b9eaddea0cc6a8bee2b3fc59134e92ee_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b9eaddea0cc6a8bee2b3fc59134e92ee_JaffaCakes118
Size

124KB
MD5

b9eaddea0cc6a8bee2b3fc59134e92ee
SHA1

40f0a53e56be68c8ad17c1e0da6262c89f1d90b0
SHA256

96a3ef3d111e2e9af1087ed7c421d885d4828793770844d85b845275e8a91c09
SHA512

ed7a2458f2379c573c2e387b1eda72d9ab9ecb17a77f2d3e0463123572f691bdb340b04e82e6a053ae3b7d62101c92f6065258c3182ae6c1b8f38f36e486f838
SSDEEP

1536:dsC9LrB1qWYNJCcx13Ci7Zup6DNJVLeDOeJRn1Q/053dV35l7f+2vpXqVfDmuI3:jaNichdDpLUdF+/Id15NPqVfDq3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b9eaddea0cc6a8bee2b3fc59134e92ee_JaffaCakes118

Files

b9eaddea0cc6a8bee2b3fc59134e92ee_JaffaCakes118
.exe windows:2053 windows x86 arch:x86

422a8838e648c233cb3237f47271b14d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetACP
lstrcpynA
SetEndOfFile
GetDiskFreeSpaceA
GetProcAddress
GetModuleHandleA
GetVersion
CloseHandle
FreeLibrary
InitializeCriticalSection
FormatMessageA
lstrlenA
SetEvent
GetDateFormatA
LocalFree
lstrcpyA
GetTickCount
LoadLibraryA
WriteFile
GlobalUnlock
EnumCalendarInfoA
GetProcAddress
ReadFile
InterlockedDecrement
VirtualAlloc
GetLocalTime
VirtualFree
LocalAlloc
GetSystemInfo
GetProcAddress
GetLocaleInfoA
GlobalFindAtomA
CreateFileA
GetStartupInfoA
VirtualProtect
InterlockedExchange
SetErrorMode
GetCurrentThreadId
GetCurrentThreadId
GetFullPathNameA
WriteFile
GetStdHandle
GetLastError
GetStdHandle
ExitProcess
CreateEventA
GlobalHandle
DeleteCriticalSection
GetModuleFileNameA
FindResourceA
GetLocaleInfoA
LoadResource
WaitForSingleObject
VirtualAlloc
GetModuleFileNameA
EnterCriticalSection
FreeLibrary
UnhandledExceptionFilter
GetVersionExA
ExitProcess
GlobalDeleteAtom
RaiseException

user32

GetCursor
DestroyMenu
ScrollWindow
GetScrollRange
DrawIcon
SetScrollPos
InsertMenuA
GetActiveWindow
TranslateMessage
MessageBoxA
GetKeyState
CharToOemA
RemovePropA
GetScrollInfo
DestroyCursor
SetRect
GetWindowThreadProcessId
EndPaint
TrackPopupMenu
LoadBitmapA
GetDC
CreateWindowExA
OffsetRect
GetKeyboardLayoutList
CreateIcon
GetSubMenu
SetClassLongA
GetSystemMetrics
DrawFrameControl
EnumThreadWindows
ShowScrollBar
IsWindowEnabled
GetClientRect
WaitMessage
MapWindowPoints
GetKeyNameTextA
AdjustWindowRectEx
RegisterClassA
GetMenuItemInfoA
CreateMenu
SendMessageA
GetSysColor
DefWindowProcA
SetCursor
GetTopWindow
SetParent
GetWindowRect
EnableMenuItem
SetWindowPlacement
IsChild
ShowOwnedPopups
InvalidateRect
FindWindowA
IsWindow
GetClassInfoA
IsRectEmpty
GetCapture
SystemParametersInfoA
IsZoomed
UnhookWindowsHook
IsWindowVisible
FrameRect
ShowCursor
IntersectRect
EnableWindow
SetWindowsHookExA
EnableScrollBar
InsertMenuItemA
SetMenu
GetWindowPlacement
DrawEdge
GetSysColorBrush
SetActiveWindow
DeleteMenu
GetPropA
ReleaseDC
GetMenuItemID
BeginPaint
PtInRect
GetKeyboardType
OemToCharA
GetFocus
WindowFromPoint
LoadIconA
SetWindowLongA
InflateRect
DispatchMessageA
SetForegroundWindow
RedrawWindow
LoadKeyboardLayoutA
GetCursorPos
ShowWindow
IsIconic
EnumWindows
SetScrollInfo
ActivateKeyboardLayout
GetSystemMenu
DestroyIcon
SetCapture
GetMenuStringA

gdi32

CreateBrushIndirect
RestoreDC
GetDIBits
CreateDIBSection
SetBkMode
GetTextExtentPoint32A
CreatePenIndirect
SetTextColor
LineTo
GetBrushOrgEx
BitBlt
SaveDC
CreateCompatibleBitmap
SetBkColor
GetPixel
GetPaletteEntries
MaskBlt
CreateSolidBrush
SetStretchBltMode
GetBitmapBits
UnrealizeObject
RealizePalette
GetCurrentPositionEx
GetObjectA
CreateFontIndirectA
SetBrushOrgEx
GetSystemPaletteEntries
SetDIBColorTable
GetWindowOrgEx
DeleteObject
SetViewportOrgEx
MoveToEx
RectVisible
GetDCOrgEx
CreateCompatibleDC
SelectPalette
GetStockObject
CreateHalftonePalette
SetPixel
GetTextMetricsA

Sections

usfksd
Size: 74KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

masstf
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

ueygst
Size: 35KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

coddok
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

422a8838e648c233cb3237f47271b14d

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

Sections

usfksd Size: 74KB - Virtual size: 68KB

masstf Size: 2KB - Virtual size: 4KB

ueygst Size: 35KB - Virtual size: 31KB

coddok Size: 4KB - Virtual size: 1KB

.idata Size: 8KB - Virtual size: 8KB

usfksd
Size: 74KB - Virtual size: 68KB

masstf
Size: 2KB - Virtual size: 4KB

ueygst
Size: 35KB - Virtual size: 31KB

coddok
Size: 4KB - Virtual size: 1KB

.idata
Size: 8KB - Virtual size: 8KB