afc0c1c270a391e56a122412724f129d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

afc0c1c270a391e56a122412724f129d_JaffaCakes118
Size

396KB
MD5

afc0c1c270a391e56a122412724f129d
SHA1

45965bfe9836afa877476594716fab2cba3a87fd
SHA256

5cb7fb0dda694860112cfa7bb12a4e6ceb388cbde0ebc67a7f9f02be3f7d08f9
SHA512

d2aa9141f538448196c7efd924c9e6725c2f15440a7596276d837e0aa740874905093df6e7d8835ade17c118b18f5ae090c081d79f06459761d762c5d655155c
SSDEEP

6144:nRtPZnqIeqXkADzYn49Zl70V19/pAXKm+9HzFN0w1zG4uel2Q9iXZ+Jbo3r7+VCY:nbZqI1XkaYwZDJ+9Hzj0w1WjPiC2dI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
afc0c1c270a391e56a122412724f129d_JaffaCakes118

Files

afc0c1c270a391e56a122412724f129d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3e0d9bc246c6d6416cb150f9bbd36c9e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

UpdateWindow
ShowWindow
IsWindow
GetClientRect
EnableWindow
InvalidateRect
PostQuitMessage
ReleaseDC
GetDlgItem
GetSubMenu
CreateWindowExA
ScreenToClient
SetFocus
GetParent
IsWindowVisible
GetWindow
SetCapture
SetTimer
DefWindowProcA
GetSystemMetrics
GetWindowLongA
SetForegroundWindow
LoadCursorA
GetDC
FillRect
SetWindowLongA
DrawTextA
DestroyWindow
CheckMenuItem
IsIconic
GetSysColor
MessageBoxA
LoadStringA
EndPaint
KillTimer
SetWindowPos
GetWindowRect
TranslateMessage
SetWindowTextA
EnableMenuItem
IsWindowEnabled
DispatchMessageA
PeekMessageA
EndDialog
BeginPaint
RegisterClassA
GetKeyState
SetCursor
LoadIconA
GetCursorPos
CallWindowProcA
SystemParametersInfoA
LoadBitmapA

oleaut32

VariantInit
SysAllocStringLen
SysStringLen
VariantClear

advapi32

RegDeleteValueA
RegQueryValueExA
RegDeleteKeyA
RegCreateKeyExA
OpenProcessToken
RegSetValueExW
RegCloseKey
RegSetValueExA
RegOpenKeyExA
RegDeleteValueW

ole32

CoUninitialize
CoTaskMemFree

gdi32

DeleteObject
SetBkColor
SelectObject
GetStockObject
BitBlt
CreateSolidBrush
SetTextColor
CreateCompatibleDC
SetBkMode
GetDeviceCaps
CreateFontIndirectA

version

GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA

kernel32

LCMapStringW
CreateDirectoryA
FindClose
GetVersionExA
GetConsoleOutputCP
WaitForSingleObject
HeapSize
VirtualQuery
HeapCreate
SetFileTime
InterlockedExchange
lstrlenW
InterlockedIncrement
InterlockedCompareExchange
GetThreadLocale
GetLocaleInfoA
GetCurrentProcess
ReleaseMutex
GetModuleFileNameW
FindFirstFileA
GetVersion
CreateThread
CreateFileW
GetExitCodeProcess
GetCurrentProcessId
GetLocalTime
GetTimeZoneInformation
SetErrorMode
TlsAlloc
GetLocaleInfoW
LCMapStringA
WideCharToMultiByte
GetWindowsDirectoryA
lstrcmpiA
MultiByteToWideChar
SetHandleCount
GetConsoleMode
CreateMutexA
DeleteFileA
FileTimeToSystemTime
GetSystemDirectoryA
GetDriveTypeA
GetACP
HeapAlloc
lstrcmpiW
GetFileAttributesW
SizeofResource
CompareStringA
MulDiv
LoadLibraryA
lstrlenA
GetEnvironmentStringsW
GetProcessHeap
GetFullPathNameA
GetLastError
GetEnvironmentVariableA
GetFileAttributesA
ExitProcess
FindResourceA
GetFileSize
HeapDestroy
InitializeCriticalSection
GetCurrentDirectoryA
CompareStringW
GetConsoleCP
ReadFile
DuplicateHandle
TerminateProcess
GlobalUnlock
SetUnhandledExceptionFilter
IsDebuggerPresent
FreeEnvironmentStringsW
GetProcAddress
FindNextFileA
GetStartupInfoA
SetEnvironmentVariableA
RaiseException
FlushFileBuffers
FileTimeToLocalFileTime
GetStringTypeW
SetFileAttributesA
QueryPerformanceCounter
IsBadReadPtr
SetEvent
GetSystemInfo
GetSystemTime
GlobalAlloc
DeleteCriticalSection
GetSystemTimeAsFileTime
VirtualFree
TlsFree
TlsSetValue
CloseHandle
SetStdHandle
LocalFree
InterlockedDecrement
SetLastError
UnmapViewOfFile
Sleep
GetCPInfo
WriteConsoleW
LocalAlloc
WritePrivateProfileStringA
IsValidCodePage
FindNextFileW
SetCurrentDirectoryA
WriteConsoleA
FreeEnvironmentStringsA
GetEnvironmentStrings
EnterCriticalSection
lstrcpynA
VirtualAlloc
HeapFree
HeapReAlloc
TlsGetValue
LeaveCriticalSection
WriteFile
GetOEMCP
DeleteFileW
GetCommandLineA
ResetEvent
GetStdHandle
CreateEventW
GetStringTypeA
FreeLibrary
LoadLibraryExW
GetCurrentThread
CreateProcessA
MapViewOfFile
GetFileType
ExpandEnvironmentStringsA
CreateEventA
FormatMessageA
GetTempPathA
GetTickCount
GetCurrentThreadId
WaitForMultipleObjects
SetEndOfFile
CreateFileMappingA
SetFilePointer
FormatMessageW
CreateFileA
FindFirstFileW
UnhandledExceptionFilter
GetCommandLineW
GetModuleFileNameA
LoadLibraryW
LockResource
LoadResource
GetModuleHandleW
GetModuleHandleA

msvcrt

_controlfp

Sections

uigkom
Size: 392KB - Virtual size: 390KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

3e0d9bc246c6d6416cb150f9bbd36c9e

Headers

File Characteristics

Imports

user32

oleaut32

advapi32

ole32

gdi32

version

kernel32

msvcrt

Sections

uigkom Size: 392KB - Virtual size: 390KB

uigkom
Size: 392KB - Virtual size: 390KB