e1ccf405f89a5a8c4296d99366be0df9_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

e1ccf405f89a5a8c4296d99366be0df9_JaffaCakes118
Size

158KB
MD5

e1ccf405f89a5a8c4296d99366be0df9
SHA1

7c0aff509e783249b6972a3168c8d4593be49d7a
SHA256

3bb316d1d452a78ebb58cac47a40fbe5aa12977521f6b8fbc6cde4157a83982c
SHA512

fdf00c9d0c9778cdad2365cf1dc95b0b02c08a8fca5526cadc71a57d53946e0a61f3d4e86271ac3304c1971d34bc25933c70f35be290db088aea147e61da8f32
SSDEEP

3072:EIyG4Bvh/sXcX9RYPB0gBJiKAQh7mBv9Q2Yf9:XyGevccX4Pia01QhCBzYf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e1ccf405f89a5a8c4296d99366be0df9_JaffaCakes118

Files

e1ccf405f89a5a8c4296d99366be0df9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b9d1205058ddefb4a69bad444927809b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

BackupWrite
BuildCommDCBA
CloseHandle
ContinueDebugEvent
CreateDirectoryW
CreateFiber
CreateFileA
CreateIoCompletionPort
CreateNamedPipeW
DefineDosDeviceA
DeviceIoControl
DisableThreadLibraryCalls
EraseTape
ExitProcess
FindAtomW
FindCloseChangeNotification
FindFirstChangeNotificationW
FindNextFileA
FlushFileBuffers
FlushViewOfFile
FreeLibraryAndExitThread
GetCommandLineW
GetCompressedFileSizeW
GetConsoleAliasExesA
GetConsoleCursorInfo
GetCurrencyFormatW
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetDefaultCommConfigA
GetDriveTypeW
GetExitCodeProcess
GetFileAttributesW
GetHandleInformation
GetLastError
GetLocalTime
GetModuleFileNameW
GetModuleHandleW
GetPrivateProfileStringA
GetPrivateProfileStructA
GetProcessHeap
GetStartupInfoW
GetSystemTime
GetTempPathW
GetThreadTimes
GetUserDefaultLCID
GetUserDefaultLangID
GetVersion
GetVersionExA
GetVolumeInformationW
GetWindowsDirectoryA
GlobalDeleteAtom
GlobalUnWire
Heap32First
HeapCompact
HeapFree
IsBadHugeReadPtr
LCMapStringW
LocalCompact
LocalFlags
LocalUnlock
MapViewOfFileEx
MoveFileExA
OpenEventW
PeekConsoleInputW
PurgeComm
ReadConsoleOutputCharacterA
ReadProcessMemory
RegisterConsoleVDM
RtlMoveMemory
SearchPathA
SetConsoleActiveScreenBuffer
SetConsoleHardwareState
SetConsoleKeyShortcuts
SetConsoleMaximumWindowSize
SetConsoleTitleA
SetConsoleTitleW
SetEnvironmentVariableW
SetLastError
SetSystemTime
SignalObjectAndWait
Thread32First
TryEnterCriticalSection
VirtualLock
VirtualProtect
WaitCommEvent
WriteFile
WritePrivateProfileSectionA
_lcreat
_lread
lstrcatA
lstrcmpA
lstrcmpW
lstrcmpiA
lstrcmpiW
lstrlenA

user32

AnimateWindow
AppendMenuW
CallNextHookEx
CascadeChildWindows
CharLowerBuffW
CharPrevA
CharToOemW
CharUpperA
CharUpperW
CreateAcceleratorTableA
CreateMDIWindowW
DdeCreateDataHandle
DdeCreateStringHandleA
DdeFreeStringHandle
DdeGetLastError
DdePostAdvise
DdeQueryStringA
DdeReconnect
DefFrameProcA
DestroyIcon
DlgDirListA
DrawAnimatedRects
DrawFrameControl
DrawMenuBar
EnableScrollBar
EndPaint
EnumDisplayMonitors
EnumPropsExA
ExcludeUpdateRgn
GetAncestor
GetCaretPos
GetClipCursor
GetCursor
GetCursorInfo
GetDlgCtrlID
GetDlgItemTextA
GetFocus
GetForegroundWindow
GetInputState
GetMenu
GetMenuBarInfo
GetNextDlgTabItem
GetParent
GetSubMenu
GetUserObjectInformationW
GetWindowDC
GetWindowPlacement
GetWindowRect
InsertMenuItemA
InvalidateRgn
InvertRect
IsCharAlphaW
IsCharUpperA
IsWindowVisible
LoadBitmapA
LoadCursorFromFileW
LoadStringA
LookupIconIdFromDirectory
MenuItemFromPoint
MessageBoxExW
OemToCharA
PostQuitMessage
RedrawWindow
ReleaseDC
RemovePropA
ScrollWindow
SetClassLongW
SetDlgItemInt
SetMenuItemBitmaps
SetWindowLongA
SetWindowPlacement
SetWindowWord
UpdateWindow
ValidateRgn
WINNLSEnableIME

gdi32

CreateBitmap
CreateDCW
CreateFontIndirectW
CreateHatchBrush
CreatePalette
CreatePatternBrush
CreateSolidBrush
DeleteColorSpace
EnumFontFamiliesA
EnumObjects
ExtTextOutW
FillPath
GdiComment
GdiGetBatchLimit
GetBkColor
GetBkMode
GetBoundsRect
GetClipBox
GetClipRgn
GetColorSpace
GetCurrentObject
GetDCOrgEx
GetEnhMetaFilePaletteEntries
GetFontLanguageInfo
GetICMProfileA
GetKerningPairsA
GetMetaFileA
GetMetaFileBitsEx
GetMetaRgn
GetPath
GetPixel
GetViewportExtEx
InvertRgn
LineTo
MaskBlt
ModifyWorldTransform
PathToRegion
PolyPatBlt
RemoveFontResourceA
SetColorSpace
SetEnhMetaFileBits
SetICMProfileA
SetICMProfileW
SetMapMode
SetMiterLimit
SetStretchBltMode
SetTextAlign
SetTextJustification
SetWindowExtEx
SwapBuffers
TextOutA
gdiPlaySpoolStream

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.fsiJ
Size: 6KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 85KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b9d1205058ddefb4a69bad444927809b

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 5KB - Virtual size: 5KB

.data Size: 60KB - Virtual size: 91KB

.fsiJ Size: 6KB - Virtual size: 41KB

.rsrc Size: 85KB - Virtual size: 90KB

.reloc Size: 1024B - Virtual size: 2KB

.text
Size: 5KB - Virtual size: 5KB

.data
Size: 60KB - Virtual size: 91KB

.fsiJ
Size: 6KB - Virtual size: 41KB

.rsrc
Size: 85KB - Virtual size: 90KB

.reloc
Size: 1024B - Virtual size: 2KB