a201efe83865f56f9b20f77993c5bfa8_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a201efe83865f56f9b20f77993c5bfa8_JaffaCakes118
Size

264KB
MD5

a201efe83865f56f9b20f77993c5bfa8
SHA1

d0f72e2b0c2938f161882e510238050fd7443b3b
SHA256

fbe21386d430b8a7997b042ba89b373585d3c5f1da967b02f4ad96afed0565ae
SHA512

a4dbe88a11d611ccc905e65cbe764cb65e7f41f7a020373e8cfadc2c70db4e45f246f21af49cad624e932229bd55820a825c56e3b47f7c13ecdde19f9acbfca9
SSDEEP

6144:6zpIT9mZ7acEGhFpwTMhxYlNqqogDkbO/SkF/a/0uFR/6q79:qwc7a4hooxDAkbOaMa/0o/z9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a201efe83865f56f9b20f77993c5bfa8_JaffaCakes118

Files

a201efe83865f56f9b20f77993c5bfa8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5493ecdcd746b846d41ba4697387c0be

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

EnumTimeFormatsA
GetSystemDefaultLCID
GetLongPathNameW
OpenMutexA
SetComputerNameW
MoveFileA
EnumDateFormatsW
IsValidLocale
SetCurrentDirectoryW
GlobalAlloc
GetHandleInformation
CreateDirectoryW
AddAtomA
GetExitCodeThread
GetExitCodeProcess
ReadDirectoryChangesW
CreateDirectoryA
CreateMailslotW
DuplicateHandle
SetCalendarInfoW
GetWindowsDirectoryA
GetSystemDirectoryA
GetProcAddress
SearchPathA
GetSystemInfo
GetModuleHandleA
ReplaceFileA
SetErrorMode
GetModuleHandleA
FreeLibrary
ReplaceFileW
GetAtomNameW
SetLocaleInfoA
SetEvent
GetModuleFileNameW
WaitForSingleObject
lstrlenW
TlsAlloc
MoveFileW
lstrcmpiA
OpenWaitableTimerA
IsBadCodePtr
EnumCalendarInfoW
GlobalFindAtomW
GetMailslotInfo
GetVolumeInformationW
lstrcmpA
GetExpandedNameW
FindAtomW
lstrcpy
GetStartupInfoW
AddAtomW
lstrcpyW
GetEnvironmentVariableA
OpenSemaphoreW
lstrcatW
LoadResource
EnumDateFormatsA
GetLogicalDriveStringsA
CompareFileTime
FindResourceA
OpenEventW
Beep
lstrcpyn
GetVersion
GetCPInfo
GetModuleHandleW
FindResourceW
GetShortPathNameW
GetTempPathA
CreateSemaphoreW
GetLogicalDrives
GetTimeFormatA
GetCurrentThreadId

user32

MessageBoxIndirectA
LoadCursorA
OpenClipboard
RemoveMenu
MonitorFromPoint
keybd_event
GetCaretPos
CreateDialogParamA
MonitorFromWindow
GetKeyboardLayout
IsMenu
CreateDesktopW
GetMessageW
GetMenuItemInfoW
GetClassInfoA
CreateWindowExW
TrackPopupMenuEx
GetClassInfoW
DefWindowProcW
MessageBoxA
DialogBoxParamA
SetCursor
ShowCursor
GetSystemMetrics
LoadCursorW
CopyIcon
LoadImageA
GetCapture
CreateDesktopA
IsIconic
LoadMenuA
CreateDialogParamW
GetMenuItemCount
GetDlgItemInt
CreateDialogIndirectParamA
CharPrevA
SetWindowTextW
AdjustWindowRect
SendMessageW
mouse_event
GetActiveWindow
ShowWindow
GetSysColor
GetScrollPos
GetForegroundWindow
GetKeyboardType
InsertMenuItemW
RegisterWindowMessageA
LoadBitmapA
PostQuitMessage
DialogBoxParamW
GetDlgItemTextA
SetWindowPos
SetWindowTextA
wsprintfA
DialogBoxIndirectParamW
CharNextW
WaitMessage
CreatePopupMenu
MonitorFromRect
AppendMenuW
wvsprintfW
CharPrevW
SetTimer
DestroyIcon
RegisterWindowMessageW
SetFocus
SetActiveWindow
GetCursorPos
CheckMenuItem
GetFocus
ShowCaret
EndMenu
InvalidateRect
SendDlgItemMessageW
CreateAcceleratorTableA
SetWindowLongW
UnregisterClassA
GetSubMenu
EmptyClipboard

