8bd809918a4f935000b55f948ed1e83e_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

8bd809918a4f935000b55f948ed1e83e_JaffaCakes118
Size

214KB
MD5

8bd809918a4f935000b55f948ed1e83e
SHA1

5e16c7ad7fa4769908d2e840926b97b428e2533e
SHA256

dfe9aabc32b8723e202a4bd08f64c5b10dc66ce38b8ec9db1a85716f8c1c4d88
SHA512

fc564430f7edd0d0c095776c2627d1a263d9fe351dc59ed2e3d8c0e45378a51de6babbbfc1c4ce32df0114443ac76bb1a4ad7c81fa8f7695b18291c9da163661
SSDEEP

3072:8DxrPRHRWQG9g+5f2nD+ugHjG4Y679PowU4nMREAda0mlDjlyud5b:OPdLD8f8+VHjG4YYPaWwgD5y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8bd809918a4f935000b55f948ed1e83e_JaffaCakes118

Files

8bd809918a4f935000b55f948ed1e83e_JaffaCakes118
.exe windows:1 windows x86 arch:x86

88296417a8bbaaa271c56bb4bf54f919

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetExitCodeThread
lstrcmpiA
FindClose
lstrcpyA
GetCurrentThreadId
GetTimeFormatA
WideCharToMultiByte
lstrcatA
ReadProcessMemory
GetCurrentThread
LeaveCriticalSection
lstrcpynA
GetProcessHeap
GetStartupInfoA
GetOEMCP
InterlockedIncrement
EnterCriticalSection
GlobalUnlock
VirtualQueryEx
WriteFile
QueryPerformanceCounter
SearchPathA
GetCurrentProcessId
GetNumberFormatA
HeapAlloc
GetCommandLineW
FreeLibrary
GlobalAlloc
CreateThread
HeapCreate
SizeofResource
OpenProcess
SetLastError
GetEnvironmentStringsW
FindFirstFileA
Module32Next
CreateFileMappingA
GetCurrentDirectoryA
GetCPInfo
MultiByteToWideChar
GetCommandLineA
GlobalAddAtomA
TerminateThread
PulseEvent
SetStdHandle
MulDiv
LCMapStringW
DeleteCriticalSection
FileTimeToSystemTime
GetFileTime
TlsFree
RtlUnwind
GlobalReAlloc
GetStringTypeA
ExpandEnvironmentStringsA
SetFilePointer
GetDateFormatA
lstrlenW
GetACP
GetLocaleInfoA
GetCurrentProcess
TlsGetValue
GetSystemTimeAsFileTime
GetConsoleOutputCP
FreeEnvironmentStringsA
UnhandledExceptionFilter
LoadLibraryA
Module32First
GetEnvironmentStrings
DeviceIoControl
Sleep
GetThreadContext
SetEvent
CreateEventA
VirtualFree
GlobalMemoryStatus
SetPriorityClass
GetSystemDirectoryA
LCMapStringA
ResumeThread
GetVersion
FormatMessageA
ResetEvent
DuplicateHandle
FindResourceA
ReadFile
ExitProcess
GetDriveTypeA
GetModuleHandleW
IsDebuggerPresent
GetFileType
LocalFree
InitializeCriticalSection
GetTickCount
GetConsoleMode
VirtualAlloc
SetThreadAffinityMask
GetSystemInfo
lstrlenA
HeapSize
RaiseException
FreeEnvironmentStringsW
CreateFileA
GetProcAddress
FlushFileBuffers
WaitForSingleObject
GetComputerNameW
CloseHandle
CreateToolhelp32Snapshot
GetEnvironmentVariableA
CreateProcessA
GetStringTypeW
IsBadReadPtr
IsValidCodePage
WaitForMultipleObjects
WriteConsoleW
GetProcessAffinityMask
GetModuleHandleA
OpenEventA
QueryPerformanceFrequency
GetConsoleCP

user32

LoadMenuA
GetScrollInfo
SetCapture
CreatePopupMenu
GetCursorPos
SetMenuItemInfoA
GetDlgItemTextA
TrackPopupMenuEx
IsIconic
ShowWindow
IsZoomed
GetSysColorBrush
DefDlgProcA
SetForegroundWindow
FindWindowA
InsertMenuA
GetMenuItemCount
PostQuitMessage
DrawMenuBar
GetUpdateRgn
DefFrameProcA
wsprintfA
CloseClipboard
FindWindowExA
IsDlgButtonChecked
LoadImageA
CheckDlgButton
GetMenuItemID
CheckMenuRadioItem
CheckMenuItem
ModifyMenuA
FillRect
GetDlgItem
DefWindowProcA
CheckRadioButton
MoveWindow
SetPropA
ScreenToClient
OpenClipboard
GetWindowRect
EndDeferWindowPos
SetWindowPos
InvalidateRect
EmptyClipboard
UnionRect
IsDialogMessageA
InflateRect
SystemParametersInfoA
LoadIconA
GetDesktopWindow
GetDlgCtrlID
RemoveMenu
GetSysColor
SetDlgItemTextA
TrackPopupMenu
SetCursor
KillTimer
SetUserObjectSecurity
LoadCursorA
EnableMenuItem
SetFocus
UpdateWindow
CreateWindowExA
GetMessageA
PeekMessageA
AppendMenuA
MessageBoxA
TranslateMessage
DestroyWindow
RegisterWindowMessageA
ClientToScreen
MapWindowPoints
EnumWindows
CreateMenu
PtInRect
SetTimer
DefMDIChildProcA
GetClientRect
SetWindowPlacement
DispatchMessageA
SetWindowTextA
GetSubMenu
TranslateAcceleratorA
OffsetRect
EnumChildWindows
EndPaint
GetWindowLongA
GetWindowPlacement
GetWindowThreadProcessId
ReleaseDC
InvalidateRgn
DialogBoxParamA
GetWindowDC
CopyRect
GetClassLongA
DestroyIcon
ExitWindowsEx
DrawFrameControl
SetClassLongA
GetMenu
DialogBoxIndirectParamA
BeginDeferWindowPos
MsgWaitForMultipleObjects
ScrollWindowEx
FrameRect
GetKeyState
GetUserObjectSecurity
ChildWindowFromPoint
LoadAcceleratorsA
DrawEdge
GetCapture
GetFocus
GetWindow
LoadStringA
GetParent
SendMessageTimeoutA
SendMessageA
EndDialog
GetPropA

msvcrt

__set_app_type
_controlfp
_acmdln
memcpy
_initterm
__p__commode
_exit
__p__fmode
exit
_XcptFilter
_except_handler3
_adjust_fdiv
__setusermatherr
__getmainargs

Sections

.text
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 180KB - Virtual size: 179KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 164B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

88296417a8bbaaa271c56bb4bf54f919

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

Sections

.text Size: 32KB - Virtual size: 31KB

.rdata Size: 180KB - Virtual size: 179KB

.data Size: 512B - Virtual size: 72KB

.rsrc Size: 512B - Virtual size: 164B

.text
Size: 32KB - Virtual size: 31KB

.rdata
Size: 180KB - Virtual size: 179KB

.data
Size: 512B - Virtual size: 72KB

.rsrc
Size: 512B - Virtual size: 164B