14836f756ea373df3b01bff47fd26eef_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

14836f756ea373df3b01bff47fd26eef_JaffaCakes118
Size

148KB
MD5

14836f756ea373df3b01bff47fd26eef
SHA1

782c8bb96826870f7a5d7f4ec74f9fb929e52d06
SHA256

9b13bffb7a8d55e66c6438d90aa687e7b5877642fe977655faab6f7e617d7da6
SHA512

f4002a0c1b8020a166ad81d8817f7f9d9442cae0acb2d243bef4e3c445ffa40df81b9cf4518518bdc33c2ef7eb1ecef5fd1f9a68ff0b51effffc35ed0e7f1a0b
SSDEEP

3072:n9LIaSmLngDCWO0Ex5cBY/Wo2M4LkSBjPnOF5Vxyd3KsfBuJvQ:n9BSmbg5O0Eseuo2M4LkSBLOFHx03K+r

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
14836f756ea373df3b01bff47fd26eef_JaffaCakes118

Files

14836f756ea373df3b01bff47fd26eef_JaffaCakes118
.exe windows:5 windows x86 arch:x86

d7fdac42fcbd535621522e31e443277f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

D:\hUhImLtbIjfYED\eDdvaffDs\hnpQkGhgsnr\vlgvafdXhxuenc.pdb

Imports

msvcrt

fputs
gets
_controlfp
iswdigit
time
__set_app_type
strtol
strpbrk
__p__fmode
__p__commode
vsprintf
_amsg_exit
iswspace
strcpy
_initterm
atoi
rand
_ismbblead
wcsstr
wcspbrk
strspn
calloc
localtime
mbstowcs
fseek
_XcptFilter
_exit
toupper
fclose
fgetc
_cexit
__setusermatherr
__getmainargs
strstr
putchar
realloc
wcscpy
exit
ftell
system
tolower
sscanf
wcstok
remove
isdigit
malloc
wcstoul

user32

SendMessageTimeoutW
CallWindowProcA
GetIconInfo
GetClassInfoW
MapVirtualKeyExW
InvalidateRect
InternalGetWindowText
DeleteMenu
WindowFromPoint
CreateIconFromResource
ClientToScreen
IsCharLowerA
BeginDeferWindowPos
SetDlgItemInt
OffsetRect
BeginPaint
GetNextDlgGroupItem
DeferWindowPos
SetWindowTextW
RegisterClassW
SetWindowLongW
LoadCursorW
GetKeyboardLayoutList
keybd_event
CharToOemBuffA
SystemParametersInfoA
IsWindowVisible
DrawEdge
FindWindowExW
GetMenuItemInfoW
DialogBoxParamW
MessageBoxA
CreateWindowExW
GetWindowRect
GetDlgItemInt
ExitWindowsEx
DragObject
CreateCaret
IsWindowEnabled
ClipCursor
SetMenuItemBitmaps
GetDlgItemTextA
EndPaint
TranslateAcceleratorW
SetWindowTextA
OemToCharBuffA
AppendMenuA
ToUnicodeEx
CharLowerA
ValidateRect
CheckDlgButton
GetWindowTextA
IsChild
ScreenToClient
CopyRect
IsDialogMessageW
RedrawWindow
GetWindowPlacement
GetClassNameW
OemToCharA
DefWindowProcA
GetCursorPos
LoadMenuW
GetClientRect
GetGUIThreadInfo
GetMenuState
GetLastActivePopup
PeekMessageA
AdjustWindowRectEx
TileWindows
IsCharAlphaA
ShowCaret
IsCharAlphaW
GetDialogBaseUnits
ArrangeIconicWindows
PostQuitMessage
RegisterClassExW
GetMessageTime
LoadCursorA
GetMenuItemRect
TabbedTextOutW
IsDlgButtonChecked
ShowCursor
GetScrollRange
SetTimer
ReleaseDC
LoadIconW
SetDlgItemTextA
LookupIconIdFromDirectory
FindWindowExA
GetDoubleClickTime
InSendMessageEx
WaitForInputIdle
SetRectEmpty
GetPropW
SetCursorPos
GetKeyNameTextW
FindWindowW
VkKeyScanW
InSendMessage
SetParent
GetAsyncKeyState
GetMenuCheckMarkDimensions
LockWindowUpdate
InflateRect
CharLowerW
GrayStringW
GetParent
ChangeMenuW
DrawTextA
SystemParametersInfoW
ChildWindowFromPointEx
DestroyCaret
DrawFocusRect
SetWindowPlacement
IsCharUpperA
SetClassLongW
GetMessageExtraInfo
ReplyMessage
mouse_event
GetSystemMenu
GetMessageA
OpenIcon
LoadStringA
SetMenu

kernel32

SetLocalTime
GlobalAlloc
GetThreadContext
SetThreadLocale
VerSetConditionMask
VerifyVersionInfoW
GetSystemDirectoryW
EnumResourceNamesA
CreateMailslotW
GetProcessHeap
CreateThread
SetCommBreak
CreateSemaphoreA
GetLocaleInfoA
FindNextChangeNotification
DeviceIoControl
GlobalFindAtomW
QueryPerformanceCounter
GetTimeFormatA
DeleteFileW
GetModuleHandleA
GetShortPathNameW
GetLongPathNameW
LockFile
WaitForSingleObject
FreeLibrary
GetUserDefaultUILanguage
FormatMessageA
SuspendThread
DefineDosDeviceW
SetCommMask
SetThreadAffinityMask
MoveFileW
HeapSize
LCMapStringA
IsBadStringPtrW
SetFileAttributesA
FileTimeToSystemTime
WaitCommEvent
GlobalLock
ReadFile
SetCurrentDirectoryW
CreateSemaphoreW
RemoveDirectoryA
HeapAlloc
SetLastError
InitializeCriticalSection
CreateDirectoryW
GetLastError
OpenFile
FindClose
CreateDirectoryA
RegisterWaitForSingleObject
GetModuleFileNameW
GetSystemDefaultLangID
HeapFree
DeleteFileA
GetCurrentDirectoryW

Exports

Exports

?DialogReactivateIns@@YGK_KHE[D

Sections

.text
Size: 59KB - Virtual size: 59KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 70KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d7fdac42fcbd535621522e31e443277f

Headers

File Characteristics

PDB Paths

Imports

msvcrt

user32

kernel32

Exports

Exports

Sections

.text Size: 59KB - Virtual size: 59KB

.data Size: 15KB - Virtual size: 88KB

.rsrc Size: 70KB - Virtual size: 70KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 59KB - Virtual size: 59KB

.data
Size: 15KB - Virtual size: 88KB

.rsrc
Size: 70KB - Virtual size: 70KB

.reloc
Size: 2KB - Virtual size: 1KB