b2f9619812c7c91431546b7ee6f13139_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b2f9619812c7c91431546b7ee6f13139_JaffaCakes118
Size

352KB
MD5

b2f9619812c7c91431546b7ee6f13139
SHA1

16650ead47b2dcff877464b3f293e832b2515966
SHA256

997c83a406dc325c423d36cdd715e9d31b27148e50582707f0ec8efca860a2ae
SHA512

42339f9469ca97993953aa83f8f84f101a7f2595eec8aa44ab78e57240fdd0deb22d058467c8e61168ae8853c0bafd90eb7e6b7cc3c35acfbcf2fc6e499a41be
SSDEEP

3072:ePxPsHhXEaXreUZuDmNjJZu14xKjltOuA+vM3/2YK76/q+Boucfr:ctsHhreUZomvZeZjyudkuYK78uXj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b2f9619812c7c91431546b7ee6f13139_JaffaCakes118

Files

b2f9619812c7c91431546b7ee6f13139_JaffaCakes118
.exe windows:4 windows x86 arch:x86

019a188b568cddcb715b091d22745040

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

user32

GetWindowLongW
TranslateMessageEx
SetScrollInfo
KillTimer
CharUpperW
GetDC
GetAppCompatFlags2
GetDC
TranslateMessage
GetUserObjectInformationW
ReleaseDC
SetScrollInfo
GetAppCompatFlags2
SetScrollInfo
GetSystemMetrics
GetSysColorBrush
GetDC
ReleaseDC
GetSystemMetrics
RegisterWindowMessageA
GetSystemMetrics
GetWindowLongW
TranslateMessageEx
GetWindowLongW
CharUpperW
CharUpperW
ReleaseDC
CharUpperA
GetUserObjectInformationW
TranslateMessageEx
DispatchMessageW
GetWindowDC
GetWindowLongW
GetAppCompatFlags2
TranslateMessage
GetDC
SetScrollInfo
GetSysColorBrush
GetSysColorBrush
PostMessageW
GetAppCompatFlags2
GetProcessWindowStation
SetScrollInfo
CharUpperA
GetSystemMetrics
TranslateMessage
GetUserObjectInformationW
DispatchMessageW
GetSystemMetrics
GetUserObjectInformationW
ReleaseDC
GetUserObjectInformationW
CharUpperA
GetSysColor
SetTimer
GetSysColorBrush
CharUpperW
GetWindowLongW
GetSysColorBrush
CharUpperA
GetAppCompatFlags2
GetSysColor
GetDC
CharUpperA
GetDC
GetDC
ReleaseDC
SetScrollInfo
ReleaseDC
SetTimer
KillTimer
GetProcessWindowStation
GetWindowDC
GetSystemMetrics
GetDC
GetWindowThreadProcessId
GetProcessWindowStation
GetWindowThreadProcessId
TranslateMessageEx
GetWindowLongW
SetScrollInfo
GetUserObjectInformationW
GetAppCompatFlags2
DispatchMessageW
GetSysColor
SetTimer
CharUpperA
TranslateMessageEx
GetAppCompatFlags2
GetWindowDC
TranslateMessageEx
PostMessageW
GetWindowThreadProcessId
GetAppCompatFlags2
GetWindowLongW
GetWindowThreadProcessId
CharUpperW
GetWindowLongW
KillTimer
GetUserObjectInformationW
CreateIconIndirect
DispatchMessageW
GetSysColorBrush
GetDC
GetSysColorBrush
SetTimer
GetAppCompatFlags2
GetDC
GetSystemMetrics
DispatchMessageW

