1b77b14c817562b6dfa1357806c33cbe_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

1b77b14c817562b6dfa1357806c33cbe_JaffaCakes118
Size

80KB
MD5

1b77b14c817562b6dfa1357806c33cbe
SHA1

8a18806f4b1e89e1bafb4da0d6a3bdc7311eaa81
SHA256

2131ac4c80d5c11ece65c6489d0c7caacaa91177b2c12b35e75d59e332d5fd8d
SHA512

829908e146a9f9049f3992c1cf7eca9510f7be14baef75bd721c3a2e4fe9b3206d2b6522f895cf84ebf4998bfc341e52f158207f2cd42a016c6f5a5130809541
SSDEEP

1536:Fh4UlfMTB9uPGr23sCMWVpFIsIxnRYGxQmuJXnyRg1/:Fh4bTpr23sbCusIEdmOiS1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1b77b14c817562b6dfa1357806c33cbe_JaffaCakes118

Files

1b77b14c817562b6dfa1357806c33cbe_JaffaCakes118
.exe windows:5 windows x86 arch:x86

74a1b163d7d9049c9d83a041a28af897

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

T:\vFkcedal\hcqAarfVIf\XGHbxylegrp\swvuZheavlqyUh\urHyenrubV.pdb

Imports

user32

IsWindowUnicode
GetWindowLongW
GetDlgCtrlID
OpenDesktopW
CharNextW
IsDialogMessageA
WindowFromPoint
DrawFrameControl
DefDlgProcW
GetUpdateRgn
GetCursorPos
PostThreadMessageA
CreateDialogParamW
GetClientRect
AdjustWindowRectEx
GetSysColorBrush
CreateIconFromResource
CreateWindowExA
IsMenu
ArrangeIconicWindows
DrawStateA
CharLowerBuffW
SendDlgItemMessageW
CharNextExA
CharUpperBuffW
GetScrollInfo
GetWindowPlacement
AttachThreadInput
GetUserObjectInformationA
SendNotifyMessageW
SetActiveWindow
CopyRect
DrawMenuBar
SetCursorPos
GetMenuCheckMarkDimensions
GetDlgItem
SetWindowLongA
GrayStringW
LoadMenuA
CreatePopupMenu
MessageBoxExW
DialogBoxParamA
DrawEdge
TranslateAcceleratorA
GetMessageTime
CreateAcceleratorTableW
GetDlgItemTextA
ChangeMenuW
DestroyAcceleratorTable
SystemParametersInfoA
EnumWindows
SetMenuItemInfoW
SendMessageTimeoutA
CharUpperA
ChildWindowFromPointEx
SetMenu
ScreenToClient
GetUpdateRect
CreateIconIndirect
GetDlgItemInt
SetMenuItemBitmaps
DialogBoxParamW
IsCharAlphaNumericW
DestroyIcon
GetMessagePos
CreateCursor
IsWindow
GetDlgItemTextW
LoadStringA
LoadMenuW
SetParent
GetAsyncKeyState
LoadCursorW
CharUpperW
RemoveMenu
GetWindowDC
GetUserObjectInformationW
LoadIconW
AdjustWindowRect
WaitForInputIdle
SetDlgItemTextA
CreateDialogIndirectParamW
ReleaseDC
RegisterClassExW
GetKeyState
PostMessageA
GetDialogBaseUnits
CreateDialogParamA
MapVirtualKeyA
SetFocus
GetCaretPos
GetActiveWindow
OemToCharBuffA
SetDlgItemTextW
LoadImageW
ShowCursor
SystemParametersInfoW
LoadAcceleratorsW
SetUserObjectInformationW
RegisterWindowMessageW
RegisterClassW
DestroyMenu
GetMenuState
EnableScrollBar
SetWindowPos
IsIconic
IsDialogMessageW
GetClipCursor
ExitWindowsEx
CallWindowProcA
TranslateAcceleratorW
GetClassInfoExW
DefWindowProcW
SetRect
FindWindowA
RedrawWindow
ModifyMenuW
LoadCursorA
GetShellWindow
LookupIconIdFromDirectory

msvcrt

_controlfp
__set_app_type
isxdigit
towupper
rand
malloc
setvbuf
__p__fmode
strtol
strcpy
ungetc
atoi
iswdigit
fread
__p__commode
swscanf
system
strpbrk
mktime
vsprintf
_amsg_exit
wcstoul
_initterm
_ismbblead
wcsncmp
iswprint
swprintf
bsearch
localtime
strrchr
gmtime
toupper
isspace
strcspn
towlower
wcspbrk
wcscpy
wcscoll
mbstowcs
iswxdigit
remove
_XcptFilter
strspn
_exit
_cexit
wcscat
__setusermatherr
__getmainargs

kernel32

lstrcpynA
CancelIo
CreateFileMappingA
UnhandledExceptionFilter
ExitThread
GetCommState
GetCommandLineA
RemoveDirectoryA
UnlockFile
IsBadReadPtr
GetCurrentThread
DeleteAtom
GetFileInformationByHandle
GetWindowsDirectoryA
GlobalMemoryStatus
SleepEx
LCMapStringW
OpenFile
GetNumberFormatA
CompareFileTime
GlobalFlags
HeapSize
CopyFileW
GlobalLock
CreateWaitableTimerW
CallNamedPipeW
GlobalFindAtomW
DuplicateHandle
RegisterWaitForSingleObject
LCMapStringA
lstrcmpiA
OpenFileMappingA
GlobalAddAtomA
SetFileTime
VirtualQuery
LockResource
SetWaitableTimer
LoadLibraryA
GetLongPathNameW
GetLocaleInfoA
DefineDosDeviceW
GetComputerNameExW
GetHandleInformation
GetExitCodeThread
GlobalMemoryStatusEx
CancelWaitableTimer
FreeLibrary
HeapAlloc
EnumSystemLocalesA
IsBadCodePtr
lstrlenW
ConvertDefaultLocale
SetUnhandledExceptionFilter
GetTempFileNameA
AddAtomA

Exports

Exports

?GetShiftAltInfo@@YGK_KHE:O

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bit
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.insec
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.inmin
Size: 512B - Virtual size: 86B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.wall
Size: 1024B - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.zdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

74a1b163d7d9049c9d83a041a28af897

Headers

File Characteristics

PDB Paths

Imports

user32

msvcrt

kernel32

Exports

Exports

Sections

.text Size: 8KB - Virtual size: 7KB

.bit Size: 1KB - Virtual size: 1KB

.insec Size: 6KB - Virtual size: 5KB

.inmin Size: 512B - Virtual size: 86B

.wall Size: 1024B - Virtual size: 38KB

.zdata Size: 12KB - Virtual size: 12KB

.data Size: 2KB - Virtual size: 1KB

.tls Size: 512B - Virtual size: 512B

.rsrc Size: 46KB - Virtual size: 45KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 8KB - Virtual size: 7KB

.bit
Size: 1KB - Virtual size: 1KB

.insec
Size: 6KB - Virtual size: 5KB

.inmin
Size: 512B - Virtual size: 86B

.wall
Size: 1024B - Virtual size: 38KB

.zdata
Size: 12KB - Virtual size: 12KB

.data
Size: 2KB - Virtual size: 1KB

.tls
Size: 512B - Virtual size: 512B

.rsrc
Size: 46KB - Virtual size: 45KB

.reloc
Size: 1KB - Virtual size: 1KB