f085efcedc2e163136aa5b717fc375c0_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f085efcedc2e163136aa5b717fc375c0_JaffaCakes118
Size

348KB
MD5

f085efcedc2e163136aa5b717fc375c0
SHA1

614f7249218aa9911910ad87babe673961bb6f0d
SHA256

097d826e8c338f3ba77b9600907868b8149faa8d8535bf5ea1c8cdd86c2e7f44
SHA512

de1a5b43bde1da6c26062d2561629d97dbb33c9e5ca1fc0d230d2532718a62d9365260731ea97b82a83dede14288b642f79498a4dad54d8e41daa96e76f5ebec
SSDEEP

6144:NHBaHuPvYFQfQJPNuJ4EgKh0v0x611U5Ya+mgKppNs9tP0o:NhaOeQfQJP1VAP6nU5oaPG9+o

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f085efcedc2e163136aa5b717fc375c0_JaffaCakes118

Files

f085efcedc2e163136aa5b717fc375c0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e5387b1cc1d64dc08cb8b65c6a25bcab

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreatePipe
DuplicateConsoleHandle
OpenMutexA
GetNamedPipeInfo
LocalAlloc
SetThreadPriorityBoost
SetFileTime
GetTempPathA
Module32Next
GetConsoleMode
GetModuleHandleA
SizeofResource
PeekConsoleInputA
SetDllDirectoryA
GetVolumeInformationA
GetSystemWindowsDirectoryA
SetConsoleFont
SetFileApisToANSI
OpenThread
LCMapStringA
GetLogicalDriveStringsA
GetCurrencyFormatA
UnlockFile
GetLocaleInfoA
SetMailslotInfo
GetLogicalDrives
BeginUpdateResourceA
IsBadReadPtr
ReadConsoleOutputCharacterA
FindVolumeClose
PeekNamedPipe
WriteConsoleInputA
GetCommandLineA
GetUserDefaultUILanguage
GetAtomNameA
PurgeComm
GetCurrentDirectoryA
GetDiskFreeSpaceA
SetFileShortNameA
CreateTimerQueueTimer
MoveFileWithProgressA
VirtualAllocEx
DisconnectNamedPipe
WriteFileGather
HeapDestroy
GetCommTimeouts
TransmitCommChar
SetLocalPrimaryComputerNameA
GetCurrentConsoleFont
HeapAlloc
IsValidLanguageGroup
OpenWaitableTimerA
CompareStringA
SetTimerQueueTimer
FreeEnvironmentStringsA
GetConsoleOutputCP
GetCurrentProcessId
SetLocalPrimaryComputerNameA
GetVersionExA
GetPrivateProfileStringA
GetPrivateProfileSectionNamesA
GetProfileStringA
GlobalAddAtomA
GlobalFindAtomA
GetDefaultCommConfigA
CopyFileExW
GetVersionExA
GetFileAttributesExA
SetInformationJobObject
VerifyVersionInfoA
GlobalHandle
CompareFileTime
RemoveDirectoryA
OpenSemaphoreA
SetFilePointer
SetFileAttributesA
GetFileTime
ReplaceFileA
_hwrite
GetCPInfoExA
ResumeThread
MultiByteToWideChar
GetConsoleFontSize
QueryDosDeviceA
_lwrite
GetTickCount
GetTapeParameters
GetTickCount
GetModuleHandleA
GetExitCodeThread
LoadLibraryExW
SetFileAttributesA
LockFile
GetDiskFreeSpaceExA
DeleteTimerQueueTimer
Module32First
SetThreadUILanguage
DeleteTimerQueueEx
GetVolumePathNameA
ReadConsoleA
WriteConsoleInputA
FreeLibrary
DeleteTimerQueueTimer
ChangeTimerQueueTimer
GetThreadPriorityBoost
GetStdHandle
IsValidLanguageGroup
GetOverlappedResult
GetThreadPriorityBoost
GetPriorityClass
LocalCompact
VirtualLock
WriteConsoleInputA
TransactNamedPipe
AddAtomA
GetLocalTime
PeekNamedPipe
EndUpdateResourceA
PrepareTape
GetVersionExA
VirtualFree
WriteProcessMemory
FreeEnvironmentStringsA
HeapSize
GetFileTime
AllocConsole
GetProcessHeaps
GetVersion
lstrcmpi
GetWindowsDirectoryA
ProcessIdToSessionId
WaitForSingleObject
GetEnvironmentVariableA
GetBinaryTypeA
GetDefaultCommConfigA
FlushConsoleInputBuffer
GetProcessHeaps
IsDebuggerPresent
DefineDosDeviceA
GetProcessHandleCount
DebugBreak
SetLocalTime
Heap32Next
CompareFileTime
GetLocalTime
GlobalAddAtomA
CommConfigDialogA
CreateSocketHandle
SetConsoleCursor
RemoveDirectoryA
GetFileSize
ReadConsoleA
GetSystemTimeAdjustment
TerminateProcess
SetThreadLocale
GetSystemInfo
ReplaceFileA
GlobalGetAtomNameA
EscapeCommFunction
IsBadStringPtrA
WriteConsoleInputA
FindFirstChangeNotificationA
GetConsoleCursorMode
GetProcessShutdownParameters
BuildCommDCBAndTimeoutsA
VirtualQuery
GetSystemTimes
GetShortPathNameA
PostQueuedCompletionStatus
Sleep
LockFileEx
GetCurrentThread
PulseEvent
SetLocaleInfoA
IsBadStringPtrA
GetProfileSectionA