kernel32

VirtualProtectEx
VirtualProtect
CreateFileA
TerminateProcess
GetSystemTime
GetStartupInfoW
LoadLibraryExA
LoadLibraryExA
VirtualProtectEx
WriteProcessMemory
WriteProcessMemory
VirtualProtectEx
ReadProcessMemory
WaitForSingleObject
Sleep
CreateFileA
TerminateProcess
GetStartupInfoW
SleepEx
LoadLibraryExA
SleepEx
LoadLibraryExA
CreateFileA
CreateProcessA
GetSystemTime
LoadLibraryExW
CreateProcessW
WriteProcessMemory
GetSystemTimeAsFileTime
TerminateProcess
CreateProcessW
TerminateProcess
VirtualProtectEx
LoadLibraryExA
CreateProcessA
GetStartupInfoW
CreateFileA
LoadLibraryA
ReleaseMutex
CreateFileA
ReleaseMutex
Sleep
ReleaseMutex
LoadLibraryA
SleepEx
GetStartupInfoW
GetSystemTimeAsFileTime
LoadLibraryA
SleepEx
GetSystemTimeAsFileTime
LoadLibraryExA
WaitForSingleObject
WaitForSingleObject
VirtualProtectEx
CreateFileA
GetSystemTimeAsFileTime
GetStartupInfoW
LoadLibraryExA
VirtualProtect
GetStartupInfoW
WaitForSingleObject
ReadFile
WriteProcessMemory
LoadLibraryExA
LoadLibraryExA
WriteProcessMemory
ReadFile
LoadLibraryA
WriteProcessMemory
CreateProcessW
GetStartupInfoA
CreateProcessW
ReadFile
GetStartupInfoA
TerminateProcess
CreateProcessA
VirtualProtectEx
Sleep
CreateProcessA
GetSystemTime
LoadLibraryExW
ReleaseMutex
LoadLibraryA
CreateProcessA
WriteProcessMemory
CreateProcessW
VirtualProtectEx
TerminateProcess
CreateProcessW
GetSystemTimeAsFileTime
ReadFile
TerminateProcess
LoadLibraryExW
GetSystemTime
GetStartupInfoW
GetSystemTime
VirtualProtect
LoadLibraryA
ReadFile
TerminateProcess
VirtualProtect
LoadLibraryExW
WriteProcessMemory
LoadLibraryExW
VirtualProtectEx
GetSystemTimeAsFileTime
ReadFile
CreateProcessW
GetSystemTimeAsFileTime
LoadLibraryExA
WriteProcessMemory
VirtualProtect
GetStartupInfoW
LoadLibraryExW
VirtualProtectEx
ReadFile
WaitForSingleObject
TerminateProcess
TerminateProcess
VirtualProtectEx
WriteProcessMemory
LoadLibraryA
LoadLibraryExW
SleepEx
TerminateProcess
ReadFile
LoadLibraryA
TerminateProcess
WaitForSingleObject
LoadLibraryExW
CreateProcessA
CreateProcessW
CreateProcessA
CreateFileA
SleepEx
WriteProcessMemory
GetStartupInfoW
GetStartupInfoW
TerminateProcess
Sleep
CreateFileA
Sleep
ReleaseMutex
LoadLibraryA
TerminateProcess
CreateProcessA
LoadLibraryExW
CreateFileA
CreateFileA
VirtualProtectEx
VirtualProtectEx
WaitForSingleObject
GetStartupInfoA
VirtualProtectEx
WriteProcessMemory
WaitForSingleObject
LoadLibraryA
CreateProcessW
GetSystemTimeAsFileTime
ReadProcessMemory
WaitForSingleObject
LoadLibraryExW
ReadProcessMemory
CreateProcessA
LoadLibraryA
VirtualProtectEx
LoadLibraryA
SleepEx
LoadLibraryExA
Sleep
ReadFile
ReleaseMutex
VirtualProtectEx
SleepEx
VirtualProtectEx
ReadProcessMemory
ReadProcessMemory
ReadFile
GetStartupInfoW
ReadProcessMemory
CreateProcessW
GetStartupInfoA
CreateProcessA
WriteProcessMemory
LoadLibraryExA
GetSystemTimeAsFileTime
CreateProcessA
GetStartupInfoW
SleepEx
WriteProcessMemory
CreateProcessA
LoadLibraryExA
VirtualProtectEx
ReadProcessMemory
LoadLibraryA
WaitForSingleObject
TerminateProcess
LoadLibraryExA
CreateFileA
VirtualProtect
GetSystemTimeAsFileTime
SleepEx
VirtualProtectEx
Sleep
GetStartupInfoW
WaitForSingleObject
ReleaseMutex
SleepEx
WaitForSingleObject
LoadLibraryA
GetSystemTimeAsFileTime
SleepEx
VirtualProtect
VirtualProtect
GetStartupInfoW
Sleep
ReadFile
VirtualProtect
ReadFile
ReadFile
ReadFile
TerminateProcess
LoadLibraryExA
VirtualProtect
ReadFile
GetStartupInfoA
VirtualProtect
VirtualProtectEx
LoadLibraryA
GetStartupInfoA
CreateProcessW
Sleep
CreateProcessA
CreateProcessA
GetSystemTime
WriteProcessMemory
WaitForSingleObject
Sleep
ReleaseMutex
ReleaseMutex
Sleep
GetSystemTime
GetStartupInfoW
CreateProcessA
CreateProcessW
GetSystemTimeAsFileTime
GetSystemTime
VirtualProtect
CreateProcessA
SleepEx
GetSystemTime
WriteProcessMemory
LoadLibraryExA
WaitForSingleObject
LoadLibraryExW
GetSystemTimeAsFileTime
ReadProcessMemory
ReleaseMutex
ReadProcessMemory
GetSystemTimeAsFileTime
GetSystemTime
Sleep
ReleaseMutex
ReleaseMutex
WriteProcessMemory
WaitForSingleObject
LoadLibraryA
TerminateProcess
LoadLibraryA
