a50b55ec212c6802f5ded7ed13997760_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a50b55ec212c6802f5ded7ed13997760_JaffaCakes118
Size

179KB
MD5

a50b55ec212c6802f5ded7ed13997760
SHA1

5a5a64297c8e9a67fd5fa2f39a6614e45d0f31f0
SHA256

57acb17893d70ba8c4fc7dcc11e700305da6396d6d212d7e7a6038c944d5e6cd
SHA512

7bd8f1f8cb701aa802d75640ebd8eb1769b007419963393269703eff77991e85f4515fa0032a64bfb90cdd048286c67462a7b6f61211ad02fd5425bced48db70
SSDEEP

3072:DKj0qrDdN6akDtXGLJwwfk+JBArOvgrzeLtDNGFSV:OoGeodww8+JBA6YrK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a50b55ec212c6802f5ded7ed13997760_JaffaCakes118

Files

a50b55ec212c6802f5ded7ed13997760_JaffaCakes118
.exe windows:1 windows x86 arch:x86

979e327c20e0dbfe4c14d381ba094261

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
GetPrivateProfileSectionNamesW
GetVolumeInformationA
SetEndOfFile
FileTimeToSystemTime
_lcreat
FlushViewOfFile
GetSystemTime
WriteConsoleOutputA
LocalReAlloc
LocalCompact
OpenEventA
GlobalAlloc
GetVersionExA
GetStringTypeExA
GetDevicePowerState
LCMapStringA
VirtualAllocEx
TerminateJobObject
WriteConsoleA
BuildCommDCBAndTimeoutsA
GetVolumePathNamesForVolumeNameA
GetCommMask
FlushInstructionCache
ReadConsoleA
SetFilePointer
GetFileAttributesA
LZCopy
PeekNamedPipe
GetOEMCP
GetProfileIntA
SetDefaultCommConfigA
EndUpdateResourceA
LocalFlags
GetFileSizeEx
CreateDirectoryExA
SetConsoleDisplayMode
Process32First
IsValidLanguageGroup
WriteProcessMemory
lstrcmp
SetFilePointer
IsBadStringPtrA
SetConsoleMaximumWindowSize
GetWindowsDirectoryA
GetFullPathNameA
GetSystemWindowsDirectoryA
CreateSemaphoreA
IsBadCodePtr
ReplaceFileA
ReadConsoleOutputCharacterA
GetCurrentProcess
GetDefaultCommConfigA
DeleteTimerQueueTimer
GetConsoleTitleA
WriteProfileSectionA
GetCommandLineA
CancelTimerQueueTimer
lstrcmpA
GetSystemDirectoryA
GetProcessPriorityBoost
SetCommMask
CopyFileA
OpenJobObjectA
QueryPerformanceCounter
WritePrivateProfileStringA
UnregisterWait

user32

GetMenuState
GetWindowDC
PrivateExtractIconExA
LoadBitmapA
GetDC
SetMenuContextHelpId
FillRect
GetRawInputBuffer
PackDDElParam
DefWindowProcA
IsZoomed
SetPropA
DlgDirListComboBoxA
GetClipboardFormatNameA
GetMenuDefaultItem
DrawMenuBar
MenuWindowProcA
AdjustWindowRectEx
SetClassLongA
SetWindowPlacement
GetWinStationInfo
ChangeDisplaySettingsExA
PrintWindow
DrawEdge
ToAsciiEx
BeginDeferWindowPos
IsWindow
EnumDisplayDevicesA
TrackPopupMenuEx
DrawTextExA
GetDlgItemTextA
CreatePopupMenu
GetMenuItemID
GetMessageTime
PeekMessageA
GrayStringA
SetWindowRgn
SetKeyboardState
MoveWindow
GetAppCompatFlags2
PaintDesktop
CharPrevExA
MonitorFromRect
MenuWindowProcA
DrawAnimatedRects
CopyAcceleratorTableA
ReuseDDElParam
SetScrollPos
UpdateLayeredWindow
SetMenuContextHelpId
ScrollWindowEx
SendDlgItemMessageA
EndDeferWindowPos
GetKeyboardLayout
GetLastInputInfo
SetShellWindow
UpdateLayeredWindow
GetWindowRgn
GetRawInputBuffer
CreateDialogParamA
IsCharLowerA
CharLowerA
GetActiveWindow
MessageBoxExA
DeregisterShellHookWindow
AnyPopup

advapi32

AddAccessDeniedObjectAce

Sections

.text
Size: 51KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 93KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 33KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

979e327c20e0dbfe4c14d381ba094261

Headers

File Characteristics

Imports

kernel32

user32

advapi32

Sections

.text Size: 51KB - Virtual size: 52KB

.idata Size: 93KB - Virtual size: 96KB

.rsrc Size: 33KB - Virtual size: 36KB

.text
Size: 51KB - Virtual size: 52KB

.idata
Size: 93KB - Virtual size: 96KB

.rsrc
Size: 33KB - Virtual size: 36KB