de8a6b92a87bc8eb101e8448e763a3de_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

de8a6b92a87bc8eb101e8448e763a3de_JaffaCakes118
Size

607KB
MD5

de8a6b92a87bc8eb101e8448e763a3de
SHA1

fdbbe5ebc7840a6c2f9497b802ae6d3760a2702c
SHA256

be8e29b4acf137eeebe2ca3b7824d69deb6bf87f003aca2a958ba5159132efd4
SHA512

1b02613a8ec0c2bea015a2e54125402abc0c53df52894ad365436ec3ad37d76b444ad8154f533ae24d21bbecf031de7fcf1afc966a5bce352ff5625549c5e504
SSDEEP

12288:89k4Y/GWNEAfIPrMf9+2cafgm+WcpEXNncJMlW8ZQXxF:89A+WmAfWrIYZmspkY/X7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
de8a6b92a87bc8eb101e8448e763a3de_JaffaCakes118

Files

de8a6b92a87bc8eb101e8448e763a3de_JaffaCakes118
.exe windows:4 windows x86 arch:x86

20e121bfeb7780cfcd2898df74474c38

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE

Imports

oleaut32

SysAllocStringLen
VariantChangeTypeEx
SafeArrayRedim
VariantCopy
VariantClear
VariantInit

avifil32

AVIFileInfoA

crtdll

atexit
memmove
__GetMainArgs
malloc
_cexit
signal

wsock32

WSAStartup

kernel32

AddAtomA
CreateFileMappingW
CloseHandle
CreateDirectoryA
CompareFileTime
CreateThread
CreateFileA
CreateMutexW
CreateProcessA
FindFirstChangeNotificationA
CreateMutexA
FlushFileBuffers
FormatMessageA
DeleteFileA
EnterCriticalSection
ExpandEnvironmentStringsA
FreeLibrary
DeviceIoControl
FreeEnvironmentStringsA
FileTimeToLocalFileTime
GetCurrentDirectoryA
GetExitCodeProcess
EnumCalendarInfoA
FindAtomA
ExitProcess
GetAtomNameA
GetCurrentProcess
GetCPInfo
GetComputerNameA
GetPrivateProfileStringA
GetConsoleCP
GetLocaleInfoA
GetConsoleOutputCP
FindNextChangeNotification
GetModuleHandleA
GetConsoleMode
GetEnvironmentStringsW
GetFileType
GetNumberFormatA
GetExitCodeThread
GetUserDefaultLCID
GetLastError
GetDateFormatA
GetProcessHeap
GetLocaleInfoW
GetStringTypeA
GetStringTypeExA
GetThreadContext
GetOEMCP
GetCurrentThread
GlobalFree
GetFileAttributesA
GetSystemDirectoryA
HeapFree
GetTempPathA
GlobalUnlock
GetVersionExW
GetStartupInfoW
LCMapStringW
LCMapStringA
GetSystemTimeAsFileTime
GlobalDeleteAtom
GetVolumeInformationA
GlobalMemoryStatus
GetShortPathNameA
OpenMutexW
ReadProcessMemory
GlobalAlloc
GlobalSize
GetStringTypeExW
InitializeCriticalSectionAndSpinCount
MoveFileExW
lstrcpyA
SearchPathA
HeapReAlloc
LeaveCriticalSection
HeapCreate
lstrcmpiA
LockResource
SetThreadAffinityMask
SetCurrentDirectoryW
OutputDebugStringA
LocalAlloc
IsValidCodePage
ResetEvent
GlobalAddAtomA
lstrcpynA
QueryPerformanceCounter
LoadResource
RtlUnwind
SetConsoleCtrlHandler
OpenEventW
lstrlenW
WriteConsoleA
SetProcessWorkingSetSize
SetThreadPriority
ReleaseMutex
WriteConsoleW
TerminateThread
SetErrorMode
InitializeCriticalSection
SetEndOfFile
WriteFile
SetEvent
WaitForSingleObject
SetLastError
MulDiv
SetPriorityClass
VirtualAlloc
SetCurrentDirectoryA
TlsFree
QueryDosDeviceW
SetFilePointer
SystemTimeToFileTime
SetStdHandle
RemoveDirectoryA
PulseEvent

winmm

waveInClose
sndPlaySoundA
waveInGetNumDevs
waveInUnprepareHeader
waveOutReset
waveOutPrepareHeader

