89b62374aa157b6e1902bf4848edddc2_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

89b62374aa157b6e1902bf4848edddc2_JaffaCakes118
Size

104KB
MD5

89b62374aa157b6e1902bf4848edddc2
SHA1

03df7a60b2acaa8f89940e48164a9c692b1beb80
SHA256

015206723a42b36717422767336bdc18135625f52745d1b349ae5aee46d84a43
SHA512

50ea7353fe19d945c1b97d308809dc708ac07d08ae745eaf5cd7fa8da7703446bab04e028550f453ed653dcd1b63733ceabfad373792cdfd6ba3243ee3fe8b6d
SSDEEP

3072:Cq06mO/JTdCe+gxc6hYki2tnTri0euZayU:CqguJwngJw2gWZa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
89b62374aa157b6e1902bf4848edddc2_JaffaCakes118

Files

89b62374aa157b6e1902bf4848edddc2_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f9e7dc75416b3f32ac7a242beb17a8a8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

log
memcpy
memmove
strlen

kernel32

GetVersion
FormatMessageA
WideCharToMultiByte
RaiseException
GetCurrentThread
CreateThread
lstrcmpA
Sleep
ResetEvent
GetDiskFreeSpaceA
LoadLibraryA
ExitProcess
LocalFree
FindFirstFileA
GetCurrentProcess
LockResource
ExitThread
GetOEMCP
SetHandleCount
GetFileSize
lstrlenA
SetFilePointer
GetCommandLineA
SetLastError
CreateFileA
FreeLibrary
GetModuleHandleA
GetStringTypeW
GetCurrentProcessId
GetThreadLocale
MoveFileExA
GetCurrentThreadId
GetACP
GetSystemDefaultLangID
lstrcatA
GetUserDefaultLCID
GetLocaleInfoA
WaitForSingleObject
GetStartupInfoA
GetProcAddress
VirtualQuery
GetLocalTime
GetCPInfo
EnumCalendarInfoA
HeapAlloc
GlobalDeleteAtom
GetFullPathNameA
GetStringTypeA
MulDiv
SetThreadLocale
lstrcpyA
HeapDestroy
GetFileAttributesA
GetModuleFileNameA
SetEvent
GlobalFindAtomA
CloseHandle
GlobalAlloc
GetLastError
SetEndOfFile
GetTickCount
GlobalAddAtomA
FindClose
LocalAlloc
lstrcpynA
lstrcmpiA
FindResourceA
VirtualFree
SetErrorMode
DeleteCriticalSection
LoadLibraryExA
EnterCriticalSection
GetVersionExA
GetFileType
VirtualAlloc
ReadFile
LoadResource
HeapFree
CompareStringA
LocalReAlloc
GetDateFormatA
GetEnvironmentStrings
InitializeCriticalSection
DeleteFileA
GetProcessHeap
VirtualAllocEx
FreeResource
WriteFile
GetStdHandle
MoveFileA

gdi32

CreateCompatibleBitmap
GetRgnBox
GetDIBits
LineTo
SetTextColor

advapi32

RegQueryInfoKeyA

user32

GetSysColorBrush
EnableScrollBar
DestroyCursor
PeekMessageW
KillTimer
GetClientRect
TranslateMessage
CharLowerBuffA
SetWindowPlacement
RedrawWindow
GetKeyboardState
EmptyClipboard
GetScrollInfo
GetMenuItemInfoA
PeekMessageA
GetKeyNameTextA
ClientToScreen
GetKeyboardLayoutList
UnhookWindowsHookEx
GetMenuState
RemovePropA
LoadCursorA
DrawIconEx
GetMenuItemCount
DrawFrameControl
PtInRect
SetMenu
WindowFromPoint
DrawMenuBar
OffsetRect
SystemParametersInfoA
IsChild
MessageBeep
SetScrollInfo
OpenClipboard
InvalidateRect
GetClipboardData
CloseClipboard
ScreenToClient
DrawEdge
CheckMenuItem
WaitMessage
IsZoomed
LoadIconA
DestroyMenu
CharNextA
EnumChildWindows
GetWindowRect
EqualRect
MoveWindow
CharToOemA
SetClipboardData
SetWindowPos
SetForegroundWindow
DrawTextA
GetWindowLongA
CallNextHookEx
IsWindowEnabled
GetSystemMenu
ScrollWindow
GetDlgItem
EndPaint
FillRect
LoadBitmapA
LoadStringA
IsRectEmpty
CreateMenu
AdjustWindowRectEx
GetKeyboardType
RemoveMenu
GetTopWindow
FrameRect
GetKeyboardLayout
DeleteMenu
GetMessagePos
UpdateWindow
CharUpperBuffA
SetCapture
CreateIcon
RegisterWindowMessageA
GetMenu
DrawIcon
GetIconInfo
IsWindowVisible
GetKeyState
GetWindowTextA
InsertMenuItemA
MessageBoxA
IsWindow
GetParent
GetCapture
wsprintfA
GetWindowPlacement
CharLowerA
GetDCEx
SetPropA
SetActiveWindow
SendMessageW
UnregisterClassA
ActivateKeyboardLayout
LoadKeyboardLayoutA
DestroyIcon
IsWindowUnicode
MapVirtualKeyA
GetDesktopWindow
DefWindowProcA
SetWindowTextA
GetCursorPos
GetSysColor
IsIconic
GetScrollPos
ShowScrollBar
CharNextW
DispatchMessageA
SetRect
ChildWindowFromPoint
GetSystemMetrics
GetForegroundWindow
SetScrollPos
SetScrollRange
BeginPaint
DrawAnimatedRects
GetClassInfoA
SetFocus
DefMDIChildProcA
SetClassLongA
TrackPopupMenu
GetKeyboardLayoutNameA
SetWindowLongW
SendMessageA
GetWindowThreadProcessId
OemToCharA
SetParent
GetClassNameA
DestroyWindow
CreateWindowExA
GetLastActivePopup
SetWindowsHookExA
ShowOwnedPopups
GetCursor
RegisterClassA
MsgWaitForMultipleObjects
IsDialogMessageA
EnableWindow
FindWindowA
PostMessageA
MapWindowPoints
IntersectRect
EnableMenuItem
ShowWindow
GetActiveWindow
InflateRect
GetWindow
SetTimer
EnumWindows
GetMenuItemID
GetPropA
ReleaseDC
GetClassLongA
EnumThreadWindows
GetWindowLongW
ReleaseCapture
GetWindowDC
IsDialogMessageW
SetWindowLongA
CreatePopupMenu
SetCursor
TranslateMDISysAccel
GetSubMenu
GetFocus
SetMenuItemInfoA
DefFrameProcA
InsertMenuA
RegisterClipboardFormatA
CallWindowProcA
DispatchMessageW
GetDC
PostQuitMessage
GetMenuStringA

comctl32

ImageList_Destroy
ImageList_Draw
ImageList_Add
ImageList_Read
ImageList_Remove

Sections

.text
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f9e7dc75416b3f32ac7a242beb17a8a8

Headers

File Characteristics

Imports

msvcrt

kernel32

gdi32

advapi32

user32

comctl32

Sections

.text Size: 88KB - Virtual size: 88KB

.idata Size: 7KB - Virtual size: 7KB

.edata Size: 4KB - Virtual size: 3KB

.data Size: 2KB - Virtual size: 2KB

.text
Size: 88KB - Virtual size: 88KB

.idata
Size: 7KB - Virtual size: 7KB

.edata
Size: 4KB - Virtual size: 3KB

.data
Size: 2KB - Virtual size: 2KB