adc08f038a5bd7cf20e684b22acde4d5_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

adc08f038a5bd7cf20e684b22acde4d5_JaffaCakes118
Size

155KB
MD5

adc08f038a5bd7cf20e684b22acde4d5
SHA1

cf0a301d4b6b15da8a72a3e88b4112620329316f
SHA256

524eb9ffb2c4b7f69f3d7b83445ddbb2cbf7135b3de9c729677b607b5504aa1e
SHA512

a1768059be35038acd2e30b4e3a9bd7a6dc95520271776eb0c0d4df710e81392466eb751bacc97ce96a9f44c9e941161249fe6534bf6f95d806e593abac661da
SSDEEP

3072:cS6ubAGbOudNrZaWsb9q6Q3iTLEKDVPJ93pqq96qKgHgyO31P:96MfXro9q6UiTQm93Ii6wFO3x

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
adc08f038a5bd7cf20e684b22acde4d5_JaffaCakes118

Files

adc08f038a5bd7cf20e684b22acde4d5_JaffaCakes118
.exe windows:2 windows x86 arch:x86

2c803823eb214d239a296b2862f3b9a4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegQueryValueExW
RegSetValueExW
RegOpenKeyW
RegCloseKey
RegOpenKeyExW
RegDeleteValueW
RegCreateKeyExW
RegOpenKeyExA
RegQueryValueExA

kernel32

RtlUnwind
GetLogicalDriveStringsW
GlobalHandle
lstrcmpW
SetConsoleHardwareState
GetTimeFormatW
SetupComm
GetOEMCP
HeapLock
VirtualAllocEx
SetLocalPrimaryComputerNameW
UnhandledExceptionFilter
LockResource
IsSystemResumeAutomatic
VirtualFree
CancelIo
EnumResourceLanguagesA
ReadConsoleOutputAttribute
GetFirmwareEnvironmentVariableA
WinExec
ReplaceFileW
CreateFileW
HeapFree
CreateHardLinkW
GetEnvironmentStringsW
LockResource
lstrcpynW
GetVolumeInformationA
GetCommandLineA
FindNextFileW
FreeEnvironmentStringsW
DebugSetProcessKillOnExit
SizeofResource
GetThreadTimes
ConvertThreadToFiber
HeapAlloc
GetLocaleInfoA
GetConsoleAliasExesA
GetACP
GetGeoInfoW
LCMapStringA
TerminateThread
GlobalReAlloc
FreeEnvironmentStringsA
GetConsoleOutputCP
LCMapStringW
HeapCreate
GetStdHandle
GetPrivateProfileSectionNamesW
GlobalUnlock
lstrcpyW
GlobalLock
InterlockedPushEntrySList
EnumResourceNamesA
FindResourceW
LocalAlloc
HeapSummary
GetStringTypeA
CloseHandle
HeapReAlloc
FindFirstChangeNotificationW
GetVDMCurrentDirectories
LocalFree
GetStartupInfoA
VirtualQuery
PostQueuedCompletionStatus
SetConsoleTextAttribute
SetFileAttributesA
GetSystemInfo
SetHandleCount
GetConsoleKeyboardLayoutNameA
LoadResource
GetTempPathW
Process32FirstW
ExitProcess
GetFileType
GetPriorityClass
WideCharToMultiByte
GetLastError
GetCPInfo
GetDiskFreeSpaceA
SetHandleInformation
OpenJobObjectW
GetProcessHeap
HeapQueryInformation
MultiByteToWideChar
ConvertFiberToThread
GlobalFree
HeapDestroy
FreeLibrary
FindResourceExA
SetConsoleKeyShortcuts
GlobalAlloc
GetStringTypeW
GetVersionExA
CreateEventA

gdi32

CreateCompatibleBitmap
CreateSolidBrush
CreateCompatibleDC
BitBlt
DeleteObject
SelectObject
DeleteDC

