071eab9306dd6e2304b08f6fa32c1c8f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

071eab9306dd6e2304b08f6fa32c1c8f_JaffaCakes118
Size

59KB
MD5

071eab9306dd6e2304b08f6fa32c1c8f
SHA1

66c38fb2628450cb1d8823486a75fbed24d02f2a
SHA256

a0302834be31e116a1f4e319488a2a684ad1215b59be751c5fd5ec4442607252
SHA512

702f6c20ff36f297c23f8186920576fc11e7a430cb17fe732cae3f4ab931858915cda5acaa33258cfc8a356ee28108bd60038733871c124b683666a03a57fbbd
SSDEEP

384:LiciJ1bciciJ1bCW1faTn6KHK3VDJQX3DUsaL9rwBh+ZgeaQsgKy24WJ2bRLashj:+j1Bj13xyz1aw0g1s24C2MshQyl3spU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
071eab9306dd6e2304b08f6fa32c1c8f_JaffaCakes118

Files

071eab9306dd6e2304b08f6fa32c1c8f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

fb263ea717d6c5becbf6fe2f6f977eb0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

user32

GetWindowThreadProcessId
RegisterWindowMessageA
GetWindowLongW
SetTimer
TranslateMessageEx
GetUserObjectInformationW
GetDC
GetWindowDC
GetWindowThreadProcessId
PostMessageW
PostMessageW
PostMessageW
GetSysColor
TranslateMessage
GetUserObjectInformationW
GetSysColor
GetAppCompatFlags2
GetProcessWindowStation
SetScrollInfo
GetSysColor
GetAppCompatFlags2
GetSysColor
SetScrollInfo
GetSysColorBrush
GetUserObjectInformationW
GetWindowLongW
GetAppCompatFlags2
GetSysColor
GetSysColorBrush
RegisterWindowMessageA
GetProcessWindowStation
GetAppCompatFlags2
RegisterWindowMessageA
GetDC
GetUserObjectInformationW
KillTimer
RegisterClipboardFormatA
SetScrollInfo
GetWindowThreadProcessId
CharUpperA
CharUpperW
DispatchMessageW
CharUpperA
KillTimer
KillTimer
ReleaseDC
GetUserObjectInformationW
CharUpperW
RegisterWindowMessageA
DispatchMessageW
GetWindowDC
CharUpperW
GetUserObjectInformationW
SetScrollInfo
ReleaseDC
SetTimer
GetDC
GetSystemMetrics
GetSysColorBrush
ReleaseDC
ReleaseDC
TranslateMessageEx
RegisterWindowMessageA
TranslateMessage
GetProcessWindowStation
GetSystemMetrics
GetUserObjectInformationW
SetTimer
GetAppCompatFlags2
GetProcessWindowStation
PostMessageW
SetTimer
RegisterWindowMessageA
ReleaseDC
CharUpperA
RegisterClipboardFormatA
CharUpperW
PostMessageW
RegisterClipboardFormatA
PostMessageW
GetDC
GetDC
GetWindowThreadProcessId
GetWindowThreadProcessId
SetScrollInfo
GetWindowLongW
GetDC
KillTimer
GetSystemMetrics
GetProcessWindowStation
SetScrollInfo
PostMessageW
GetSysColorBrush
RegisterClipboardFormatA
GetWindowDC
CharUpperW
KillTimer
GetSysColorBrush
GetSysColor
SetTimer
MapVirtualKeyExW
ReleaseDC
GetWindowLongW
GetAppCompatFlags2
GetSystemMetrics
GetDC
DispatchMessageW
GetProcessWindowStation
GetAppCompatFlags2
GetSystemMetrics
GetAppCompatFlags2
GetWindowThreadProcessId
GetWindowThreadProcessId
DispatchMessageW
PostMessageW
PostMessageW
GetDC
GetWindowThreadProcessId
GetWindowDC
RegisterWindowMessageA
CharUpperW
GetWindowThreadProcessId
PostMessageW
TranslateMessage
GetUserObjectInformationW
GetSystemMetrics
SetScrollInfo
CharUpperA
GetWindowLongW
CharUpperW
GetWindowDC
RegisterClipboardFormatA
PostMessageW
GetWindowLongW
KillTimer
GetAppCompatFlags2
GetProcessWindowStation
DispatchMessageW
SetTimer
GetSysColor
GetSystemMetrics
GetDC
PostMessageW
SetScrollInfo
CharUpperA
SetScrollInfo
ReleaseDC
PostMessageW
RegisterClipboardFormatA
ReleaseDC
TranslateMessageEx
GetSysColorBrush
RegisterWindowMessageA
SetScrollInfo
TranslateMessage
GetDC
GetProcessWindowStation
GetProcessWindowStation
TranslateMessage
TranslateMessage
GetWindowThreadProcessId
TranslateMessage
TranslateMessageEx
PostMessageW
RegisterWindowMessageA
GetSystemMetrics
CharUpperA
GetSysColorBrush
RegisterWindowMessageA
GetUserObjectInformationW
GetSysColorBrush
GetSysColor
GetProcessWindowStation
CharUpperA
GetDC
ReleaseDC
CharUpperA
CharUpperW
CharUpperA
GetWindowLongW
SetScrollInfo
GetWindowDC
GetWindowLongW
GetWindowLongW
CharUpperA
GetDC
TranslateMessageEx
GetSysColorBrush
GetWindowLongW
RegisterWindowMessageA
TranslateMessage
CharUpperW
GetWindowDC
GetUserObjectInformationW
GetSysColorBrush
GetWindowLongW
KillTimer
GetProcessWindowStation
CharUpperW
TranslateMessageEx
GetSysColorBrush

