28a968fc9fd18544d42400095cb894a5_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

28a968fc9fd18544d42400095cb894a5_JaffaCakes118
Size

82KB
MD5

28a968fc9fd18544d42400095cb894a5
SHA1

b65266b9ccc2be1885f0161c3e79d9db141ab952
SHA256

bcdebc68df669f996f4f4f73346ceccb65b6e3c5e40a7d5e9311a8bdf87be8b6
SHA512

4a225391895b577739b110fb903ae0ea8ef2dc321f9e6c8e08be8cbfd43da9419ef41960282bf14a43d07054bfaa73302214faa9a3a8af79a0c4aa1a31f921ef
SSDEEP

1536:kB9iNknq+P/MF6/3ZYn74+WKKzWEmEHHOomypZDFAsXBcLjtXnEPUjh+S:qUN9+PEFo3jKbJGHOoxvjBcLjh+S

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
28a968fc9fd18544d42400095cb894a5_JaffaCakes118

Files

28a968fc9fd18544d42400095cb894a5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e0266448a5c3e79c61912a81c64d0057

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
GetUserDefaultUILanguage
GetConsoleWindow
GetWindowsDirectoryA
GetLongPathNameW
QueueUserWorkItem
SetThreadExecutionState
ReadConsoleInputExA
EnumUILanguagesW
SetConsoleActiveScreenBuffer
LocalLock
FindFirstVolumeA
LocalAlloc
GetNumberOfConsoleInputEvents
CreateTimerQueue
GetCPInfo
ReadConsoleOutputA
ReadConsoleInputExA
SetCommTimeouts
CreateHardLinkA
SetCalendarInfoA
GetPrivateProfileSectionNamesA
OpenSemaphoreW
SuspendThread
GetDriveTypeW
GetDriveTypeW
SetEvent
lstrcmpi
MulDiv
CreateThread
UnlockFile
GetOEMCP
FindClose
GetModuleFileNameW
GetProcessHeaps
GetPrivateProfileSectionA
SearchPathW
SetConsoleKeyShortcuts
lstrlenA
CreateNamedPipeA
GetConsoleAliasExesLengthA
ResumeThread
Beep
InitializeCriticalSection
SetConsoleOutputCP
LocalUnlock
BindIoCompletionCallback
SetConsoleHardwareState
GetLocaleInfoA
DeleteTimerQueueEx
WriteConsoleInputA
UTRegister
GetVersionExA
GetConsoleInputExeNameA
SetConsoleDisplayMode
Heap32Next
UTUnRegister
DnsHostnameToComputerNameW
CreateHardLinkA
GetCurrentThreadId
GetConsoleOutputCP
GetBinaryType
ExpungeConsoleCommandHistoryW
BeginUpdateResourceA
GetSystemTime
CreateDirectoryA
GetConsoleCommandHistoryLengthA
SetThreadPriorityBoost
OpenWaitableTimerW
RegisterWaitForSingleObjectEx
ResetWriteWatch
CreateDirectoryExA
VDMConsoleOperation
lstrcpyA
AddAtomA
CreateNamedPipeA
WinExec
GetStringTypeW
Beep
FindFirstFileExA
ScrollConsoleScreenBufferA
GetDiskFreeSpaceA
InitializeCriticalSection
GetProfileStringA
ChangeTimerQueueTimer
SetLastConsoleEventActive
GetCurrentDirectoryA
GetConsoleTitleA
DeleteCriticalSection
GetPrivateProfileIntA
GetCurrentDirectoryA
WriteProcessMemory
GetStartupInfoA

