8cf95cef1e24fd12a944e69f3e9c32aa_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

8cf95cef1e24fd12a944e69f3e9c32aa_JaffaCakes118
Size

133KB
MD5

8cf95cef1e24fd12a944e69f3e9c32aa
SHA1

f6f2eabafe1376f1c81e9ea29319bb00e7923f67
SHA256

5908a242069442f071b7fe0b7f2ddf9c6ffbadbbf7b66ed2d5ba84b3f8ca5243
SHA512

e429cc3dc329cca4d300a65d696743b2497e9f590e4cc3fd78605a645517d9cdc45070336587ae2d73b90b08176729e88ada0c761134064f3bd7eda4a66a5c46
SSDEEP

3072:+atrVMiOKPUcbmjdRr2B9pVINeMiwR79blXC2aDGfTq:+atZznmjdp8IsM5RXC2acO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8cf95cef1e24fd12a944e69f3e9c32aa_JaffaCakes118

Files

8cf95cef1e24fd12a944e69f3e9c32aa_JaffaCakes118
.exe windows:5 windows x86 arch:x86

0e0fb9f603e88e1fc4ca3d0b6d68adaf

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

GetFileTitleW
GetSaveFileNameW
FindTextW
PageSetupDlgW
PrintDlgExW
GetOpenFileNameW
ReplaceTextW
ChooseFontW
CommDlgExtendedError

kernel32

MapViewOfFile
GetLocaleInfoW
GetCurrentProcess
WideCharToMultiByte
InitializeCriticalSectionAndSpinCount
MultiByteToWideChar
GetUserDefaultLCID
GetModuleHandleA
GetFileInformationByHandle
ExitThread
SetFileAttributesW
GetConsoleMode
GetCurrentThreadId
GetStartupInfoA
EnumSystemLocalesA
CreateFileA
GetDateFormatW
FlushFileBuffers
LocalSize
OutputDebugStringA
GetLocaleInfoA
lstrcmpiW
QueryPerformanceCounter
SetEndOfFile
DeleteFileA
GetStdHandle
GetFileType
LCMapStringA
SetThreadPriority
LoadLibraryA
GetCommandLineA
OpenProcess
CreateMutexW
TerminateProcess
GetOEMCP
CreateFileW
CopyFileA
GetUserDefaultUILanguage
CreateFileMappingW
VirtualProtect
GetSystemDirectoryW
UnlockFile
GetVersionExA
FindFirstFileW
DeleteFileW
LocalLock
InitializeCriticalSection
WriteFile
MulDiv
QueryPerformanceFrequency
GlobalAlloc
EnterCriticalSection
InterlockedExchange
FreeLibrary
FileTimeToSystemTime
LocalUnlock
GetSystemTimeAsFileTime
ReadFile
GlobalLock
lstrcpyW
GetFileSize
GetACP
CloseHandle
FoldStringW
UnmapViewOfFile
lstrlenW
GetProcessHeap
RaiseException
CompareStringW
FindResourceW
GetTickCount
HeapFree
IsDebuggerPresent
TlsSetValue
FreeEnvironmentStringsA
GlobalFree
UnhandledExceptionFilter
LocalReAlloc
TlsFree
VirtualAlloc
CreateDirectoryW
OpenMutexA
SetUnhandledExceptionFilter
LoadResource
lstrcpynW
GetTimeFormatW
FindClose
RemoveDirectoryW
GetCommandLineW
GetFileAttributesW
LockResource
CreateDirectoryA
GetStringTypeA
GetThreadLocale
ExitProcess
lstrcmpW
LCMapStringW
SetLastError
lstrcatW
GetCurrentProcessId
LeaveCriticalSection
GetCurrentDirectoryW
GetModuleFileNameA
IsValidCodePage
GetLocalTime
RtlUnwind
TlsGetValue
HeapAlloc
Sleep
GlobalUnlock
GetModuleFileNameW
LocalAlloc
LocalFree
CreateEventW
LoadLibraryExA
FormatMessageW
GetProcAddress
GetEnvironmentStrings
GetLastError
CreateThread

