167f1612089dce8451c77a70f7d5a5ea_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

167f1612089dce8451c77a70f7d5a5ea_JaffaCakes118
Size

250KB
MD5

167f1612089dce8451c77a70f7d5a5ea
SHA1

613eb7eaa98a091cdddf8d9513e0c5cba9fba73e
SHA256

37417f75353d9fc1d7a280451f97101139fe227baf1838f925b2dcbe8a93859e
SHA512

90ee6aaabc1ff311f4d87de9dd22bb898ba0c9e575a798367355b11fcff1ec816f01b22d3c895513d84ac2372f0a06c8dd902df75b02c6d502e5b820a7bfd95b
SSDEEP

6144:akLCeb1sHB7QJALTVYKAAkC6bakXrLuyY42sWW9t1tzbPF:pueb1sH2ALTVhAAT6vXrKykNkbP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
167f1612089dce8451c77a70f7d5a5ea_JaffaCakes118

Files

167f1612089dce8451c77a70f7d5a5ea_JaffaCakes118
.exe windows:5 windows x86 arch:x86

faef5ccdaedde114e96546f7f4a37a46

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SendDlgItemMessageA
IsWindowEnabled
DestroyCursor
LoadStringW
CharUpperBuffW
CheckMenuItem
GetUserObjectInformationA
FindWindowExW
PostThreadMessageW
SetMenuDefaultItem
GetDC
TranslateAcceleratorA
GetUpdateRgn
AllowSetForegroundWindow
CreateDialogParamW
MonitorFromPoint
PostMessageA
IsWindowUnicode
SetWindowTextA
LoadMenuW
AdjustWindowRect
ScrollWindowEx
SetDlgItemTextW
GetUpdateRect
GetMenuState
RemoveMenu
DeferWindowPos
GetWindowRect
CharLowerBuffW
GetKeyboardLayout
LoadCursorA
GetDialogBaseUnits
SetDlgItemTextA
CloseDesktop
FindWindowExA
EnableMenuItem
SetForegroundWindow

comctl32

ImageList_Create
PropertySheetW
ImageList_Remove
InitCommonControlsEx
CreatePropertySheetPageA
ImageList_AddMasked

ntdll

memset

kernel32

SleepEx
HeapCreate
FindResourceExA
TlsSetValue
IsBadCodePtr
SizeofResource
GetModuleHandleW
GetComputerNameW
EnumResourceLanguagesA
GetOEMCP
RemoveDirectoryW
GetSystemTimeAdjustment
CancelIo
GetVersionExA
DuplicateHandle
LoadLibraryExW
GetLastError

gdi32

GetClipBox
ResizePalette
IntersectClipRect
SetMapMode
GetTextExtentPoint32A
GetTextMetricsA
BitBlt
GetObjectA
CreateFontW
PatBlt
CreateEllipticRgnIndirect
TextOutW
GetTextExtentPoint32W
RoundRect
GetSystemPaletteUse
WidenPath

Exports

Exports

?NDJndjklIODUiuodjilkjDUIOioudIUODOI@@YGKEPA_WG@Z

Sections

.text
Size: 154KB - Virtual size: 153KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.nfodat
Size: 512B - Virtual size: 360B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.point
Size: 512B - Virtual size: 360B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.temp
Size: 1024B - Virtual size: 559B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.port
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 53KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

faef5ccdaedde114e96546f7f4a37a46

Headers

File Characteristics

Imports

user32

comctl32

ntdll

kernel32

gdi32

Exports

Exports

Sections

.text Size: 154KB - Virtual size: 153KB

.nfodat Size: 512B - Virtual size: 360B

.point Size: 512B - Virtual size: 360B

.data Size: 1KB - Virtual size: 1KB

.rdata Size: 14KB - Virtual size: 13KB

.temp Size: 1024B - Virtual size: 559B

.port Size: 23KB - Virtual size: 22KB

.rsrc Size: 53KB - Virtual size: 56KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 154KB - Virtual size: 153KB

.nfodat
Size: 512B - Virtual size: 360B

.point
Size: 512B - Virtual size: 360B

.data
Size: 1KB - Virtual size: 1KB

.rdata
Size: 14KB - Virtual size: 13KB

.temp
Size: 1024B - Virtual size: 559B

.port
Size: 23KB - Virtual size: 22KB

.rsrc
Size: 53KB - Virtual size: 56KB

.reloc
Size: 2KB - Virtual size: 1KB