user32

LockWindowUpdate
GetParent
SetMessageExtraInfo
OemToCharBuffA
InflateRect
IsCharAlphaNumericA
OemKeyScan
DrawIconEx
GetTitleBarInfo
ToAscii
GetMessageA
SystemParametersInfoA
FlashWindowEx
GetUpdateRgn
AppendMenuA
GetAltTabInfoA
DrawIcon
EnumWindows
GetKeyboardLayoutList
CreateWindowStationW
RegisterDeviceNotificationA
EndDialog
IntersectRect
GetWindowDC
RecordShutdownReason
GetWindowPlacement
GetProgmanWindow
SetWindowWord
DrawCaptionTempA
EnumThreadWindows
SetClassLongA
SetShellWindowEx
UnregisterClassA
SetMenuInfo
CalcMenuBar
GetProcessDefaultLayout
GetProcessWindowStation
UpdateLayeredWindow
GetShellWindow
SetWindowLongA
GetTabbedTextExtentA
GetUpdateRgn
CheckMenuItem
RegisterClassA
GetSystemMenu
CharLowerA
MapVirtualKeyExA
CountClipboardFormats
SetMessageExtraInfo
SendNotifyMessageA
CheckDlgButton
SetDlgItemInt
TranslateMessage
AppendMenuA
SetCursorPos
InternalGetWindowText
CreateDialogParamA
DrawStateA
DisplayExitWindowsWarnings
LockSetForegroundWindow
MessageBoxTimeoutW
GetWindowPlacement
GetInputDesktop
GetSystemMetrics
EnumPropsExW
GetClassInfoExA
EnumWindowStationsA
GetKeyboardState
GetAncestor
GetMenuState
RegisterUserApiHook
SendMessageCallbackA
GetRawInputData
ToAsciiEx
RegisterClassExA
MessageBoxExA
InternalGetWindowText
RegisterServicesProcess
LoadIconA
CheckMenuItem
MapVirtualKeyExW
DestroyCaret
CharUpperA
GetWindowTextA
SetSystemMenu
SetCapture
GetDlgCtrlID
EnumDisplaySettingsExW
CopyAcceleratorTableA

advapi32

IsValidSid

Sections

.itext
Size: - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 176KB - Virtual size: 446KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e5387b1cc1d64dc08cb8b65c6a25bcab

Headers

File Characteristics

Imports

kernel32

user32

advapi32

Sections

.itext Size: - Virtual size: 32B

.text Size: 176KB - Virtual size: 446KB

.idata Size: 100KB - Virtual size: 99KB

.rsrc Size: 68KB - Virtual size: 65KB

.itext
Size: - Virtual size: 32B

.text
Size: 176KB - Virtual size: 446KB

.idata
Size: 100KB - Virtual size: 99KB

.rsrc
Size: 68KB - Virtual size: 65KB