ce308ad7a3bcccefba6f1d04bf998181_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

ce308ad7a3bcccefba6f1d04bf998181_JaffaCakes118
Size

282KB
MD5

ce308ad7a3bcccefba6f1d04bf998181
SHA1

9749eb6a82b7d0c8aef2717b46b1e898f3aad895
SHA256

8d2b8cc7a4241fd688955462411369872dadf4041010d04dd39d5fa82ce377f3
SHA512

938aa1202aeffe1da9a222f50544cae3768995abfd484006ba47a01abc95b02d9705428ed5dc8d77927fb1de1f3699234279c90509def80583c33c20b82f283d
SSDEEP

6144:kSzCBg+8vRwPzSXT6MFsGBSlYtHblP9ol:k0C2+0Ki2BGBSlMHn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ce308ad7a3bcccefba6f1d04bf998181_JaffaCakes118

Files

ce308ad7a3bcccefba6f1d04bf998181_JaffaCakes118
.exe windows:5 windows x86 arch:x86

dde85898ac4455dbdd43fa815a6b72c0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DrawEdge
GetDC
GetWindowContextHelpId
ValidateRect
CloseWindow
GetKeyboardLayout
GetWindowRect
CloseClipboard
ScreenToClient
SetSysColors
TileChildWindows
AppendMenuA
DdeGetData
RegisterClipboardFormatA
CreatePopupMenu
DrawMenuBar
RegisterWindowMessageW
SetWindowContextHelpId
CharPrevA
SetProcessDefaultLayout
GetClipCursor
UnpackDDElParam
GetMenuItemCount
IsDialogMessageA
DispatchMessageA
SetSysColorsTemp
GetFocus
EndPaint
ReleaseDC
IsWindowEnabled
GetWindowLongA
InsertMenuA
DdeConnect
DestroyWindow
BroadcastSystemMessageA
MoveWindow
DdeCmpStringHandles
OpenDesktopW
IsWindowVisible
GetSubMenu
CopyRect
OemToCharA
SwitchDesktop
SetPropW
RegisterHotKey
GetMessageA
GetSystemMenu
TranslateMessage
FlashWindow
SetWindowTextW
TranslateAcceleratorW
BeginPaint
PeekMessageA
CopyImage
SetWindowRgn
EnumThreadWindows

gdi32

SetBrushOrgEx
SelectPalette
PolyBezier
TextOutA
GetPixel
DeleteMetaFile
GetTextExtentPoint32W
CreateDiscardableBitmap
DeleteObject
GetTextColor
GetMiterLimit
CreateRoundRectRgn
LineDDA
SetTextAlign
GetBrushOrgEx
StretchBlt
LPtoDP
GetNearestColor

kernel32

MoveFileExA
CompareStringA
DeleteAtom
IsBadWritePtr
FillConsoleOutputCharacterW
WaitForSingleObject
GlobalHandle
lstrlenW
SetNamedPipeHandleState
lstrlenA
GetTickCount
LoadLibraryA
LoadLibraryExA
GetStartupInfoW
BackupWrite
HeapAlloc
CallNamedPipeW
ReadConsoleInputExW
WritePrivateProfileSectionA
GetModuleHandleExW
ReleaseSemaphore
TerminateJobObject
ShowConsoleCursor
OpenEventW
HeapSize
GetOEMCP
GetEnvironmentStrings
WriteProfileSectionA
GetFileSize
PeekConsoleInputW
GetVolumePathNameW
SetConsoleNumberOfCommandsW
SetConsoleTitleA
SetHandleInformation
UnmapViewOfFile
DeviceIoControl
HeapReAlloc
GetACP
GetProfileStringW
HeapLock
lstrcpynW
GetPrivateProfileIntW
HeapFree
IsDBCSLeadByte
ContinueDebugEvent
SetEndOfFile
OutputDebugStringW
WaitForMultipleObjectsEx

psapi

GetModuleBaseNameW
EnumProcesses
GetModuleFileNameExA

msvcrt

_vsnprintf
wcsspn
fprintf
iswspace
strchr
fwprintf
wcstok
strstr

imagehlp

ImageDirectoryEntryToData

ntdll

RtlRandomEx
memset

Exports

Exports

QmuAqJtzcFtxp@12
_ModifyRegistry@8
_SaveRegistry@12
OuaRgcmkXyoaett@16
IsdKmjwdalFSagMmu@8
ZzyHEsrflcyv@8

Sections

.code
Size: - Virtual size: 279KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 137B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 8B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 249KB - Virtual size: 249KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 592B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dde85898ac4455dbdd43fa815a6b72c0

Headers

File Characteristics

Imports

user32

gdi32

kernel32

psapi

msvcrt

imagehlp

ntdll

Exports

Exports

Sections

.code Size: - Virtual size: 279KB

.text Size: 22KB - Virtual size: 22KB

.rdata Size: 7KB - Virtual size: 7KB

.tls Size: 512B - Virtual size: 137B

.CRT Size: 512B - Virtual size: 8B

.rsrc Size: 249KB - Virtual size: 249KB

.reloc Size: 1024B - Virtual size: 592B

.code
Size: - Virtual size: 279KB

.text
Size: 22KB - Virtual size: 22KB

.rdata
Size: 7KB - Virtual size: 7KB

.tls
Size: 512B - Virtual size: 137B

.CRT
Size: 512B - Virtual size: 8B

.rsrc
Size: 249KB - Virtual size: 249KB

.reloc
Size: 1024B - Virtual size: 592B