c8c9d9935267787fafb1820b1b302225_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

c8c9d9935267787fafb1820b1b302225_JaffaCakes118
Size

33KB
MD5

c8c9d9935267787fafb1820b1b302225
SHA1

4b8ce122ff5a76c535f9dd2ab12e231f0287df22
SHA256

b908886c230308774544546c7f639508622bf263df8908ec2e67c3291dcdf14f
SHA512

f961272f2f39fced542c5bd19692e4f6b14cf9d85278839917d71c4d07f936e909f9c97981c6db53bb777f0704d6bcfb24adf55809cd89f861098c21c5782b28
SSDEEP

384:M45pNTCJ6HBP34b0dZIXI+Er/mx9Vz12X/HQGDbrbfbV7zLxd2J:MOHTCJAPZQxm/mNz12PLDb3d

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c8c9d9935267787fafb1820b1b302225_JaffaCakes118

Files

c8c9d9935267787fafb1820b1b302225_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a0986fbaf976bec302011b6b97037984

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BackupRead
BackupSeek
BeginUpdateResourceW
BuildCommDCBA
CancelWaitableTimer
CloseHandle
ConvertThreadToFiber
CreateMailslotW
CreateToolhelp32Snapshot
DisableThreadLibraryCalls
EnumCalendarInfoW
EnumResourceLanguagesW
EnumResourceNamesA
EnumSystemLocalesW
ExitProcess
ExpungeConsoleCommandHistoryW
FindNextFileA
FlushFileBuffers
FormatMessageW
FreeLibrary
GetCPInfoExA
GetCPInfoExW
GetCommTimeouts
GetCommandLineW
GetComputerNameW
GetConsoleAliasesLengthW
GetConsoleFontSize
GetConsoleInputWaitHandle
GetConsoleKeyboardLayoutNameW
GetConsoleWindow
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetDateFormatA
GetExitCodeThread
GetFileTime
GetFullPathNameA
GetLastError
GetLocalTime
GetLongPathNameA
GetModuleHandleW
GetNumberFormatW
GetOverlappedResult
GetPriorityClass
GetProcessVersion
GetShortPathNameW
GetStartupInfoA
GetStartupInfoW
GetStringTypeExW
GetSystemDirectoryA
GetSystemTime
GetTapeParameters
GetTempFileNameW
GetVersion
GlobalAddAtomW
GlobalHandle
HeapCompact
HeapDestroy
HeapReAlloc
HeapSummary
InterlockedExchange
InterlockedExchangeAdd
InterlockedIncrement
LoadLibraryExW
LoadModule
MapViewOfFileEx
MultiByteToWideChar
OpenWaitableTimerA
PrepareTape
Process32Next
PulseEvent
ReadConsoleA
ReadConsoleInputExW
ReadConsoleOutputW
ReadConsoleOutputCharacterA
ReadConsoleOutputCharacterW
ReadProcessMemory
RegisterConsoleVDM
ReleaseMutex
ReleaseSemaphore
SetCommState
SetCommTimeouts
SetConsoleFont
SetConsoleHardwareState
SetConsoleNumberOfCommandsW
SetFileAttributesW
SetLastError
SetNamedPipeHandleState
SetSystemTime
SetThreadPriorityBoost
SetTimeZoneInformation
SetVolumeLabelA
VirtualProtect
WaitForSingleObject
WaitForSingleObjectEx
WaitNamedPipeA
WideCharToMultiByte
WriteConsoleOutputCharacterW
WritePrivateProfileStringA
lstrcmpA
lstrcmpW
lstrcmpiA
lstrcmpiW

user32

ArrangeIconicWindows
BroadcastSystemMessageW
CallNextHookEx
CallWindowProcW
CharToOemBuffA
CharToOemBuffW
CharUpperA
CharUpperW
CharUpperBuffW
CheckDlgButton
ChildWindowFromPoint
CountClipboardFormats
CreateDialogParamW
CreateWindowExA
DdeConnectList
DdeGetData
DdeUninitialize
DefMDIChildProcW
DeferWindowPos
DeleteMenu
DlgDirSelectExA
DrawTextA
EditWndProc
EmptyClipboard
GetClassInfoA
GetClassInfoExA
GetClassLongW
GetClassNameA
GetClipCursor
GetCursor
GetCursorInfo
GetDesktopWindow
GetDialogBaseUnits
GetFocus
GetForegroundWindow
GetKBCodePage
GetMenu
GetMessagePos
GetParent
GetPropA
GetQueueStatus
GetSystemMenu
GetWindowDC
GetWindowTextW
GetWindowWord
HiliteMenuItem
InsertMenuItemW
IsChild
IsDialogMessageA
IsDlgButtonChecked
LoadCursorW
LoadStringW
LookupIconIdFromDirectory
NotifyWinEvent
PostMessageA
PostThreadMessageW
RealChildWindowFromPoint
RealGetWindowClassA
RegisterClassExA
SendNotifyMessageW
SetClipboardViewer
SetDlgItemTextA
SetDlgItemTextW
SetLayeredWindowAttributes
SetScrollPos
SetSystemCursor
TrackPopupMenu
TrackPopupMenuEx
TranslateAcceleratorW
UnhookWindowsHook

gdi32

BitBlt
CreateBrushIndirect
CreateCompatibleDC
CreateHatchBrush
CreatePenIndirect
CreateScalableFontResourceW
DeleteEnhMetaFile
EnumFontFamiliesExW
ExtCreatePen
ExtTextOutA
GdiComment
GdiGetBatchLimit
GetBkColor
GetBkMode
GetBoundsRect
GetCharWidthFloatW
GetClipBox
GetClipRgn
GetColorSpace
GetCurrentObject
GetEnhMetaFileA
GetEnhMetaFileBits
GetEnhMetaFileDescriptionW
GetObjectType
GetPath
GetPixel
GetTextFaceA
GetViewportOrgEx
GetWinMetaFileBits
GetWindowExtEx
GetWorldTransform
LineTo
PlayMetaFileRecord
PolyTextOutA
Polygon
PolylineTo
Rectangle
ScaleViewportExtEx
SelectBrushLocal
SetICMMode
SetMetaRgn
SetPolyFillMode
SetRelAbs
UpdateICMRegKeyA

Sections

.text
Size: 5KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.msrO
Size: 4KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.nqJj
Size: 4KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a0986fbaf976bec302011b6b97037984

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 5KB - Virtual size: 6KB

.data Size: 17KB - Virtual size: 24KB

.msrO Size: 4KB - Virtual size: 12KB

.nqJj Size: 4KB - Virtual size: 12KB

.reloc Size: 1024B - Virtual size: 7KB

.text
Size: 5KB - Virtual size: 6KB

.data
Size: 17KB - Virtual size: 24KB

.msrO
Size: 4KB - Virtual size: 12KB

.nqJj
Size: 4KB - Virtual size: 12KB

.reloc
Size: 1024B - Virtual size: 7KB