aab8cb3614db1b9b55be3d8da6e7fd96_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

aab8cb3614db1b9b55be3d8da6e7fd96_JaffaCakes118
Size

288KB
MD5

aab8cb3614db1b9b55be3d8da6e7fd96
SHA1

b0016af5dd539cdf24f93d2e97f7e97d562f0ea4
SHA256

97822675f96a9488c3cc93b3d9cb822f200a3a6b96ec7dbb8ccdbff4480fc8ff
SHA512

d2ca321b582bd449e05b7a465dcefb60b4ece97b2a0cb808eb70bb52212a9831391081aa1bdd59672457e14b35182ddf9a39f99ac914b3525365b04576350c8f
SSDEEP

6144:PNvXCZFK5BW12tdYxg9yNBFrLDtEFFmVBFIoEks5gh31/FxeptGBSa:NXCZI5BWg5ofD+qBuvzSXdK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
aab8cb3614db1b9b55be3d8da6e7fd96_JaffaCakes118

Files

aab8cb3614db1b9b55be3d8da6e7fd96_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b65da0058a51ff2944d8aeba30752338

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcessIoCounters
HeapSize
CloseHandle
ExpungeConsoleCommandHistoryA
WideCharToMultiByte
WriteConsoleOutputCharacterA
GetDiskFreeSpaceA
GetLocalTime
VirtualAllocEx
GetSystemTimeAdjustment
SetConsoleNumberOfCommandsA
GetConsoleAliasA
GetLogicalDriveStringsA
GetDiskFreeSpaceExA
SetConsoleCP
OutputDebugStringA
lstrcatA
GetTempPathA
GetProcessVersion
GetConsoleMode
GetConsoleOutputCP
WriteConsoleOutputA
GetProcessHeap
SetConsoleOutputCP
HeapDestroy
GetCurrentProcess
GetCPInfo
GetEnvironmentStringsA
_lwrite
GetProcessVersion
EndUpdateResourceA
FreeEnvironmentStringsA
CreateFileMappingA
GetStartupInfoA
OpenJobObjectA
OpenFileMappingA
GetProfileSectionA
GetThreadSelectorEntry
SetConsoleHardwareState
VirtualAllocEx
DuplicateHandle
HeapReAlloc
GetUserGeoID
ReleaseSemaphore
OpenSemaphoreA
ReadConsoleInputA
lstrcpy
CallNamedPipeA
IsWow64Process
CancelWaitableTimer
ProcessIdToSessionId
GetConsoleMode
GetVersionExA
GetConsoleCP
GetConsoleFontInfo
GetCommModemStatus
SetConsoleTitleA
HeapSize
SetCalendarInfoA
GetFileAttributesExA
GetExitCodeProcess
GlobalSize
GetMailslotInfo
OpenThread
FindNextFileA
GetThreadPriority
HeapSize
GetCommMask
ClearCommError
GetCurrentThread
GetSystemDirectoryA
lstrcmpiA
LoadLibraryExA
FindFirstVolumeA
OpenMutexA
GetFullPathNameA
MoveFileExA
OpenProcess
GetWindowsDirectoryA
GetTickCount
GetCurrentConsoleFont
MapUserPhysicalPagesScatter
ReadConsoleA
GetLogicalDriveStringsA
FindCloseChangeNotification
GetTapeParameters
IsBadReadPtr
Heap32ListFirst
GetConsoleOutputCP
LocalAlloc
_lopen
UnregisterWaitEx

winmm

timeGetSystemTime

user32

AttachThreadInput
GetKeyboardState
OpenClipboard
IntersectRect
IsWinEventHookInstalled
EmptyClipboard
SetWindowTextA
GetMenu
GetUserObjectSecurity
DrawIcon
GetMenuState
IsDialogMessageA
CharPrevExA
CreateDialogIndirectParamA
GetKeyboardLayoutNameA
SendMessageA
SetWindowTextA
GetDCEx
DestroyWindow
InSendMessage
GetWindowTextA
EnumDesktopsA
ReplyMessage
EnumThreadWindows
CreatePopupMenu
EnableMenuItem
RegisterHotKey
PeekMessageA
GetClassLongA
SetRectEmpty
GetKeyNameTextA
RegisterTasklist
GetWindowRgn
GetGuiResources
LoadCursorFromFileA
SetDlgItemTextA
PrivateExtractIconExA
CloseClipboard
GetGUIThreadInfo
HideCaret
GetMessageTime
IsServerSideWindow
InSendMessageEx
LoadImageA
GetWindowThreadProcessId
GetWindowTextLengthA
LoadCursorFromFileW
GetAncestor
DialogBoxParamA
MapDialogRect
LoadImageA
GetThreadDesktop
GrayStringA
GetInputState
SetMenu
GetAsyncKeyState
LockSetForegroundWindow
SendDlgItemMessageA
CharNextExA
LockWorkStation
SetSysColors
ShowWindow
GetUpdateRgn
GetTitleBarInfo
GetProcessWindowStation
ReasonCodeNeedsComment
GetMenuItemRect
GetSystemMenu
LoadCursorFromFileW
GetKBCodePage
GetMessageTime
CheckMenuItem
SystemParametersInfoA
LockWindowStation
GetFocus
EnumChildWindows
UpdateWindow
EnumDisplaySettingsA
MessageBoxExA
DrawStateA
SetParent

Sections

.idata
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.itext
Size: 272KB - Virtual size: 272KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b65da0058a51ff2944d8aeba30752338

Headers

File Characteristics

Imports

kernel32

winmm

user32

Sections

.idata Size: - Virtual size: 3KB

.itext Size: 272KB - Virtual size: 272KB

.idata Size: 8KB - Virtual size: 4KB

.rsrc Size: 4KB - Virtual size: 1KB

.idata
Size: - Virtual size: 3KB

.itext
Size: 272KB - Virtual size: 272KB

.idata
Size: 8KB - Virtual size: 4KB

.rsrc
Size: 4KB - Virtual size: 1KB