149a2ebaa35239d4dba8c4846a5646e5_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

149a2ebaa35239d4dba8c4846a5646e5_JaffaCakes118
Size

233KB
MD5

149a2ebaa35239d4dba8c4846a5646e5
SHA1

527bc7805e677bfe5891d352a17e75be4a3204a2
SHA256

0deb346ac757838336187f4b81179032511e15ce9796862c39650c83d3b05b1b
SHA512

9505c6b1239538dff96ffe1be13ea12250bc0324813eb0a658c96190fd7a59ae266ee36368c7a96c7f92aa2efc3ae46d9e9846e3937a808c7e63aa7413759919
SSDEEP

6144:D/qowoBMm6+5qTqQhy5JTaUc/Y8KKTYel/tIbxgA9:D/q1SMIwjhgJmY8KKTntIb6A9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
149a2ebaa35239d4dba8c4846a5646e5_JaffaCakes118

Files

149a2ebaa35239d4dba8c4846a5646e5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

83e5176c873a5ca25265e62924f03399

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RemoveDirectoryA
GetVolumeInformationA
LoadLibraryA
SetLocaleInfoA
GetFileAttributesW
EnumCalendarInfoA
DosDateTimeToFileTime
GetExpandedNameW
GetStartupInfoA
GetProcAddress
GlobalGetAtomNameA
ReplaceFileW
HeapCreate
GetACP
LoadLibraryExA
MoveFileW
SleepEx
AddAtomA
GetEnvironmentVariableA
GetCurrentThreadId
GetThreadPriority
FatalAppExitA
GetMailslotInfo
OpenSemaphoreW
OpenEventA
GetUserDefaultLangID
GlobalFindAtomW
EnumCalendarInfoW
lstrlenA
QueryPerformanceFrequency
lstrcmpW
GetStartupInfoW
lstrlen
GetShortPathNameA
lstrcatA
CreateEventA
AddAtomW
OpenFile
SetCurrentDirectoryW
BeginUpdateResourceW
GetCurrentDirectoryW
GetStringTypeA
LocalAlloc
CreateMutexA

user32

PeekMessageW
InsertMenuA
GetClassInfoA
MessageBoxIndirectA
GetSysColorBrush
PostMessageW
GetMessageW
InsertMenuItemW
OffsetRect
DefWindowProcW
SendDlgItemMessageW
GetForegroundWindow
EnumWindows
LoadImageA
SetDlgItemInt
DialogBoxIndirectParamA
GetIconInfo
PostQuitMessage
CharUpperW
CreateDialogParamW
GetSystemMetrics
CreateMenu

gdi32

CreateFontIndirectW
CreateDIBPatternBrushPt
RemoveFontResourceW
CreatePolygonRgn
GetRasterizerCaps
AddFontResourceW
CreateRectRgn
CreateEllipticRgn
CreateFontW
CreateFontIndirectExW
AddFontResourceA
StretchDIBits
CreateCompatibleDC

shell32

ShellExecuteExA
SHCreateDirectoryExW
StrCmpNW
StrCmpNIW
SHGetDiskFreeSpaceExA
ExtractIconExA
StrNCmpW

ole32

OleUninitialize
OleInitialize
CoGetMalloc
CoDosDateTimeToFileTime
CoGetObject
CoGetCallerTID
CoDeactivateObject
CLSIDFromString
CLSIDFromProgID
CoFileTimeNow

wininet

InternetOpenW
InternetSetDialStateW

oledlg

OleUICanConvertOrActivateAs
OleUIConvertW
OleUIPasteSpecialW
OleUIObjectPropertiesA
OleUIBusyW
OleUIUpdateLinksW
OleUIInsertObjectA
OleUIChangeSourceA

Sections

.o
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.Aq
Size: 3KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.JZ
Size: 83KB - Virtual size: 83KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.peir
Size: 2KB - Virtual size: 334KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.a
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.jLps
Size: 3KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.mk
Size: 82KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ShW
Size: 13KB - Virtual size: 325KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ifSj
Size: 5KB - Virtual size: 422KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

83e5176c873a5ca25265e62924f03399

Headers

File Characteristics

Imports

kernel32

user32

gdi32

shell32

ole32

wininet

oledlg

Sections

.o Size: 2KB - Virtual size: 2KB

.Aq Size: 3KB - Virtual size: 36KB

.JZ Size: 83KB - Virtual size: 83KB

.peir Size: 2KB - Virtual size: 334KB

.a Size: 13KB - Virtual size: 13KB

.jLps Size: 3KB - Virtual size: 43KB

.mk Size: 82KB - Virtual size: 82KB

.ShW Size: 13KB - Virtual size: 325KB

.ifSj Size: 5KB - Virtual size: 422KB

.rsrc Size: 9KB - Virtual size: 9KB

.reloc Size: 1024B - Virtual size: 1024B

.o
Size: 2KB - Virtual size: 2KB

.Aq
Size: 3KB - Virtual size: 36KB

.JZ
Size: 83KB - Virtual size: 83KB

.peir
Size: 2KB - Virtual size: 334KB

.a
Size: 13KB - Virtual size: 13KB

.jLps
Size: 3KB - Virtual size: 43KB

.mk
Size: 82KB - Virtual size: 82KB

.ShW
Size: 13KB - Virtual size: 325KB

.ifSj
Size: 5KB - Virtual size: 422KB

.rsrc
Size: 9KB - Virtual size: 9KB

.reloc
Size: 1024B - Virtual size: 1024B