user32

ActivateKeyboardLayout
CharLowerA
CharPrevA
CharLowerBuffA
CopyRect
CallWindowProcA
CharUpperBuffW
DdeFreeStringHandle
AdjustWindowRectEx
CheckRadioButton
CharNextA
DdeUninitialize
DeferWindowPos
DestroyIcon
ChildWindowFromPoint
CloseClipboard
DestroyCaret
CreateWindowExA
DialogBoxIndirectParamA
DispatchMessageW
CreateDialogIndirectParamW
EnumWindows
DialogBoxParamA
DrawFrameControl
DdeCreateStringHandleA
DestroyCursor
GetAsyncKeyState
DrawIconEx
DialogBoxIndirectParamW
DrawTextA
DestroyMenu
EqualRect
EnableMenuItem
DrawEdge
DrawIcon
DefFrameProcA
GetClipboardFormatNameA
FlashWindowEx
GetMenuItemCount
DispatchMessageA
EnumThreadWindows
GetMenuItemInfoA
GetDC
FillRect
EnableWindow
ExitWindowsEx
GetLastActivePopup
GetMessageA
GetActiveWindow
GetClassInfoA
GetDlgItemTextW
GetCursor
GetDesktopWindow
GetWindowPlacement
GetScrollPos
GetCapture
GetKeyboardLayoutList
GetSysColorBrush
LoadMenuA
FindWindowExA
GetClassNameW
GetScrollRange
GetIconInfo
GetKeyState
GetWindowTextA
GetMenuCheckMarkDimensions
GetWindowThreadProcessId
GetMessagePos
IsWindowEnabled
GetWindowTextLengthW
GetKeyboardState
RegisterClipboardFormatA
GetForegroundWindow
GetDCEx
HideCaret
InflateRect
GetSystemMenu
LoadAcceleratorsA
InvalidateRect
GetSysColor
LoadBitmapA
GetUpdateRgn
GetSystemMetrics
GetSubMenu
IsCharAlphaA
InsertMenuA
LoadImageA
GetParent
MsgWaitForMultipleObjects
ModifyMenuA
PostQuitMessage
IsRectEmpty
GetMenuStringA
LoadIconW
InvalidateRgn
LoadImageW
PeekMessageA
MapVirtualKeyA
IsDlgButtonChecked
PostMessageW
MapWindowPoints
GetWindowRect
InsertMenuItemA
SendMessageTimeoutA
SetCaretPos
IsZoomed
KillTimer
IsChild
MessageBeep
SetClipboardData
RegisterWindowMessageA
LoadStringW
MessageBoxA
LoadCursorA
SetDlgItemInt
MoveWindow
PtInRect
SetClassLongA
SendDlgItemMessageW
OemToCharA
SetWindowsHookExA
SetMenu
ScrollWindowEx
mouse_event
OffsetRect
RedrawWindow
OpenClipboard
ReleaseCapture
SetCursor
SetWindowTextA
SetKeyboardState
TranslateMDISysAccel
SetWindowLongA
ShowOwnedPopups
UnregisterHotKey
SetCursorPos
SystemParametersInfoW
SendMessageA
WinHelpA
ShowCursor
ShowCaret
ToUnicode
SetActiveWindow
SetWindowPlacement
PeekMessageW
SetMenuItemInfoA
ShowScrollBar
SetScrollRange
SetPropA
SetWindowRgn
ShowWindowAsync
ValidateRect
SystemParametersInfoA
ShowWindow
WaitForInputIdle
ToAscii
UnregisterClassA
SetDlgItemTextW
TrackPopupMenu

Sections

CODE
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 114KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 577B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

20e121bfeb7780cfcd2898df74474c38

Headers

File Characteristics

Imports

oleaut32

avifil32

crtdll

wsock32

kernel32

winmm

user32

Sections

CODE Size: 3KB - Virtual size: 3KB

DATA Size: 114KB - Virtual size: 113KB

.idata Size: 8KB - Virtual size: 7KB

.rsrc Size: 1024B - Virtual size: 577B

CODE
Size: 3KB - Virtual size: 3KB

DATA
Size: 114KB - Virtual size: 113KB

.idata
Size: 8KB - Virtual size: 7KB

.rsrc
Size: 1024B - Virtual size: 577B