afd06ba223b75090ae2d964ddf550b36_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

afd06ba223b75090ae2d964ddf550b36_JaffaCakes118
Size

288KB
MD5

afd06ba223b75090ae2d964ddf550b36
SHA1

328c5d93e49b2ad5661520805eeb51e312ae8bd4
SHA256

eb938c03f4246ed3d30320a4b69f348586e0ea60767a31eaa2ba4e08170abc74
SHA512

20cac062edeca69bb374ff7eeee1a5ebb7dc13c247288b2e8a6b1d262097820d31583fb937933a57db6d983c2736ebba1641cf27970b255cac64c5060c062985
SSDEEP

6144:KG8UTf0lNRcSnzFMfGBO8YvT35sPvbSl8:K2f0lNRcGFsGqjGzSi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
afd06ba223b75090ae2d964ddf550b36_JaffaCakes118

Files

afd06ba223b75090ae2d964ddf550b36_JaffaCakes118
.exe windows:4 windows x86 arch:x86

db26ec6fabee2d7e34b50818b8210e52

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileTime
SetErrorMode
FileTimeToSystemTime
FileTimeToLocalFileTime
RtlUnwind
HeapFree
HeapAlloc
GetTimeZoneInformation
GetSystemTime
GetLocalTime
GetStartupInfoA
GetCommandLineA
RaiseException
HeapReAlloc
HeapSize
GetACP
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
GetFileSize
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetFileAttributesA
GetProfileStringA
GetOEMCP
GetCPInfo
GetProcessVersion
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
SizeofResource
GlobalFlags
GetFullPathNameA
lstrcpynA
GetVolumeInformationA
FindClose
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
DuplicateHandle
MulDiv
SetLastError
GlobalAlloc
lstrcmpA
GetCurrentThread
LocalFree
MultiByteToWideChar
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
lstrlenA
GetVersion
lstrcatA
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GetProcAddress
GlobalDeleteAtom
GlobalLock
GlobalUnlock
GlobalFree
LockResource
FindResourceA
LoadResource
WritePrivateProfileStringA
GetPrivateProfileStringA
LoadLibraryA
GetModuleFileNameA
FindFirstFileA
FindNextFileA
lstrcpyA
GetLastError
CreateToolhelp32Snapshot
Process32First
lstrcmpiA
Module32First
Process32Next
GetModuleHandleA
CreateProcessA
ReadProcessMemory
FreeLibrary
GetTickCount
CreateThread
ExitProcess
Sleep
GetCurrentProcess
OpenProcess
TerminateProcess
CloseHandle

user32

GetMenuCheckMarkDimensions
GetCursorPos
ValidateRect
TranslateMessage
GetMessageA
PostQuitMessage
SetCursor
WindowFromPoint
ClientToScreen
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
CharUpperA
GetClassNameA
PtInRect
LoadCursorA
GetSysColorBrush
DestroyMenu
InflateRect
LoadStringA
InvalidateRect
MoveWindow
IsDialogMessageA
GetDC
ReleaseDC
PostMessageA
UpdateWindow
SendDlgItemMessageA
MapWindowPoints
GetSysColor
PeekMessageA
DispatchMessageA
GetFocus
SetFocus
AdjustWindowRectEx
ScreenToClient
LoadBitmapA
CopyRect
IsWindowVisible
GetTopWindow
GetCapture
wsprintfA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetWindowTextLengthA
GetDlgCtrlID
GetKeyState
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
GetWindow
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
GetNextDlgTabItem
EndDialog
LoadIconA
FindWindowA
GetWindowThreadProcessId
UnregisterClassA
HideCaret
ShowCaret
GetActiveWindow
SetActiveWindow
IsWindow
CreateDialogIndirectParamA
DestroyWindow
GetParent
GetWindowLongA
IsWindowEnabled
IsIconic
GetSystemMetrics
DrawIcon
EnableWindow
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
SetForegroundWindow
ShowWindow
MessageBoxA
UnhookWindowsHookEx
KillTimer
SendMessageA
GetClientRect
SetTimer
SetWindowTextA
GetDlgItem
ExcludeUpdateRgn
DrawFocusRect
DefDlgProcA
CharNextA
IsWindowUnicode
GetWindowTextA
WinHelpA

gdi32

SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
IntersectClipRect
DeleteObject
OffsetViewportOrgEx
GetDeviceCaps
CreateSolidBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
SetViewportOrgEx
SetMapMode
SetBkMode
GetStockObject
SelectObject
RestoreDC
SaveDC
DeleteDC
CreateBitmap
PatBlt
GetObjectA
SetBkColor
SetTextColor
GetClipBox
CreateDIBitmap
GetTextExtentPointA
BitBlt
CreateCompatibleDC

comdlg32

GetFileTitleA

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

LookupPrivilegeValueA
OpenProcessToken
RegCloseKey
RegCreateKeyExA
RegOpenKeyExA
RegSetValueExA
AdjustTokenPrivileges

shell32

ShellExecuteA

comctl32

ord17
ImageList_Destroy

wininet

InternetOpenA
InternetOpenUrlA
InternetReadFile
InternetCloseHandle

Sections

.text
Size: 124KB - Virtual size: 120KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vmp0
Size: 48KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 68B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

db26ec6fabee2d7e34b50818b8210e52

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

wininet

Sections

.text Size: 124KB - Virtual size: 120KB

.rdata Size: 28KB - Virtual size: 26KB

.data Size: 16KB - Virtual size: 33KB

.rsrc Size: 64KB - Virtual size: 63KB

.vmp0 Size: 48KB - Virtual size: 45KB

.reloc Size: 4KB - Virtual size: 68B

.text
Size: 124KB - Virtual size: 120KB

.rdata
Size: 28KB - Virtual size: 26KB

.data
Size: 16KB - Virtual size: 33KB

.rsrc
Size: 64KB - Virtual size: 63KB

.vmp0
Size: 48KB - Virtual size: 45KB

.reloc
Size: 4KB - Virtual size: 68B