13174317a9acd10f244a6b87475c4866_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

13174317a9acd10f244a6b87475c4866_JaffaCakes118
Size

381KB
MD5

13174317a9acd10f244a6b87475c4866
SHA1

e25418fb175eeda2d30e8a8b981753bd8844f9b7
SHA256

7bcd80f4ba829652fcd4514585d00052ce8c8bdb48b3f7b651846de264bcba32
SHA512

05084d92b4ea6a033395cd9c2fc3009b8c885da0663b862bd7e4c3b2421cc38d73250820258ff3cfcb208ccbc5146f77a4d1d695683ade96c47dfb1a7bb65e53
SSDEEP

3072:jqB5SKEdTxrsC6JELHvClGd5PFa50O8Jq72lKEMsqYaqNN5A:WDEdaC6lat+ylKEVaW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
13174317a9acd10f244a6b87475c4866_JaffaCakes118

Files

13174317a9acd10f244a6b87475c4866_JaffaCakes118
.exe windows:5 windows x86 arch:x86

552be4a6aa12faa2989c75d1b3a14218

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleW
VirtualAllocEx

user32

GetClientRect
GetClipboardData
GetCursorPos
GetDC
GetDesktopWindow
GetDoubleClickTime
GetFocus
GetKeyState
GetMessageA
GetMessageW
GetParent
GetSysColor
GetSystemMenu
GetSystemMetrics
GetUpdateRect
GetUpdateRgn
GetWindowDC
GetWindowLongA
GetWindowRect
GetWindowRgn
HideCaret
InvalidateRect
IsChild
IsIconic
IsRectEmpty
IsWindowVisible
IsZoomed
KillTimer
LoadCursorA
LoadCursorW
LoadIconA
LoadIconW
MapVirtualKeyA
MapVirtualKeyW
MessageBeep
MessageBoxA
MoveWindow
MsgWaitForMultipleObjects
OpenClipboard
PeekMessageA
PeekMessageW
PostMessageA
GetCaretBlinkTime
PostThreadMessageA
PostThreadMessageW
RegisterClassA
RegisterClassW
RegisterClipboardFormatA
RegisterWindowMessageA
RegisterWindowMessageW
ReleaseCapture
ReleaseDC
ScreenToClient
ScrollWindowEx
SendMessageA
SendMessageW
SetCapture
SetCaretPos
SetClipboardData
SetClipboardViewer
SetCursor
SetFocus
SetForegroundWindow
SetParent
SetRect
SetTimer
SetWindowLongA
SetWindowPos
SetWindowRgn
SetWindowTextA
SetWindowTextW
SetWindowsHookExA
ShowWindow
SystemParametersInfoA
SystemParametersInfoW
TrackPopupMenuEx
TranslateMessage
UnhookWindowsHookEx
UnregisterClassA
UnregisterClassW
UpdateWindow
ValidateRect
ValidateRgn
WindowFromPoint
wsprintfA
CharLowerW
GetActiveWindow
ExitWindowsEx
EnumClipboardFormats
EndPaint
EnableMenuItem
EmptyClipboard
DrawIconEx
DrawFocusRect
DispatchMessageW
DispatchMessageA
DestroyWindow
DestroyIcon
DestroyCursor
DefWindowProcW
DefWindowProcA
CreateWindowExW
CreateWindowExA
CreateIconIndirect
CreateCursor
CreateCaret
CloseClipboard
ClientToScreen
ChangeClipboardChain
CallNextHookEx
BeginPaint
PostMessageW

advapi32

RegOpenKeyA
LookupPrivilegeValueA
OpenProcessToken
RegCloseKey
RegCreateKeyExA
RegCreateKeyExW
RegFlushKey
RegOpenKeyExA
RegOpenKeyExW
RegQueryValueExA
RegQueryValueExW
RegSetValueExA
RegSetValueExW
AdjustTokenPrivileges

imm32

ImmAssociateContext
ImmGetCompositionStringA
ImmGetCompositionStringW
ImmGetContext
ImmNotifyIME
ImmReleaseContext
ImmSetCandidateWindow
ImmSetCompositionFontA
ImmSetCompositionFontW
ImmSetCompositionWindow

Sections

.text
Size: 208KB - Virtual size: 207KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 59KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

552be4a6aa12faa2989c75d1b3a14218

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

imm32

Sections

.text Size: 208KB - Virtual size: 207KB

.rdata Size: 72KB - Virtual size: 72KB

.data Size: 59KB - Virtual size: 59KB

.rsrc Size: 40KB - Virtual size: 40KB

.text
Size: 208KB - Virtual size: 207KB

.rdata
Size: 72KB - Virtual size: 72KB

.data
Size: 59KB - Virtual size: 59KB

.rsrc
Size: 40KB - Virtual size: 40KB