fb28af5f6ff780e1aeadbb5d661a50d0_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

fb28af5f6ff780e1aeadbb5d661a50d0_JaffaCakes118
Size

396KB
MD5

fb28af5f6ff780e1aeadbb5d661a50d0
SHA1

56b30f4f94bb8b49f4ccbdb4c047b44384c272c4
SHA256

92992229146621d4b5396ab298188233510825a5b43a96ba28df6f2e9720ff6d
SHA512

c8b7648b6194ba1b8ff0314b8f23a2deca4917c9630d516a63c21054d8fa2a8dfa9fce11635ff2ff83f6dec2c1bb563c35775ab2ebcf765a06c007e0ef96b59b
SSDEEP

6144:zSvxkox5/fp61UeBK9v45J7jCpjIli2Y:GxkobIz5dW6Y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fb28af5f6ff780e1aeadbb5d661a50d0_JaffaCakes118

Files

fb28af5f6ff780e1aeadbb5d661a50d0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9dbfbdf9c74e59daf334477eea2c0904

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

OpenFile
EndUpdateResourceA
LocalFileTimeToFileTime
SetSystemTime
GlobalSize
SetVolumeMountPointA
SetHandleCount
OpenJobObjectA
CloseHandle
CreateDirectoryExA
GetLogicalDriveStringsA
GetFileInformationByHandle
GetThreadSelectorEntry
GetCommTimeouts
ReadConsoleOutputAttribute
DeleteTimerQueue
GetNativeSystemInfo
SetLocaleInfoA
GetBinaryTypeA
SetLocalPrimaryComputerNameA
LocalAlloc
GetConsoleScreenBufferInfo
RemoveDirectoryA
GetVolumeNameForVolumeMountPointA
GetFileAttributesExA
GetCommMask
lstrlenA
GetEnvironmentVariableA
FindFirstVolumeA
ReadConsoleOutputCharacterA
GetCommandLineA
SetThreadExecutionState
VerifyVersionInfoA
SetFirmwareEnvironmentVariableA
WinExec
GetTempPathA
ReleaseMutex
GetLocaleInfoA
GetModuleFileNameA
SleepEx
GetVersionExA
FindClose
GetDevicePowerState
SetFileShortNameA
GetCurrentDirectoryA
VirtualAlloc
GetCurrentConsoleFont
BuildCommDCBA
GetStdHandle
GetSystemWindowsDirectoryA
IsBadReadPtr
GetDriveTypeA
TransactNamedPipe
FindNextFileA
CopyFileA
CreateThread
ExpungeConsoleCommandHistoryA
FindNextVolumeMountPointA
WriteFile
ReadFileEx
SetFilePointer
GetTapeParameters
CreateNamedPipeA
GetDefaultCommConfigA
GetVolumeInformationA
GetProcessIoCounters
PeekNamedPipe
ProcessIdToSessionId
GetDefaultCommConfigA
FlushFileBuffers
GetFileSize
UnlockFile
EnumResourceNamesA
Process32First
GetFileAttributesExA
AddConsoleAliasA
SizeofResource
GetSystemDirectoryA
GetConsoleInputWaitHandle
GetThreadTimes
SearchPathA
GetConsoleAliasExesLengthA
OpenMutexA
VirtualAlloc
GetProcessShutdownParameters
GetConsoleAliasesA
GetConsoleTitleA
GetConsoleCursorMode
GetDllDirectoryA
OpenThread
GetTickCount
IsProcessorFeaturePresent
SetFilePointer
GetLogicalDriveStringsA
WritePrivateProfileStructA
ClearCommError
ReleaseSemaphore
OpenProcess
AddAtomA
SetFirmwareEnvironmentVariableA
GetModuleHandleA
GetSystemDirectoryA
IsBadStringPtrA
FlushConsoleInputBuffer
GetDevicePowerState
GetTimeFormatA
GetWindowsDirectoryA
SetCurrentDirectoryA
SetConsoleTitleA
GetCurrentProcess
WriteFileEx
SetConsoleCursor
IsBadWritePtr
GetCurrentDirectoryA
GetTapeParameters
ConnectNamedPipe
GetExitCodeProcess
SetConsoleCP
GetConsoleAliasesLengthW
LoadModule
OpenEventA
EnumSystemCodePagesA
GetConsoleAliasExesA
FindVolumeClose
GetConsoleCursorInfo
IsBadReadPtr
GetModuleFileNameA
GetVersionExA
OpenThread
SetConsoleCursorInfo
GetProcessVersion
GetOverlappedResult
Toolhelp32ReadProcessMemory
PeekNamedPipe
SetUserGeoID
GetPrivateProfileStringA
FindVolumeMountPointClose
LZCopy
OutputDebugStringA
SetConsoleCursorPosition
SetProcessWorkingSetSize
GetVolumePathNameA
CreateFileMappingA
GlobalFix
GetVersionExA
GetConsoleTitleA
SetSystemPowerState
SetFilePointerEx
DeleteTimerQueueTimer
GetOEMCP
GetEnvironmentStringsA
HeapAlloc
IsValidCodePage
GetTickCount
OutputDebugStringA
ProcessIdToSessionId
ReleaseSemaphore
GetConsoleFontSize
HeapDestroy
GetVolumePathNamesForVolumeNameA
ShowConsoleCursor
GlobalFlags
IsProcessorFeaturePresent
SystemTimeToFileTime
PulseEvent
OpenMutexA
OpenWaitableTimerA
ExpandEnvironmentStringsA
GetSystemDefaultLCID
SetEvent
ReleaseSemaphore
GetEnvironmentVariableA
SetThreadPriorityBoost
DeleteFileA
TransmitCommChar
UnmapViewOfFile
GetProcessHeaps
SetFileAttributesA
ExpungeConsoleCommandHistoryA
LZStart
GetNumberOfConsoleMouseButtons
GlobalHandle

