b4b277c6193b4dfbb782025f01257bb2_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

b4b277c6193b4dfbb782025f01257bb2_JaffaCakes118
Size

380KB
MD5

b4b277c6193b4dfbb782025f01257bb2
SHA1

b82c8f7a09cd2f5a43ee91b6c759b610ef43390c
SHA256

585ae6bb8876bf134431451c3095040ae9a4b2fde7568cba9236a79b890527cc
SHA512

02ba20aa8c19fad86bb93c6a76f6590b5eab55a48e30a3616209c25b493fe0f855e408f1f2fb34be298a032f57e246869b4a60cc72f55f704e970356f0d7783a
SSDEEP

6144:QE9clMdvzjYZdu8Lw2kCGDf5P0VHngQ43nCQiePsJaEvvXQLm41:elyzju1/lmPQeCPePbEvvQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b4b277c6193b4dfbb782025f01257bb2_JaffaCakes118

Files

b4b277c6193b4dfbb782025f01257bb2_JaffaCakes118
.exe windows:4 windows x86 arch:x86

42651d696559145b0cce6d95b3df1891

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

DeleteFileA
GetVolumeInformationA
IsSystemResumeAutomatic
Process32Next
SetEndOfFile
SetFileShortNameA
GetProcessPriorityBoost
EnumResourceNamesA
GetConsoleCP
GetComputerNameA
_lclose
GetTickCount
SetupComm
SetCurrentDirectoryA
VirtualAllocEx
EnumSystemLanguageGroupsA
GetSystemTimeAsFileTime
IsValidCodePage
ClearCommBreak
IsBadReadPtr
GetFileSizeEx
GetCurrentThread
ClearCommError
IsBadStringPtrA
AddConsoleAliasA
CompareStringA
OpenWaitableTimerA
SetProcessPriorityBoost
GetConsoleHardwareState
GetCommTimeouts
IsBadWritePtr
SetFirmwareEnvironmentVariableA
WriteConsoleOutputA
HeapSize
VerifyVersionInfoA
GetFileInformationByHandle
MulDiv
GetConsoleTitleA
GetDevicePowerState
GetCommandLineA
MultiByteToWideChar
SetFilePointer
GetCurrencyFormatA
GlobalGetAtomNameA
GetDiskFreeSpaceExA
GetThreadLocale
WriteFileGather
WriteConsoleOutputAttribute
QueryMemoryResourceNotification
GetProcessIoCounters
QueueUserAPC
GetVersionExA
EndUpdateResourceA
GetProcessId
TermsrvAppInstallMode
LCMapStringA
GetThreadContext
GetFileSize
GetThreadPriority
DeleteTimerQueue
_hread
ReadFileScatter
GetCurrentProcessId
_lread
EndUpdateResourceA
GetVersionExA
RemoveDirectoryA
FindCloseChangeNotification
GetSystemDirectoryA
GetConsoleCharType
ReadConsoleOutputAttribute
WriteConsoleOutputCharacterA
ConnectNamedPipe
OpenProcess
VirtualQueryEx
FindNextFileA
CreateDirectoryA
GetLogicalDriveStringsA
FindFirstFileExW
OpenFileMappingA
VirtualProtectEx
GetSystemDirectoryA
GetWindowsDirectoryA
GetThreadPriorityBoost
FindResourceExA
WriteConsoleA
WriteFileEx
SetFileApisToOEM
SetInformationJobObject
GetExitCodeThread
TransmitCommChar
GetFileType
lstrcpyA
GetConsoleCursorMode
SetComputerNameExA
OpenEventA
GetCommMask
GetThreadPriorityBoost
CloseHandle
GetThreadLocale
lstrcmp
CommConfigDialogA
ReadConsoleInputA
EndUpdateResourceA
GetFullPathNameA
SetDllDirectoryA
HeapFree
lstrlenA
AddAtomA
SystemTimeToTzSpecificLocalTime
LocalHandle
GetPriorityClass
GetConsoleWindow
GetModuleHandleA
SetConsoleTitleA
GetCompressedFileSizeA
EndUpdateResourceA
_lread
ExitProcess
GetSystemWindowsDirectoryA
PostQueuedCompletionStatus
GlobalMemoryStatusEx
VirtualUnlock
SetErrorMode
OpenMutexA
CreateDirectoryExA
GetPrivateProfileSectionA
LZCloseFile
GetProcessHeaps
SetThreadLocale
HeapFree
GetConsoleCursorInfo
UnlockFileEx
GetWriteWatch
ReplaceFile
GetFileAttributesExA
PrepareTape
OpenMutexA
CreateDirectoryExA
SetConsoleFont
GetDllDirectoryA
DeleteTimerQueueTimer
WriteConsoleInputA
GetSystemWindowsDirectoryA
GetThreadSelectorEntry
lstrcatA
GlobalUnWire
_llseek
GetFileAttributesExA
CallNamedPipeA
GetDefaultCommConfigA
ExitProcess
CloseHandle
UnlockFile
RemoveDirectoryA
CancelWaitableTimer
ProcessIdToSessionId
Thread32First
SetPriorityClass
SetPriorityClass
GetFileType
GetModuleFileNameA
GetTickCount
GetConsoleKeyboardLayoutNameA
DeleteTimerQueueEx
SetEnvironmentVariableA
RegisterWaitForSingleObjectEx
GetStringTypeExW
FlushInstructionCache
GetFileTime
CopyFileExA
GetModuleFileNameA
FindFirstVolumeMountPointA
ReadConsoleA
GetCommMask
CloseHandle
GetModuleFileNameA

