fa8512c55c64db232906f44dcac203ba_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

fa8512c55c64db232906f44dcac203ba_JaffaCakes118
Size

188KB
MD5

fa8512c55c64db232906f44dcac203ba
SHA1

c9cc32e7cbc1283ce10ed6d18935ce958f58fa14
SHA256

ed532d315c25ee2ef84b6be87387e397bc8f2917cc7f9188b6add2a8070977f3
SHA512

b7db18a54905a8598db72da95f6851d5081c2867d13b1ea3c4908d57409065721e4b3564073ef9d7f39b3b9d113bf32508418d4cb1929544e9c5037f77b010af
SSDEEP

1536:7hbSBIokspngNvIJWWEUOVssLjD1m7ATKSON2spfpgwuJSXH4yhhMuNCcUkgqiVv:dbSBIopndJEXf2uwTCwCfNdtf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fa8512c55c64db232906f44dcac203ba_JaffaCakes118

Files

fa8512c55c64db232906f44dcac203ba_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c6276c9915831a3b6d19223f95155e0e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

LoadStringA
GetSysColorBrush
MapWindowPoints
AdjustWindowRectEx
GetMenuStringA
CopyRect
SetClassLongA
GetCapture
WinHelpA
GetClassInfoA
RegisterClassA
GetMessageTime
GetMessagePos
GetForegroundWindow
SystemParametersInfoA
GetWindowPlacement
GrayStringA
DrawTextA
TabbedTextOutA
UnhookWindowsHookEx
ClientToScreen
GetWindow
GetDlgCtrlID
PtInRect
GetMenuCheckMarkDimensions
LoadBitmapA
ModifyMenuA
EnableMenuItem
GetNextDlgTabItem
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
GetKeyState
CallNextHookEx
PeekMessageA
GetCursorPos
SetWindowsHookExA
GetLastActivePopup
FillRect
GetSysColor
IsIconic
IsZoomed
GetSystemMetrics
GetMenu
SetMenu
DrawMenuBar
RegisterWindowMessageA
RegisterHotKey
UnregisterHotKey
RegisterClassExA
GetClassInfoExA
DialogBoxParamA
CreateDialogParamA
GetDlgItemInt
SetDlgItemInt
GetDlgItemTextA
SetDlgItemTextA
SendDlgItemMessageA
GetDialogBaseUnits
GetDC
ReleaseDC
CreateMenu
CreatePopupMenu
GetSystemMenu
LoadMenuA
DestroyMenu
AppendMenuA
GetMenuItemCount
InsertMenuA
SetMenuInfo
GetSubMenu
GetMenuItemID
CheckMenuRadioItem
SetForegroundWindow
TrackPopupMenu
wsprintfA
SetMenuDefaultItem
SetMenuItemBitmaps
SetMenuItemInfoA
CheckMenuItem
RemoveMenu
MenuItemFromPoint
GetMenuDefaultItem
GetMenuInfo
GetMenuState
GetMenuItemRect
GetMenuItemInfoA
GetClassLongA
SetRect
SetWindowRgn
RemovePropA
GetPropA
SetPropA
MessageBoxA
SetWindowTextA
GetWindowTextA
GetWindowTextLengthA
EnableWindow
IsWindowEnabled
ShowWindow
IsWindowVisible
SetParent
PostMessageA
SetWindowPos
MoveWindow
UpdateWindow
ValidateRect
InvalidateRect
ScreenToClient
GetParent
GetWindowRect
GetFocus
SetFocus
GetClassNameA
IsWindow
GetDlgItem
GetWindowLongA
CreateWindowExA
DestroyCursor
SetWindowLongA
PostQuitMessage
DestroyIcon
TrackMouseEvent
SetCursor
LoadCursorA
DefMDIChildProcA
SendMessageA
DestroyWindow
EndDialog
GetClientRect
DefWindowProcA
GetAsyncKeyState
CallWindowProcA
EndPaint
BeginPaint
GetTopWindow
LoadIconA
UnregisterClassA

kernel32

TlsFree
SetStdHandle
IsBadCodePtr
GetModuleHandleA
RtlMoveMemory
GetProcessHeap
HeapFree
HeapAlloc
LocalSize
ExitProcess
HeapReAlloc
IsBadReadPtr
GetLocalTime
LCMapStringA
GetStringTypeW
GetStringTypeA
LCMapStringW
SetUnhandledExceptionFilter
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetACP
HeapSize
RaiseException
TerminateProcess
RtlUnwind
GetCommandLineA
GetStartupInfoA
GetOEMCP
GetCPInfo
FlushFileBuffers
SetFilePointer
WriteFile
GetCurrentProcess
SetErrorMode
GetProcessVersion
LoadLibraryA
FreeLibrary
GetVersion
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GetLastError
GetProcAddress
SetLastError
MultiByteToWideChar
WideCharToMultiByte
InterlockedIncrement
lstrcpyA
lstrcatA
WritePrivateProfileStringA
InterlockedDecrement
GlobalFlags
lstrlenA
lstrcpynA
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
GlobalHandle
GlobalUnlock
GlobalFree
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalFree
LocalAlloc
CloseHandle
GetCurrentThreadId
GetCurrentThread
lstrcmpiA
lstrcmpA
GlobalDeleteAtom
GlobalAlloc
GlobalLock
GetModuleFileNameA

atl

ord42

shell32

DragAcceptFiles
Shell_NotifyIconA
DragFinish
DragQueryFileA

gdi32

ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
RestoreDC
SaveDC
CreateBitmap
GetClipBox
GetDeviceCaps
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
SetBkColor
SetBkMode
SetTextColor
CreatePatternBrush
CreateSolidBrush
StretchBlt
CreateRoundRectRgn
CombineRgn
ExtCreateRegion
BitBlt
SelectObject
DeleteDC
CreateDIBSection
CreateCompatibleDC
GetObjectA
GetStockObject
DeleteObject

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

RegSetValueExA
RegCloseKey
RegCreateKeyExA
RegOpenKeyExA

comctl32

ord17

Sections

.text
Size: 140KB - Virtual size: 138KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c6276c9915831a3b6d19223f95155e0e

Headers

File Characteristics

Imports

user32

kernel32

atl

shell32

gdi32

winspool.drv

advapi32

comctl32

Sections

.text Size: 140KB - Virtual size: 138KB

.rdata Size: 20KB - Virtual size: 16KB

.data Size: 20KB - Virtual size: 81KB

.rsrc Size: 4KB - Virtual size: 3KB

.text
Size: 140KB - Virtual size: 138KB

.rdata
Size: 20KB - Virtual size: 16KB

.data
Size: 20KB - Virtual size: 81KB

.rsrc
Size: 4KB - Virtual size: 3KB