f66c59a54de4227b09c1f90e48ab0eb9_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

f66c59a54de4227b09c1f90e48ab0eb9_JaffaCakes118
Size

460KB
MD5

f66c59a54de4227b09c1f90e48ab0eb9
SHA1

0db13f17f2cc0b7adc9d3d0f002ecd415a85e5a1
SHA256

9c8ed4959181511d31b064b4c2db7508126bac27934d9c155e6ecb5665e3ea5d
SHA512

d8bd8e918f1fdfce85cb05c939e1e3a1cab235316a57f394c5bd9a4605ba255d6f87071ff7fd48613e7dd20aa6dede6d5c728ba95ec4ec1da3f53bb86aa4e9c6
SSDEEP

6144:d8WNXb6O5ZTWcDxKoAS7FXg8k/90x/WvKFqL7sQQyoVbY5KjCJwpWMcL:d8c5WWKg1g8NQvKF4fou5p3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f66c59a54de4227b09c1f90e48ab0eb9_JaffaCakes118

Files

f66c59a54de4227b09c1f90e48ab0eb9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d66c65df19551dde5724892334fbffff

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\Users\User\Desktop\FDAXZCEERGU\Release\FDAXZCEERGU.pdb

Imports

kernel32

GetPrivateProfileStringA
GetCurrentDirectoryA
SetErrorMode
HeapAlloc
HeapFree
RtlUnwind
HeapReAlloc
VirtualAlloc
RaiseException
GetCommandLineA
GetProcessHeap
GetStartupInfoA
ExitProcess
HeapSize
VirtualFree
HeapDestroy
HeapCreate
GetStdHandle
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
Sleep
WritePrivateProfileStringA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
GetACP
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
GetLocaleInfoW
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetEnvironmentVariableA
GetPrivateProfileIntA
SystemTimeToFileTime
LocalFileTimeToFileTime
FileTimeToLocalFileTime
FileTimeToSystemTime
CreateFileA
GetShortPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
GetCurrentProcess
DuplicateHandle
GetThreadLocale
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
DeleteFileA
MoveFileA
GetOEMCP
GetCPInfo
GlobalFlags
InterlockedIncrement
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
LocalAlloc
GetCurrentThread
ConvertDefaultLocale
GetModuleFileNameA
EnumResourceLanguagesA
GetLocaleInfoA
lstrcmpA
CloseHandle
GetDiskFreeSpaceA
GetFullPathNameA
GetTempFileNameA
GetFileTime
SetFileTime
GetFileAttributesA
GetCurrentProcessId
InterlockedDecrement
GetModuleFileNameW
FreeResource
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
FreeLibrary
lstrcmpW
GlobalFree
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageA
LocalFree
FindResourceA
LoadResource
LockResource
SizeofResource
MulDiv
GetStringTypeExA
lstrcmpiA
CompareStringW
CompareStringA
SetLastError
GetProcAddress
GetModuleHandleA
LoadLibraryA
GetVersionExA
lstrlenA
lstrcpyA
lstrcatA
GetVersion
GetLastError
WideCharToMultiByte
MultiByteToWideChar
FreeEnvironmentStringsA
InterlockedExchange

