d6d10b0b42a2f2db81d2fa3552247858_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

d6d10b0b42a2f2db81d2fa3552247858_JaffaCakes118
Size

125KB
MD5

d6d10b0b42a2f2db81d2fa3552247858
SHA1

13135fb1c5005387a0ddf390a6ee2ab434a7a058
SHA256

b5a48cf68fd952d39e7f062a99b9cb7ccba82a9e6b34d493065058b5119cabef
SHA512

77a86973b437a249081cbbb626378da066deaf4f5d47b9da8cc1633531cbcc5061921e22b2f86edc668270ff161263bc636916f9c98bae59407767a1c1e29ac3
SSDEEP

3072:ZSLXvoR7sKHUyA4PEewXGn0IKw5WgY9c4j8n7yL9RmhYhv:ZQwUy9Pf2G0c5S7hRV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d6d10b0b42a2f2db81d2fa3552247858_JaffaCakes118

Files

d6d10b0b42a2f2db81d2fa3552247858_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8bf6c5a2a62c8929576476fb66e1d05c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RtlUnwind
HeapAlloc
GetStartupInfoA
GetCommandLineA
ExitProcess
RaiseException
TerminateProcess
HeapReAlloc
HeapSize
GetACP
HeapDestroy
HeapCreate
SetFilePointer
HeapFree
GetVersion
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetStringTypeA
GetStringTypeW
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
SetStdHandle
_lopen
GetLastError
Sleep
_lread
_lwrite
lstrlenA
FlushFileBuffers
WriteFile
SetErrorMode
GetCurrentProcess
GetCPInfo
GetOEMCP
LocalReAlloc
SizeofResource
TlsGetValue
TlsFree
TlsSetValue
GlobalReAlloc
LocalAlloc
GlobalHandle
TlsAlloc
GetProcessVersion
GlobalFlags
lstrcpynA
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
SetLastError
InitializeCriticalSection
MulDiv
VirtualFree
lstrcatA
_llseek
VirtualAlloc
GlobalAlloc
lstrcpyA
WritePrivateProfileStringA
GetCurrentThread
GetCurrentThreadId
GlobalGetAtomNameA
_lclose
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
GlobalLock
GlobalUnlock
lstrcmpA
FindResourceA
LoadResource
LockResource
GlobalFree
LocalFree
MultiByteToWideChar
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
GetModuleFileNameA
WinExec
GetProfileStringA
GetProcAddress
CloseHandle
GetModuleHandleA
FreeLibrary
LoadLibraryA
LCMapStringA
LCMapStringW
IsBadWritePtr

user32

IsWindowVisible
CopyRect
ScreenToClient
AdjustWindowRectEx
DispatchMessageA
PeekMessageA
GetSysColor
MapWindowPoints
UpdateWindow
PostQuitMessage
SetCursor
GetCursorPos
ValidateRect
TranslateMessage
GetMessageA
ClientToScreen
GetDC
ReleaseDC
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
LoadStringA
LoadCursorA
GetSysColorBrush
GetClassNameA
PtInRect
DestroyMenu
InvalidateRect
GetTopWindow
WinHelpA
wsprintfA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetKeyState
DefWindowProcA
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetForegroundWindow
SetForegroundWindow
GetWindow
RegisterWindowMessageA
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
EndDialog
CreateDialogIndirectParamA
DestroyWindow
GetWindowTextLengthA
GetWindowTextA
SendDlgItemMessageA
GetWindowRect
MapDialogRect
SetWindowPos
ShowWindow
GetCapture
GetActiveWindow
SetActiveWindow
GetAsyncKeyState
SetFocus
GetDlgItem
UnhookWindowsHookEx
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetParent
GetLastActivePopup
IsWindowEnabled
GetWindowLongA
MessageBoxA
IsIconic
GetSystemMetrics
GetClientRect
DrawIcon
SendMessageA
LoadIconA
EnableWindow
PostMessageA
GetMenuItemID
GetDlgCtrlID
SetWindowLongA
IsDialogMessageA
SetWindowTextA
IsWindow
ShowCaret
IsWindowUnicode
CharNextA
InflateRect
DefDlgProcA
DrawFocusRect
ExcludeUpdateRgn
HideCaret
UnregisterClassA

gdi32

CreateBitmap
GetClipBox
SetTextColor
SetBkColor
GetObjectA
DeleteDC
SaveDC
RestoreDC
SelectObject
GetStockObject
SetBkMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
IntersectClipRect
DeleteObject
GetDeviceCaps
CreateSolidBrush
PtVisible
TextOutA
ExtTextOutA
RectVisible
Escape
CreateDIBitmap
BitBlt
GetTextExtentPointA
CreateCompatibleDC
PatBlt

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegCloseKey
RegSetValueExA
RegOpenKeyExA
RegCreateKeyExA

comctl32

CreatePropertySheetPageA
PropertySheetA
ord17
DestroyPropertySheetPage

Sections

.rdata
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 98KB - Virtual size: 364KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8bf6c5a2a62c8929576476fb66e1d05c

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

advapi32

comctl32

Sections

.rdata Size: 23KB - Virtual size: 23KB

.data Size: 98KB - Virtual size: 364KB

.rsrc Size: 2KB - Virtual size: 1KB

.rdata
Size: 23KB - Virtual size: 23KB

.data
Size: 98KB - Virtual size: 364KB

.rsrc
Size: 2KB - Virtual size: 1KB