2a1bc7cb49a7cc1f48b80aeaeaaf336f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2a1bc7cb49a7cc1f48b80aeaeaaf336f_JaffaCakes118
Size

62KB
MD5

2a1bc7cb49a7cc1f48b80aeaeaaf336f
SHA1

a00512b3021bdf8b58f2ea1f317bc7f0321862dc
SHA256

e9a54958400de29b90027dbbfedb4eefa5b37cf32693a8defeb535ee2ed85d26
SHA512

56b9cff46c2f2040ca6f6768a74c8c7e5691a8513a9beb106ed4965d29ad90748bddc5d69823f35a22160f23a63076165f866d2e4b1cdf320f2f74cd609bcef3
SSDEEP

768:JQbgt74Nx8xJ21aoX8WjS8SMEFLZC/rmLq18NiCH+MxeTGU8sm5XPvPjTLke:J2x0noX8WjSBMYLZCzF18NiCemeaHP3

Score

1^/10

Malware Config

Signatures

Files

2a1bc7cb49a7cc1f48b80aeaeaaf336f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

efec45b2ec5bf53251534c868bbd0af0

Code Sign

cc:58:b2:2f:04:29:0c:34:9d:41:ff:09:e9:5c:db:a8:a6:2d:86:c4
Signer

Actual PE Digest

cc:58:b2:2f:04:29:0c:34:9d:41:ff:09:e9:5c:db:a8:a6:2d:86:c4

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WaitForSingleObject
DeleteCriticalSection
GetModuleFileNameA
LoadLibraryA
GetCPInfo
VirtualQuery
SetThreadLocale
LocalAlloc
InitializeCriticalSection
LocalAlloc
GetVersionExA
CompareStringA
FindClose
LeaveCriticalSection
GlobalReAlloc
GetThreadLocale
SetEndOfFile
GetCurrentProcessId
InterlockedIncrement
Sleep
GetProcAddress
EnterCriticalSection
TlsSetValue
GetVersion
ExitProcess
ExitProcess
GlobalLock
LoadResource
FindResourceA
GetProcAddress
ReadFile
WideCharToMultiByte
SetErrorMode
InterlockedDecrement
VirtualAlloc
GetDiskFreeSpaceA
GetProcAddress
GetModuleHandleA
VirtualAlloc
GetVersion
GetLastError
GetTickCount
VirtualProtect
RtlUnwind
WriteFile
GlobalDeleteAtom
UnhandledExceptionFilter
GlobalFree
CloseHandle
CreateFileA
GlobalFindAtomA
GlobalHandle
CreateEventA
FreeLibrary
FindFirstFileA
RaiseException

user32

CallNextHookEx
DrawFrameControl
RegisterWindowMessageA
GetMenuStringA
DestroyCursor
SetMenu
InflateRect
EnumThreadWindows
ShowOwnedPopups
IsWindow
GetDCEx
CharNextA
PeekMessageA
GetKeyboardState
CreateIcon
SendMessageA
GetSubMenu
DestroyWindow
SetParent
IntersectRect
EqualRect
ShowWindow
IsZoomed
GetCursor
WindowFromPoint
MessageBoxA
GetKeyState
CharLowerA
RegisterClipboardFormatA
CreatePopupMenu
RemovePropA
GetScrollInfo
DeleteMenu
SetForegroundWindow
GetWindowDC
DrawMenuBar
SetTimer
GetWindowThreadProcessId
EnableWindow
SetWindowsHookExA
SystemParametersInfoA
IsIconic
GetCapture
UnhookWindowsHook
IsWindowVisible
TranslateMessage
LoadIconA
GetDesktopWindow
WinHelpA
MapWindowPoints
MessageBoxA
MapVirtualKeyA
GetKeyNameTextA
GetIconInfo
OffsetRect
ActivateKeyboardLayout
OemToCharA
GetForegroundWindow
GetKeyboardType
GetFocus
LoadCursorA
WaitMessage
GetClassNameA
TranslateMDISysAccel
LoadBitmapA
TrackPopupMenu
FillRect
IsRectEmpty
InsertMenuItemA
EnableScrollBar
SetScrollPos
GetWindowRect
SetMenuItemInfoA
GetWindowPlacement
DrawEdge
GetSysColorBrush
SetActiveWindow
GetMenuState
RegisterClassA
AdjustWindowRectEx
CreateWindowExA
LoadStringA
EnumWindows
SetWindowPos
InsertMenuA
GetSystemMenu
GetLastActivePopup
ShowCursor
GetWindowTextA
DrawIconEx
SetCursor
GetScrollRange
DefMDIChildProcA
GetClassInfoA
GetSystemMetrics
ScreenToClient
GetMenuItemCount
GetClientRect
IsChild
SetRect
GetWindowLongA
RemoveMenu

gdi32

GetDIBits
CreateBrushIndirect
SelectPalette
GetPaletteEntries
CreateHalftonePalette
SetDIBColorTable
GetWindowOrgEx
ExcludeClipRect
StretchBlt
PatBlt
GetDCOrgEx
CreateCompatibleBitmap
SetBkColor
GetPixel
CreateFontIndirectA
SetPixel
DeleteDC
SetViewportOrgEx
MaskBlt
GetBitmapBits
UnrealizeObject
RestoreDC
GetDeviceCaps
CreatePalette
SetROP2
GetCurrentPositionEx
SaveDC
GetObjectA
CreateDIBSection
GetStockObject
GetTextMetricsA
CreateSolidBrush
SetTextColor
LineTo

Sections

.text
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 183KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.conf
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

sahwrt
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

aywurt
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

efec45b2ec5bf53251534c868bbd0af0

Code Sign

cc:58:b2:2f:04:29:0c:34:9d:41:ff:09:e9:5c:db:a8:a6:2d:86:c4Signer

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 27KB - Virtual size: 27KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 5KB - Virtual size: 183KB

.conf Size: 4KB - Virtual size: 4KB

sahwrt Size: 4KB - Virtual size: 4KB

aywurt Size: 8KB - Virtual size: 8KB

.rsrc Size: 5KB - Virtual size: 8KB

cc:58:b2:2f:04:29:0c:34:9d:41:ff:09:e9:5c:db:a8:a6:2d:86:c4
Signer

.text
Size: 27KB - Virtual size: 27KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 5KB - Virtual size: 183KB

.conf
Size: 4KB - Virtual size: 4KB

sahwrt
Size: 4KB - Virtual size: 4KB

aywurt
Size: 8KB - Virtual size: 8KB

.rsrc
Size: 5KB - Virtual size: 8KB