user32

IsDialogMessageW
CreateDialogIndirectParamW
RemovePropW
OffsetRect
IsWindow
UnregisterDeviceNotification
EndDialog
SetScrollPos
InvalidateRect
GetMonitorInfoW
GetSysColor
BeginPaint
SetWindowLongW
SetScrollInfo
CheckMenuItem
DestroyIcon
GetPropW
DialogBoxParamW
GetWindowTextW
CreateWindowExW
SubtractRect
EnableWindow
SetWindowPos
GetWindowRect
DefWindowProcW
DefDlgProcW
CheckRadioButton
KillTimer
DispatchMessageW
MapWindowPoints
LoadIconW
SendMessageW
LoadStringW
TranslateAcceleratorW
EnableMenuItem
DrawEdge
IsWindowEnabled
PostQuitMessage
SetWindowTextW
LoadCursorW
ShowWindow
GetDesktopWindow
IsIconic
MoveWindow
GetCursorPos
GetSystemMetrics
EndPaint
GetWindowLongW
FillRect
MonitorFromRect
LoadImageW
SetForegroundWindow
DestroyWindow
PostMessageW
GetFocus
GetDlgCtrlID
MonitorFromPoint
IsDlgButtonChecked
SetWindowsHookW
TranslateMessage
SetPropW
RegisterClassW
wsprintfW
UnhookWindowsHook
WinHelpW
GetClientRect
GetMessageW
GetForegroundWindow
FindWindowW
MessageBoxW
ScrollWindowEx
SetFocus
RegisterDeviceNotificationW
LoadAcceleratorsW
GetUpdateRect
GetWindow

shell32

ShellAboutW

winmm

PlaySoundW
mixerGetDevCapsW
mixerGetID
timeSetEvent
mixerSetControlDetails
waveOutMessage
mixerGetNumDevs
mixerGetControlDetailsW
waveInGetNumDevs
midiOutGetDevCapsW
timeKillEvent
mixerGetLineInfoW
mixerOpen
waveInMessage
auxGetDevCapsW
waveOutGetDevCapsW
mixerClose
auxGetNumDevs
mixerMessage
waveOutGetNumDevs
midiOutGetNumDevs
mixerGetLineControlsW

comctl32

ord17

setupapi

SetupDiOpenDevRegKey
SetupDiGetDeviceInterfaceDetailW
SetupDiOpenDeviceInterfaceW
SetupDiDestroyDeviceInfoList
SetupDiCreateDeviceInfoList

secur32

MakeSignature
AddSecurityPackageA
FreeCredentialsHandle
AcquireCredentialsHandleW
LsaFreeReturnBuffer
CredMarshalTargetInfo
EnumerateSecurityPackagesW

wininet

InternetReadFileExA
GetUrlCacheConfigInfoW
UnlockUrlCacheEntryStream
UpdateUrlCacheContentPath
InternetCanonicalizeUrlW
FtpOpenFileW
InternetAutodial
SetUrlCacheEntryInfoA
InternetGoOnlineA
InternetCheckConnectionW
InternetCombineUrlA
InternetGetLastResponseInfoW
InternetFindNextFileW
InternetFindNextFileA
InternetOpenA
InternetCloseHandle
IsUrlCacheEntryExpiredA

Sections

.text
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.uUQxS
Size: 2KB - Virtual size: 13KB

IMAGE_SCN_MEM_READ

.jIKDp
Size: 2KB - Virtual size: 47KB

IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.JfXrPb
Size: 2KB - Virtual size: 47KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rYdX
Size: 2KB - Virtual size: 18KB

IMAGE_SCN_MEM_READ

.rsrc
Size: 113KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2c803823eb214d239a296b2862f3b9a4

Headers

File Characteristics

Imports

advapi32

kernel32

gdi32

user32

shell32

winmm

comctl32

setupapi

secur32

wininet

Sections

.text Size: 14KB - Virtual size: 14KB

.uUQxS Size: 2KB - Virtual size: 13KB

.jIKDp Size: 2KB - Virtual size: 47KB

.rdata Size: 7KB - Virtual size: 6KB

.JfXrPb Size: 2KB - Virtual size: 47KB

.data Size: 8KB - Virtual size: 22KB

.rYdX Size: 2KB - Virtual size: 18KB

.rsrc Size: 113KB - Virtual size: 112KB

.text
Size: 14KB - Virtual size: 14KB

.uUQxS
Size: 2KB - Virtual size: 13KB

.jIKDp
Size: 2KB - Virtual size: 47KB

.rdata
Size: 7KB - Virtual size: 6KB

.JfXrPb
Size: 2KB - Virtual size: 47KB

.data
Size: 8KB - Virtual size: 22KB

.rYdX
Size: 2KB - Virtual size: 18KB

.rsrc
Size: 113KB - Virtual size: 112KB