LoadLibraryExA
CreateProcessW
CreateProcessA
CreateFileA
TerminateProcess
ReadProcessMemory
GetSystemTimeAsFileTime
ReadFile
WriteProcessMemory
CreateProcessA
CreateFileA
ReadFile
WriteProcessMemory
GetStartupInfoW
ReadFile
TerminateProcess
GetStartupInfoA
ReadProcessMemory
VirtualProtectEx
WaitForSingleObject
CreateProcessW
VirtualProtect
CreateProcessW
CreateFileA
VirtualProtect
GetStartupInfoW
GetSystemTimeAsFileTime
Sleep
LoadLibraryA
VirtualProtectEx
ReadProcessMemory
CreateFileA
ReleaseMutex
LoadLibraryExA
GetSystemTime
CreateFileA
ReadProcessMemory
WriteProcessMemory
GetSystemTimeAsFileTime
CreateProcessA
SleepEx
LoadLibraryA
GetSystemTimeAsFileTime
ReadFile
LoadLibraryA
WriteProcessMemory
ReadProcessMemory
SleepEx
VirtualProtect
WaitForSingleObject
GetSystemTime
ReleaseMutex
ReadFile
VirtualProtect
GetSystemTimeAsFileTime
GetSystemTime
WriteProcessMemory
GetStartupInfoA
LoadLibraryExW
TerminateProcess
SleepEx
GetSystemTime
GetStartupInfoA
LoadLibraryA
LoadLibraryA
GetStartupInfoA
VirtualProtect
GetStartupInfoA
WriteProcessMemory
ReadFile
WriteProcessMemory
GetSystemTimeAsFileTime
LoadLibraryExW
CreateProcessW
GetSystemTime
TerminateProcess
LoadLibraryA
CreateFileA
LoadLibraryA
CreateProcessA
GetStartupInfoA
LoadLibraryA
SleepEx
CreateProcessA
WriteProcessMemory
GetSystemTime
GetStartupInfoA
ReleaseMutex
VirtualProtectEx
WaitForSingleObject
ReadFile
GetStartupInfoW
CreateProcessW
LoadLibraryExW
Sleep
ReleaseMutex
LoadLibraryA
LoadLibraryA
WaitForSingleObject
WriteProcessMemory
WaitForSingleObject
SleepEx
LoadLibraryA
SleepEx
ReleaseMutex
TerminateProcess
LoadLibraryA
GetSystemTime
SleepEx
CreateProcessW
ReleaseMutex
ReadFile
LoadLibraryExW
SleepEx
CreateProcessA
CreateFileA
ReadFile
LoadLibraryExW
LoadLibraryExA
LoadLibraryExA
Sleep
ReleaseMutex
VirtualProtect
ReleaseMutex
LoadLibraryExA
LoadLibraryExW
VirtualProtect
VirtualProtectEx
Sleep
SleepEx
TerminateProcess
GetSystemTimeAsFileTime
CreateFileA
ReleaseMutex
GetStartupInfoW
CreateProcessA
LoadLibraryA
GetStartupInfoW
WaitForSingleObject
TerminateProcess
GetStartupInfoW
ReadProcessMemory
CreateProcessW
GetStartupInfoA
ReadFile
LoadLibraryA
ReleaseMutex
VirtualProtect
GetStartupInfoA
VirtualProtect
VirtualProtect
GetSystemTimeAsFileTime
CreateProcessA
TerminateProcess
GetSystemTime
WriteProcessMemory
SleepEx
CreateFileA
WriteProcessMemory
GetStartupInfoW
VirtualProtect
GetSystemTimeAsFileTime
GetSystemTimeAsFileTime
ReleaseMutex
VirtualProtectEx
ReleaseMutex
SleepEx
CreateFileA
CreateProcessW
SleepEx
SleepEx
LoadLibraryA
VirtualProtectEx
VirtualProtect
TerminateProcess
LoadLibraryA
ReleaseMutex
VirtualProtectEx
VirtualProtectEx
ReadProcessMemory
VirtualProtect
VirtualProtectEx
ReadProcessMemory
GetSystemTimeAsFileTime
Sleep
WaitForSingleObject
ReleaseMutex
ReadProcessMemory
ReleaseMutex
CreateProcessA
GetSystemTime
SleepEx
WriteProcessMemory
CreateFileA
CreateProcessA
WriteProcessMemory
VirtualProtect
WriteProcessMemory
CreateProcessA
CreateFileA
GetStartupInfoW
LoadLibraryA
GetStartupInfoA
GetStartupInfoW
LoadLibraryExA
WriteProcessMemory
GetSystemTime
CreateProcessW
VirtualProtect
WriteProcessMemory
TerminateProcess
VirtualProtect
SleepEx
ReleaseMutex
GetStartupInfoW
LoadLibraryExA
LoadLibraryA
WriteProcessMemory
GetSystemTime
WriteProcessMemory
VirtualProtectEx
SleepEx
GetStartupInfoW
WriteProcessMemory
GetStartupInfoW
WriteProcessMemory
CreateProcessA
TerminateProcess
SleepEx
VirtualProtect
GetStartupInfoW

Sections

.text
Size: 183KB - Virtual size: 184KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 18KB - Virtual size: 20KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 150KB - Virtual size: 150KB

IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

019a188b568cddcb715b091d22745040

Headers

File Characteristics

Imports

user32

kernel32

Sections

.text Size: 183KB - Virtual size: 184KB

.data Size: 18KB - Virtual size: 20KB

.rsrc Size: 150KB - Virtual size: 150KB

.text
Size: 183KB - Virtual size: 184KB

.data
Size: 18KB - Virtual size: 20KB

.rsrc
Size: 150KB - Virtual size: 150KB