886e06fa9d6eba4900e90c32e6f69cd8_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

886e06fa9d6eba4900e90c32e6f69cd8_JaffaCakes118
Size

140KB
MD5

886e06fa9d6eba4900e90c32e6f69cd8
SHA1

66b6dc667ad971af3c512c48416eecd21959032b
SHA256

9f13aa79092fa896fd0be3e5d6a9b63b260fa3576e0f56797317e5b9d0042f7f
SHA512

9bc6b3395fe52fdf507021c7077188140893bcd8b32f9fba9fec86ca9a4ae8778771c1ee92f6bd422c7b14ad58a5e98c4d889c30f3a87008b6480ffcc04399b2
SSDEEP

3072:P++bKavv1iXMUWvHKZ9Ib7XMEQ07K4XT6IP:P+UHvv1i8U8HrQReP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
886e06fa9d6eba4900e90c32e6f69cd8_JaffaCakes118

Files

886e06fa9d6eba4900e90c32e6f69cd8_JaffaCakes118
.exe windows:7 windows x86 arch:x86

b09cafb968323dac2f7e579e850f4b43

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetACP
LocalAlloc
QueryPerformanceCounter
SetUnhandledExceptionFilter
GetACP
GetCurrentThreadId
GetACP
GetCurrentProcessId
FormatMessageW
GetModuleHandleW
GetCurrentProcessId
GetModuleHandleA
GetTickCount
QueryPerformanceCounter
WaitForSingleObject
LocalFree
GetCurrentThreadId
GetCurrentProcessId
WaitForSingleObject
GetModuleHandleW
WaitForSingleObject
SetUnhandledExceptionFilter
VirtualFree
SleepEx
SetUnhandledExceptionFilter
GetModuleHandleA
GetCurrentProcessId
GetTickCount
GetACP
GetCommandLineW
GetCommandLineW
MultiByteToWideChar
VirtualFree
GetTickCount
MultiByteToWideChar
GetACP
GetACP
LocalFree
GetCurrentProcessId
LocalAlloc
SetEvent
MultiByteToWideChar
GetCurrentThreadId
GetProcessHeap
GetCommandLineW
GetCurrentThreadId
FormatMessageW
SetEvent
GetCurrentProcess
VirtualFree
GetModuleFileNameA
FormatMessageW
GetModuleHandleA
GetTickCount
VirtualFree
GetCurrentProcessId
GetProcessHeap
GetACP
FormatMessageW
SetUnhandledExceptionFilter
GetModuleHandleA
FormatMessageW
QueryPerformanceCounter
GetACP
GetProcessHeap
WaitForSingleObject
GetCommandLineW
LocalFree
GetCommandLineA
MultiByteToWideChar
GetProcessHeap
SetEvent
VirtualFree
LocalFree
MultiByteToWideChar
GetCurrentThreadId
FormatMessageW
GetModuleHandleA
GetTickCount
GetACP
FormatMessageW
GetCommandLineA
GetModuleFileNameA
GetModuleHandleW
GetCurrentProcess
SetEvent
GetModuleFileNameA
SetEvent
GetModuleHandleA
GetProcessHeap
LocalFree

gdi32

MoveToEx
SelectObject
CreateCompatibleBitmap
GetDeviceCaps
GetObjectW
GetDeviceCaps
GetDeviceCaps
DeleteObject
MoveToEx
GetTextMetricsW
DeleteDC
LineTo
GetObjectW
GetObjectW
MoveToEx
CreateCompatibleDC
GetDeviceCaps
SelectObject
GetObjectW
DeleteDC
PatBlt
LineTo
DeleteObject
GetTextMetricsW
CreateCompatibleDC
CreateCompatibleDC
GetStockObject
GetObjectW
LineTo
GetTextMetricsW
DeleteObject
PatBlt
DeleteObject
DeleteDC
GetTextMetricsW
BitBlt
GetStockObject
CreateCompatibleBitmap
MoveToEx
GetObjectW
DeleteDC
GetTextMetricsW
SetTextColor
SetTextColor
DeleteObject
PatBlt
SetTextColor
GetObjectW
GetDeviceCaps
LineTo
BitBlt
GetObjectW
CreateCompatibleBitmap
BitBlt
LineTo
MoveToEx
SelectObject
DeleteObject
SelectObject
MoveToEx
DeleteDC
CreateCompatibleDC
MoveToEx
GetTextMetricsW
DeleteObject
CreateCompatibleBitmap
GetObjectW
GetObjectW
GetDeviceCaps
SetTextColor
GetDeviceCaps
SetTextColor

ntdll

NtAllocateVirtualMemory

user32

GetSystemMetrics
CreateWindowExW
SetTimer
GetWindowRect
PostMessageW
CreateWindowExW
GetWindowRect
DefWindowProcW
DefWindowProcW
ShowWindow
LoadIconW
SetTimer
GetDlgItem
ShowWindow
LoadIconW
GetWindowRect
DestroyWindow
ReleaseDC
GetDC
DefWindowProcW
ReleaseDC
SendMessageW
GetWindowRect
GetDC
GetSystemMetrics
SetTimer
ReleaseDC
SetTimer
GetDC
DefWindowProcW
SendMessageW
LoadIconW
ShowWindow
SetTimer
GetSystemMetrics
LoadIconW
DefWindowProcW
DestroyWindow
GetDC
GetWindowRect
SetTimer
DestroyWindow
PostMessageW
GetWindowRect
PostMessageW
ReleaseDC
ReleaseDC
GetMessageW
ShowWindow
PostMessageW
LoadIconW
SendMessageW
PostMessageW
SendMessageW
SetTimer
DestroyWindow
DefWindowProcW
GetDC
GetWindowRect
SendMessageW
ReleaseDC
ShowWindow
ReleaseDC
GetMessageW
ReleaseDC
ReleaseDC
DestroyWindow
GetDC
DestroyWindow
GetDlgItem
SetTimer
CreateWindowExW
GetWindowRect
GetDC
ReleaseDC
GetWindowRect
PostMessageW
GetWindowRect
DefWindowProcW
ShowWindow
GetSystemMetrics
CreateWindowExW
ShowWindow
ShowWindow
SendMessageW
DestroyWindow
DefWindowProcW
CreateWindowExW
ShowWindow
GetDlgItem
GetWindowRect
ShowWindow
PostMessageW

Sections

.data
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 106KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b09cafb968323dac2f7e579e850f4b43

Headers

File Characteristics

Imports

kernel32

gdi32

ntdll

user32

Sections

.data Size: 24KB - Virtual size: 24KB

.rdata Size: 6KB - Virtual size: 8KB

.data Size: 106KB - Virtual size: 108KB

.rsrc Size: 2KB - Virtual size: 124KB

.data
Size: 24KB - Virtual size: 24KB

.rdata
Size: 6KB - Virtual size: 8KB

.data
Size: 106KB - Virtual size: 108KB

.rsrc
Size: 2KB - Virtual size: 124KB