8bfdf209dc1bb1b26ae9fa5aa748cc9d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

8bfdf209dc1bb1b26ae9fa5aa748cc9d_JaffaCakes118
Size

131KB
MD5

8bfdf209dc1bb1b26ae9fa5aa748cc9d
SHA1

c510b4290e14ba7da2246129e85fa72b43bacfa3
SHA256

0c9a03c87327f43c479c97437b5f36c066ab06dc2b766317867bdeb3f313a85a
SHA512

5b3e772be60e9f2c150f6dac84830dbd442f87eaf086e970df611d24fcd94c2b474f15e18ec185d383cd847837f904543eb5bc29d164e8320c87c163a49e2ab0
SSDEEP

3072:kHI6JEyS8svqaxKLedX8jLGZ0O/NVqCx7Jez4c7rtShKjRUcMs/h29/Bf:koUkvVEidX8v8lVR7Jex7rtql2M

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8bfdf209dc1bb1b26ae9fa5aa748cc9d_JaffaCakes118

Files

8bfdf209dc1bb1b26ae9fa5aa748cc9d_JaffaCakes118
.exe windows:5 windows x86 arch:x86

5036bdc4002bcb5cdc121402ddda8e8d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
CreateWaitableTimerA
GetAtomNameA
OpenEventW
DeleteFileW
CreateDirectoryExA
ConvertThreadToFiber
GetLongPathNameW
GetWindowsDirectoryW
SetSystemPowerState
SetWaitableTimer
VirtualFree
LocalFlags
GetFullPathNameW
GetConsoleCursorInfo
CreateSemaphoreW
CompareStringA
LocalFree
GetEnvironmentStringsW
WriteProcessMemory
HeapDestroy
GetPrivateProfileIntW
WritePrivateProfileSectionW
TlsFree
FillConsoleOutputAttribute
CancelDeviceWakeupRequest
ReleaseSemaphore
GetCurrentThreadId
GetSystemInfo
Sleep
ReadConsoleOutputW
SetStdHandle
IsSystemResumeAutomatic
GetVersionExW
SetCalendarInfoW
CopyFileExW
EnumCalendarInfoExA
ResumeThread
OpenMutexW
GetProcessWorkingSetSize
IsBadCodePtr
HeapValidate
GetExitCodeProcess
GlobalFindAtomW
GetLargestConsoleWindowSize
ReadConsoleA
SetComputerNameA
FindResourceExA
LocalUnlock
SetThreadIdealProcessor
WritePrivateProfileStructA
CreateMailslotA
WritePrivateProfileStructW
EnumSystemLocalesA
SetErrorMode
lstrlenW
lstrcmpA
FreeResource
CreateWaitableTimerW
GetPrivateProfileSectionW
GetFileSize
GetDiskFreeSpaceExW
GlobalAddAtomW
GetEnvironmentVariableA
CopyFileExA
GetNamedPipeInfo
WriteConsoleOutputCharacterA
CopyFileW
CreateFileW
LoadResource
EnumResourceTypesA
CreateDirectoryW
GetSystemTime
TerminateProcess
SetConsoleWindowInfo
SetLastError
GlobalSize
GetSystemDefaultLCID
FreeLibrary
FoldStringW
ReadFile
LCMapStringW
Thread32Next
CreateFiber
PulseEvent
ReadConsoleInputW
IsValidCodePage
FlushConsoleInputBuffer
UpdateResourceA
FreeEnvironmentStringsA
VirtualAlloc
OpenFileMappingA
EnumResourceNamesA
GetQueuedCompletionStatus
GlobalDeleteAtom
lstrlenA
GetStartupInfoW
SetLocaleInfoW
GetLogicalDriveStringsA
EnumResourceTypesW
GetSystemTimeAdjustment
GetPrivateProfileStringA
GetThreadContext
WriteConsoleOutputW
GetProfileIntA
MapViewOfFileEx
WriteConsoleOutputCharacterW
SetFilePointer
GetCPInfoExA
TransactNamedPipe
EnumSystemCodePagesW
GetVersionExA
LockFile
lstrcmpW
OpenFileMappingW
GetStdHandle
IsBadHugeWritePtr
ScrollConsoleScreenBufferA
FatalAppExitA
GetTempPathA
GetPrivateProfileStructW
WriteFile
LocalFileTimeToFileTime
GetUserDefaultLCID
GetOverlappedResult
GetPrivateProfileIntA
GetSystemDirectoryA
CompareFileTime
FormatMessageW
CreateFileMappingW
SetThreadExecutionState
GetVolumeInformationW
GetConsoleTitleA
GetStringTypeExA
FindAtomA
SetConsoleCursorInfo
GlobalUnlock
ExpandEnvironmentStringsA
GetCurrentDirectoryA
SuspendThread
lstrcpyn
VirtualProtect
LoadLibraryA
GetProcAddress

shlwapi

PathAppendW
PathIsFileSpecA
StrRetToStrA
SHCreateStreamOnFileW
SHAutoComplete

advapi32

CryptGetProvParam
RegEnumKeyA
OpenEventLogW
CreateProcessAsUserA
LookupPrivilegeNameA
QueryServiceConfigA
ObjectDeleteAuditAlarmW
RegFlushKey
GetTrusteeNameA
LookupSecurityDescriptorPartsW
LookupPrivilegeNameW
RegConnectRegistryA
LookupAccountSidW
GetNamedSecurityInfoExA
GetNamedSecurityInfoW

