c98e5ec95457f197dc5efafb3d0dc645_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

c98e5ec95457f197dc5efafb3d0dc645_JaffaCakes118
Size

203KB
MD5

c98e5ec95457f197dc5efafb3d0dc645
SHA1

311d6fb586507bc66ce298b6c850eccd5a6267d8
SHA256

d91475bd8db9b0da55137315956a4de11f84179338747a019c10fe88e2bc3414
SHA512

9d930e98aea137cafed60b3d2e1d1fef8b2ecde1eb841d67d29e7d47e6ee926d6e065b4889ef30fb6fe95c1c8a695570000300c2e6a3787cba994b9244c91e85
SSDEEP

6144:oZjWit0CSxHZRed4uszU/Gwsli8nA69c2CnSzsecAVJHpx:+x7gHDG18/DligAtna4AzT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c98e5ec95457f197dc5efafb3d0dc645_JaffaCakes118

Files

c98e5ec95457f197dc5efafb3d0dc645_JaffaCakes118
.exe windows:1 windows x86 arch:x86

6496ba49901e793c004ae43910939094

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

OpenEventA
LCMapStringA
GetFullPathNameA
WriteConsoleA
LockFileEx
GetModuleHandleA
GetFileType
SetFilePointer
OpenJobObjectA
GetConsoleKeyboardLayoutNameA
SystemTimeToFileTime
GetLastError
LZSeek
SetThreadPriority
IsBadStringPtrA
VirtualAllocEx
Module32First
SetLocalPrimaryComputerNameA
GetConsoleSelectionInfo
CreateFileMappingA
GetPrivateProfileStructA
GlobalUnWire
GetProcessTimes
SetConsoleCursorInfo
EnumResourceLanguagesA
IsDebuggerPresent
OpenProcess
_hread
ReadConsoleInputA
FindFirstFileExW
GetEnvironmentVariableA
GetFileSizeEx
SetConsoleLocalEUDC
UpdateResourceA
DisconnectNamedPipe
UnlockFileEx
EnumResourceTypesA
_lcreat
GetConsoleOutputCP
GetCommandLineA
ReadConsoleA
SetEndOfFile
GetStringTypeA
SetConsoleTextAttribute
GetThreadTimes
HeapSize
FindVolumeClose
GetEnvironmentStringsA
SetConsoleCursorMode
Module32Next
GetPrivateProfileStringA
WriteProcessMemory
Heap32First
GetTickCount
TransactNamedPipe
ConnectNamedPipe
IsValidLanguageGroup
GetLocalTime
HeapSummary
GetProcessPriorityBoost
SetFileAttributesA
ReadConsoleOutputAttribute
WriteConsoleOutputAttribute
ClearCommError
GetThreadLocale
GetVersionExA
SetSystemTimeAdjustment
PulseEvent
lstrcmpA
ReleaseSemaphore
GetConsoleMode
GetNumberOfConsoleMouseButtons
GetSystemTime
GlobalUnfix

user32

GetClassNameA
AnimateWindow
GetPriorityClipboardFormat
CopyRect
DrawTextExA
GetWindowRect
TileWindows
CharPrevExA
PrivateExtractIconsA
InSendMessage
SetTaskmanWindow
IsDialogMessage
BringWindowToTop
AppendMenuA
DlgDirListComboBoxW
MenuItemFromPoint
InsertMenuItemA
GetDesktopWindow
MapDialogRect
GetKeyboardLayoutList
ArrangeIconicWindows
LoadIconA
GetClassInfoExA
PostThreadMessageA
SetWindowStationUser
CallWindowProcA
SetInternalWindowPos
EnumPropsExA
IsRectEmpty
MenuWindowProcA
GetWindowTextA
SetLastErrorEx
AdjustWindowRectEx
HiliteMenuItem
EnumDisplayMonitors
SwitchToThisWindow
ChangeDisplaySettingsExW
SetMessageQueue
GetMenuBarInfo
GetWindowTextA
RealGetWindowClass
EnumClipboardFormats
GetRawInputData
GetDlgItemInt
GetWindowInfo
SetProcessWindowStation
GetClipboardOwner
RegisterLogonProcess
PtInRect
TrackPopupMenuEx
DialogBoxParamA
DrawStateA
UnloadKeyboardLayout
SetMenuInfo
GetKBCodePage
OemToCharBuffA
SetProcessDefaultLayout
SetWindowTextA
CloseWindowStation
LoadIconA
RegisterWindowMessageA
LoadStringA
CreateWindowExA
SetScrollInfo
GetMenuItemCount
SetWindowLongA
DlgDirSelectComboBoxExA
PostMessageA
TranslateAcceleratorA

advapi32

AddAccessDeniedObjectAce

Sections

.text
Size: 197KB - Virtual size: 200KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 3KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6496ba49901e793c004ae43910939094

Headers

File Characteristics

Imports

kernel32

user32

advapi32

Sections

.text Size: 197KB - Virtual size: 200KB

.idata Size: 3KB - Virtual size: 44KB

.rsrc Size: 2KB - Virtual size: 4KB

.text
Size: 197KB - Virtual size: 200KB

.idata
Size: 3KB - Virtual size: 44KB

.rsrc
Size: 2KB - Virtual size: 4KB