b60b8c14fd8c6501d1a6fe7f6596b7dd_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b60b8c14fd8c6501d1a6fe7f6596b7dd_JaffaCakes118
Size

513KB
MD5

b60b8c14fd8c6501d1a6fe7f6596b7dd
SHA1

5e14235c3480a592104e99e1987e3b0777fb2207
SHA256

80b258256257035eef44710efbea8749798779a8bcf08cca3a7c7df5decf2056
SHA512

07b369873fc5cfd8b96c32f3a23537311a07672ace58a45be7e12595552014ec32711c7f5a8aef73ce712f6e62b20491e0ea866a05f134e8f22c74edf753ec93
SSDEEP

12288:KcQessix/7v2r5IjqvS8OTC9B/kSqX+1RtBeKDP:Jixjv2rqGjOy/tB/e

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b60b8c14fd8c6501d1a6fe7f6596b7dd_JaffaCakes118

Files

b60b8c14fd8c6501d1a6fe7f6596b7dd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9901acbd479952623c8f9a9dde91d957

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

gdi32

DeleteObject
GetDeviceCaps
SetTextColor
SetBkMode

advapi32

RegDeleteKeyA
RegCloseKey
RegOpenKeyExW
RegOpenKeyExA
RegCreateKeyExW
RegQueryValueExA
RegCreateKeyExA
RegSetValueExW
RegDeleteValueA

kernel32

GetStdHandle
LoadLibraryExW
GetConsoleOutputCP
GetOEMCP
VirtualAlloc
FindResourceA
Sleep
VirtualFree
FindResourceW
UnmapViewOfFile
IsValidCodePage
CreateProcessA
SizeofResource
SetStdHandle
GetModuleHandleW
GetACP
lstrcpynA
CloseHandle
SetEndOfFile
ReadFile
SetFilePointer
TlsFree
MapViewOfFile
RaiseException
GetCurrentThread
InterlockedCompareExchange
GetCommandLineA
HeapSize
WideCharToMultiByte
GetCommandLineW
LockResource
GetCurrentProcessId
GetEnvironmentStrings
CreateProcessW
lstrlenW
GlobalAlloc
GlobalUnlock
GetEnvironmentStringsW
GetThreadLocale
LCMapStringA
GetConsoleCP
lstrlenA
GetSystemInfo
HeapCreate
LCMapStringW
InitializeCriticalSection
GetLastError
InterlockedIncrement
HeapAlloc
TlsSetValue
GetFileType
CreateEventA
CreateFileW
GetTimeZoneInformation
GlobalLock
WaitForMultipleObjects
DuplicateHandle
FindFirstFileW
CreateFileMappingA
ResetEvent
CompareStringA
lstrcpyA
GlobalFree
FindFirstFileA
lstrcmpA
CompareStringW
GetProcessHeap
GetProcAddress
DeleteFileW
SetErrorMode
GetWindowsDirectoryA
DeleteFileA
CreateDirectoryA
GetFileSize
GetStartupInfoA
LoadLibraryA
GetVersionExA
VirtualProtect
TlsAlloc
GetTickCount
QueryPerformanceCounter
SetEvent
LoadLibraryW
SetHandleCount
EnterCriticalSection
HeapFree
WriteConsoleW
SetCurrentDirectoryA
LeaveCriticalSection
GetCurrentThreadId
GetLocaleInfoA
VirtualQuery
GetVersion
WriteConsoleA
TerminateProcess
SetEnvironmentVariableA
GetSystemDirectoryA
MulDiv
SetUnhandledExceptionFilter
SetFileAttributesA
CreateThread
GetModuleHandleA
CreateMutexA
GetLocalTime
MultiByteToWideChar
ReleaseMutex
UnhandledExceptionFilter
GetUserDefaultLCID
lstrcmpiW
GetModuleFileNameA
FlushFileBuffers
ExitProcess
IsDebuggerPresent
GetModuleFileNameW
InterlockedDecrement
GetSystemTime
SetLastError
OutputDebugStringA
FormatMessageA
TlsGetValue
FindClose
LoadResource
GetEnvironmentVariableA
GetExitCodeProcess
FormatMessageW
LocalFree
FreeLibrary
GetFullPathNameA
GetStringTypeW
HeapReAlloc
GetSystemTimeAsFileTime
WriteFile
InterlockedExchange
GetStringTypeA
lstrcmpiA
GetCPInfo
GetLocaleInfoW
FreeEnvironmentStringsW
CreateFileA
ExpandEnvironmentStringsA
LocalAlloc
GetConsoleMode
GetCurrentDirectoryA
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
GetFileAttributesW
HeapDestroy
FindNextFileA
WaitForSingleObject
GetFileAttributesA
FileTimeToSystemTime

oleaut32

SysAllocString
SysFreeString
SysStringLen

ole32

CoInitialize
CoCreateInstance
CoUninitialize
CoTaskMemFree
CoTaskMemAlloc

user32

SetFocus
DestroyMenu
PostQuitMessage
SetWindowPos
IsWindow
EndPaint
PeekMessageA
GetDC
GetCursorPos
SetCursor
CallWindowProcA
wsprintfA
InvalidateRect
IsWindowVisible
SystemParametersInfoA
PostMessageA
GetSysColor
MessageBoxA
SetDlgItemTextA
GetFocus
SetForegroundWindow
GetDesktopWindow
SendMessageA
LoadCursorA
ScreenToClient
GetDlgItem
SetTimer
GetWindowLongA
CheckMenuItem
SetWindowTextA
EndDialog
SetWindowLongA
SetCapture
GetWindowRect
GetSystemMetrics
KillTimer
BeginPaint
GetMessageA
ClientToScreen
MapWindowPoints
ReleaseDC
CreateWindowExA
GetSubMenu
RegisterClassA
EnableMenuItem
LoadStringA
IsWindowEnabled
TranslateMessage
EnableWindow
ShowWindow
DefWindowProcA
FillRect
UpdateWindow
GetParent
DestroyWindow
GetKeyState
GetClientRect
MoveWindow
UnregisterClassA
DrawTextA

Sections

ycciu
Size: 512KB - Virtual size: 511KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

9901acbd479952623c8f9a9dde91d957

Headers

File Characteristics

Imports

version

gdi32

advapi32

kernel32

oleaut32

ole32

user32

Sections

ycciu Size: 512KB - Virtual size: 511KB

.bss Size: - Virtual size: 1KB

ycciu
Size: 512KB - Virtual size: 511KB

.bss
Size: - Virtual size: 1KB