user32

ChangeDisplaySettingsExA
IsZoomed
DialogBoxParamA
SetWindowPos
MoveWindow
DestroyMenu
BeginPaint
GetRawInputDeviceInfoA
IsServerSideWindow
GetRegisteredRawInputDevices
PostThreadMessageA
BuildReasonArray
EnableScrollBar
CopyIcon
CreateDialogIndirectParamA
GetWindowTextA
MessageBoxIndirectA
ArrangeIconicWindows
UnregisterClassA
DrawCaptionTempA
LoadLocalFonts
SendMessageCallbackA
GetMenuDefaultItem
GetCapture
IsCharLowerA
GetKeyboardLayoutNameA
GetWindowInfo
CloseClipboard
DrawTextA
MapVirtualKeyA
GetClassNameA
RegisterClassExA
DefDlgProcA
IsGUIThread
GrayStringA
SetSystemMenu
CheckMenuRadioItem
SendNotifyMessageA
CharNextExA
OemToCharA
GetMenuItemRect
ReuseDDElParam
EnumWindows
RegisterRawInputDevices
SetCursor
SwapMouseButton
SetClassLongA
RegisterDeviceNotificationA
SetDlgItemInt
CallMsgFilter
DialogBoxParamA
RealGetWindowClass
GetUpdateRgn
EnumDisplaySettingsExA
MonitorFromRect
GetUpdateRect
TranslateMessageEx
BlockInput
LoadKeyboardLayoutA
IsGUIThread
UpdatePerUserSystemParameters
MessageBoxTimeoutW
GetForegroundWindow
SetWindowsHookExW
DeviceEventWorker
GetTabbedTextExtentA
GetMessageTime
DrawMenuBarTemp
SetTaskmanWindow
CallWindowProcA
SetCaretBlinkTime
RegisterClassExW
LoadCursorFromFileW
SetMenu
CharToOemBuffA
SetTimer
TrackMouseEvent
GetRawInputDeviceList
SetPropA
EndMenu
SubtractRect
ShowOwnedPopups
SetWindowLongA
ChangeDisplaySettingsExA
UpdateWindow
SetClipboardData
SetWindowRgn
TileWindows
GetMenuStringA
MapVirtualKeyA

advapi32

DuplicateToken

Sections

.itext
Size: - Virtual size: 988B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 176KB - Virtual size: 417KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 100KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 100KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

42651d696559145b0cce6d95b3df1891

Headers

File Characteristics

Imports

kernel32

user32

advapi32

Sections

.itext Size: - Virtual size: 988B

.text Size: 176KB - Virtual size: 417KB

.idata Size: 100KB - Virtual size: 97KB

.rsrc Size: 100KB - Virtual size: 96KB

.itext
Size: - Virtual size: 988B

.text
Size: 176KB - Virtual size: 417KB

.idata
Size: 100KB - Virtual size: 97KB

.rsrc
Size: 100KB - Virtual size: 96KB