93e1af136aaa635c19382536bd5aaafc_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

93e1af136aaa635c19382536bd5aaafc_JaffaCakes118
Size

130KB
MD5

93e1af136aaa635c19382536bd5aaafc
SHA1

958b46ef3e4f287910912792a9f173c096bd4509
SHA256

f02ca187b3af5593272aa8fde3fb81e4ceae742adda1966c0185273742ee0901
SHA512

f103e4d60e3605b1e8197909cde6a0e7ee691078bd926f65581eadd4377087031914adf683f496b0d88238868675556cf33f847744dd632c85de2fa31b62d9b2
SSDEEP

3072:uOlpP5xIFYehdm+ccOJ6B85a73bmkIIBRG8N6+32ZomDgGXRo74:uOlpTAYz7C8CbIIBU8k+GjiU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
93e1af136aaa635c19382536bd5aaafc_JaffaCakes118

Files

93e1af136aaa635c19382536bd5aaafc_JaffaCakes118
.exe windows:2 windows x86 arch:x86

79c47e55a8b980b8ae039307e0433cec

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalHandle
MultiByteToWideChar
GetLastError
SetSystemTimeAdjustment
ReleaseSemaphore
GetStartupInfoA
GetOEMCP
GetCommandLineA
GetFileAttributesExW
LocalShrink
FreeEnvironmentStringsW
GlobalMemoryStatus
ReadConsoleW
SleepEx
TerminateProcess
FindNextFileW
WideCharToMultiByte
SetFileShortNameA
RtlMoveMemory
FileTimeToSystemTime
TermsrvAppInstallMode
GetEnvironmentStringsW
GetExpandedNameW
ReadFile
IsDBCSLeadByte
HeapFree
MoveFileExW
HeapCreate
HeapAlloc
GetNumberFormatW
CloseHandle
ReadConsoleOutputCharacterA
GetStartupInfoA
LZCopy
GetCPInfo
GetTempFileNameA
DeleteAtom
HeapDestroy
ExitProcess
GetStdHandle
VirtualAllocEx
FreeEnvironmentStringsA
WaitForMultipleObjects
GetConsoleAliasExesW
HeapCompact
RemoveDirectoryW
GetNumaAvailableMemoryNode
GetLogicalDriveStringsW
SetHandleCount
SetPriorityClass
CreateDirectoryW
SetLocalTime
WriteConsoleInputVDMW
GetConsoleCommandHistoryW
WriteConsoleOutputA
ReadConsoleOutputA
GetCurrentActCtx
GetVersion
EnumDateFormatsExW
VirtualQueryEx
SizeofResource
GetACP
GetStringTypeW
FindNextVolumeA
GetConsoleOutputCP
FindCloseChangeNotification
GetStringTypeA
Module32FirstW
GetCurrentProcess
LocalUnlock
GetFileType
CreateSemaphoreW

user32

EndDeferWindowPos
SetRect
LookupIconIdFromDirectoryEx
SetWindowLongW
EnumWindows
IMPGetIMEA
GetWindowTextW
GetQueueStatus
RegisterDeviceNotificationW
IsCharAlphaA
SetLastErrorEx
DeregisterShellHookWindow
DefRawInputProc
ToAsciiEx
MessageBoxA
VkKeyScanExW
AdjustWindowRect
UnhookWindowsHook
GetDlgItemTextA
CloseClipboard
SetClassLongA
GetParent
GetActiveWindow
BroadcastSystemMessage
GrayStringW
SetKeyboardState
MonitorFromWindow
GetMessageA
SetClipboardData
FreeDDElParam
CallMsgFilterW
GetClassInfoExW
DrawIcon
UnionRect
UnloadKeyboardLayout
EnumWindowStationsW
GetMonitorInfoA
EnumDisplayMonitors
PaintDesktop
ScrollWindowEx
PrivateExtractIconExW
EqualRect
GetMessageTime
InvertRect
MessageBoxW
MsgWaitForMultipleObjects
ShowCursor
wvsprintfW
DialogBoxIndirectParamW
CharUpperA
DlgDirSelectExA
SoftModalMessageBox
RegisterMessagePumpHook
ShowOwnedPopups
PrintWindow
UpdatePerUserSystemParameters
SendMessageTimeoutW

cmutil

CmAtolA
CmEndOfStrW
CmFree
CmLoadSmallIconW
CmRealloc
CmLoadSmallIconA

Sections

.text
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.PsUcsy
Size: 3KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.KwlL
Size: 3KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 6KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.G
Size: 2KB - Virtual size: 47KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 97KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

79c47e55a8b980b8ae039307e0433cec

Headers

File Characteristics

Imports

kernel32

user32

cmutil

Sections

.text Size: 13KB - Virtual size: 12KB

.PsUcsy Size: 3KB - Virtual size: 10KB

.rdata Size: 4KB - Virtual size: 3KB

.KwlL Size: 3KB - Virtual size: 13KB

.data Size: 6KB - Virtual size: 13KB

.G Size: 2KB - Virtual size: 47KB

.rsrc Size: 97KB - Virtual size: 96KB

.text
Size: 13KB - Virtual size: 12KB

.PsUcsy
Size: 3KB - Virtual size: 10KB

.rdata
Size: 4KB - Virtual size: 3KB

.KwlL
Size: 3KB - Virtual size: 13KB

.data
Size: 6KB - Virtual size: 13KB

.G
Size: 2KB - Virtual size: 47KB

.rsrc
Size: 97KB - Virtual size: 96KB