b6eb70a85733363422c5eb934ccee021_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b6eb70a85733363422c5eb934ccee021_JaffaCakes118
Size

345KB
MD5

b6eb70a85733363422c5eb934ccee021
SHA1

f595a5656b40ff5ae72202dfc76c402f0035a0da
SHA256

cb212a24aefc23e5503b6ede9e9de59f37576276d1bd3043fc0c222773973c92
SHA512

e8ca14d17d485b38958d33091ec7de4da867dbb88537282205b25ea72145778ad2c8cb0641c21ec879728b3f3fb6f0395dd69fa733e84ec53e508638eb20a388
SSDEEP

6144:8Y57GCUqO9QafnxAFd21WAKHanNoL8TWM5fPVo7kR07s46nXih5xGT:8Y6j68WpyNE8TWMBk207sA5E

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b6eb70a85733363422c5eb934ccee021_JaffaCakes118

Files

b6eb70a85733363422c5eb934ccee021_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ceeb532679e1696117e6258d8869b0e0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleA
EnumCalendarInfoW
SizeofResource
WriteProfileStringA
SetNamedPipeHandleState
CreateDirectoryExA
CopyFileExA
WritePrivateProfileStringA
WriteFileEx
GetVersionExA
FindAtomW
CreateMutexA
SetConsoleTitleA
GlobalFlags
ReadProcessMemory
GetProcessAffinityMask
TlsAlloc
EnumResourceLanguagesA
CompareStringA
GetCurrencyFormatW
LoadLibraryA
GetOEMCP
LocalShrink
LocalFileTimeToFileTime
GlobalSize
SleepEx
GetSystemDirectoryW
GetFileType
CompareFileTime
EnumSystemCodePagesA
GetTempPathA
CopyFileW
OpenFile
FlushFileBuffers
GetProfileIntA
Module32Next
SignalObjectAndWait
GetStartupInfoA
GetEnvironmentStringsW
GetFileTime
WriteFileGather
EndUpdateResourceA

user32

GetDC
InternalGetWindowText
EndPaint
CharToOemBuffW
CreateIconIndirect
SetUserObjectSecurity
DrawTextExW
TranslateAcceleratorW
GetNextDlgTabItem
CreateDesktopW
GetClassNameA
GetFocus
ShowCaret
MenuItemFromPoint
ScrollDC
ChangeMenuW
DrawStateA
GetActiveWindow
MessageBeep
GetInputState
SetUserObjectInformationA
RedrawWindow
GetClipCursor
GetClientRect
TabbedTextOutA
DlgDirSelectExW
AdjustWindowRect
RegisterHotKey
CharToOemBuffA
MapDialogRect
LoadCursorW
GetSubMenu
ReleaseCapture
CharToOemW
RegisterClipboardFormatW
DefMDIChildProcW
UnregisterClassA
GetWindowTextW
IsDialogMessageA
TranslateMDISysAccel
SwitchDesktop
CharNextA
GetUserObjectSecurity
IsCharAlphaNumericW
GetSystemMetrics
wvsprintfA
FlashWindow
ChangeDisplaySettingsA
GetClassWord
FindWindowExA

gdi32

GetMiterLimit
ExtTextOutW
PlayMetaFile
GetRasterizerCaps
GetROP2
FillRgn
EqualRgn
GetViewportExtEx
EnumFontFamiliesW
GetTextCharset
UpdateICMRegKeyA
EnumFontsA
SetColorSpace
GetCharWidthW
PlayEnhMetaFileRecord
GetWindowExtEx
SelectClipRgn

comdlg32

GetFileTitleA

advapi32

CryptGetDefaultProviderA
InitializeSecurityDescriptor
EnumServicesStatusA
GetTrusteeNameA
ObjectDeleteAuditAlarmA
SetSecurityDescriptorSacl
NotifyBootConfigStatus
GetFileSecurityW
RegReplaceKeyW
CryptSetProviderW
NotifyChangeEventLog
BuildExplicitAccessWithNameW
ImpersonateSelf
DuplicateTokenEx
GetKernelObjectSecurity
BuildTrusteeWithSidA
ObjectDeleteAuditAlarmW
SetNamedSecurityInfoW
PrivilegedServiceAuditAlarmW
RegDeleteKeyA
QueryServiceConfigW
ControlService
InitiateSystemShutdownW
OpenSCManagerW

shell32

SHEmptyRecycleBinA
ExtractIconW
SHBrowseForFolderW
SHLoadInProc
SHQueryRecycleBinW
FindExecutableA
DoEnvironmentSubstW

msvcrt

_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
exit
_XcptFilter
_exit

Sections

.text
Size: 271KB - Virtual size: 272KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

yay9moju
Size: 44KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

fl2o7or3
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ceeb532679e1696117e6258d8869b0e0

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

msvcrt

Sections

.text Size: 271KB - Virtual size: 272KB

.rdata Size: 4KB - Virtual size: 8KB

.data Size: 19KB - Virtual size: 20KB

yay9moju Size: 44KB - Virtual size: 48KB

fl2o7or3 Size: 4KB - Virtual size: 4KB

.text
Size: 271KB - Virtual size: 272KB

.rdata
Size: 4KB - Virtual size: 8KB

.data
Size: 19KB - Virtual size: 20KB

yay9moju
Size: 44KB - Virtual size: 48KB

fl2o7or3
Size: 4KB - Virtual size: 4KB