kernel32

SleepEx
LoadLibraryExA
Sleep
GetStartupInfoW
TerminateProcess
ReadFile
GetStartupInfoW
CreateFileA
GetStartupInfoA
GetSystemTime
SleepEx
LoadLibraryA
GetSystemTimeAsFileTime
GetSystemTime
GetStartupInfoW
GetSystemTimeAsFileTime
VirtualProtectEx
Sleep
TerminateProcess
GetStartupInfoW
GetStartupInfoW
ReadFile
GetStartupInfoW
Sleep
ReadFile
LoadLibraryExA
TerminateProcess
CreateProcessW
Sleep
TerminateProcess
LoadLibraryExW
WaitForSingleObject
CreateProcessA
LoadLibraryExA
GetStartupInfoW
ReadFile
CreateProcessW
WriteProcessMemory
WaitForSingleObject
ReleaseMutex
CreateProcessA
GetStartupInfoW
GetSystemTimeAsFileTime
WriteProcessMemory
LoadLibraryExA
GetSystemTimeAsFileTime
WaitForSingleObject
ReleaseMutex
Sleep
WriteProcessMemory
SleepEx
TerminateProcess
ReleaseMutex
WriteProcessMemory
WaitForSingleObject
VirtualProtect
LoadLibraryA
CreateProcessW
CreateFileA
VirtualProtectEx
CreateFileA
CreateFileA
CreateProcessW
Sleep
GetSystemTime
GetStartupInfoW
GetSystemTime
WaitForSingleObject
WaitForSingleObject
VirtualProtectEx
LoadLibraryExW
GetSystemTime
CreateProcessW
SleepEx
ReadFile
GetStartupInfoA
ReleaseMutex
GetStartupInfoW
CreateProcessW
CreateProcessW
ReadFile
VirtualProtect
LoadLibraryExA
GetStartupInfoA
GetStartupInfoA
LoadLibraryExA
WaitForSingleObject
Sleep
VirtualProtect
TerminateProcess
WriteProcessMemory
SleepEx
LoadLibraryExA
GetStartupInfoA
Sleep
GetStartupInfoA
GetStartupInfoW
WaitForSingleObject
ReadFile
LoadLibraryExA
GetProcAddress
LoadLibraryA
VirtualProtect
GetProfileIntW
SetLocalTime
CreateProcessW
VirtualProtect
GetSystemTimeAsFileTime
GetStartupInfoW
SleepEx
CreateProcessA
LoadLibraryA
LoadLibraryExW
GetStartupInfoW
ReadFile
LoadLibraryExA
LoadLibraryExA
LoadLibraryExA
VirtualProtectEx
ReadProcessMemory
CreateProcessA
CreateProcessW
WaitForSingleObject
LoadLibraryExW
CreateFileA
TerminateProcess
GetStartupInfoA
WaitForSingleObject
GetSystemTime
CreateProcessA
LoadLibraryExA
LoadLibraryExA
CreateFileA
WriteProcessMemory
ReadFile
ReadProcessMemory
VirtualProtect
GetStartupInfoA
LoadLibraryExA
Sleep
WaitForSingleObject
WriteProcessMemory
GetSystemTime
ReadFile
CreateFileA
LoadLibraryA
GetSystemTime
ReleaseMutex
WriteProcessMemory
GetStartupInfoA
LoadLibraryExW
LoadLibraryExA
ReadProcessMemory
Sleep
VirtualProtect
WaitForSingleObject
VirtualProtectEx
ReadProcessMemory
Sleep
WaitForSingleObject
LoadLibraryA
LoadLibraryExA
Sleep
LoadLibraryExW
ReadProcessMemory
LoadLibraryExA
CreateProcessW
Sleep
LoadLibraryExW
LoadLibraryExW
ReadFile
GetStartupInfoW
VirtualProtectEx
GetStartupInfoW
GetSystemTimeAsFileTime
VirtualProtectEx
GetStartupInfoA
CreateProcessW
GetSystemTime
GetSystemTimeAsFileTime
VirtualProtect
GetSystemTime
ReadProcessMemory
SleepEx
VirtualProtectEx
CreateProcessW
CreateFileA
Sleep
LoadLibraryExA
TerminateProcess
ReleaseMutex
LoadLibraryExW
CreateProcessA
CreateProcessA
CreateProcessA
LoadLibraryA
SleepEx
ReleaseMutex
ReadProcessMemory
LoadLibraryExW
CreateProcessW
ReadFile
ReadFile
WriteProcessMemory
ReadProcessMemory

Sections

.text
Size: 26KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 19KB - Virtual size: 68KB

IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 12KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ndata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fb263ea717d6c5becbf6fe2f6f977eb0

Headers

File Characteristics

Imports

user32

kernel32

Sections

.text Size: 26KB - Virtual size: 28KB

.rdata Size: 19KB - Virtual size: 68KB

.data Size: 9KB - Virtual size: 12KB

.ndata Size: 2KB - Virtual size: 4KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 26KB - Virtual size: 28KB

.rdata
Size: 19KB - Virtual size: 68KB

.data
Size: 9KB - Virtual size: 12KB

.ndata
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 1KB - Virtual size: 1KB