ba9ecd02afffbf0506c4f9add2b7d6c0_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

ba9ecd02afffbf0506c4f9add2b7d6c0_JaffaCakes118
Size

92KB
MD5

ba9ecd02afffbf0506c4f9add2b7d6c0
SHA1

c59b6bcfae1349cd7a11fcf63f31e38d4637f4fb
SHA256

19fae121f001d126e7f8b10131f56d1a83b85602865680c3c1509f85a594a6a8
SHA512

ddb7fa4e5b16d90e67ce05491aaf95f5cf602f7fdc553dbb21711ca3b4fc320cd2ba1bdbf974b9403e2a0790a1876fd0c5337f157f72e66974eeb9f6ed44c929
SSDEEP

1536:YyLAVbsB58Zi9wHTKJ0099YxCUhNKkJbal4lgPJu2xRbeoWHYC6:YyLwbsBwHe9KCUrKZ+2xRbevHL6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ba9ecd02afffbf0506c4f9add2b7d6c0_JaffaCakes118

Files

ba9ecd02afffbf0506c4f9add2b7d6c0_JaffaCakes118
.exe windows:1 windows x86 arch:x86

c04cd07cb6c07640f52e0025598a3d75

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mapi32

ord21
ord13
ord17
ord23
ord11

kernel32

GetCPInfo
GetStdHandle
GetFileType
GetOEMCP
GetACP
TlsFree
IsBadReadPtr
ExitProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
SetStdHandle
GetCurrentThreadId
LoadLibraryA
GetProcAddress
FreeLibrary
lstrcmpA
SetErrorMode
RaiseException
GetCommandLineA
GetEnvironmentStrings
GetStartupInfoA
RtlUnwind
GlobalAlloc
GlobalLock
lstrcatA
lstrcpyA
GetModuleFileNameA
GetFullPathNameA
GetVolumeInformationA
FlushFileBuffers
SetFilePointer
WriteFile
DeleteCriticalSection
InitializeCriticalSection
GetModuleHandleA
WritePrivateProfileStringA
SetLastError
LocalFree
LocalAlloc
TlsGetValue
LoadResource
LockResource
FreeResource
GlobalAddAtomA
GetLastError
MultiByteToWideChar
TlsAlloc
GetVersion
lstrcmpiA
FindResourceA
lstrlenA
CloseHandle
TlsSetValue
EnterCriticalSection
LeaveCriticalSection
GlobalFree
GlobalDeleteAtom
GetCurrentThread
IsBadCodePtr
VirtualFree
VirtualAlloc
IsBadWritePtr

user32

SetPropA
AdjustWindowRectEx
GetSysColor
SetRect
GetSystemMetrics
SystemParametersInfoA
SendDlgItemMessageA
IsDialogMessageA
GetDC
ReleaseDC
TabbedTextOutA
DrawTextA
GrayStringA
LoadCursorA
CharUpperA
OemToCharA
CharToOemA
DestroyMenu
RegisterWindowMessageA
GetTopWindow
GetDlgCtrlID
GetCapture
WinHelpA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
DefWindowProcA
DestroyWindow
CreateWindowExA
RemovePropA
CallWindowProcA
GetMessageTime
GetMessagePos
GetForegroundWindow
SetWindowLongA
DialogBoxIndirectParamA
DialogBoxParamA
GetWindow
LoadStringA
GetWindowTextA
SetWindowTextA
GetWindowLongA
GetClassNameA
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetParent
GetNextDlgTabItem
SetFocus
GetMessageA
TranslateMessage
DispatchMessageA
GetKeyState
CallNextHookEx
ValidateRect
PeekMessageA
GetCursorPos
UnhookWindowsHookEx
SetWindowsHookExA
EnableWindow
IsWindowEnabled
GetLastActivePopup
SetCursor
SetWindowPos
IsWindowVisible
ShowWindow
UpdateWindow
PostMessageA
PostQuitMessage
GetDlgItem
SendMessageA
EndDialog
GetFocus
wsprintfA
MessageBoxA
SetForegroundWindow
GetWindowRect
GetPropA
SetMessageQueue
LoadIconA

gdi32

SetBkColor
SetTextColor
DeleteObject
SaveDC
CreateBitmap
SelectObject
GetStockObject
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
DeleteDC
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
GetObjectA
GetClipBox
GetDeviceCaps
CreatePen
CreateSolidBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetTextExtentPointA
CreateFontIndirectA
RestoreDC

comdlg32

GetOpenFileNameA
GetSaveFileNameA

winspool.drv

ClosePrinter
OpenPrinterA
DocumentPropertiesA

advapi32

RegCloseKey
RegCreateKeyExA
RegOpenKeyExA
RegSetValueExA

Sections

.text
Size: 53KB - Virtual size: 53KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 12KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c04cd07cb6c07640f52e0025598a3d75

Headers

File Characteristics

Imports

mapi32

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

Sections

.text Size: 53KB - Virtual size: 53KB

.bss Size: - Virtual size: 12KB

.rdata Size: 6KB - Virtual size: 6KB

.data Size: 9KB - Virtual size: 8KB

.idata Size: 5KB - Virtual size: 4KB

.rsrc Size: 8KB - Virtual size: 8KB

.reloc Size: 8KB - Virtual size: 7KB

.text
Size: 53KB - Virtual size: 53KB

.bss
Size: - Virtual size: 12KB

.rdata
Size: 6KB - Virtual size: 6KB

.data
Size: 9KB - Virtual size: 8KB

.idata
Size: 5KB - Virtual size: 4KB

.rsrc
Size: 8KB - Virtual size: 8KB

.reloc
Size: 8KB - Virtual size: 7KB