gdi32

SetBkMode
SelectObject
Polygon
BitBlt
CreateRectRgn
SelectObject
GetBkColor
SetBkColor
PatBlt
CreateCompatibleDC
SetBrushOrgEx
GetPixel
SetBkMode
GetBkMode
CreateRectRgn
MoveToEx
SetBkColor
SetWindowExtEx
CombineRgn
SetPixel
SetTextColor
CombineRgn
SetWindowExtEx
GetBkMode
LineTo
BitBlt
GetCurrentObject
GetWindowExtEx
SetBkColor
GetBkColor
CreateDIBitmap
SetBrushOrgEx
MoveToEx
GetWindowOrgEx
LineTo
SetBrushOrgEx
MoveToEx
RoundRect
Polygon
CreateBitmap
GetPixel
CreateDIBSection
GetCurrentObject
StretchBlt
SetBkMode
CreatePen
CreatePen
CreateBitmap
GetWindowOrgEx
GetBkMode
SetBkColor
GetBkColor
SetTextColor
CreateBitmap
BitBlt
LineTo
GetBkMode
CreateFontA
SetPixel
Rectangle
GetWindowExtEx
GetBkColor
CreateFontA
PatBlt
CreateBitmapIndirect
RoundRect
CreateFontIndirectA
SetWindowExtEx
CreateBitmapIndirect
CreateDIBitmap
Rectangle
RoundRect
Rectangle
Ellipse
SetPixel
CreateBitmap
SetBrushOrgEx
GetWindowExtEx
CreateFontIndirectA
CreateDIBitmap
GetCurrentObject
CreateBitmap
PatBlt
GetBkMode
SetPixel
CreateDIBSection
BitBlt
Polygon
SetBrushOrgEx
StretchBlt

user32

DlgDirListComboBoxA
CopyRect
IMPQueryIMEW
DdeConnect
CheckMenuItem
SetKeyboardState
AdjustWindowRect
GetKBCodePage
DefFrameProcW
SetScrollInfo
RegisterDeviceNotificationA
AppendMenuA
CharUpperA
SetShellWindow
DefDlgProcW
DrawTextW
GetWindowModuleFileNameW
GetAppCompatFlags
SetDlgItemTextA
DefWindowProcA
GetUpdateRgn
ValidateRgn
GetDoubleClickTime
FindWindowW
DdePostAdvise
EnumPropsExW
DdeCmpStringHandles
GetLastActivePopup
CreateWindowStationW
OemToCharA
FindWindowExW
BroadcastSystemMessageW
MessageBoxW
ScrollDC
CharPrevExA
BlockInput
GetAltTabInfo
EnumDisplaySettingsExA
DdeQueryStringW
LoadBitmapW
UserClientDllInitialize
SetClassLongW
GetNextDlgGroupItem
SetDebugErrorLevel
UserLpkPSMTextOut
UpdateLayeredWindow
PrivateExtractIconsA
ScrollWindow
SetLayeredWindowAttributes
GetAncestor
EnableWindow
EqualRect
MonitorFromPoint
SetMenuDefaultItem
RealGetWindowClass
DialogBoxIndirectParamW
InitializeLpkHooks
EnumClipboardFormats
SetFocus
PrivateExtractIconExW
GetKeyboardLayoutList
IMPGetIMEA
CreateCaret
GetClipboardData
ShowScrollBar
SetMessageQueue
EnumWindowStationsW
GetSysColor
GetAsyncKeyState
ReleaseDC
AdjustWindowRect
RegisterClassA
CharToOemBuffA
DrawStateA
DrawTextExA
CharLowerA
WaitMessage
ShowWindowAsync
EnableWindow
DialogBoxIndirectParamAorW
DdeImpersonateClient
SendMessageW
GetClassInfoA
UpdatePerUserSystemParameters
IMPGetIMEW
SetScrollInfo
DispatchMessageW
SetCaretPos
MapVirtualKeyExA
GetWindowTextLengthW

Sections

.text
Size: 72KB - Virtual size: 92KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e0266448a5c3e79c61912a81c64d0057

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

gdi32

user32

Sections

.text Size: 72KB - Virtual size: 92KB

.data Size: 512B - Virtual size: 4KB

.rdata Size: 7KB - Virtual size: 8KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 72KB - Virtual size: 92KB

.data
Size: 512B - Virtual size: 4KB

.rdata
Size: 7KB - Virtual size: 8KB

.rsrc
Size: 1024B - Virtual size: 4KB