254f596a248141e4658581759dae512c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

254f596a248141e4658581759dae512c_JaffaCakes118
Size

176KB
MD5

254f596a248141e4658581759dae512c
SHA1

c9f9ca648b6d6279561e5e2b4cdeed259a53f9e3
SHA256

9ef91754c2a10629584a329c2d791bf808ed1ba271f8e50d32538c17174d8b17
SHA512

9a4728d89d7912fd06b730ee323aaf33435f9dec1359fcf7328ffa26ddaaeddfd2c6a98529c90c1ce4c7cff6333d52998d73e6e696810c4605f2de4f0b6df170
SSDEEP

3072:CfPCpEJ/42FIMx4wovH6pYTLnYrQFAJqcRU1a0Bm2vtM7DqSrdnMy:CnCaNj4wovAYnYSAXRU1PM7+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
254f596a248141e4658581759dae512c_JaffaCakes118

Files

254f596a248141e4658581759dae512c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

53b3e3616dacd4ad89f1fd3075499eb5

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

UnlockFileEx
SetConsoleWindowInfo
ReadConsoleA
GetEnvironmentVariableA
GetCommandLineA
GetSystemDirectoryA
GetThreadSelectorEntry
GetEnvironmentStringsA
FindNextFileA
CancelTimerQueueTimer
OpenWaitableTimerA
OutputDebugStringA
ReleaseSemaphore
GlobalDeleteAtom
GetProfileStringA
GetConsoleInputWaitHandle
IsBadStringPtrA
GlobalGetAtomNameA
ClearCommBreak
SetMailslotInfo
GetProcessId
SetFilePointerEx
SetConsoleDisplayMode
GetVersionExA
GetFileTime
GetLocaleInfoA
CompareFileTime
UpdateResourceA
VirtualAllocEx
AddConsoleAliasA
SetInformationJobObject
GetConsoleAliasExesLengthW
IsBadHugeReadPtr
GetTimeZoneInformation
GetProcessTimes
SetCommState
GlobalSize
UnregisterWait
PeekConsoleInputA
WriteConsoleA
EnumTimeFormatsA
GetConsoleAliasExesLengthA
GetConsoleAliasExesW
SetFileApisToOEM
IsSystemResumeAutomatic
SetLastConsoleEventActive
GlobalFindAtomA
SetFileAttributesA
FindAtomA
lstrcatA
GetCommState
GetConsoleMode
WriteConsoleInputA
GlobalHandle
ReadConsoleInputA
SetConsolePalette
GetFullPathNameA
GetSystemWindowsDirectoryA
ReadConsoleOutputAttribute
QueryDosDeviceA
EnumResourceNamesA
WaitNamedPipeA
FindFirstFileA
MoveFileWithProgressA
GetConsoleOutputCP
LZRead
IsValidLocale
lstrcpyA
SetThreadExecutionState
ExpungeConsoleCommandHistoryA
ReadConsoleInputA
GetCurrentDirectoryA
MoveFileExA
GetDefaultCommConfigA
lstrcat
GetModuleFileNameA
lstrcmpA
GetConsoleCP
UnlockFileEx
PulseEvent
IsBadReadPtr
FreeEnvironmentStringsA
GetQueuedCompletionStatus
GetExitCodeThread
lstrcpynA

winmm

timeGetSystemTime

user32

CopyRect
SetSystemCursor
SetWindowPos
EnumWindows
EndPaint
IsCharAlphaNumericA
RecordShutdownReason
GetScrollBarInfo
SetSystemMenu
InsertMenuItemA
OemKeyScan
SwitchToThisWindow
DrawAnimatedRects
EnumDisplayDevicesA
RemoveMenu
CallWindowProcA
UpdateWindow
LoadStringA
CreateDialogParamA
SetWindowsHookExA
GetScrollRange
SendIMEMessageExA
EnumDisplaySettingsExA
MapVirtualKeyExW
GetPropA
AnimateWindow
PostThreadMessageA
SetCapture
CalcMenuBar
GetCursorFrameInfo
LoadCursorFromFileA
ChildWindowFromPoint
LoadIconA
GetWindowTextA
SetProcessWindowStation
LoadBitmapA
GetClipboardViewer
EnumDesktopWindows
DestroyCursor
CharUpperBuffA
GetMessageExtraInfo
PrivateExtractIconExA
GetTaskmanWindow
CalcMenuBar
DefFrameProcA
ReplyMessage
GetMenuInfo
IsServerSideWindow
GetClipboardFormatNameA
DestroyIcon
SetWindowLongA
GetIconInfo
SetMenu
GetWindow
PostThreadMessageA
DrawFrame
DefRawInputProc
SetCursorPos
GetDCEx
SetDlgItemInt
SubtractRect
PeekMessageA
GetThreadDesktop
OemToCharBuffA
CloseClipboard
LockWorkStation
FindWindowExW
RegisterLogonProcess
ShowOwnedPopups
GetOpenClipboardWindow
LoadKeyboardLayoutEx
GetFocus
IsCharAlphaNumericA
GetMenu
EnumDisplaySettingsA
RemoveMenu
IsGUIThread
SetMenuContextHelpId
SetCaretPos
ChangeDisplaySettingsExW
OemToCharBuffA

Exports

Exports

Lqyyruekv
Pwyafqxafnw
Pavwwvap

Sections

.idata
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.itext
Size: 160KB - Virtual size: 160KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

53b3e3616dacd4ad89f1fd3075499eb5

Headers

File Characteristics

Imports

kernel32

winmm

user32

Exports

Exports

Sections

.idata Size: - Virtual size: 2KB

.itext Size: 160KB - Virtual size: 160KB

.idata Size: 8KB - Virtual size: 4KB

.rsrc Size: 4KB - Virtual size: 1KB

.idata
Size: - Virtual size: 2KB

.itext
Size: 160KB - Virtual size: 160KB

.idata
Size: 8KB - Virtual size: 4KB

.rsrc
Size: 4KB - Virtual size: 1KB