298f7b60db58c1ed00199a56fca54b09_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

298f7b60db58c1ed00199a56fca54b09_JaffaCakes118
Size

103KB
MD5

298f7b60db58c1ed00199a56fca54b09
SHA1

3d32f621ababfcd82655f13881240176aaca3bb6
SHA256

13d707d511bb7e97539ffa64723c485560af5e1b3a188be212408c64d54467cd
SHA512

c421c60eef983e8913ca29d55291148fe84d82ba0350a2561d581323babf17dc2d29be84a2eaf6755be055b1178714962d952ad8cdcce1c63bbc55f863b83952
SSDEEP

1536:GJ+LKwWQsT1zt/U4BJikUXgDSInsj0Vx2yjWvEzfcgEH+Lv/VXbw:tOM6zt/U4BJxUXNV0Vx2dEAgEHew

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
298f7b60db58c1ed00199a56fca54b09_JaffaCakes118

Files

298f7b60db58c1ed00199a56fca54b09_JaffaCakes118
.exe windows:5 windows x86 arch:x86

40d9d9264c4149371701b7d00f1e07bc

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetWindowsDirectoryA
LocalFlags
LoadLibraryW
GetProcAddress
CreateFileW
GetWindowsDirectoryW
lstrcatW
VirtualAlloc

user32

DdeSetQualityOfService
DefFrameProcW
DefMDIChildProcA
DestroyMenu
DlgDirSelectComboBoxExW
DlgDirSelectExW
DrawCaption
DrawFocusRect
DrawMenuBar
EnumDisplayDevicesW
EnumDisplaySettingsA
EnumDisplaySettingsW
EnumPropsExA
EnumWindows
FindWindowA
FindWindowExA
FindWindowW
FlashWindow
GetAncestor
GetCaretPos
GetClassNameA
GetClientRect
GetCursorInfo
GetDesktopWindow
GetKeyboardLayout
GetKeyboardState
GetMenuStringW
GetNextDlgGroupItem
GetNextDlgTabItem
GetParent
GetPriorityClipboardFormat
GetQueueStatus
GetShellWindow
GetSysColor
GetTopWindow
DdeQueryConvInfo
GetWindowModuleFileName
HiliteMenuItem
IMPQueryIMEW
InvalidateRect
IsMenu
IsWindow
LoadCursorFromFileW
LoadKeyboardLayoutW
LoadStringA
LockWorkStation
LookupIconIdFromDirectory
MapVirtualKeyW
MessageBoxA
MessageBoxIndirectA
NotifyWinEvent
OemToCharA
OpenDesktopW
OpenIcon
PaintDesktop
RealGetWindowClassA
RegisterClassA
RegisterClipboardFormatW
RegisterWindowMessageA
ReplyMessage
SendMessageW
SetClassLongW
SetCursorPos
SetDeskWallpaper
SetMenuDefaultItem
SetShellWindow
SetWinEventHook
SetWindowRgn
SetWindowsHookExA
SetWindowsHookW
ShowOwnedPopups
ShowWindow
UnhookWindowsHookEx
UnpackDDElParam
ValidateRect
VkKeyScanExW
VkKeyScanW
keybd_event
DdeNameService
DdeInitializeW
DdeFreeDataHandle
DdeCreateDataHandle
CreateCursor
CountClipboardFormats
CloseWindow
ClipCursor
CheckMenuRadioItem
CharUpperBuffA
CharPrevW
CharLowerW
BringWindowToTop
AttachThreadInput
AdjustWindowRect
GetUpdateRect

comctl32

CreatePropertySheetPageA
ord6
CreateStatusWindowW
DrawStatusText
FlatSB_GetScrollProp
ImageList_Copy
ImageList_DragEnter
ImageList_DragShowNolock
InitializeFlatSB
ImageList_SetImageCount
ImageList_Read
ImageList_LoadImageA
ImageList_EndDrag
ImageList_Duplicate
CreatePropertySheetPage

msvcrt

memcpy

Sections

.text
Size: 89KB - Virtual size: 89KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 760B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 276KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

40d9d9264c4149371701b7d00f1e07bc

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

comctl32

msvcrt

Sections

.text Size: 89KB - Virtual size: 89KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 512B - Virtual size: 760B

.rsrc Size: 7KB - Virtual size: 6KB

.reloc Size: 1024B - Virtual size: 276KB

.text
Size: 89KB - Virtual size: 89KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 512B - Virtual size: 760B

.rsrc
Size: 7KB - Virtual size: 6KB

.reloc
Size: 1024B - Virtual size: 276KB