gdi32

GetRasterizerCaps
GetStockObject
UpdateICMRegKeyW
SetMetaFileBitsEx
RemoveFontResourceW
CreateDIBPatternBrushPt
CreateScalableFontResourceW
GetTextExtentPointW
CreateColorSpaceA
CreateFontIndirectW
CreateFontW
CreatePatternBrush
CreatePolygonRgn
CreateFontIndirectA
GetTextExtentPointA
GetMetaFileW
SelectBrushLocal
CreateBitmap
CreateDIBSection
UpdateICMRegKeyA
CreateCompatibleDC
GdiGetBatchLimit
CreateEllipticRgn
ExtCreateRegion
TranslateCharsetInfo
CreateICW
AddFontResourceA
CreateBitmapIndirect
CreateRoundRectRgn
CreateScalableFontResourceA
RemoveFontResourceExW
DeleteObject
CreateMetaFileA
CreateColorSpaceW
GetMetaFileA
CreateFontA
CreateICA

advapi32

OpenEventLogA
IdentifyCodeAuthzLevelW
SetSecurityDescriptorDacl
LsaICLookupSids

version

VerFindFileW
VerInstallFileW
VerInstallFileA
VerLanguageNameW
GetFileVersionInfoW
GetFileVersionInfoSizeW
VerFindFileA
VerQueryValueA

mprapi

MprAdminMIBEntryCreate
MprAdminInterfaceTransportAdd
MprAdminTransportGetInfo
MprInfoDuplicate
MprDomainQueryRasServer
MprConfigServerConnect
MprInfoBlockAdd
MprConfigBufferFree
MprAdminConnectionClearStats
MprAdminTransportSetInfo
MprDomainRegisterRasServer
MprAdminGetErrorString
MprConfigTransportEnum
MprAdminRegisterConnectionNotification
RasPrivilegeAndCallBackNumber
MprConfigInterfaceTransportEnum
MprAdminInterfaceGetHandle
MprConfigTransportGetHandle
MprAdminInterfaceGetCredentialsEx
MprConfigInterfaceTransportAdd
MprAdminMIBServerConnect
MprConfigServerInstall
MprInfoBlockAdd

crypt32

CryptGetDefaultOIDDllList
I_CertUpdateStore
I_CryptFindLruEntry
CertSerializeCRLStoreElement
CryptMsgCountersign
CertVerifyCertificateChainPolicy

Sections

.text
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.C
Size: 111KB - Virtual size: 164KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 5KB - Virtual size: 276KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 6KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.srgyuO
Size: 112KB - Virtual size: 189KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 4KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5493ecdcd746b846d41ba4697387c0be

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

version

mprapi

crypt32

Sections

.text Size: 12KB - Virtual size: 12KB

.C Size: 111KB - Virtual size: 164KB

.edata Size: 5KB - Virtual size: 276KB

.rdata Size: 6KB - Virtual size: 22KB

.data Size: 5KB - Virtual size: 93KB

.srgyuO Size: 112KB - Virtual size: 189KB

.edata Size: 4KB - Virtual size: 120KB

.rsrc Size: 6KB - Virtual size: 5KB

.reloc Size: 1KB - Virtual size: 4KB

.text
Size: 12KB - Virtual size: 12KB

.C
Size: 111KB - Virtual size: 164KB

.edata
Size: 5KB - Virtual size: 276KB

.rdata
Size: 6KB - Virtual size: 22KB

.data
Size: 5KB - Virtual size: 93KB

.srgyuO
Size: 112KB - Virtual size: 189KB

.edata
Size: 4KB - Virtual size: 120KB

.rsrc
Size: 6KB - Virtual size: 5KB

.reloc
Size: 1KB - Virtual size: 4KB