user32

ScreenToClient
SendIMEMessageExA
RegisterDeviceNotificationA
MonitorFromWindow
GetMonitorInfoA
GrayStringA
RegisterServicesProcess
ShowCaret
DrawEdge
SetForegroundWindow
RealGetWindowClassA
SendIMEMessageExA
CharToOemBuffA
MessageBeep
GetMenuBarInfo
GetClassInfoExA
CreateIconIndirect
GetWindowTextA
MessageBoxTimeoutA
GetNextDlgGroupItem
GetScrollBarInfo
AlignRects
GetLayeredWindowAttributes
RegisterLogonProcess
ChangeDisplaySettingsA
RegisterClassExA
GetDlgItemTextA
BroadcastSystemMessageA
BroadcastSystemMessageExA
LockWorkStation
EnumDesktopsA
EnterReaderModeHelper
ToAscii
CharPrevExA
MapVirtualKeyA
GetTaskmanWindow
TranslateAcceleratorA
GetComboBoxInfo
DefMDIChildProcA
DialogBoxIndirectParamA
ReasonCodeNeedsBugID
TabbedTextOutA
GetQueueStatus
GetClipboardData
DrawStateA
SetShellWindowEx
IsMenu
ReuseDDElParam
GetClassLongA
SetCapture
UnhookWindowsHook
TranslateMDISysAccel
ReleaseDC
InsertMenuItemA
AppendMenuA
SendMessageCallbackA
MessageBeep
DlgDirListComboBoxA
DlgDirListComboBoxW
PrivateExtractIconExA
OemKeyScan
ToAsciiEx
GetMenuItemID
LoadKeyboardLayoutEx
SetCaretPos
EnumClipboardFormats
SetDlgItemInt
SendMessageCallbackA
EnumDisplayMonitors
SetDeskWallpaper
GetClassWord
GetUserObjectInformationA
UnregisterDeviceNotification
GetTitleBarInfo
LoadRemoteFonts
GetMenuStringA
SetActiveWindow
SendIMEMessageExA
SetCaretPos
ScrollChildren
AttachThreadInput
EnumDisplaySettingsExA
IsWindowEnabled
MessageBeep

ws2_32

closesocket

Exports

Exports

WriteHfqvcpoi
Httjmsgljr
Htnwkjkbbj
GetVawkjjcmuwc
AddYvqpuvqabyn
OpenDcjaaet

Sections

.itext
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 52KB - Virtual size: 670KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 268KB - Virtual size: 264KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9dbfbdf9c74e59daf334477eea2c0904

Headers

File Characteristics

Imports

kernel32

user32

ws2_32

Exports

Exports

Sections

.itext Size: - Virtual size: 2KB

.text Size: 52KB - Virtual size: 670KB

.idata Size: 268KB - Virtual size: 264KB

.rsrc Size: 72KB - Virtual size: 71KB

.itext
Size: - Virtual size: 2KB

.text
Size: 52KB - Virtual size: 670KB

.idata
Size: 268KB - Virtual size: 264KB

.rsrc
Size: 72KB - Virtual size: 71KB