e0fbd395a2ed7769c9707252b83d8f71_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

e0fbd395a2ed7769c9707252b83d8f71_JaffaCakes118
Size

404KB
MD5

e0fbd395a2ed7769c9707252b83d8f71
SHA1

6414fc9933ec057d999cee89443668c6600e9fd9
SHA256

eb23e34d487e7c54a690e3c2db31b6365c25e7d1df9deecb14a5b3c75661aea4
SHA512

cd38bf32f0225ad32f4e4587b236bec8e38e7ec76966d2fd5bec022653fead85393ad6773d2e7e6d2e2b73f50f86eedaf7c86471d832b070cef6e6b0a13d6ed3
SSDEEP

3072:1BXpIM80LcAjAsk64K6YyYTA6UNQzrnv51ot3r+towDv8dVjtk/w7r4UbIt:LpKycAj866Yy4y4vwatlgfR57b

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e0fbd395a2ed7769c9707252b83d8f71_JaffaCakes118

Files

e0fbd395a2ed7769c9707252b83d8f71_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8cfb337715cf1ef4eb74169f3f46ebe6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcessHeap
GetNumberOfConsoleFonts
GetConsoleCursorMode
GetStartupInfoA
SetConsoleInputExeNameA
GetVersionExA
ReleaseMutex
GetVersion
GetTickCount
GetVersionExA
SetFileValidData
BuildCommDCBAndTimeoutsA
IsBadReadPtr
VirtualFreeEx
CreateEventA
GetDefaultCommConfigA
GetThreadPriority
SetFileApisToANSI
GetThreadPriorityBoost
GetThreadContext
GetDllDirectoryA
FlushConsoleInputBuffer
FillConsoleOutputCharacterA
GetUserDefaultLCID
LoadLibraryExA
HeapSize
GetCPInfoExA
LZCloseFile
ClearCommBreak
Heap32ListFirst
OpenThread
GetFileAttributesExA
LocalReAlloc
SizeofResource
OpenMutexA
SetCurrentDirectoryA
LoadModule
SetComputerNameA
ReplaceFileA
GetTickCount
SetConsoleCursorMode
UpdateResourceA
SetProcessPriorityBoost
lstrcpynA
GetConsoleKeyboardLayoutNameA
GetOverlappedResult
CreateNamedPipeA
GetExitCodeProcess
GetFullPathNameA
ReadConsoleA
SetConsoleLocalEUDC
GetCommandLineA
GetPriorityClass
GetNumberOfConsoleInputEvents
CopyFileExA
OpenEventA
GetComputerNameA
SearchPathA
GetCommProperties
FreeLibrary
VerifyVersionInfoA
EnumSystemLocalesA
ReadConsoleOutputAttribute
VirtualAlloc
FindResourceExA
ResetEvent
CreateMutexA
OpenJobObjectA
WaitForSingleObject
GetCommState
HeapFree
SetFileAttributesA
WriteConsoleOutputAttribute
GetProcessHeaps
SetVolumeMountPointA
FileTimeToDosDateTime
CopyFileExW
Toolhelp32ReadProcessMemory
WriteConsoleA
GetDiskFreeSpaceExA
FindFirstFileExA
LZInit
MulDiv
GetNamedPipeHandleStateA
WriteFileGather
GetSystemWindowsDirectoryA
TerminateProcess
GlobalGetAtomNameA
GetProcessIoCounters
GetDiskFreeSpaceA
GetConsoleCharType
CancelWaitableTimer
SetEndOfFile
EnumResourceLanguagesA
GetProcessIoCounters
GetSystemWindowsDirectoryA
CopyFileExW
TransactNamedPipe
GetConsoleMode
QueryPerformanceFrequency
GetPrivateProfileSectionNamesA
GetSystemTimes
GetDiskFreeSpaceA
GetDiskFreeSpaceExA
GetThreadLocale
AddConsoleAliasA
SetConsoleActiveScreenBuffer
GetSystemWindowsDirectoryA
QueryDosDeviceA
GetConsoleInputWaitHandle
GetPrivateProfileIntA
EscapeCommFunction
GetFileAttributesExA
DefineDosDeviceA
RegisterWaitForSingleObject
DeleteTimerQueueTimer
SetFileAttributesA
SetComputerNameA
GetDriveTypeA
SetMessageWaitingIndicator
IsValidLanguageGroup
GetSystemTime
SetConsoleOutputCP
VirtualQueryEx
CopyFileExA
GetConsoleAliasExesW
SetDllDirectoryA
GetTempPathA
SetConsoleHardwareState
GetFileSize
GetEnvironmentStringsA
GetFileSize
ReadConsoleA
AddAtomA
SetConsoleFont
ReadConsoleInputA
GetDriveTypeA
ReadConsoleOutputA
EndUpdateResourceA
ReadConsoleA
GetProcAddress
GetDiskFreeSpaceExA
GetSystemInfo
GetLocalTime
GetBinaryType
GetPrivateProfileSectionNamesA
SetFileShortNameA
GetFileAttributesExA
ClearCommError
Process32Next
GetLogicalDriveStringsA
OpenFile
GetMailslotInfo
CancelWaitableTimer
ClearCommError
DeleteTimerQueueEx
GetTickCount
ReadConsoleInputA
GetLogicalDrives
GetSystemTimeAsFileTime
FindVolumeMountPointClose
IsBadStringPtrA
SetStdHandle
SetFileShortNameA
SetConsoleCursor
GetCurrentDirectoryA
UpdateResourceA
GetDiskFreeSpaceExA
lstrcmpi
GetConsoleTitleA
GetProcessHandleCount
ConnectNamedPipe
GetSystemDirectoryA
IsBadStringPtrA
GetPrivateProfileStringA
SetConsoleDisplayMode
SetConsoleNumberOfCommandsA
GetConsoleTitleA