ole32

CoFileTimeNow
CoGetStandardMarshal
CoGetMalloc
BindMoniker
GetDocumentBitStg

user32

GetWindowInfo
SendInput
DeferWindowPos
IsChild
RemovePropW
ClipCursor
FrameRect
SetActiveWindow
ScrollWindowEx
PostMessageA
LoadMenuIndirectW
GetClientRect
CopyIcon
IsCharLowerA
GetWindow
EnumDisplayMonitors
GetUpdateRect
GetWindowLongA
GetKeyboardLayoutNameW
EmptyClipboard
GetTabbedTextExtentA
OpenIcon
GetMenuState
InvertRect
PostQuitMessage
LoadMenuA
BlockInput
ChangeClipboardChain
EnumPropsExW
IsWindow
CreateWindowExA
GetPropW
UnpackDDElParam
ChangeDisplaySettingsA
SetWindowTextW
UpdateWindow
GetDlgItem
SetCapture
DdeNameService
InsertMenuItemW
ChildWindowFromPoint
DestroyMenu
SetRectEmpty
LoadBitmapW
ChildWindowFromPointEx
BringWindowToTop
SetMenuInfo
DrawMenuBar
GetSystemMetrics
SetForegroundWindow
RegisterClipboardFormatA
SendNotifyMessageA
SetParent
GetClassWord
GrayStringA
MessageBoxIndirectA
GetDlgItemInt
LookupIconIdFromDirectory
InvalidateRgn
DestroyIcon
DrawStateW
OpenDesktopW
DdeKeepStringHandle
CreateIcon
FlashWindow
SetShellWindow
DialogBoxIndirectParamW
GetKeyboardLayout
CreateMenu
GetKeyNameTextA
WINNLSGetEnableStatus
CreateWindowStationA
CreateMDIWindowW
SetMenuItemBitmaps
GetKeyState
GetScrollBarInfo
LoadMenuIndirectA
DragDetect
GetUserObjectInformationA
ToAscii
SetWindowRgn
GetFocus
DdeCmpStringHandles
GetWindowTextLengthA
ScrollWindow
SetProcessWindowStation
DefFrameProcA
MessageBoxExA
DdeCreateDataHandle
GetMenuItemInfoA
EnumWindowStationsA
MenuItemFromPoint
ClientToScreen
TranslateAcceleratorA
UnionRect
CharToOemBuffA
DlgDirListComboBoxW
CharUpperBuffA
SetFocus
SetSysColors
GetDlgItemTextA
EnableScrollBar
WaitMessage
UnregisterHotKey
ShowScrollBar
IsClipboardFormatAvailable
BeginPaint
UnregisterDeviceNotification
EnumDisplaySettingsExA
DdeImpersonateClient
EnumDesktopsW
DdeSetUserHandle
ReleaseDC
SetDlgItemTextA
InSendMessage
DdeSetQualityOfService
SendIMEMessageExW
DdeInitializeA
SetMenuItemInfoW
DefWindowProcA
GetClipboardOwner
CharNextA
SetDlgItemTextW
CreateCursor
GetMessageExtraInfo
SetClipboardData
DlgDirSelectComboBoxExW
DeleteMenu
EnumDisplaySettingsExW
SetPropA
GetParent
OemToCharA
GetCapture
TabbedTextOutW
GetDC
GetActiveWindow
IsCharAlphaW
VkKeyScanW
IsRectEmpty
GetProcessWindowStation
SendMessageCallbackW
DispatchMessageA
MessageBoxExW
GetScrollRange
BroadcastSystemMessageA
CreateDialogIndirectParamW
TrackPopupMenu
GetCursorPos
CloseWindowStation
DrawTextW
SetWindowTextA
GetMenuStringA
CharNextExA
WaitForInputIdle
GetNextDlgGroupItem
IsMenu
EnumPropsExA
GetPropA
GetGUIThreadInfo
DdeGetLastError
GetMessagePos
CheckMenuItem
CreateAcceleratorTableW
LoadStringA
SendDlgItemMessageW
DdeClientTransaction
GetMenuItemInfoW
EnableWindow
TranslateAcceleratorW
GetKBCodePage
RegisterHotKey
DdeConnectList
DispatchMessageW
GetClipCursor
GetClassInfoExW
TranslateAccelerator
UnregisterClassA
CharLowerA
RemovePropA
SetWindowLongA
GetMessageW
CharUpperA
CallWindowProcA
MapVirtualKeyA
SendDlgItemMessageA
ImpersonateDdeClientWindow
SetDoubleClickTime
SetTimer
GetInputState
CharToOemW
GetGuiResources
SendIMEMessageExA
GetKeyboardType
NotifyWinEvent
WINNLSGetIMEHotkey
DefWindowProcW
SetWindowPlacement
RegisterClassExW
EndDeferWindowPos
GetMenuItemID
SetWindowPos
DrawCaption

Sections

.text
Size: 91KB - Virtual size: 91KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5036bdc4002bcb5cdc121402ddda8e8d

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

shlwapi

advapi32

ole32

user32

Sections

.text Size: 91KB - Virtual size: 91KB

.rdata Size: 36KB - Virtual size: 36KB

.data Size: 512B - Virtual size: 12KB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 91KB - Virtual size: 91KB

.rdata
Size: 36KB - Virtual size: 36KB

.data
Size: 512B - Virtual size: 12KB

.rsrc
Size: 2KB - Virtual size: 1KB