d2a1c2067440b63d417a02f07abf5e77_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

d2a1c2067440b63d417a02f07abf5e77_JaffaCakes118
Size

400KB
MD5

d2a1c2067440b63d417a02f07abf5e77
SHA1

94d9203a1fe9015c21ee8ad8d95c3a55e13340b3
SHA256

14d971b20e73801e8ed335c32cd5bc2359b91422d39d57d53ac02bbb815ef36f
SHA512

5908aeedf43a8a719607d7e70a6f44739006177fed3f84d804493a73e70bad14f5e3b8ea2035783c7bb43b57298c8a5b0f9419d3d00e42583f3b03ed1a689669
SSDEEP

3072:jrtf45clHUZT64r+B/DpjxqdMt1M2vGy/Y0D81KElx7/vAwROxNxe4+OePNMwp7:9Bwd+d7qquCD81GuiE3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d2a1c2067440b63d417a02f07abf5e77_JaffaCakes118

Files

d2a1c2067440b63d417a02f07abf5e77_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3ab43ce637ee6c6f60f2d6ef98157cdc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetVolumeLabelA
GetStartupInfoA
SetCommTimeouts
SetFileAttributesA
FlushInstructionCache
UnlockFileEx
FileTimeToDosDateTime
GetStringTypeA
MultiByteToWideChar
VirtualAlloc
GetVolumePathNameA
ConnectNamedPipe
ResumeThread
GetCommandLineA
Module32First
GetThreadSelectorEntry
SetConsoleInputExeNameA
GetFileTime
VirtualFreeEx
DeleteTimerQueueTimer
GetSystemDirectoryA
SetThreadLocale
SetHandleInformation
GetWindowsDirectoryA
SizeofResource
GetConsoleMode
GetThreadSelectorEntry
LZSeek
FindVolumeMountPointClose
GetVersionExA
LZClose
lstrcatA
GetTickCount
IsProcessorFeaturePresent
LocalUnlock
GetProcessHeap
GetFileInformationByHandle
GetDriveTypeA
GetOverlappedResult
CallNamedPipeA
lstrcpynA
ReadConsoleOutputCharacterA
OpenEventA
CreateDirectoryA
FindVolumeClose
CreateSemaphoreA
GetCommState
DisconnectNamedPipe
FlushConsoleInputBuffer
VerifyVersionInfoA
SetEvent
GetCurrentConsoleFont
LocalAlloc
GetLocaleInfoA
_llseek
SetTimerQueueTimer
GetConsoleAliasExesLengthA
SetConsoleMaximumWindowSize
GetConsoleTitleA
GetCurrentProcess
SystemTimeToTzSpecificLocalTime
WriteConsoleOutputCharacterA
OpenFileMappingA
ProcessIdToSessionId
SetConsoleCursor
SearchPathA
GetThreadLocale
GetVersionExA
GetNumberOfConsoleMouseButtons
SetConsoleScreenBufferSize
SetInformationJobObject
TermsrvAppInstallMode
SetProcessPriorityBoost
GetDllDirectoryA
lstrcat
GetConsoleAliasExesW
GetProcessHandleCount
WriteConsoleOutputCharacterW
ClearCommError
GetDiskFreeSpaceA
_hread
GetCommTimeouts
GetSystemTimeAsFileTime
ReadConsoleOutputAttribute
GetProcessId
HeapDestroy
UnlockFile
OpenWaitableTimerA
CopyFileExA
WriteProfileStringA
ChangeTimerQueueTimer
GetTapePosition
ReleaseSemaphore
LZRead
QueueUserWorkItem
FlushConsoleInputBuffer
SetConsoleCursorPosition
SetCurrentDirectoryA
GetConsoleAliasExesLengthA
SetErrorMode
OpenSemaphoreA
RemoveDirectoryA
CancelWaitableTimer
GetFileInformationByHandle
GetConsoleTitleA
ExpandEnvironmentStringsA
GetFileType
GetTempPathA
OpenFileMappingA
GetProfileIntA
GetProcessVersion
GlobalSize
ReadConsoleOutputCharacterA
GetDiskFreeSpaceExA
PurgeComm
CloseHandle
FreeConsole
IsProcessorFeaturePresent
GetFileInformationByHandle
GetSystemTime
OpenSemaphoreA
HeapSummary
CreateThread
GetExpandedNameA
IsValidLanguageGroup
EscapeCommFunction
GetEnvironmentStringsA
WriteConsoleOutputA
LoadModule
SetThreadExecutionState
OpenEventA
GetTickCount
_lread
OpenEventA
SetConsoleTextAttribute
RegisterWaitForSingleObject
GetComputerNameExA
SetInformationJobObject
SetSystemPowerState
RegisterWaitForInputIdle
DeleteFileA
GetPrivateProfileStringA
GetDiskFreeSpaceExA
GetEnvironmentStringsA
BuildCommDCBAndTimeoutsW
BuildCommDCBA
ReadConsoleOutputA
GetLogicalDrives
GetProcessVersion
GetLocaleInfoA
SetFilePointer
SetEndOfFile
lstrlen
GetProcessVersion
GetCPInfoExA
WideCharToMultiByte
VirtualProtectEx
GetLocaleInfoA
SetFileShortNameA
GetFullPathNameA
GetThreadLocale
PeekConsoleInputA
GlobalFindAtomA
HeapSize
WaitCommEvent
GetPriorityClass
GetCommMask
MoveFileWithProgressA
GetFileAttributesExA
GetConsoleMode
GetExitCodeProcess
WriteConsoleOutputAttribute
WaitCommEvent
GetComputerNameA
GetProcessVersion
GetModuleFileNameA
FindFirstFileExA
OpenMutexA

