05c1dfc15b37a955f9a90556af0c4634_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

05c1dfc15b37a955f9a90556af0c4634_JaffaCakes118
Size

392KB
MD5

05c1dfc15b37a955f9a90556af0c4634
SHA1

a1d962cfa1689099bddf680ba617ccade281c96d
SHA256

abe645ee79778912de90db306a1a407db799cd8caa961e54906c95a731803f19
SHA512

ba4d8ab576e490c3879ba8a062c00cb7bb5ac36b1f80b621e36d08f9719f494853c44c0f3b156e95f503d60657198857799e5b04cd2ae8ea21b179bf10d0522f
SSDEEP

3072:Nz0HbEUH7gwOFQGm3JBqQ0Jqa7KVvuvq3y5xnrVgofBBWJu9QP1G6DP8LTPH4LYR:NSbEW7gMrBqQ2EIaynrVHBSD5qPk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
05c1dfc15b37a955f9a90556af0c4634_JaffaCakes118

Files

05c1dfc15b37a955f9a90556af0c4634_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f0d2b9170ba0b3e2c9f8f8359609766b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RemoveDirectoryA
IsBadStringPtrA
GetTempPathA
GetTickCount
Sleep
SetConsoleMenuClose
GetPrivateProfileSectionNamesA
ConnectNamedPipe
GetCurrentDirectoryA
CommConfigDialogA
Module32First
FreeConsole
SetCalendarInfoA
SetConsoleInputExeNameA
GetCommandLineA
GetProcessId
EscapeCommFunction
AddAtomA
lstrcmpiA
DisconnectNamedPipe
GetConsoleCommandHistoryA
GetModuleHandleA
SetTapePosition
VirtualAlloc
SetConsoleLocalEUDC
GetLocaleInfoA
LoadModule
GetConsoleCharType
GetCommModemStatus
GetDriveTypeA
lstrcmpA
FindVolumeMountPointClose
VerifyVersionInfoA
GetStdHandle
SetCommConfig
WriteConsoleInputA
SetThreadIdealProcessor
GetComputerNameA
MoveFileExA
GetDiskFreeSpaceA
GetOverlappedResult
GetFullPathNameA
GetConsoleMode
GetVersionExA
ReadConsoleInputA
UpdateResourceA
SystemTimeToFileTime
GetFileAttributesExA
GetExitCodeThread
RegisterWaitForInputIdle
FlushFileBuffers
WriteConsoleOutputCharacterA
OutputDebugStringA
SizeofResource
GetThreadTimes
GetTimeFormatA
VirtualQueryEx
Thread32Next
GetConsoleKeyboardLayoutNameA
SetConsoleMaximumWindowSize
lstrcat
OpenFileMappingA
GetSystemDirectoryA
IsDebuggerPresent
Heap32First
lstrcmp
DefineDosDeviceA
SetLocaleInfoA
SetVolumeLabelA
GetSystemWindowsDirectoryA
SetWaitableTimer
GetVolumePathNameA
GetVersionExA
WriteConsoleOutputCharacterA
DeleteTimerQueueEx
GetPrivateProfileStructA
GetSystemPowerStatus
CreateFileMappingA
SetFilePointer
SetEndOfFile
OpenMutexA
OpenJobObjectA
TransmitCommChar
GetFileType
FindResourceExA
GetWindowsDirectoryA
GetSystemTimes
GetProcessVersion
GetSystemInfo
GetCurrentProcess
GetProcessAffinityMask
SetConsoleInputExeNameA
GetConsoleAliasExesW
GetShortPathNameA
WriteProcessMemory
GetModuleFileNameA
GetProfileSectionA
WriteConsoleOutputA
EnumSystemCodePagesA
GetDiskFreeSpaceExA
LocalReAlloc
GetTickCount
WriteProfileStringA
GetProcessHeap
ExpungeConsoleCommandHistoryA
GetFileAttributesExA
GetDiskFreeSpaceA
ReadConsoleA
GetEnvironmentStringsA
GetNamedPipeInfo
GetFileAttributesExA
GetExitCodeProcess
GetConsoleAliasA
GlobalAddAtomA
SetEnvironmentVariableA
GetEnvironmentVariableA
GlobalHandle
OpenJobObjectA
GetConsoleTitleA
WaitCommEvent
SetFileAttributesA
GetDevicePowerState
ClearCommBreak
WriteConsoleOutputCharacterA
LocalHandle
OpenSemaphoreA
GetVersionExA
OpenSemaphoreA
MoveFileWithProgressA
WritePrivateProfileStringA
GetConsoleOutputCP
GetConsoleKeyboardLayoutNameA
RaiseException
SetFileApisToANSI
WriteConsoleOutputCharacterA
lstrlenA
EnumUILanguagesA
GetOEMCP
TransmitCommChar
GetLongPathNameA
SetLocalPrimaryComputerNameA
GetProfileSectionA
ReadConsoleInputA
VerifyVersionInfoA
OpenWaitableTimerA
GetDiskFreeSpaceExA
SetConsoleDisplayMode
GetConsoleTitleA
CreateDirectoryExA
GetProcessVersion
GetEnvironmentVariableA
WriteConsoleOutputCharacterA
GetProcessVersion
GetStartupInfoA
SetConsoleWindowInfo
GetFullPathNameA
OpenSemaphoreA
GetFileAttributesA
SizeofResource
RegisterWaitForSingleObject
HeapCreate
GetLongPathNameA
LZOpenFileA
lstrcpyA
Module32Next
ReleaseMutex
LocalReAlloc
GetEnvironmentStringsA
EnumTimeFormatsA
GetCurrentConsoleFont
GetSystemWindowsDirectoryA
GetAtomNameA
GetNamedPipeHandleStateA
GetTapePosition
GetProcessHandleCount
GetFileAttributesA
WriteConsoleInputA
GetDiskFreeSpaceA
GetCommState
GetModuleFileNameA

