b94b729f3c9c0fdd7e9d6fde3b0bb0f4_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b94b729f3c9c0fdd7e9d6fde3b0bb0f4_JaffaCakes118
Size

330KB
MD5

b94b729f3c9c0fdd7e9d6fde3b0bb0f4
SHA1

e55cd0c62b746339787fa87be44821a37fb410a0
SHA256

d4d568564765615b2a4f79cc93713ce1c68ae2913e93b1281e7ebec1de1325f3
SHA512

6c743e8416c6dac72aea80a956c20ea42af10dd039402d892e929617ec321d4093a81e5955c431fc88fcb86fb136ebf19c2d3f87659c4289de3c64a35b2367a0
SSDEEP

6144:PROARPIXSqjizbEEE7WhmQWevjYayM7LRqobHNzl4ZWWz2aO+/84SeiV:0ARPIbi/EbShX5kM7LRqojadzd8TD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b94b729f3c9c0fdd7e9d6fde3b0bb0f4_JaffaCakes118

Files

b94b729f3c9c0fdd7e9d6fde3b0bb0f4_JaffaCakes118
.exe windows:5 windows x86 arch:x86

97adeca12dd9fa19dcccd1c53f15bf21

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemTimeAsFileTime
GetLocalTime
FindFirstFileW
LoadLibraryA
ReadFile
GetTickCount
GetFileAttributesW
GetLastError
SetLastError
GetCurrentThreadId
GetCurrentThread
GetModuleHandleA
GetProcAddress
IsBadReadPtr
VirtualProtectEx
VirtualProtect
VirtualFree
VirtualAlloc
VirtualAllocEx
WaitForSingleObject
SystemTimeToFileTime
WaitForMultipleObjects
CreateMutexA
UnhandledExceptionFilter
UnmapViewOfFile
SetEndOfFile
LocalReAlloc
WriteFile
lstrcpynW
MapViewOfFile
MultiByteToWideChar
GetACP
GetUserDefaultUILanguage
FormatMessageW
WideCharToMultiByte
LocalSize
MulDiv
lstrcmpW
lstrcatW
FindClose
lstrcmpiW
CreateFileW
FoldStringW
LocalLock
CompareStringW
LocalUnlock
lstrlenW
LocalAlloc
LocalFree
GetLocaleInfoW
GlobalFree
SetUnhandledExceptionFilter
CreateFileMappingW
GetFileInformationByHandle
GlobalUnlock
GlobalLock
GetTimeFormatW
GetDateFormatW
QueryPerformanceCounter
DeleteFileW
GetCommandLineW
GetSystemTime
CloseHandle
GetCurrentProcessId
GetUserDefaultLCID
TerminateProcess
GetCurrentProcess
GetStartupInfoA
lstrcpyW

user32

CheckMenuItem
SetDlgItemTextW
SendMessageW
InvalidateRect
LoadIconW
LoadCursorW
GetSysColorBrush
RegisterClassExW
CharNextW
SetCursor
SetFocus
SetWindowTextW
CheckRadioButton
GetSubMenu
MessageBeep
EndDialog
DialogBoxParamW
GetSysColor
CloseClipboard
CharNextA
GetClipboardData
OpenClipboard
GetDesktopWindow
TrackPopupMenuEx
EnableMenuItem
IsClipboardFormatAvailable
DefWindowProcW
ChildWindowFromPoint
ScreenToClient
GetDlgCtrlID
WinHelpW
DrawTextW
CallWindowProcW
HideCaret
CheckDlgButton
GetWindowTextW
SetDlgItemInt
GetMenu
SetWindowPos
OffsetRect
MapWindowPoints
GetClientRect
EnableWindow
LoadMenuW
SetWindowLongW
GetWindowLongW
CreateDialogParamW
GetDlgItem
DestroyMenu
DestroyWindow
SetMenu
GetWindowRect
SystemParametersInfoW
DispatchMessageW
TranslateMessage
TranslateAcceleratorW
IsChild
IsDialogMessageW
GetMessageW
LoadAcceleratorsW
CreateWindowExW
MessageBoxW
LoadStringW
SetProcessDefaultLayout
GetProcessDefaultLayout
LoadIconA
LoadCursorA
RegisterClassExA
CreateWindowExA
MessageBoxA
ShowWindow
UpdateWindow
DefWindowProcA
CloseWindow
PostQuitMessage
CheckMenuRadioItem

gdi32

SetBkMode
EnumFontsW
StartDocW
TextOutW
GetTextFaceW
SetAbortProc
CreateDCW
GetStockObject
StartPage
DeleteDC
EndDoc
AbortDoc
EndPage
SetTextColor
SetBkColor
GetObjectW
GetDeviceCaps
CreateFontIndirectW
DeleteObject
GetTextMetricsW
SetWindowExtEx
SetViewportExtEx
LPtoDP
SetMapMode
GetTextExtentPoint32W
SelectObject

advapi32

RegCloseKey
RegCreateKeyW
IsTextUnicode
RegQueryValueExA
RegOpenKeyExA
RegSetValueExW
CryptAcquireContextA
CryptGenRandom
CryptReleaseContext
RegQueryValueExW

Sections

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 936B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 324KB - Virtual size: 324KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

97adeca12dd9fa19dcccd1c53f15bf21

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

Sections

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 512B - Virtual size: 936B

.text Size: 324KB - Virtual size: 324KB

.rsrc Size: 2KB - Virtual size: 2KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 512B - Virtual size: 936B

.text
Size: 324KB - Virtual size: 324KB

.rsrc
Size: 2KB - Virtual size: 2KB