150851a228526386987e5c95030ecb0d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

150851a228526386987e5c95030ecb0d_JaffaCakes118
Size

78KB
MD5

150851a228526386987e5c95030ecb0d
SHA1

0b624d433214be4f10f4d600c7f1dc76c0e57b37
SHA256

e8df461b4d76972234a5e012b0a55844e3be7ca7b1461c425012e5add3e1a841
SHA512

c10a63d2f20bb4d2750b50424892aea33e387176d12d25d2944e55c1ed8febc79c5cff239414c8536b224574759fda26c671e3d388d98c968777f294b42c30aa
SSDEEP

1536:ukvSqbCgNRRfVseiUDDRqvT44l1hvlPQipa5Ufe7:ukatqT/iUhG/lPz2U0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
150851a228526386987e5c95030ecb0d_JaffaCakes118

Files

150851a228526386987e5c95030ecb0d_JaffaCakes118
.exe windows:5 windows x86 arch:x86

8e8f1f159eb2199851bad5ae96fe6d60

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\cpaWomgspoho\xAynmbi\gwbAkZubvuiMe\UjZzzmwyzX\klvDawks.pdb

Imports

shlwapi

PathIsUNCW

comctl32

ImageList_GetIcon
PropertySheetA
ImageList_GetIconSize
ImageList_Read
CreateToolbarEx
ImageList_GetImageCount

user32

RegisterWindowMessageA
LoadMenuA
AppendMenuA
WindowFromPoint
DefFrameProcA
IsDialogMessageW
ReplyMessage
CreateDialogParamW
MessageBoxExW
InSendMessage
TranslateMessage
LockWindowUpdate
LoadCursorA
GetClassLongW
GetMessageExtraInfo
AllowSetForegroundWindow
SetCursorPos
MessageBoxW
ShowScrollBar
OpenIcon
MapVirtualKeyA
GetNextDlgTabItem
GetCursorPos
GetCaretPos
RegisterClassW
SetRect
MapVirtualKeyExW
RegisterHotKey
CreatePopupMenu
SetPropW
RemoveMenu
CheckRadioButton
DialogBoxIndirectParamA
AppendMenuW
ScrollWindowEx
GetKeyState
LoadImageW
GetMenuItemInfoW
CheckMenuItem
GetClassInfoExA
GetDlgItem
GetMenuState
PostThreadMessageA
GetPropW
RegisterWindowMessageW
SendMessageA
SetWindowPos
EnableWindow
DrawStateA
IsDialogMessageA
IsZoomed
GetIconInfo
IsCharUpperA
GetWindowTextLengthW
MonitorFromRect
SetLastErrorEx
OemToCharBuffA
SendDlgItemMessageW
SetWindowPlacement
BeginPaint
LoadIconW
DestroyMenu
DestroyCaret
IsCharAlphaW
DrawMenuBar
CallWindowProcA
FindWindowExW
GetUpdateRect
DrawEdge
CharUpperBuffA
GetMonitorInfoW
DestroyAcceleratorTable
LoadImageA
GetClipCursor
RemovePropW
DrawFrameControl
GetSystemMenu
GetTopWindow
TileWindows
SendNotifyMessageW
FillRect
IsWindowUnicode
GetMenuItemRect
DispatchMessageW
DrawTextA
wsprintfA
DestroyIcon
GetMessageW
InflateRect
MessageBoxExA
ScrollWindow
UpdateWindow
SystemParametersInfoA
GetKeyboardLayoutList
GetNextDlgGroupItem
HiliteMenuItem
GetUserObjectInformationA
GetFocus
SetForegroundWindow
SendInput
GetClassInfoExW
CharLowerBuffW
GetMenuItemID
InvalidateRgn
ValidateRect
EndDialog
IsWindow
CreateAcceleratorTableW
ArrangeIconicWindows
ModifyMenuW
GetWindow
DeferWindowPos
BeginDeferWindowPos
SetDlgItemTextA
DefWindowProcA
SetWindowLongW
CharToOemA
InsertMenuItemW

msvcrt

atoi
strcspn
vsprintf
isalnum
strtok
perror
strncpy
strerror
wcscspn
fwrite
_controlfp
time
iswdigit
wcscoll
__set_app_type
wcstod
isdigit
__p__fmode
getenv
printf
mktime
__p__commode
puts
_amsg_exit
_initterm
fseek
clearerr
isupper
sscanf
swprintf
towlower
_ismbblead
fputs
isxdigit
setvbuf
memset
_XcptFilter
atol
strtoul
_exit
_cexit
__setusermatherr
iswctype
__getmainargs
qsort
realloc
wcstoul
strrchr

kernel32

CreatePipe
GetTimeFormatA
GlobalFindAtomW
WaitCommEvent
CreateNamedPipeA
GlobalAddAtomA
EnumSystemLocalesA
FormatMessageW
GetModuleFileNameA
OpenFile
FreeResource
VirtualFree
SuspendThread
RemoveDirectoryA
SetPriorityClass
CreateEventA
InitializeCriticalSection
DeleteFileA
GetFileAttributesExW
GetLastError
GetNumberFormatA
IsBadWritePtr
SetFileTime
GlobalAddAtomW
DisconnectNamedPipe
GetShortPathNameA
GetBinaryTypeA
CreateNamedPipeW
GetTempPathW
SetThreadPriority
SetSystemTime
lstrcatW
TlsGetValue
GlobalMemoryStatus
Sleep
GetCommState
AreFileApisANSI
SetHandleInformation
GetWindowsDirectoryA
SetFilePointer
ExitThread
VirtualQuery
FileTimeToDosDateTime
SearchPathW
GetStartupInfoA
lstrcpyW
lstrlenW
RegisterWaitForSingleObject
GetCommConfig
TlsSetValue
ResetEvent
SetTimerQueueTimer
CreateWaitableTimerA
RemoveDirectoryW
GetDateFormatA
VirtualProtect

Exports

Exports

?OwnerInitDescriptor@@YGK_KK:O

Sections

.itext
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ips1
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ips2
Size: 512B - Virtual size: 89B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ntrs
Size: 1024B - Virtual size: 766B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ips3
Size: 512B - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.mode
Size: - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 43KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8e8f1f159eb2199851bad5ae96fe6d60

Headers

File Characteristics

PDB Paths

Imports

shlwapi

comctl32

user32

msvcrt

kernel32

Exports

Exports

Sections

.itext Size: 21KB - Virtual size: 20KB

.ips1 Size: 6KB - Virtual size: 5KB

.ips2 Size: 512B - Virtual size: 89B

.ntrs Size: 1024B - Virtual size: 766B

.ips3 Size: 512B - Virtual size: 192B

.data Size: 3KB - Virtual size: 2KB

.mode Size: - Virtual size: 36KB

.tls Size: 512B - Virtual size: 512B

.rsrc Size: 43KB - Virtual size: 42KB

.reloc Size: 1KB - Virtual size: 1KB

.itext
Size: 21KB - Virtual size: 20KB

.ips1
Size: 6KB - Virtual size: 5KB

.ips2
Size: 512B - Virtual size: 89B

.ntrs
Size: 1024B - Virtual size: 766B

.ips3
Size: 512B - Virtual size: 192B

.data
Size: 3KB - Virtual size: 2KB

.mode
Size: - Virtual size: 36KB

.tls
Size: 512B - Virtual size: 512B

.rsrc
Size: 43KB - Virtual size: 42KB

.reloc
Size: 1KB - Virtual size: 1KB