556f908ff8172d393e61d066524e74c4_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

556f908ff8172d393e61d066524e74c4_JaffaCakes118
Size

19KB
MD5

556f908ff8172d393e61d066524e74c4
SHA1

2d889c9a01efebaf6d163672fa0512ad98608a7d
SHA256

273d41ebf959d21fac72befd11535d28b3d3b288aa4a460d1ba4cd9465b67403
SHA512

97b5e0d5af6387cbd56705f30242f093bf14d49e056880da0a0260b49b90317470314f6bd4a833644725000b28b99fed77b9dc8f7f93d41701109a20e5658054
SSDEEP

192:lixeiv34JRxeP8mYBL1IFkFf7ar8ERkL9N5NhnDm3AYaxkgw1LayK8PK9ND3koxj:IxeyIJRxePG1I5Yf95BDmICSJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
556f908ff8172d393e61d066524e74c4_JaffaCakes118

Files

556f908ff8172d393e61d066524e74c4_JaffaCakes118
.exe windows:5 windows x86 arch:x86

e9ba4a0f2a12e0f8ca24f249c1145e45

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

AllocConsole
BackupWrite
Beep
BeginUpdateResourceW
CommConfigDialogA
ContinueDebugEvent
CreateJobObjectA
CreateNamedPipeA
CreateNamedPipeW
CreateSemaphoreW
CreateToolhelp32Snapshot
CreateWaitableTimerA
DeleteFiber
EnumCalendarInfoA
EnumDateFormatsA
EnumResourceLanguagesA
EnumResourceTypesA
EnumSystemLanguageGroupsW
FatalAppExitW
FindClose
FindNextVolumeA
FindNextVolumeMountPointA
FoldStringW
GenerateConsoleCtrlEvent
GetComputerNameA
GetConsoleAliasA
GetConsoleAliasExesW
GetConsoleFontSize
GetConsoleTitleA
GetConsoleTitleW
GetDefaultCommConfigW
GetFileSize
GetHandleInformation
GetLargestConsoleWindowSize
GetLongPathNameA
GetModuleHandleW
GetPrivateProfileStringW
GetPrivateProfileStructA
GetProcessHeaps
GetQueuedCompletionStatus
GetSystemDirectoryW
GetSystemTimeAdjustment
GetSystemTimeAsFileTime
GetUserDefaultLCID
GlobalAddAtomA
GetProcAddress
GlobalUnWire
GlobalUnlock
HeapWalk
LCMapStringA
LocalLock
MapUserPhysicalPagesScatter
Module32First
OpenJobObjectW
OpenThread
OutputDebugStringW
PeekNamedPipe
Process32Next
QueryInformationJobObject
RaiseException
RequestWakeupLatency
SearchPathW
SetCalendarInfoA
SetComputerNameW
SetConsoleCtrlHandler
SetConsoleCursor
SetConsoleCursorPosition
SetConsoleMode
SetConsoleTitleA
SetCurrentDirectoryA
SetCurrentDirectoryW
SetHandleCount
SetTapePosition
SetThreadAffinityMask
SetThreadContext
SuspendThread
Toolhelp32ReadProcessMemory
UnhandledExceptionFilter
UpdateResourceA
VerLanguageNameW
VirtualAlloc
VirtualFree
WriteConsoleOutputA
WriteFile
WriteFileEx
WritePrivateProfileSectionW
_hwrite
_llseek
lstrcmp
lstrcpy
lstrlenA
GlobalFlags
GetModuleHandleA

msvcrt

memset

user32

LoadBitmapW
BlockInput
ChangeDisplaySettingsExA
CharNextW
CharUpperBuffA
CheckRadioButton
ChildWindowFromPoint
CloseDesktop
CopyIcon
CreateAcceleratorTableA
CreateMDIWindowW
CreateWindowExW
DdeCreateDataHandle
DdeDisconnect
DdeDisconnectList
DdeFreeDataHandle
DdeGetLastError
DdeQueryStringA
DdeQueryStringW
DefFrameProcA
DestroyWindow
DispatchMessageA
DrawFrame
DrawStateW
EnumChildWindows
EnumDesktopsA
EnumPropsExA
ExcludeUpdateRgn
GetAltTabInfoW
GetAncestor
GetClassInfoExW
GetClassInfoW
GetClassWord
GetClipboardData
GetClipboardFormatNameA
GetClipboardViewer
GetCursorPos
GetDCEx
GetDoubleClickTime
GetKeyNameTextA
GetLastActivePopup
GetMenu
GetMenuContextHelpId
GetMessagePos
GetMouseMovePointsEx
GetOpenClipboardWindow
GetPriorityClipboardFormat
GetScrollRange
GetTabbedTextExtentA
GetWindow
GetWindowWord
GrayStringA
IMPGetIMEA
InvalidateRect
IsCharAlphaA
IsDialogMessageW
LoadCursorFromFileA
LoadCursorW
LoadStringW
MapVirtualKeyA
MessageBoxExA
MessageBoxIndirectW
MonitorFromWindow
OemToCharA
OemToCharW
PostMessageA
PostThreadMessageA
RealGetWindowClass
RegisterClassExW
ReuseDDElParam
SendInput
SetCapture
SetCaretPos
SetDoubleClickTime
SetKeyboardState
SetMenuItemBitmaps
SetParent
SetScrollInfo
SetSystemCursor
SetUserObjectInformationW
SystemParametersInfoW
TileWindows
ToAsciiEx
ToUnicode
TrackPopupMenu
TranslateAccelerator
UnhookWinEvent
UnregisterDeviceNotification
UpdateLayeredWindow
VkKeyScanExA
VkKeyScanExW
WaitForInputIdle

advapi32

RegOpenKeyExW

Sections

.text
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text2
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 136B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e9ba4a0f2a12e0f8ca24f249c1145e45

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

advapi32

Sections

.text Size: 6KB - Virtual size: 6KB

.text2 Size: 9KB - Virtual size: 8KB

.data Size: 512B - Virtual size: 136B

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 6KB - Virtual size: 6KB

.text2
Size: 9KB - Virtual size: 8KB

.data
Size: 512B - Virtual size: 136B

.rsrc
Size: 2KB - Virtual size: 1KB