1780279cb8419e3472f25d0d8dd9f169_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

1780279cb8419e3472f25d0d8dd9f169_JaffaCakes118
Size

440KB
MD5

1780279cb8419e3472f25d0d8dd9f169
SHA1

983e029a06e2a03684ae7d0c696e5d50e710fb24
SHA256

a8fabcd8bebcb1c68cf98d6e86988b7d0c3c811c3395f77d5c065b86b2d27472
SHA512

0c36e7949e3c22b7cabe3dd769a9bb057c1a6c9c66efc87c101afeed4dc28b08582a249549f172966d5ea0c07419412f25c3fd84a4e2c01b2d592c0e4d2c7cce
SSDEEP

1536:qYu+5rN7fBgcIC0mvrbqI5YE1o+HG706/dr5aL5emzLHpEdTHs/Qai8GOVtmJg9t:Ru+dNfB/vbMg/HT6/Cis9EstL95IUkBi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1780279cb8419e3472f25d0d8dd9f169_JaffaCakes118

Files

1780279cb8419e3472f25d0d8dd9f169_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b23304d3f03b0c1f76b9538dfe2bcfb6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

filter

?LoadKBFilter@@YAPAUHHOOK__@@PAUHWND__@@@Z
?UnLoadKBFilter@@YAHPAUHHOOK__@@@Z

kernel32

GetLocaleInfoA
GetStringTypeW
GetStringTypeA
HeapSize
CreateFileA
FlushFileBuffers
SetStdHandle
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetFilePointer
GetCurrentProcessId
GetTickCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GlobalSize
HeapCreate
HeapDestroy
HeapReAlloc
VirtualAlloc
VirtualFree
InitializeCriticalSection
LoadLibraryA
LCMapStringW
MultiByteToWideChar
LCMapStringA
GetOEMCP
GetACP
GetCPInfo
DeleteCriticalSection
GetFileType
GetStdHandle
SetHandleCount
InterlockedDecrement
GetCurrentThreadId
SetLastError
InterlockedIncrement
GlobalLock
GlobalUnlock
OpenFileMappingA
MapViewOfFile
CloseHandle
Sleep
QueryPerformanceFrequency
FindFirstFileA
FindNextFileA
QueryPerformanceCounter
GetModuleFileNameA
GetVersionExA
CompareStringA
CompareStringW
ReadFile
SetEnvironmentVariableA
TlsFree
SetEndOfFile
TlsSetValue
TlsAlloc
TlsGetValue
LeaveCriticalSection
GetSystemTimeAsFileTime
RtlUnwind
GetProcAddress
GetModuleHandleA
ExitProcess
HeapAlloc
GetLastError
HeapFree
RaiseException
GetCommandLineA
GetProcessHeap
GetStartupInfoA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
WideCharToMultiByte
GetTimeZoneInformation
WriteFile
GetConsoleCP
GetConsoleMode
EnterCriticalSection

user32

SetWindowPos
ReleaseDC
GetDC
OpenClipboard
GetClipboardData
CloseClipboard
MessageBeep
SetCursor
LoadIconA
LoadCursorA
RegisterClassExA
CreateDialogParamA
ShowWindow
GetMessageA
TranslateMessage
DispatchMessageA
DefWindowProcA
PostQuitMessage
SetTimer
PostMessageA
CheckRadioButton
GetKeyboardLayoutNameA
DialogBoxParamA
SetFocus
LoadImageA
KillTimer
GetKeyboardState
keybd_event
WinHelpA
GetWindowDC
MoveWindow
DestroyWindow
IsDlgButtonChecked
CheckDlgButton
SystemParametersInfoA
InvalidateRect
UpdateWindow
GetClientRect
DrawTextA
MessageBoxA
SendDlgItemMessageA
GetDlgItemTextA
EndDialog
SetDlgItemTextA
BeginPaint
LoadBitmapA
GetDlgItem
ScreenToClient
EndPaint
GetWindowRect

gdi32

StretchBlt
CreateHatchBrush
Polygon
CreateFontIndirectA
SetBkMode
SetTextColor
CreateCompatibleDC
SelectObject
GetMapMode
SetMapMode
BitBlt
DeleteDC
DeleteObject
GetDeviceCaps
SetStretchBltMode

comdlg32

GetOpenFileNameA
CommDlgExtendedError

shell32

ShellExecuteA

Sections

.text
Size: 100KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 304KB - Virtual size: 300KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b23304d3f03b0c1f76b9538dfe2bcfb6

Headers

File Characteristics

Imports

filter

kernel32

user32

gdi32

comdlg32

shell32

Sections

.text Size: 100KB - Virtual size: 98KB

.rdata Size: 20KB - Virtual size: 16KB

.data Size: 12KB - Virtual size: 24KB

.rsrc Size: 304KB - Virtual size: 300KB

.text
Size: 100KB - Virtual size: 98KB

.rdata
Size: 20KB - Virtual size: 16KB

.data
Size: 12KB - Virtual size: 24KB

.rsrc
Size: 304KB - Virtual size: 300KB