user32

SetCapture
LoadStringA
GetClipboardFormatNameA
GetScrollRange
DrawFrameControl
FrameRect
RealGetWindowClass
InsertMenuA
EditWndProc
OffsetRect
MessageBoxTimeoutA
RegisterTasklist
FlashWindow
GetDlgItem
MapWindowPoints
CopyAcceleratorTableA
EnumDisplayDevicesA
GetWindowTextA
AlignRects
GetPropA
CheckRadioButton
LoadLocalFonts
GetComboBoxInfo
CreateDialogParamA
MapDialogRect
DrawTextExA
DrawTextA
GetWindowModuleFileNameA
ScrollChildren
GetParent
GetKeyboardState
IsChild
BeginPaint
CreateWindowStationA
CreateWindowExA
BeginDeferWindowPos
RegisterClassExA
RealChildWindowFromPoint
MessageBoxTimeoutA
GetMenuInfo
DrawCaption
GetMessageA
TranslateMessage
UnpackDDElParam
LoadKeyboardLayoutEx
GetRawInputData
ModifyMenuA
IsGUIThread
SetWinEventHook
CreateCaret
GetClassInfoExW
DefRawInputProc
GetWindow
ChangeClipboardChain
TranslateAccelerator
GetRawInputDeviceInfoA
GetMonitorInfoA
GetAncestor
GetMenuCheckMarkDimensions
SetMenu
GetSubMenu
LoadCursorFromFileW
EndTask
CreateSystemThreads
CascadeWindows
GetClipboardSequenceNumber
CalcMenuBar
GetMenuItemInfoA
GetRegisteredRawInputDevices
CreateIconFromResourceEx
IsCharLowerA
EndMenu
GetLayeredWindowAttributes
EnterReaderModeHelper
DrawCaption
CreateAcceleratorTableA
GetWindowModuleFileNameA
EndDeferWindowPos
GetRawInputData
GrayStringA
CreateWindowStationA

ws2_32

closesocket

Exports

Exports

Blycofutos
Qktjduv
AddNfragetfnt
WriteBumjinhau
Rnlbkxvc
InitSqmhfuskliw

Sections

.itext
Size: - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 52KB - Virtual size: 666KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 260KB - Virtual size: 256KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 76KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f0d2b9170ba0b3e2c9f8f8359609766b

Headers

File Characteristics

Imports

kernel32

user32

ws2_32

Exports

Exports

Sections

.itext Size: - Virtual size: 1KB

.text Size: 52KB - Virtual size: 666KB

.idata Size: 260KB - Virtual size: 256KB

.rsrc Size: 76KB - Virtual size: 74KB

.itext
Size: - Virtual size: 1KB

.text
Size: 52KB - Virtual size: 666KB

.idata
Size: 260KB - Virtual size: 256KB

.rsrc
Size: 76KB - Virtual size: 74KB