ba2b4c958d04ec00caba6cb92cd7b66a_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

ba2b4c958d04ec00caba6cb92cd7b66a_JaffaCakes118
Size

396KB
MD5

ba2b4c958d04ec00caba6cb92cd7b66a
SHA1

b58202fbd769f31d5178c420de78cc7b4579a78c
SHA256

db61778bf3ed0d2724ba35074b0f49846d94748685cb44d3c4039b858753d204
SHA512

5174f1038ce49f2365c6fcb7fb3e663f142d64cfcb86bf26303da202b3c241d5bcf57e3b8d311782009ab5f315ac7b71f18edc7c807dd0b093ced66865b7448f
SSDEEP

6144:MiG4IDmaaZaLeAJ/coDOt5cfKDt8IYCi7:MU4XvDOt5QAwCi7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ba2b4c958d04ec00caba6cb92cd7b66a_JaffaCakes118

Files

ba2b4c958d04ec00caba6cb92cd7b66a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e2a262328194d6aa3be96f8c280db50e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CancelWaitableTimer
GetAtomNameA
WriteConsoleA
_hread
FileTimeToSystemTime
RegisterWaitForSingleObject
_lread
ReleaseSemaphore
SuspendThread
IsBadWritePtr
EnumResourceLanguagesA
SetFirmwareEnvironmentVariableA
lstrcmpA
GetFileInformationByHandle
SetEndOfFile
GetExitCodeThread
lstrlen
ReplaceFile
lstrcat
GetPrivateProfileStringA
OutputDebugStringA
LoadLibraryExA
PeekNamedPipe
GetModuleHandleA
GetModuleFileNameA
SetProcessWorkingSetSize
GetLogicalDrives
GetNumberFormatA
GetExitCodeProcess
ReadConsoleA
OpenEventA
GetVersionExA
GetTickCount
GetFileTime
GetEnvironmentVariableA
LZClose
VerifyVersionInfoA
SetConsoleCursorPosition
BeginUpdateResourceA
ChangeTimerQueueTimer
GetUserGeoID
VirtualAlloc
SetFilePointerEx
IsBadReadPtr
IsBadStringPtrA
ClearCommBreak
EnumSystemLocalesA
SizeofResource
SetFileApisToOEM
SetDllDirectoryA
GetAtomNameA
WaitForDebugEvent
GetVersionExA
GetConsoleCharType
SetThreadExecutionState
GetSystemWindowsDirectoryA
SetFileAttributesA
GetDriveTypeA
ResetWriteWatch
DisconnectNamedPipe
GetTickCount
GetProcessVersion
VirtualQuery
GetCurrentProcessId
SetHandleInformation
GetPrivateProfileStringA
AddConsoleAliasA
LZInit
GetConsoleKeyboardLayoutNameA
ReadConsoleOutputCharacterA
GetSystemWindowsDirectoryA
ReadFile
GlobalGetAtomNameA
EndUpdateResourceA
LZRead
OpenSemaphoreA
OpenJobObjectA
GetVolumePathNameA
FindNextVolumeMountPointA
ProcessIdToSessionId
LocalLock
SetConsoleTitleA
GetFileType
QueueUserAPC
LZCloseFile
GlobalCompact
GetLongPathNameA
lstrcmpi
LZSeek
MoveFileExA
GetFileSize
GlobalFix
HeapSize
CopyFileExA
RemoveDirectoryA
SetHandleContext
FlushConsoleInputBuffer
GetConsoleAliasExesLengthW
WriteProfileSectionA
SetCommTimeouts
WaitForMultipleObjectsEx
GetCommModemStatus
ClearCommError
IsBadCodePtr
GetTempPathA
GetConsoleAliasExesLengthA
GetConsoleAliasesA
SetTimerQueueTimer
GetExitCodeProcess
ExpandEnvironmentStringsA
lstrcatA
WriteConsoleOutputA
GetEnvironmentStringsA
_hwrite
BuildCommDCBAndTimeoutsA
ReadFileScatter
LocalCompact
WaitForDebugEvent
OpenSemaphoreA
ResumeThread
GetThreadIOPendingFlag
FlushViewOfFile
UnlockFile
CloseHandle
GlobalSize
BeginUpdateResourceA
WritePrivateProfileStructA
CreateTimerQueueTimer
Heap32First
GetTempPathA
GetCommState
GetTapeStatus
ChangeTimerQueueTimer
GetSystemTimes
HeapCreate
GetProcessIoCounters
CreateEventA
GetDevicePowerState
GetTempPathA
GetCommandLineA
DisconnectNamedPipe
SetEvent
lstrlenA
SetDllDirectoryA
EnumResourceTypesA
SetTimerQueueTimer
GetProcessId
SetEvent
GetDllDirectoryA
GetTickCount
SetInformationJobObject
WriteConsoleOutputAttribute
GetDiskFreeSpaceExA
GetProcessShutdownParameters
BuildCommDCBA
CopyFileExA
GetCPInfoExA
GetCommandLineA
GetConsoleFontInfo
VirtualFree
GetFileAttributesA
PurgeComm
WriteFileGather
GetConsoleCommandHistoryLengthA
GetConsoleTitleA
OpenJobObjectA
GetProcessId
EnumResourceTypesA
OpenWaitableTimerA
GetProcessHandleCount
WriteProfileStringA
GetConsoleAliasesLengthW
GetEnvironmentStringsA
FindFirstChangeNotificationA
GetProcAddress
GetProcessId
IsWow64Process
SetCommState
GetNumberOfConsoleMouseButtons
GetProcessHeap
GlobalCompact
SetLocalPrimaryComputerNameA
GetNamedPipeHandleStateA