user32

GetMessageA
PostQuitMessage
ShowOwnedPopups
EndDialog
GetNextDlgTabItem
CreateDialogIndirectParamA
GetSysColorBrush
LoadCursorA
InflateRect
GetMenuItemInfoA
UnregisterClassA
GetDCEx
SetCapture
IsZoomed
UnpackDDElParam
ReuseDDElParam
LoadMenuA
DestroyMenu
GetWindowThreadProcessId
GetActiveWindow
SetCursor
ReleaseCapture
LoadAcceleratorsA
InsertMenuItemA
CreatePopupMenu
SetRectEmpty
BringWindowToTop
SetMenu
GetDesktopWindow
TranslateAcceleratorA
IsWindowEnabled
ShowWindow
SetWindowTextA
IsDialogMessageA
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapA
ModifyMenuA
EnableMenuItem
CheckMenuItem
RegisterWindowMessageA
LoadIconA
SendDlgItemMessageA
WinHelpA
IsChild
GetCapture
SetWindowsHookExA
CallNextHookEx
GetClassLongA
GetClassNameA
TranslateMessage
GetPropA
RemovePropA
IsWindow
GetWindowTextLengthA
GetWindowTextA
GetForegroundWindow
GetLastActivePopup
SetActiveWindow
DispatchMessageA
BeginDeferWindowPos
EndDeferWindowPos
GetDlgItem
GetTopWindow
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
PeekMessageA
MapWindowPoints
TrackPopupMenu
GetKeyState
SetForegroundWindow
IsWindowVisible
GetClientRect
GetMenu
PostMessageA
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
AdjustWindowRectEx
EqualRect
DeferWindowPos
CopyRect
FillRect
DrawFocusRect
UpdateWindow
InvalidateRect
LockWindowUpdate
PtInRect
GetDlgCtrlID
DefWindowProcA
CallWindowProcA
GetWindowLongA
SetWindowLongA
SetWindowPos
OffsetRect
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
ValidateRect
GetCursorPos
WindowFromPoint
KillTimer
SetTimer
GetWindowRect
GetSystemMetrics
GetWindow
SetRect
SetParent
GetSystemMenu
DeleteMenu
SetPropA
IsRectEmpty
GetFocus
GetParent
SendMessageA
EnableWindow
GetSysColor
CharUpperA
DestroyIcon
LoadStringW
MessageBoxA
GetSubMenu
GetMenuItemCount
InsertMenuA
GetMenuItemID
AppendMenuA
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
ClientToScreen
ScreenToClient
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
GetMenuState
GetMenuStringA
SetFocus

gdi32

DeleteDC
CreatePatternBrush
CreateBitmap
CreateCompatibleDC
GetStockObject
CreateRectRgnIndirect
PatBlt
CreateCompatibleBitmap
GetCharWidthA
CreateFontA
StretchDIBits
GetTextMetricsA
GetBkColor
CreateFontIndirectA
SetRectRgn
CombineRgn
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
ExtTextOutA
TextOutA
RectVisible
CreateSolidBrush
GetTextExtentPoint32A
GetPixel
BitBlt
GetObjectA
CreateRectRgn
SelectClipRgn
DeleteObject
IntersectClipRect
ExcludeClipRect
GetClipBox
SetMapMode
SetTextColor
SetBkMode
SetBkColor
RestoreDC
SaveDC
GetDeviceCaps
PtVisible

comdlg32

GetFileTitleA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegEnumKeyA
RegSetValueA
RegCreateKeyA
RegDeleteValueA
RegSetValueExA
RegCreateKeyExA
RegQueryValueA
RegCloseKey
RegDeleteKeyA
RegOpenKeyExA
RegQueryValueExA
GetFileSecurityA
SetFileSecurityA
RegOpenKeyA

shell32

DragQueryFileA
SHGetFileInfoA
ExtractIconA
DragFinish

comctl32

ImageList_GetIconSize
ImageList_DrawEx

shlwapi

PathFindFileNameA
PathStripToRootA
PathFindExtensionA
PathIsUNCA

oleaut32

VariantClear
VariantChangeType
VariantInit
SysAllocStringLen

Sections

.text
Size: 272KB - Virtual size: 269KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 68KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 104KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d66c65df19551dde5724892334fbffff

Headers

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oleaut32

Sections

.text Size: 272KB - Virtual size: 269KB

.rdata Size: 68KB - Virtual size: 66KB

.data Size: 12KB - Virtual size: 25KB

.rsrc Size: 104KB - Virtual size: 103KB

.text
Size: 272KB - Virtual size: 269KB

.rdata
Size: 68KB - Virtual size: 66KB

.data
Size: 12KB - Virtual size: 25KB

.rsrc
Size: 104KB - Virtual size: 103KB