f60090d25852007fee6fbd894c2e95d8_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f60090d25852007fee6fbd894c2e95d8_JaffaCakes118
Size

638KB
MD5

f60090d25852007fee6fbd894c2e95d8
SHA1

e49732c82620f7a9cd74d90740a5bc2cf5aa1fe8
SHA256

8aa74a2b216aa761aa9b24f2df894ce2d53304b0e845862c8916a91f3af75c27
SHA512

59c306f0c7a972688244aa6480ed79fffc86d4cea63301b173cdc467d65bb8c0b8e966bf488de1ec5da5bdb705085af3ee9919e7c28735cf256dbf4f5c8a82ec
SSDEEP

12288:b0/zSknQembFlXTPhvHA7azeJJOEfrKxh11ZX2sNUplTAjGOutm+:ZnbFR9A7aCB8R23plTAKOuU+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f60090d25852007fee6fbd894c2e95d8_JaffaCakes118

Files

f60090d25852007fee6fbd894c2e95d8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d20a9e341245699775e8760818473a10

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ReadFile
GlobalAlloc
GetProcAddress
LoadLibraryA
SetErrorMode
InitializeCriticalSection
SystemTimeToFileTime
GetSystemTime
GetTimeZoneInformation
IsDBCSLeadByte
GetACP
GetCPInfo
Sleep
WaitForMultipleObjects
CreateThread
ExitThread
WinExec
CopyFileA
WriteFile
SetEndOfFile
DeleteFileA
GetVersionExA
CreateFileA
GetFileSize
SetFilePointer
CloseHandle
GlobalUnlock
GlobalLock
GetModuleFileNameA
GetCommandLineA
GetModuleHandleA
ExitProcess
lstrlenA
GetStartupInfoA
CreateProcessA
EnterCriticalSection
GlobalFree
LeaveCriticalSection
DeleteCriticalSection
QueryPerformanceCounter

user32

SetTimer
GetFocus
SetCapture
ReleaseCapture
SetCursor
EndPaint
BeginPaint
MessageBoxA
DeleteMenu
ClientToScreen
TrackPopupMenu
GetCapture
GetCursorPos
WindowFromPoint
ScreenToClient
MapVirtualKeyA
CheckMenuItem
InvalidateRect
PostMessageA
GetDlgItemTextA
EnableWindow
SetDlgItemTextA
SetFocus
GetClientRect
GetMenu
SetMenu
GetDesktopWindow
MoveWindow
DialogBoxParamA
FillRect
KillTimer
EnableMenuItem
PostQuitMessage
LoadMenuA
ShowWindow
UpdateWindow
LoadIconA
LoadCursorA
RegisterClassA
LoadAcceleratorsA
GetMessageA
TranslateMessage
DispatchMessageA
TranslateAcceleratorA
GetWindow
GetWindowRect
SetWindowPos
GetWindowLongA
DefWindowProcA
IsWindow
DestroyWindow
CreateWindowExA
SetWindowLongA
DdeInitializeA
DdeCreateStringHandleA
DdeConnect
DdeClientTransaction
DdeDisconnect
DdeFreeStringHandle
DdeUninitialize
GetKeyState
EmptyClipboard
SetClipboardData
EndDialog
GetSubMenu
LoadStringA
OpenClipboard
GetClipboardData
CloseClipboard
GetDC
ReleaseDC
GetWindowTextLengthA
GetDlgItem
DestroyMenu

gdi32

SetPolyFillMode
StrokePath
ExtCreatePen
DeleteObject
SelectObject
StretchDIBits
SetDIBitsToDevice
GdiFlush
CreateCompatibleBitmap
DeleteDC
CreateDIBSection
GetDeviceCaps
EndPath
CreateCompatibleDC
BitBlt
EnumFontFamiliesA
ExtTextOutA
SetBkColor
GetBkColor
SetTextAlign
SetBkMode
SetTextColor
SelectClipRgn
LineTo
MoveToEx
CreatePen
GetTextExtentPoint32A
GetTextMetricsA
GetTextAlign
GetBkMode
GetTextColor
IntersectClipRect
GetClipRgn
CreateRectRgn
CreateFontIndirectA
DPtoLP
GetObjectA
RealizePalette
StartDocA
LPtoDP
StartPage
EndPage
EndDoc
BeginPath
CreatePalette
SelectPalette
GetSystemPaletteEntries
FillPath
SelectClipPath
PolyBezierTo
GetClipBox
SaveDC
RestoreDC
CreateSolidBrush

comdlg32

GetSaveFileNameA
GetOpenFileNameA
PrintDlgA

advapi32

RegSetValueA
RegCreateKeyA
RegQueryValueExA
RegCloseKey
RegQueryValueA
RegOpenKeyExA
RegSetValueExA

shell32

DragQueryFileA
DragAcceptFiles

winmm

timeKillEvent
timeSetEvent
waveOutReset
timeEndPeriod
timeGetTime
timeBeginPeriod
timeGetDevCaps
waveOutGetDevCapsA
waveOutClose
waveOutWrite
waveOutPrepareHeader
waveOutUnprepareHeader
waveOutOpen

Sections

.text
Size: 276KB - Virtual size: 274KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 12KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 4KB - Virtual size: 176B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.�rdata
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d20a9e341245699775e8760818473a10

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

winmm

Sections

.text Size: 276KB - Virtual size: 274KB

.rdata Size: 32KB - Virtual size: 31KB

.data Size: 12KB - Virtual size: 17KB

.data1 Size: 4KB - Virtual size: 176B

.rsrc Size: 40KB - Virtual size: 37KB

.�rdata Size: 68KB - Virtual size: 68KB

.text
Size: 276KB - Virtual size: 274KB

.rdata
Size: 32KB - Virtual size: 31KB

.data
Size: 12KB - Virtual size: 17KB

.data1
Size: 4KB - Virtual size: 176B

.rsrc
Size: 40KB - Virtual size: 37KB

.�rdata
Size: 68KB - Virtual size: 68KB