user32

GetScrollBarInfo
SetWindowsHookExA
SetLastErrorEx
GetWindowTextA
GetMonitorInfoA
MapVirtualKeyExW
LoadImageA
SetMenuContextHelpId
CloseDesktop
EnumPropsExW
EnumWindowStationsA
LoadCursorFromFileA
AnimateWindow
SetDoubleClickTime
DefRawInputProc
DeferWindowPos
CliImmSetHotKey
RegisterUserApiHook
SetScrollRange
GetDlgItemInt
GetKeyboardLayoutList
OemToCharA
GetInputState
DrawTextExA
GetSystemMenu
UnregisterClassA
SetCaretPos
SetSysColors
GetPropA
GetInputState
DestroyReasons
IsChild
LoadCursorA
GetTabbedTextExtentA
RegisterLogonProcess
SetProgmanWindow
ToUnicodeEx
MessageBoxTimeoutA
CreateDialogParamA
BeginDeferWindowPos
SetMenuItemInfoA
SetWindowPos
AdjustWindowRect
GetSysColor
GetMenuStringA
CountClipboardFormats
GetQueueStatus
GetDesktopWindow
GetScrollRange
ChangeMenuA
GetMessageTime
CopyIcon
GetMenu
GetInternalWindowPos
PeekMessageA
GetKeyNameTextA
OpenInputDesktop
BroadcastSystemMessageExA
RegisterUserApiHook
SetRect
SetWinEventHook
MessageBoxTimeoutA
RealGetWindowClassA
OemToCharBuffW
SetClassWord
MoveWindow
GetUserObjectInformationA
DrawTextExA
GetRawInputDeviceInfoA
CharNextExA
UnionRect
OpenWindowStationA
ExitWindowsEx
GetAppCompatFlags2
GetAppCompatFlags
MessageBoxTimeoutA
CharLowerBuffA
DisplayExitWindowsWarnings
GetClientRect
AppendMenuA
CreateIcon
RealGetWindowClassA
GrayStringA
GetClipboardData
GetLastActivePopup
DestroyIcon
AppendMenuA

ws2_32

closesocket

Exports

Exports

WriteVtixhxgqx
GetKhgnmslg
Iqgnowoiu
EndVcjdjvw
Uxgmmeatnd
Ichsxaegu

Sections

.itext
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 52KB - Virtual size: 679KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 268KB - Virtual size: 266KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e2a262328194d6aa3be96f8c280db50e

Headers

File Characteristics

Imports

kernel32

user32

ws2_32

Exports

Exports

Sections

.itext Size: - Virtual size: 3KB

.text Size: 52KB - Virtual size: 679KB

.idata Size: 268KB - Virtual size: 266KB

.rsrc Size: 72KB - Virtual size: 71KB

.itext
Size: - Virtual size: 3KB

.text
Size: 52KB - Virtual size: 679KB

.idata
Size: 268KB - Virtual size: 266KB

.rsrc
Size: 72KB - Virtual size: 71KB