user32

SetFocus
DrawTextExW
GetDesktopWindow
DestroyWindow
SendMessageW
SendMessageA
TrackPopupMenu
DispatchMessageA
wsprintfW
DestroyMenu
CreatePopupMenu
LoadStringW
IsDialogMessageW
CharUpperW
SetWindowPlacement
LoadCursorW
ScreenToClient
WinHelpW
GetCursorPos
GetSubMenu
GetDlgItem
RegisterClassExW
IsWindowVisible
SetWindowLongW
SendDlgItemMessageW
IsClipboardFormatAvailable
GetMenuState
CheckMenuItem
PostMessageW
DefWindowProcW
LoadImageW
PeekMessageW
SetWindowLongA
PostQuitMessage
CreateWindowExA
MessageBeep
ChildWindowFromPoint
CharNextW
GetDlgItemTextW
TranslateAcceleratorW
EnableMenuItem
GetClientRect
DialogBoxParamW
BeginPaint
MessageBoxW
GetWindowLongA
GetMenu
MessageBoxA
MapWindowPoints
RegisterWindowMessageW
EndDialog
GetWindowPlacement
CreateWindowExW
GetWindowRect
OpenClipboard
GetDlgCtrlID
GetWindowTextA
EnableWindow
SetWinEventHook
CreateDialogParamW
CharLowerW
SetDlgItemTextW
GetFocus
DispatchMessageW
GetDC
ShowWindow
DestroyIcon
RegisterWindowMessageA
GetForegroundWindow
LoadAcceleratorsW
GetWindowLongW
GetParent
GetWindowTextW
IsIconic
LoadCursorA
SetScrollPos
SetActiveWindow
SetCursor
GetSystemMetrics
CloseClipboard
SetPropA
GetKeyboardLayout
InvalidateRect
GetPropA
TranslateMessage
LoadIconW
MoveWindow
UnhookWinEvent
GetMessageW
SetWindowTextW
UpdateWindow
GetSystemMenu
DeleteMenu
RedrawWindow
ReleaseDC

gdi32

SetViewportExtEx
AbortDoc
DeleteDC
SelectObject
SetWindowExtEx
GetTextExtentPoint32W
DeleteObject
CreateFontIndirectW
SetBkMode
GetStockObject
SetMapMode
GetObjectW
EnumFontsW
CreateDCW
GetTextMetricsW
EndPage
TextOutW
EndDoc
SetAbortProc
GetTextFaceW
LPtoDP
StartDocW
GetDeviceCaps
StartPage

advapi32

RegQueryValueExA
RegQueryValueExW
RegCloseKey
RegOpenKeyExA
RegCreateKeyW
RegSetValueExW
IsTextUnicode

msvcrt

time
__CxxFrameHandler
_exit
__wgetmainargs
??0exception@@QAE@ABQBD@Z
__p__fmode
_cexit
__set_app_type
??0exception@@QAE@ABV0@@Z
__getmainargs
iswctype
_initterm
_adjust_fdiv
_onexit
wcsstr
localtime
_c_exit
_amsg_exit
isdigit
wcsncpy
wcschr
calloc
_acmdln
__setusermatherr
wcsncmp
_controlfp
?terminate@@YAXXZ
_snwprintf
exit
_wtol
_XcptFilter
__p__commode

winspool.drv

GetPrinterDriverW
OpenPrinterW
ClosePrinter

shell32

ShellAboutW
DragAcceptFiles
DragQueryFileW
DragFinish

comctl32

CreateStatusWindowW

Sections

.text
Size: 103KB - Virtual size: 102KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 117KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0e0fb9f603e88e1fc4ca3d0b6d68adaf

Headers

File Characteristics

Imports

comdlg32

kernel32

user32

gdi32

advapi32

msvcrt

winspool.drv

shell32

comctl32

Sections

.text Size: 103KB - Virtual size: 102KB

.data Size: 25KB - Virtual size: 117KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 103KB - Virtual size: 102KB

.data
Size: 25KB - Virtual size: 117KB

.rsrc
Size: 4KB - Virtual size: 3KB