1a0e78abce515f6df4fcd177ab2c92eb_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

1a0e78abce515f6df4fcd177ab2c92eb_JaffaCakes118
Size

146KB
MD5

1a0e78abce515f6df4fcd177ab2c92eb
SHA1

972b5e4c8fa2d311290ff2506aae2c23942e09fe
SHA256

a868555150c8ad86f3980519477d2a0e26edb038b323c5c009326ff7ae437793
SHA512

bd388b149f0a38d6b369c33d1bb255e811ffd1bcfb4dbe8f702d64910279bf107f46f13dd5f36e83a02375b99a78c576037e6ed22389be44796a45dd86503793
SSDEEP

3072:QWcwhLcZluL3mgQ6BB1rT8y8Dm3XBLkirKQFxZs:Qihc+Lh7B8y8Dotkir

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1a0e78abce515f6df4fcd177ab2c92eb_JaffaCakes118

Files

1a0e78abce515f6df4fcd177ab2c92eb_JaffaCakes118
.exe windows:5 windows x86 arch:x86

769356a914f5cc3cc1690dd71db42ed2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

N:\gjtHFRNtufHSqC\opdNzGxisAglx\pIwjCfrznzt\buobOgt\orxTyHY.pdb

Imports

comdlg32

GetFileTitleW
GetOpenFileNameA
PrintDlgW
ChooseFontW
PageSetupDlgW
PrintDlgExW

kernel32

GetLocalTime
AddAtomW
UnlockFile
GetModuleHandleW
LocalFree
CreateFileMappingW
SizeofResource
ReleaseMutex
IsDBCSLeadByteEx
DeleteFileW
GetModuleFileNameW
GetACP
WinExec
TryEnterCriticalSection
GetProcessHeap
SetSystemTime
GetUserDefaultLCID
FlushViewOfFile
lstrcpynW
Sleep
HeapAlloc
GetCommConfig
CreateThread
ClearCommBreak
IsBadReadPtr
WaitCommEvent
UnhandledExceptionFilter
SetEvent
LocalAlloc
GetTempPathA
lstrcatW
SetWaitableTimer
GlobalLock
SetUnhandledExceptionFilter
FindClose
EnumResourceLanguagesA
HeapReAlloc
HeapFree
WaitForSingleObjectEx
HeapValidate
GlobalFlags
SetTimerQueueTimer
LocalLock
ConvertDefaultLocale
CreateSemaphoreA
LocalUnlock
VirtualProtect
GetUserDefaultLangID
GetDateFormatA
GetLocaleInfoW
GlobalReAlloc
SetCommBreak
SetFileTime
GetFullPathNameA
lstrcpyA

shlwapi

UrlIsA

msvcrt

iswprint
_controlfp
fgetc
__set_app_type
fflush
__p__fmode
wcscoll
strchr
fwrite
strncpy
free
fgets
toupper
swscanf
islower
realloc
atol
vswprintf
strpbrk
__p__commode
malloc
fread
mbtowc
wcslen
time
srand
_amsg_exit
iswalpha
wcsrchr
_initterm
strtol
printf
_ismbblead
mktime
gmtime
_XcptFilter
wcsncmp
sscanf
_exit
wcscat
isprint
_cexit
towupper
wcsstr
strspn
__setusermatherr
__getmainargs

user32

SendMessageA
ModifyMenuW
IsWindowVisible
MapVirtualKeyW
GetSysColorBrush
GetDoubleClickTime
GetKeyboardLayoutList
SetWindowLongA
EnableWindow
SystemParametersInfoA
GetClipCursor
CharNextExA
GetAltTabInfoA
TrackPopupMenuEx
GetWindowLongW
DispatchMessageA
DefWindowProcA
LoadStringW
IsCharAlphaW
GetMonitorInfoW
SetTimer
ScreenToClient
RemoveMenu
CreateDialogIndirectParamW
DialogBoxIndirectParamW
CopyImage
GetForegroundWindow
ShowCaret
DestroyCaret
IntersectRect
UnloadKeyboardLayout
SetWindowPos
GetScrollPos
BeginPaint
CharNextW
SetCursor
DrawTextW
CreateCursor
OemToCharA
SetMenu
DialogBoxParamW
AdjustWindowRect
GetCaretPos
DrawStateA
DrawAnimatedRects
GetSysColor
OpenDesktopW
InvalidateRgn
GetNextDlgTabItem
GetMenu
CheckMenuRadioItem
SetParent
LockWindowUpdate
LoadStringA
GetKeyboardType
FindWindowA
GetDC
GetMenuItemRect
AppendMenuA
GetMenuItemCount
TrackPopupMenu
ShowScrollBar
InsertMenuA
GrayStringW
GetPropW
EnumWindows
GetMenuItemInfoW
RegisterWindowMessageW
GetClassInfoA
SendNotifyMessageW
CheckMenuItem
CreateWindowExA
PostMessageA
LoadIconA
GetDCEx
ReplyMessage
RemovePropW
SetCaretPos
GetKeyboardLayout
DrawEdge
GetMenuStringW
PostQuitMessage
IsMenu
SetActiveWindow
GetWindowLongA
CharToOemA
MoveWindow
LoadAcceleratorsW
CharToOemW
GetClassLongW
CloseDesktop
DrawIconEx
GetMessageTime
AdjustWindowRectEx
GetActiveWindow
LoadCursorW
ToUnicodeEx
CharPrevA
DestroyWindow
GetFocus
WaitForInputIdle
LoadImageW
DestroyCursor
FindWindowW
GetNextDlgGroupItem
GetWindowPlacement
GetUserObjectInformationA
CreateCaret
LoadImageA
AllowSetForegroundWindow
IsDlgButtonChecked
GetDialogBaseUnits
GetScrollRange
ArrangeIconicWindows
CopyRect
ShowOwnedPopups
CharPrevW
IsDialogMessageW

comctl32

CreatePropertySheetPageA
ImageList_AddMasked
PropertySheetA
ImageList_GetIcon
CreateStatusWindowW
InitCommonControlsEx

Exports

Exports

?TestAccountSecDUoiJDK@@YGKGE[D

Sections

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 9KB - Virtual size: 133KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 114KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

769356a914f5cc3cc1690dd71db42ed2

Headers

File Characteristics

PDB Paths

Imports

comdlg32

kernel32

shlwapi

msvcrt

user32

comctl32

Exports

Exports

Sections

.text Size: 20KB - Virtual size: 20KB

.data Size: 9KB - Virtual size: 133KB

.rsrc Size: 114KB - Virtual size: 113KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 20KB - Virtual size: 20KB

.data
Size: 9KB - Virtual size: 133KB

.rsrc
Size: 114KB - Virtual size: 113KB

.reloc
Size: 1KB - Virtual size: 1KB