367eb078b8ba2c4f5b2a0edb659cd5b2_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

367eb078b8ba2c4f5b2a0edb659cd5b2_JaffaCakes118
Size

160KB
MD5

367eb078b8ba2c4f5b2a0edb659cd5b2
SHA1

7aedec0dd500735c411254922cc80864040329b7
SHA256

e3c55fcf2c406d9df812f16c0cc14a5fe4be5f2c1303d9dbd963c1c506a4b7f2
SHA512

f4134179b49f927b55f0a12a5da5ce93042ae80ab81ad17471db759aefedf9f440d8cacc8b56732112a1f219e321e2600c0d35e55abf4fa909b20a4608ce6f40
SSDEEP

3072:IbuUqa6DV+o2KFz6thNPQU+k8gY+url7CrdZh:hDPFuBQCI7VCrdZh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
367eb078b8ba2c4f5b2a0edb659cd5b2_JaffaCakes118

Files

367eb078b8ba2c4f5b2a0edb659cd5b2_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a697e7920ebee28af0ba47cb9c35ab04

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileSize
GetFileAttributesA
ExitProcess
GetLocalTime
LoadLibraryExA
Sleep
lstrlenA
MoveFileA
LocalAlloc
GetStdHandle
FindFirstFileA
GlobalAlloc
GetVersionExA
CreateEventA
GetProcAddress
CreateThread
GetDateFormatA
GetThreadLocale
GetSystemDefaultLangID
lstrcatA
HeapDestroy
VirtualQuery
GetCurrentProcess
VirtualAllocEx
LoadResource
CreateFileA
GetCurrentThreadId
lstrcmpA
lstrcmpiA
GetVersion
FormatMessageA
EnterCriticalSection
SetLastError
InitializeCriticalSection
SetErrorMode
ResetEvent
HeapFree
SetEndOfFile
ReadFile
GetCommandLineA
GetLocaleInfoA
GetCurrentThread
GetEnvironmentStrings
lstrcpyA
GetModuleFileNameA
GetLastError
SizeofResource
GetCPInfo
WideCharToMultiByte
GetOEMCP
LocalReAlloc
GetProcessHeap
GlobalFindAtomA
FreeResource
GetTickCount
GlobalDeleteAtom
VirtualAlloc
FindResourceA
LocalFree
GetDiskFreeSpaceA
lstrcpynA
CompareStringA
DeleteCriticalSection
LoadLibraryA
GlobalAddAtomA
WaitForSingleObject
CloseHandle
GetStringTypeW
RaiseException
GetUserDefaultLCID
GetACP
GetFullPathNameA
SetFilePointer
LockResource
WriteFile
SetThreadLocale
FindClose
SetHandleCount
GetCurrentProcessId
MulDiv
GetModuleHandleA
ExitThread
GetFileType
DeleteFileA
EnumCalendarInfoA
GetStartupInfoA
HeapAlloc
FreeLibrary
SetEvent

user32

GetDC
PeekMessageW
SetScrollPos
ClientToScreen
SetClipboardData
IsChild
DrawIconEx
KillTimer
CharNextA
EmptyClipboard
SetClassLongA
GetSubMenu
InsertMenuItemA
LoadIconA
OffsetRect
GetSysColor
ChildWindowFromPoint
SystemParametersInfoA
OpenClipboard
IsDialogMessageA
DeleteMenu
GetWindowDC
GetWindowThreadProcessId
GetIconInfo
DestroyCursor
GetKeyNameTextA
CallWindowProcA
ScreenToClient
CreatePopupMenu
IsWindowUnicode
SendMessageW
LoadKeyboardLayoutA
GetLastActivePopup
GetMenuItemCount
GetParent
GetMenuState
FrameRect
GetClassInfoA
SetWindowPlacement
PeekMessageA
DestroyMenu
SetCapture
DefWindowProcA
SetFocus
MoveWindow
GetKeyState
OemToCharA
GetFocus
GetMenu
LoadCursorA
SetWindowLongA
DrawFrameControl
GetDlgItem
CharLowerA
EnableMenuItem
ActivateKeyboardLayout
GetClientRect
SetMenu
UnhookWindowsHookEx
DrawAnimatedRects
GetSysColorBrush
IsWindowEnabled
SetRect
GetClassLongA
RemovePropA
DrawIcon
SetWindowLongW
MessageBeep
MapWindowPoints
GetClassNameA
WindowFromPoint
TrackPopupMenu
FillRect
EndPaint
GetKeyboardLayoutList
DefFrameProcA
SetWindowTextA
AdjustWindowRectEx
InvalidateRect
GetSystemMenu
GetMessagePos
WaitMessage
SetWindowPos
CreateWindowExA
PostQuitMessage
DestroyIcon
GetKeyboardType
SetWindowsHookExA
IsZoomed
IsIconic
IsWindowVisible
GetDCEx
GetKeyboardLayoutNameA
IsWindow
GetClipboardData
ShowScrollBar
CheckMenuItem
PtInRect
GetForegroundWindow
PostMessageA
GetWindow
SetForegroundWindow
GetKeyboardLayout
ShowOwnedPopups
ShowWindow
GetWindowPlacement
TranslateMDISysAccel
CharLowerBuffA
LoadBitmapA
IsDialogMessageW
GetMenuItemID
InsertMenuA
GetScrollInfo
CallNextHookEx
CharToOemA
IsRectEmpty
GetActiveWindow
GetScrollPos
GetWindowLongA
GetCursor
CloseClipboard
SetCursor
CreateIcon
MsgWaitForMultipleObjects
FindWindowA
TranslateMessage
GetDesktopWindow
CharNextW
EnumChildWindows
GetSystemMetrics
GetWindowTextA
EnumThreadWindows
GetCapture
DrawEdge
IntersectRect
SetActiveWindow
GetScrollRange
EnableWindow
MapVirtualKeyA
CreateMenu
BeginPaint
DispatchMessageA
DispatchMessageW
EqualRect
GetWindowLongW
ScrollWindow
wsprintfA
GetTopWindow
RedrawWindow
EnableScrollBar
GetMenuStringA
UpdateWindow
MessageBoxA
DestroyWindow
UnregisterClassA
SetTimer
GetKeyboardState
SetScrollInfo
DefMDIChildProcA
ReleaseCapture
DrawTextA
DrawMenuBar
GetMenuItemInfoA
GetWindowRect
GetPropA
RegisterClipboardFormatA
RegisterWindowMessageA
SetScrollRange
EnumWindows
ReleaseDC
SendMessageA
SetMenuItemInfoA
RegisterClassA
CharUpperBuffA
SetPropA
LoadStringA
InflateRect
RemoveMenu

msvcrt

memmove
sin
memcpy

Sections

.text
Size: 31KB - Virtual size: 31KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 125KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

a697e7920ebee28af0ba47cb9c35ab04

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

Sections

.text Size: 31KB - Virtual size: 31KB

.data Size: 1024B - Virtual size: 96KB

.bss Size: 125KB - Virtual size: 124KB

.edata Size: 1KB - Virtual size: 1KB

.text
Size: 31KB - Virtual size: 31KB

.data
Size: 1024B - Virtual size: 96KB

.bss
Size: 125KB - Virtual size: 124KB

.edata
Size: 1KB - Virtual size: 1KB