950a19194e2243fe3b7bd76336787e5d_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

950a19194e2243fe3b7bd76336787e5d_JaffaCakes118
Size

19KB
MD5

950a19194e2243fe3b7bd76336787e5d
SHA1

64b27e25a07fc8c1fd6c0f8fdda610a053e6c6e3
SHA256

cc88615801946dd80f94ce217073348cdb71ddc6b7ef11c7632e54465852713a
SHA512

67b64e7ec96fcee13d401b83e4b9737680be52437a46c8b86389d0b1427636d2f6cbfe1f467cf6dc453ac48ef4bccadbc492f040231a90cb46963d355bb00f8a
SSDEEP

384:U0qYE38hIxuA+Qjsh8KRJqf01Vpn4t3Bh:TKGIxR+lfzqkVp4t33

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
950a19194e2243fe3b7bd76336787e5d_JaffaCakes118

Files

950a19194e2243fe3b7bd76336787e5d_JaffaCakes118
.exe windows:5 windows x86 arch:x86

2cfc4299f3992b4c4b8e3ee8bacfcfc3

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BuildCommDCBAndTimeoutsW
ClearCommBreak
ClearCommError
CloseHandle
CompareStringA
CompareStringW
ContinueDebugEvent
CreateDirectoryExA
CreateHardLinkA
DeleteAtom
DeleteTimerQueue
DeleteVolumeMountPointW
EnumResourceLanguagesA
EnumSystemCodePagesA
ExitThread
FillConsoleOutputCharacterW
FindFirstFileExW
FindNextVolumeMountPointA
FlushInstructionCache
GetACP
GetAtomNameA
GetBinaryType
GetBinaryTypeA
GetCPInfo
GetCommTimeouts
GetComputerNameW
GetConsoleAliasesW
GetConsoleCP
GetCurrencyFormatW
GetCurrentThread
GetDiskFreeSpaceExW
GetEnvironmentStringsA
GetExitCodeProcess
GetLogicalDriveStringsW
GetModuleFileNameW
GetNamedPipeHandleStateA
GetPrivateProfileIntW
GetProcessShutdownParameters
GetStartupInfoA
GetStdHandle
GetSystemDefaultLCID
GetSystemInfo
GetSystemPowerStatus
GetThreadTimes
AreFileApisANSI
GetVolumeInformationW
GetVolumePathNameW
GlobalCompact
Heap32Next
HeapCompact
HeapUnlock
IsBadStringPtrW
IsDBCSLeadByteEx
IsSystemResumeAutomatic
LockFileEx
MapUserPhysicalPages
MoveFileW
OpenEventA
ReadConsoleA
ReadConsoleOutputA
ResumeThread
RtlFillMemory
SearchPathA
SetCommMask
SetCommState
SetComputerNameA
SetConsoleCursorInfo
SetConsoleOutputCP
SetDefaultCommConfigW
SetFileTime
SetHandleInformation
SetMailslotInfo
SetProcessPriorityBoost
SetTapePosition
SystemTimeToFileTime
TerminateThread
TlsGetValue
UnlockFileEx
VerLanguageNameA
VirtualAlloc
VirtualFree
VirtualQueryEx
WriteConsoleOutputCharacterW
WriteConsoleOutputW
WritePrivateProfileStructW
WriteProfileStringW
lstrcmpA
lstrcmpiW
lstrcpy
GetProcAddress
GetTimeFormatW
GetModuleHandleA

msvcrt

memset

user32

CloseClipboard
CloseWindowStation
CopyAcceleratorTableA
CreateIconFromResourceEx
CreateIconIndirect
CreateMDIWindowW
CreateWindowExA
DdeDisconnect
DdeDisconnectList
DdeQueryStringW
DefMDIChildProcA
DeferWindowPos
DestroyCaret
DestroyMenu
DestroyWindow
DialogBoxParamA
DlgDirListA
DlgDirSelectComboBoxExW
DragDetect
DrawFrame
DrawIcon
DrawIconEx
DrawMenuBar
DrawStateW
EnumDesktopsW
EnumDisplayMonitors
EnumWindowStationsW
EqualRect
ExitWindowsEx
GetCaretPos
GetClassInfoExA
GetClassLongW
GetClientRect
GetClipboardFormatNameA
GetClipboardViewer
GetDesktopWindow
GetKeyboardLayoutNameA
GetLastInputInfo
GetMenuDefaultItem
GetMenuItemInfoA
GetMenuStringW
GetProcessWindowStation
GetShellWindow
GetUserObjectInformationW
GrayStringA
HideCaret
IMPGetIMEW
IMPQueryIMEW
IMPSetIMEA
IMPSetIMEW
InSendMessage
IsCharAlphaNumericW
LoadCursorFromFileW
LoadImageA
LoadImageW
LoadMenuIndirectW
LoadMenuW
MapVirtualKeyExW
MessageBoxA
ModifyMenuW
MonitorFromWindow
OffsetRect
OpenClipboard
OpenIcon
PeekMessageA
PostMessageW
RealGetWindowClassW
RegisterClassW
RegisterDeviceNotificationA
ScreenToClient
SendDlgItemMessageA
SendIMEMessageExA
SendMessageW
SetCapture
SetDlgItemTextA
SetForegroundWindow
SetScrollRange
SetThreadDesktop
SetTimer
SetUserObjectInformationA
SetWindowLongA
SetWindowsHookExA
SubtractRect
SystemParametersInfoW
UnhookWindowsHook
UnloadKeyboardLayout
UnpackDDElParam
ValidateRgn
WinHelpA
WinHelpW
wsprintfW
CheckMenuItem

advapi32

RegOpenKeyExW
RegOpenKeyA

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text2
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 132B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2cfc4299f3992b4c4b8e3ee8bacfcfc3

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

advapi32

Sections

.text Size: 6KB - Virtual size: 6KB

.text2 Size: 9KB - Virtual size: 8KB

.data Size: 512B - Virtual size: 132B

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 6KB - Virtual size: 6KB

.text2
Size: 9KB - Virtual size: 8KB

.data
Size: 512B - Virtual size: 132B

.rsrc
Size: 2KB - Virtual size: 1KB