user32

SetForegroundWindow
IsServerSideWindow
GetWindowModuleFileNameA
OpenIcon
UpdateWindow
SendNotifyMessageA
CopyRect
GetPriorityClipboardFormat
GetNextDlgTabItem
GetKeyboardLayoutList
ArrangeIconicWindows
MessageBoxTimeoutA
FindWindowExA
GetWinStationInfo
AnyPopup
CheckDlgButton
CreateDialogParamA
IsWindowVisible
FindWindowA
DestroyCursor
SetSysColors
GetRawInputDeviceList
SendInput
CreateDialogParamA
InSendMessage
TabbedTextOutA
GetMenuState
ChangeMenuA
GetActiveWindow
SetPropA
GetWindowTextA
GetNextDlgTabItem
CreateCursor
EnumChildWindows
GetAncestor
GetCapture
DrawEdge
SetWindowsHookExA
GetKeyNameTextA
DestroyCursor
CountClipboardFormats
GetProgmanWindow
GetDialogBaseUnits
GetAsyncKeyState
SetKeyboardState
SetCapture
ReplyMessage
IsCharLowerA
GetAppCompatFlags2
CharToOemA
KillTimer
GetDlgItemTextA
NotifyWinEvent
GetMonitorInfoA
EnableWindow
GetForegroundWindow
IsDialogMessageA
GetDesktopWindow
IsCharAlphaA
NotifyWinEvent
SetParent
DragObject
DefMDIChildProcA
ChangeDisplaySettingsA
GetAppCompatFlags
RemoveMenu
SetDoubleClickTime
MapVirtualKeyExA
InternalGetWindowText
DisableProcessWindowsGhosting
CreateDesktopA
FrameRect
GetUserObjectInformationA
GetComboBoxInfo
CreateDialogParamA
GetMouseMovePointsEx
SetMenuInfo
CallMsgFilterA
IsCharAlphaNumericA
GetNextDlgGroupItem
FreeDDElParam
ToUnicode
AnyPopup
GetMenuCheckMarkDimensions
ShowCursor
TrackPopupMenuEx
GetClassNameA
OemToCharBuffA
GetCursorFrameInfo

ws2_32

closesocket

Exports

Exports

CloseWaekaruh
CloseNycwbkevtff
Ncugwellkuj
Laesdbtymyn
Yhafwxrb
InitLgrtveqb

Sections

.itext
Size: - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 56KB - Virtual size: 667KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 256KB - Virtual size: 252KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 84KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3ab43ce637ee6c6f60f2d6ef98157cdc

Headers

File Characteristics

Imports

kernel32

user32

ws2_32

Exports

Exports

Sections

.itext Size: - Virtual size: 3KB

.text Size: 56KB - Virtual size: 667KB

.idata Size: 256KB - Virtual size: 252KB

.rsrc Size: 84KB - Virtual size: 81KB

.itext
Size: - Virtual size: 3KB

.text
Size: 56KB - Virtual size: 667KB

.idata
Size: 256KB - Virtual size: 252KB

.rsrc
Size: 84KB - Virtual size: 81KB