88a0b0dde45f0400a94ef954e5a55580_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

88a0b0dde45f0400a94ef954e5a55580_JaffaCakes118
Size

2.4MB
MD5

88a0b0dde45f0400a94ef954e5a55580
SHA1

bf580e9468a4ecbee9f22067fe6396e5ad2699ea
SHA256

bff7f8c8d58c6b21618e7de7682005b1e4a5429b3040a7371a2c7f7f5f29d6d7
SHA512

d7838145f09e64b1d620814bf4707089d8edd1eb94465af415356b3aea12713bec40adb615e8dff2561723a3150707110fd9736210b68701a7fdc449543f2917
SSDEEP

49152:X1/IX5JQ9lJpOQ+i6wcTkOxKATOzQroHPH7ccXmINWw7m0l:XIJQtpO5XFOz9HjfXmaB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
88a0b0dde45f0400a94ef954e5a55580_JaffaCakes118

Files

88a0b0dde45f0400a94ef954e5a55580_JaffaCakes118
.exe windows:5 windows x86 arch:x86

9af9279af76d4d296bddf6ec990a0384

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_vsnprintf
fread
wcsncmp
getchar
fgetc
memset
fgets

kernel32

HeapFree
OutputDebugStringA
GetThreadPriority
GetSystemTimeAdjustment
GetModuleHandleW
ReadConsoleOutputCharacterW
GetDiskFreeSpaceA
ContinueDebugEvent
LoadLibraryA
FlushFileBuffers
GetOEMCP
EnterCriticalSection
GlobalDeleteAtom
FindFirstFileW
SizeofResource
EscapeCommFunction
lstrcpyW
UnlockFile
CreateRemoteThread
OpenEventW
GetHandleInformation
GetStringTypeA
GetProfileSectionA
SetInformationJobObject
GetStartupInfoA
SetConsoleHardwareState
FillConsoleOutputAttribute
FindResourceExW
CancelWaitableTimer
EnumResourceNamesA
GetShortPathNameW
WaitForSingleObject
SetUnhandledExceptionFilter
HeapAlloc
GlobalUnlock
GetConsoleMode
SetLocalTime
SetThreadContext
DisconnectNamedPipe
IsDBCSLeadByte
WaitForDebugEvent
AddAtomW
ReleaseMutex
MoveFileExA
lstrcpynA
lstrlenW

psapi

GetModuleFileNameExA
EnumProcessModules
GetModuleBaseNameW
EnumProcesses

user32

SetFocus
CharNextW
SetActiveWindow
TileChildWindows
EndPaint
RegisterClassExW
LockWindowStation
DrawTextW
TranslateMessage
InsertMenuA
IsCharAlphaW
DdeCreateStringHandleW
CreateDialogIndirectParamW
wvsprintfA
GetWindowRect
DrawMenuBar
EnableScrollBar
IsWindowEnabled
GetMessageA
SetScrollPos
MoveWindow
VkKeyScanW
GetDC
SetMessageQueue
GrayStringW
SwapMouseButton
TranslateAcceleratorA
GetMenuState
ShowScrollBar
CopyImage
ValidateRect
DefDlgProcA
CloseWindow
EmptyClipboard
GetMenuItemID
GetSysColorBrush
GetKeyboardLayoutList
GetClientRect
BeginPaint
GetUpdateRect
GetFocus
IsWindowVisible
IsIconic
ShowStartGlass
DispatchMessageA
GetDialogBaseUnits
CopyRect
SetScrollRange
ReleaseDC
GetClassInfoA

gdi32

GetDeviceCaps
GetWindowOrgEx
GetObjectA
CreateSolidBrush
SetViewportOrgEx
GetArcDirection
DeleteMetaFile
GetBitmapDimensionEx
SelectPalette
PtVisible
SetTextAlign
CreateCompatibleDC
CreatePen
ExtTextOutW
SetBkColor
CreateBitmapIndirect
DeleteDC
CreateDIBSection
ExtEscape

ntdll

strcpy
memset

Exports

Exports

LAXWobdpaouiuU@8
OjcSfvwbtmoQuqxXd@4
_Remove_DataObjects@8
QkuYunezjmCWt@12
_Validate_DataObjects@12
ExeEefZztwQLxwihm@4

Sections

.code
Size: - Virtual size: 6.5MB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2.4MB - Virtual size: 2.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 594B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9af9279af76d4d296bddf6ec990a0384

Headers

File Characteristics

Imports

msvcrt

kernel32

psapi

user32

gdi32

ntdll

Exports

Exports

Sections

.code Size: - Virtual size: 6.5MB

.text Size: 12KB - Virtual size: 12KB

.rdata Size: 7KB - Virtual size: 7KB

.rsrc Size: 2.4MB - Virtual size: 2.4MB

.reloc Size: 1024B - Virtual size: 594B

.code
Size: - Virtual size: 6.5MB

.text
Size: 12KB - Virtual size: 12KB

.rdata
Size: 7KB - Virtual size: 7KB

.rsrc
Size: 2.4MB - Virtual size: 2.4MB

.reloc
Size: 1024B - Virtual size: 594B