f48d5abc84b1046345459fb2181b5c1c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f48d5abc84b1046345459fb2181b5c1c_JaffaCakes118
Size

231KB
MD5

f48d5abc84b1046345459fb2181b5c1c
SHA1

d6e95be8a2099483a6feb249f87c7fc889ea04cb
SHA256

17656f931ef3abd013bd19512b8816af06b7dad033e920c579216cd8c54fafa0
SHA512

f4d6fed51c54c5c3342397007bde48bd530675d34d48c9d135224756c74ca477679957ab23106cf60c9735acc94d1782402e46776c0831f2a0cd6a4726ce1cff
SSDEEP

6144:Gb60qJeI4w5c+wl7lztJd/96QLLYcrZVcLfqMh7:Gb6mI4w5c+wl7FzdFNYcVsqMh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f48d5abc84b1046345459fb2181b5c1c_JaffaCakes118

Files

f48d5abc84b1046345459fb2181b5c1c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8a285b19515b9af9f0ac263afdd0cae6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

exit
rand

kernel32

GetLocaleInfoA
WideCharToMultiByte
LoadLibraryA
IsBadHugeReadPtr
ExitThread
RaiseException
SetEvent
EnterCriticalSection
GetProcAddress
LockResource
IsBadReadPtr
GetUserDefaultLCID
lstrlenW
MoveFileExA
SizeofResource
GetLocalTime
FreeLibrary
FormatMessageA
lstrlenA
GlobalDeleteAtom
GetACP
GetStringTypeW
MulDiv
GetModuleHandleA
VirtualAlloc
ExitProcess
GetCommandLineW
GetVersionExA
GetCommandLineA
LocalAlloc
GetCurrentThreadId

gdi32

GetObjectA
CreateBrushIndirect
GetRgnBox
SetBkColor
CreateCompatibleBitmap
GetDCOrgEx
CreateFontIndirectA
GetPaletteEntries
GetPixel

user32

CharLowerA
GetWindowLongA
CreatePopupMenu
SetRect
DispatchMessageW
GetSystemMetrics
EqualRect
RegisterClassA
CharUpperBuffA
GetCapture
DrawIconEx
SetMenu
RemoveMenu
GetWindowThreadProcessId
SetFocus
TranslateMessage
IsDialogMessageA
GetKeyState
IsWindowEnabled
RegisterClipboardFormatA
GetForegroundWindow
SetPropA
EmptyClipboard
GetClassNameA
GetKeyboardLayoutNameA
SetCapture
GetDesktopWindow
GetScrollPos
GetKeyboardLayout
RegisterWindowMessageA
SetScrollPos
GetDCEx
KillTimer
SystemParametersInfoA
GetCursorPos
WindowFromPoint
GetIconInfo
CreateIcon
DrawEdge
DispatchMessageA
SendMessageW
LoadKeyboardLayoutA
EnumThreadWindows
CharToOemA
IsWindowUnicode
GetLastActivePopup
GetDC
DrawIcon
UnregisterClassA
SetScrollInfo
SetWindowLongW
IsWindowVisible
CharLowerBuffA
ReleaseCapture
SetActiveWindow
GetParent
SetTimer
IsZoomed
SetMenuItemInfoA
FillRect
ShowOwnedPopups
IsWindow
LoadBitmapA
DefWindowProcA
GetMenuItemCount
RedrawWindow
GetClassLongA
GetClassInfoA
EnableMenuItem
IsDialogMessageW
MessageBoxA
EnumChildWindows
GetCursor
PeekMessageW
DrawMenuBar
GetWindowPlacement
GetFocus
IsIconic
ScrollWindow
GetWindowRect
MoveWindow
GetMessagePos
OemToCharA
CloseClipboard
DestroyMenu
AdjustWindowRectEx
ShowWindow
SetScrollRange
PeekMessageA
CreateWindowExA
GetKeyboardLayoutList
UpdateWindow
PostMessageA
SetWindowPos
SetParent
FindWindowA
RemovePropA
MessageBeep
InvalidateRect
OffsetRect
SetCursor
InsertMenuItemA
GetWindowDC
DestroyIcon
SetWindowPlacement
GetSysColorBrush
LoadCursorA
LoadIconA
SetWindowTextA
DeleteMenu
GetSysColor
ChildWindowFromPoint
CallWindowProcA
GetMenuItemInfoA
GetActiveWindow
InsertMenuA
SetClipboardData
SetForegroundWindow
GetWindowLongW
DrawTextA
ReleaseDC
GetWindow
OpenClipboard
GetScrollInfo
ActivateKeyboardLayout
MapVirtualKeyA
CharNextW
EnumWindows
CheckMenuItem
DestroyCursor
GetScrollRange
SetWindowsHookExA
FrameRect
GetPropA
SetClassLongA
ShowScrollBar
IsChild
GetSystemMenu
PostQuitMessage
TranslateMDISysAccel
GetWindowTextA
EndPaint
GetMenuItemID
GetClipboardData
GetKeyNameTextA
GetClientRect
EnableWindow
LoadStringA
MsgWaitForMultipleObjects
GetSubMenu
ScreenToClient
GetMenuStringA
SetWindowLongA
GetKeyboardType
BeginPaint
GetKeyboardState
CreateMenu
PtInRect
GetTopWindow
WaitMessage
IntersectRect
ClientToScreen
SendMessageA
DefMDIChildProcA
EnableScrollBar
DrawFrameControl
DefFrameProcA
wsprintfA
InflateRect
GetMenu
CallNextHookEx
UnhookWindowsHookEx

oleaut32

GetErrorInfo
VariantChangeType
SafeArrayPtrOfIndex
SysAllocStringLen
SysReAllocStringLen
VariantCopyInd
SysFreeString
SysStringLen
SafeArrayCreate

Sections

.text
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 151KB - Virtual size: 150KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc6
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc9
Size: 512B - Virtual size: 35B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc5
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc1
Size: 1024B - Virtual size: 805B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc8
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 984B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8a285b19515b9af9f0ac263afdd0cae6

Headers

File Characteristics

Imports

msvcrt

kernel32

gdi32

user32

oleaut32

Sections

.text Size: 67KB - Virtual size: 67KB

DATA Size: 151KB - Virtual size: 150KB

.rsrc6 Size: 2KB - Virtual size: 1KB

.rsrc9 Size: 512B - Virtual size: 35B

.rsrc5 Size: 6KB - Virtual size: 5KB

.rsrc1 Size: 1024B - Virtual size: 805B

.rsrc8 Size: 1KB - Virtual size: 1KB

.rsrc Size: 1024B - Virtual size: 984B

.text
Size: 67KB - Virtual size: 67KB

DATA
Size: 151KB - Virtual size: 150KB

.rsrc6
Size: 2KB - Virtual size: 1KB

.rsrc9
Size: 512B - Virtual size: 35B

.rsrc5
Size: 6KB - Virtual size: 5KB

.rsrc1
Size: 1024B - Virtual size: 805B

.rsrc8
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 1024B - Virtual size: 984B