user32

EnumDisplaySettingsExA
UnhookWindowsHook
IsGUIThread
SetDlgItemTextA
SetForegroundWindow
CharUpperBuffW
GrayStringA
CharUpperBuffW
OpenDesktopA
RegisterSystemThread
UnregisterUserApiHook
GetRawInputDeviceInfoA
ReplyMessage
GetClassLongA
DrawAnimatedRects
CloseWindowStation
CharNextA
GetNextDlgTabItem
CreateDesktopA
GetRawInputDeviceList
CreateDialogParamA
PrivateExtractIconExA
EqualRect
EnumChildWindows
GetCursorInfo
GetActiveWindow
GetWindowContextHelpId
SetClipboardData
IsWindowUnicode
EnumDesktopsA
RealChildWindowFromPoint
DeregisterShellHookWindow
SetDlgItemTextA
SetParent
PostQuitMessage
InvalidateRect
SetMenuItemBitmaps
CreateDialogParamA
FindWindowExA
ActivateKeyboardLayout
SetTaskmanWindow
GetUserObjectInformationA
RegisterWindowMessageA
DlgDirListComboBoxW
OpenInputDesktop
GetWindowRgnBox
GetWindowLongA
SetPropA
DestroyCaret
GetProcessDefaultLayout
IsServerSideWindow
RegisterClipboardFormatA
PrintWindow
SetScrollInfo
ScrollWindowEx
GetClipboardFormatNameA
SetMenuItemBitmaps
GetInternalWindowPos
DisableProcessWindowsGhosting
GetDlgItemTextA
HiliteMenuItem
AlignRects
CallMsgFilterA
CopyAcceleratorTableA
ChangeMenuA
GetClassLongA
CloseWindowStation
SetWindowRgn
CharToOemBuffW
SendDlgItemMessageA
IsServerSideWindow
AlignRects
TrackPopupMenuEx
IsDlgButtonChecked
GetGuiResources
CliImmSetHotKey
GetWindowThreadProcessId
SetMessageExtraInfo
CreateDialogParamA
RealGetWindowClassA
LoadMenuA
GetWindowTextA
GetRawInputDeviceInfoA

ws2_32

closesocket

Exports

Exports

EndWhqatxbgx
OpenCemomadlkye
Oxwwtlba
ReadKpaeitgdcp
IsBvofjtawrxt
Jhqlqissb

Sections

.itext
Size: - Virtual size: 404B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 56KB - Virtual size: 682KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 276KB - Virtual size: 275KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8cfb337715cf1ef4eb74169f3f46ebe6

Headers

File Characteristics

Imports

kernel32

user32

ws2_32

Exports

Exports

Sections

.itext Size: - Virtual size: 404B

.text Size: 56KB - Virtual size: 682KB

.idata Size: 276KB - Virtual size: 275KB

.rsrc Size: 68KB - Virtual size: 65KB

.itext
Size: - Virtual size: 404B

.text
Size: 56KB - Virtual size: 682KB

.idata
Size: 276KB - Virtual size: 275KB

.rsrc
Size: 68KB - Virtual size: 65KB