3a6d9cafeb34722143442e2458e85a89_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3a6d9cafeb34722143442e2458e85a89_JaffaCakes118
Size

568KB
MD5

3a6d9cafeb34722143442e2458e85a89
SHA1

ef3c65888af3659f2468d05eb5269ea236f1badf
SHA256

fe46dc6483f725b8c4a42f490634de37827574df2f241d39771bf41da6c687c1
SHA512

2bf2d33a5ddf9f8d5f0b2343ecf121748725094c19456a96cfd1b004ce09fc767d4df883122f5df180ca0bae80fbaebc380ddba784616a85cbfce9031afc26ca
SSDEEP

6144:1l+vDon7oL0S7jVERaLmBOtQNIQt84akusmNJALzcNQ3sMA/M6p7iVCgDdMkfi34:1lwKswEyokOtQCtss0oN2AN4bMkCp1v

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3a6d9cafeb34722143442e2458e85a89_JaffaCakes118

Files

3a6d9cafeb34722143442e2458e85a89_JaffaCakes118
.exe windows:4 windows x86 arch:x86

45be04f935a105ed35609217aac2a181

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCreateKeyA
RegOpenKeyExA
SetSecurityDescriptorDacl
OpenProcessToken
AdjustTokenPrivileges
RegQueryValueExA

kernel32

EnterCriticalSection
SetStdHandle
UnhandledExceptionFilter
FlushFileBuffers
HeapReAlloc
LCMapStringW
GetOEMCP
TerminateProcess
GetCurrentThreadId
FatalAppExitA
GetStringTypeW
LCMapStringA
SetFilePointer
GetLocaleInfoA
DeleteCriticalSection
FreeLibrary
GetStartupInfoA
ExitProcess
HeapFree
GetLocaleInfoW
TlsFree
GetModuleHandleA
FreeEnvironmentStringsA
GetConsoleOutputCP
TlsAlloc
CompareStringA
GetSystemTimeAsFileTime
GetEnvironmentStrings
GetUserDefaultLCID
SetEnvironmentVariableA
HeapCreate
GetStdHandle
CreateFileA
VirtualFree
QueryPerformanceCounter
TlsSetValue
GetCurrentThread
RtlUnwind
VirtualQuery
SetUnhandledExceptionFilter
GetCommandLineA
ReadFile
InitializeCriticalSectionAndSpinCount
GetFileType
CloseHandle
HeapDestroy
HeapSize
WriteConsoleA
IsValidCodePage
Sleep
GetCurrentProcess
SetHandleCount
RaiseException
WriteFile
GetConsoleCP
IsDebuggerPresent
GetStringTypeA
HeapAlloc
InterlockedDecrement
GetDateFormatA
GetTimeZoneInformation
GetConsoleMode
SetConsoleCtrlHandler
GetCPInfo
GetTickCount
EnumSystemLocalesA
GetLastError
LoadLibraryA
IsValidLocale
MultiByteToWideChar
InterlockedExchange
LeaveCriticalSection
InterlockedIncrement
GetCurrentProcessId
VirtualAlloc
SetLastError
CompareStringW
GetModuleFileNameA
GetProcAddress
GetTimeFormatA
FreeEnvironmentStringsW
WriteConsoleW
CreateMutexA
TlsGetValue
WideCharToMultiByte
GetModuleHandleW
GetACP
GetEnvironmentStringsW

user32

TabbedTextOutA
GetParent
PtInRect
SetMenuItemBitmaps
DispatchMessageA
TranslateAcceleratorA
GetCursor
LoadBitmapA
CloseClipboard
GetMenuCheckMarkDimensions
SetFocus
MapDialogRect
CreateMenu
GetCursorPos
RegisterClassA
DestroyMenu
DestroyAcceleratorTable
DrawEdge
IsWindowVisible
UnhookWindowsHookEx
OpenClipboard
GetIconInfo
MoveWindow
SetWindowLongA
DrawIconEx
InvalidateRect
MessageBeep
GetWindowPlacement
AppendMenuA
GetScrollPos
GetDesktopWindow
InsertMenuItemA
IsIconic
GetSysColorBrush
UnregisterClassA
ValidateRect
InflateRect
CopyIcon
GetMenuItemInfoA
IntersectRect
WindowFromPoint
GetWindowDC
wsprintfA
GetDlgItem
SetWindowRgn
DeferWindowPos
SendDlgItemMessageA
ReleaseDC
GetMenu
AdjustWindowRectEx
SetMenu
SetParent
SetActiveWindow
GetTopWindow
CallNextHookEx
ReleaseCapture
TranslateMessage
CopyAcceleratorTableA
CreatePopupMenu
GetMenuState
GetMessagePos
RegisterClassExA
MapWindowPoints
CreateCaret
DrawStateA
DrawFrameControl
DestroyCursor
SetWindowTextA
GetWindowLongA
GetWindowRect
AttachThreadInput
RedrawWindow
DeleteMenu
RegisterClipboardFormatA
SetTimer
GetCapture
IsMenu
IsChild
CreateDialogIndirectParamA
SetRectEmpty
DrawMenuBar
KillTimer
CreateWindowExA
HideCaret
GetWindow
DestroyWindow
SetForegroundWindow
CreateIconIndirect
PostMessageA
EnumWindows
MessageBoxA
GetMenuStringA
GetSysColor
GetMessageA
GetNextDlgTabItem
EnableWindow
SetScrollPos
FrameRect
IsDialogMessageA
PostQuitMessage
LoadCursorA
CallWindowProcA
GetMenuItemID
EnableMenuItem
SetCursor
GetClassInfoA
GetKeyState
SetCapture
GetDlgCtrlID
SetCursorPos
LoadMenuA
GetClientRect
GetDC
SetRect
GetMenuItemCount
ShowScrollBar
EnumChildWindows
SetWindowContextHelpId
GetSystemMetrics
EndDialog
SetWindowPos
GetActiveWindow
ToAsciiEx
InsertMenuA
LockWindowUpdate
GrayStringA
GetSystemMenu
CheckMenuItem
BringWindowToTop
GetFocus

shell32

ord155
SHGetMalloc

shlwapi

PathIsRootW
PathAddBackslashW
PathMakePrettyW
PathRenameExtensionW
PathRemoveFileSpecW
PathMatchSpecW
PathRemoveBackslashW

oleaut32

LoadTypeLi

Sections

.text
Size: 111KB - Virtual size: 111KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 263KB - Virtual size: 263KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 85KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 99KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

45be04f935a105ed35609217aac2a181

Headers

File Characteristics

Imports

advapi32

kernel32

user32

shell32

shlwapi

oleaut32

Sections

.text Size: 111KB - Virtual size: 111KB

.rdata Size: 263KB - Virtual size: 263KB

.data Size: 85KB - Virtual size: 85KB

.rsrc Size: 99KB - Virtual size: 99KB

.text
Size: 111KB - Virtual size: 111KB

.rdata
Size: 263KB - Virtual size: 263KB

.data
Size: 85KB - Virtual size: 85KB

.rsrc
Size: 99KB - Virtual size: 99KB