursorA
LoadBitmapA
KillTimer
IsZoomed
IsWindowVisible
IsWindowEnabled
IsIconic
IsDialogMessageA
InvalidateRect
InsertMenuItemA
InsertMenuA
InflateRect
GetWindowRect
GetWindowPlacement
GetWindowLongA
GetWindowDC
GetScrollRange
GetPropA
GetParent
GetWindow
GetMenuItemInfoA
GetMenuItemCount
GetLastActivePopup
GetKeyboardState
GetKeyboardLayoutList
GetKeyboardLayout
GetKeyState
GetKeyNameTextA
GetIconInfo
GetForegroundWindow
GetFocus
GetDCEx
GetDC
GetCursorPos
GetClientRect
GetClassNameA
GetClassInfoA
GetCapture
GetActiveWindow
EnumThreadWindows
EndPaint
EnableScrollBar
DrawIconEx
DrawIcon
DrawFrameControl
DrawEdge
DispatchMessageA
DestroyWindow
DestroyMenu
DestroyIcon
DestroyCursor
DeleteMenu
DefWindowProcA
CreateWindowExA
ClientToScreen
CheckMenuItem
CallNextHookEx
BeginPaint
CharNextA
CharLowerA
AdjustWindowRectEx

advapi32

RegQueryValueExA
RegOpenKeyExA
RegQueryValueExA
RegOpenKeyExA

oleaut32

SysFreeString
SysReAllocStringLen
SysAllocStringLen
SafeArrayPutElement
SafeArrayGetUBound
SafeArrayCreate
VariantChangeTypeEx
VariantCopy
VariantClear

gdi32

UnrealizeObject
SetWindowOrgEx
SetViewportOrgEx
SetTextColor
SetROP2
SetPixel
SetBrushOrgEx
SetBkMode
SetBkColor
SelectPalette
SelectObject
RectVisible
RealizePalette
Polyline
PatBlt
MaskBlt
LineTo
IntersectClipRect
GetWindowOrgEx
GetTextExtentPoint32A
GetSystemPaletteEntries
GetPixel
GetPaletteEntries
GetObjectA
GetDeviceCaps
GetDIBits
GetDIBColorTable
GetBrushOrgEx
GetBitmapBits
ExcludeClipRect
DeleteDC
CreatePenIndirect
CreateHalftonePalette
CreateFontIndirectA
CreateDIBSection
CreateCompatibleDC
CreateCompatibleBitmap
CreateBrushIndirect
CreateBitmap
BitBlt

comctl32

ImageList_SetIconSize
ImageList_GetIconSize
ImageList_Write
ImageList_GetDragImage
ImageList_DragShowNolock
ImageList_SetDragCursorImage
ImageList_DragLeave
ImageList_DragEnter
ImageList_Remove
ImageList_DrawEx
ImageList_Draw
ImageList_GetBkColor
ImageList_SetBkColor
ImageList_ReplaceIcon
ImageList_Add
ImageList_GetImageCount
ImageList_Destroy
ImageList_Create

Sections

.data
Size: 61KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 1KB - Virtual size: 87KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a4f141b2934690d9cc31d27c0733c8cd

Headers

File Characteristics

Imports

kernel32

user32

advapi32

oleaut32

gdi32

comctl32

Sections

.data Size: 61KB - Virtual size: 61KB

.text Size: 1KB - Virtual size: 87KB

.rdata Size: 512B - Virtual size: 512B

.idata Size: 6KB - Virtual size: 6KB

.rsrc Size: 18KB - Virtual size: 18KB

.data
Size: 61KB - Virtual size: 61KB

.text
Size: 1KB - Virtual size: 87KB

.rdata
Size: 512B - Virtual size: 512B

.idata
Size: 6KB - Virtual size: 6KB

.rsrc
Size: 18KB - Virtual size: 18KB