15100527f9bf29a3723855ae1da622fb_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

15100527f9bf29a3723855ae1da622fb_JaffaCakes118
Size

28KB
MD5

15100527f9bf29a3723855ae1da622fb
SHA1

9e795c167491868fb73d6047ce7fd9423af0d8d3
SHA256

02459cb22b0865a8bab95aed2dd053a7cd804498cabf33f5937263a412e5508e
SHA512

e74de759f30e34dea9cb87683fbb7921421b187deb3853c99bf60230fad66f35ff184737fe0a6710257f6bdc404838bf731fc3e4b419ba60ea8f9ab716ea7dc0
SSDEEP

384:o0Vz9J6W+vP7B4x0y+cm/UA1ZG2V7T7PsAPFW9kDmN/1SiA+F2owAKGXMLAbiN7V:3pJgB4eyu/XdzPsQIrPSmX+AbF6oWj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
15100527f9bf29a3723855ae1da622fb_JaffaCakes118

Files

15100527f9bf29a3723855ae1da622fb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d23cb651745aa5ad3e23783fb75fad39

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CancelIo
CloseHandle
CommConfigDialogW
CompareStringW
ConsoleMenuControl
CreateDirectoryA
CreateDirectoryExA
CreateFileA
CreateFileMappingA
CreateNamedPipeW
CreateSemaphoreW
CreateToolhelp32Snapshot
EnumDateFormatsW
ExitProcess
ExpandEnvironmentStringsW
ExpungeConsoleCommandHistoryW
FindAtomA
FindFirstFileW
FindFirstFileExA
FlushInstructionCache
FreeLibrary
GetCommandLineA
GetCommandLineW
GetConsoleAliasesW
GetConsoleAliasesLengthA
GetConsoleAliasesLengthW
GetConsoleCP
GetConsoleDisplayMode
GetConsoleFontSize
GetConsoleScreenBufferInfo
GetCurrencyFormatA
GetCurrentProcess
GetCurrentProcessId
GetCurrentThreadId
GetDefaultCommConfigW
GetDiskFreeSpaceA
GetEnvironmentStringsW
GetFullPathNameA
GetLastError
GetLocalTime
GetLogicalDriveStringsW
GetLongPathNameA
GetModuleHandleW
GetNamedPipeInfo
GetNumberFormatA
GetNumberOfConsoleMouseButtons
GetPrivateProfileIntW
GetPrivateProfileStructA
GetProcessShutdownParameters
GetProfileStringA
GetStartupInfoW
GetStringTypeW
GetStringTypeExW
GetSystemDefaultLCID
GetSystemDefaultLangID
GetSystemTime
GetSystemTimeAdjustment
GetTapeParameters
GetTapePosition
GetVersion
GetVersionExA
GetVolumeInformationA
GlobalAddAtomA
GlobalFindAtomW
GlobalGetAtomNameW
GlobalMemoryStatus
Heap32Next
HeapCompact
HeapFree
MoveFileWithProgressA
PulseEvent
QueueUserAPC
ReadConsoleA
ReadConsoleW
ReadConsoleOutputAttribute
RegisterWaitForInputIdle
RemoveDirectoryW
ScrollConsoleScreenBufferW
SetCommMask
SetComputerNameA
SetConsoleActiveScreenBuffer
SetConsoleKeyShortcuts
SetConsoleMenuClose
SetConsoleNumberOfCommandsA
SetEnvironmentVariableW
SetLastError
SetLocaleInfoA
SetVDMCurrentDirectories
ShowConsoleCursor
SwitchToThread
VDMOperationStarted
VirtualProtect
WaitForDebugEvent
WriteConsoleW
WriteConsoleInputW
WriteConsoleOutputCharacterW
WriteFileEx
WriteProfileStringW
lstrcmpA
lstrcmpW
lstrcmpiA
lstrcmpiW
lstrcpynW

user32

ChangeDisplaySettingsExA
ChangeMenuA
CharLowerA
CharLowerBuffW
CharNextA
CharUpperA
CharUpperW
CharUpperBuffA
CheckRadioButton
ChildWindowFromPoint
CloseDesktop
CopyAcceleratorTableA
CopyAcceleratorTableW
CountClipboardFormats
CreateCaret
CreateDialogIndirectParamA
CreateMenu
DdeConnectList
DdeCreateDataHandle
DeferWindowPos
DialogBoxParamA
DlgDirSelectComboBoxExW
DragDetect
EnumClipboardFormats
EnumPropsW
EnumThreadWindows
EqualRect
FlashWindow
GetAncestor
GetCapture
GetClassInfoW
GetClipCursor
GetCursor
GetCursorInfo
GetFocus
GetForegroundWindow
GetMenu
GetMessagePos
GetParent
GetUserObjectSecurity
GetWindowDC
GetWindowInfo
GetWindowRgn
GetWindowThreadProcessId
HiliteMenuItem
IMPGetIMEA
InflateRect
InsertMenuA
InvalidateRgn
IsCharAlphaNumericW
IsCharUpperA
IsCharUpperW
IsWindowEnabled
LoadCursorW
LoadCursorFromFileA
LoadMenuIndirectW
LookupIconIdFromDirectoryEx
MessageBoxA
MonitorFromPoint
OemToCharBuffA
OpenDesktopW
OpenIcon
OpenWindowStationA
PeekMessageA
PtInRect
RealGetWindowClassW
ReplyMessage
ReuseDDElParam
SendDlgItemMessageA
SetActiveWindow
SetCursor
SetDlgItemTextA
SetDoubleClickTime
SetMessageQueue
SetScrollPos
SetShellWindow
SetWindowLongW
TrackPopupMenu
TranslateMDISysAccel
UnhookWindowsHookEx
UnionRect
UnregisterDeviceNotification
UnregisterHotKey

gdi32

CreateCompatibleBitmap
CreateDCW
CreateEllipticRgnIndirect
CreateFontIndirectA
DeleteColorSpace
DeviceCapabilitiesExW
EndPage
EnumICMProfilesA
EqualRgn
GdiComment
GdiGetBatchLimit
GetArcDirection
GetBkColor
GetBkMode
GetBoundsRect
GetCharWidthFloatA
GetCharacterPlacementW
GetClipBox
GetClipRgn
GetColorSpace
GetCurrentObject
GetDCOrgEx
GetEnhMetaFileW
GetGlyphOutlineW
GetLogColorSpaceW
GetMetaFileW
GetMetaRgn
GetPath
GetPixel
GetPixelFormat
GetPolyFillMode
GetROP2
GetTextFaceA
GetWindowOrgEx
PlayMetaFileRecord
PlgBlt
RealizePalette
RemoveFontResourceW
SelectBrushLocal
SetColorSpace
SetDIBColorTable
SetPaletteEntries
SetTextColor
SetWinMetaFileBits
StartDocW
StrokePath
WidenPath

comdlg32

ChooseColorW
ChooseFontA
CommDlgExtendedError
GetSaveFileNameW

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.iZuy
Size: 3KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d23cb651745aa5ad3e23783fb75fad39

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

Sections

.text Size: 6KB - Virtual size: 6KB

.data Size: 17KB - Virtual size: 28KB

.iZuy Size: 3KB - Virtual size: 11KB

.reloc Size: 1024B - Virtual size: 3KB

.text
Size: 6KB - Virtual size: 6KB

.data
Size: 17KB - Virtual size: 28KB

.iZuy
Size: 3KB - Virtual size: 11KB

.reloc
Size: 1024B - Virtual size: 3KB