49a2fe2c176c5165b6f77931374ff32c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

49a2fe2c176c5165b6f77931374ff32c_JaffaCakes118
Size

360KB
MD5

49a2fe2c176c5165b6f77931374ff32c
SHA1

df62eff73139e950e25f3ac76f42cc543d04a2d2
SHA256

0a6389c140efaf24fe5734847ff0af1f04cec86c3d817d2c4bad65230bba38ba
SHA512

09ebc6f4bb6dad05d6e79d6b2543df7ab74b69cc7fa1784bff69fc1a6891d11faf876f510577123c9f721eb5a3bf208bee9672510a9163c330687e6bdd27d6a0
SSDEEP

3072:DuOipU+x27vEW1r5ASehhcDK4PPwUnK4HombcVp2O6C1F0OnU:KyK4n1HOuCT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
49a2fe2c176c5165b6f77931374ff32c_JaffaCakes118

Files

49a2fe2c176c5165b6f77931374ff32c_JaffaCakes118
.exe windows:5 windows x86 arch:x86

d03b39810495f8b384c9c73d7fd6419f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_SYSTEM

PDB Paths

YumDWP.pdb

Imports

user32

FindWindowW
GetDlgItemTextW
EndDialog
WinHelpW
CreateWindowExW
EnableWindow
CreateDialogParamW
RegisterClassExW
GetDlgItem
GetMessageW
SendDlgItemMessageW
OpenClipboard
LoadCursorW
GetWindowPlacement
CloseClipboard
GetWindowTextLengthW
InvalidateRect
DialogBoxParamW
PeekMessageW
SetCursor
RegisterWindowMessageW
ShowOwnedPopups
DefWindowProcW
GetSystemMenu
GetSubMenu
ShowWindow
IsDialogMessageW
SetScrollPos
LoadIconW
SetWinEventHook
GetAncestor
SetWindowPlacement
PostMessageW
CharUpperW
SetFocus
DispatchMessageW
UnhookWinEvent
CallWindowProcA
SetWindowTextW
GetFocus
ReleaseDC
SetDlgItemTextW
IsIconic
SetForegroundWindow
IsHungAppWindow
EndDeferWindowPos
GetCursorPos
GetKeyboardLayout
TranslateMessage
ScreenToClient
DrawTextExW
GetForegroundWindow
LoadAcceleratorsW
TranslateAcceleratorW
SetWindowLongW
CheckMenuItem
MoveWindow
GetSystemMetrics
ChildWindowFromPoint
GetWindowLongW
LoadStringW
PostQuitMessage
SendMessageW
SetActiveWindow
UpdateWindow
MessageBeep
GetDlgCtrlID
EnableMenuItem
MessageBoxW
CharNextW
GetParent

ole32

CoTaskMemAlloc

netapi32

NetServerTransportAddEx

crypt32

CryptVerifyDetachedMessageSignature

kernel32

GetLogicalDrives
GetModuleHandleW
GetConsoleHistoryInfo
FormatMessageW
FindFirstFileNameW
GetFileSizeEx
GetCPInfo

gdi32

PatBlt
CopyMetaFileW

ntdll

RtlInitializeSListHead

winscard

SCardListReadersW

rasapi32

RasFreeEapUserIdentityW

setupapi

CM_Set_DevNode_Registry_PropertyW
SetupInitDefaultQueueCallback

msvfw32

DrawDibChangePalette

advapi32

RegFlushKey
SetThreadToken

Sections

.text
Size: 109KB - Virtual size: 109KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.crt2
Size: 66KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.crt1
Size: 79KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.code
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.crt
Size: 91KB - Virtual size: 90KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d03b39810495f8b384c9c73d7fd6419f

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

user32

ole32

netapi32

crypt32

kernel32

gdi32

ntdll

winscard

rasapi32

setupapi

msvfw32

advapi32

Sections

.text Size: 109KB - Virtual size: 109KB

.crt2 Size: 66KB - Virtual size: 73KB

.data Size: 3KB - Virtual size: 2KB

.crt1 Size: 79KB - Virtual size: 79KB

.code Size: 9KB - Virtual size: 8KB

.crt Size: 91KB - Virtual size: 90KB

.rsrc Size: 1024B - Virtual size: 1000B

.text
Size: 109KB - Virtual size: 109KB

.crt2
Size: 66KB - Virtual size: 73KB

.data
Size: 3KB - Virtual size: 2KB

.crt1
Size: 79KB - Virtual size: 79KB

.code
Size: 9KB - Virtual size: 8KB

.crt
Size: 91KB - Virtual size: 90KB

.rsrc
Size: 1024B - Virtual size: 1000B