2e30df37df32fb93d445dbda1fc18bb7_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

2e30df37df32fb93d445dbda1fc18bb7_JaffaCakes118
Size

80KB
MD5

2e30df37df32fb93d445dbda1fc18bb7
SHA1

763894e1672b79c992ce989e412f91db0ce4eb94
SHA256

11894535b3366fca4e19d7276c6827f7a402d6fcc9d88ca14b464c0fe1a56337
SHA512

754053364f19d178994c38edccf2095a3932d9fdc87510006193e6efff8bd9a44fe3648f1b5db007d4aec0e41dd46fc7a6de4408c26b292c0edef92961e386f5
SSDEEP

1536:1h4UlfMTB9uPGr23sCMWVpFIsIxnRYGxQmuJXnyRg1/:1h4bTpr23sbCusIEdmOiS1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2e30df37df32fb93d445dbda1fc18bb7_JaffaCakes118

Files

2e30df37df32fb93d445dbda1fc18bb7_JaffaCakes118
.exe windows:5 windows x86 arch:x86

74a1b163d7d9049c9d83a041a28af897

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

T:\vFkcedal\hcqAarfVIf\XGHbxylegrp\swvuZheavlqyUh\urHyenrubV.pdb

Imports

user32

IsWindowUnicode
GetWindowLongW
GetDlgCtrlID
OpenDesktopW
CharNextW
IsDialogMessageA
WindowFromPoint
DrawFrameControl
DefDlgProcW
GetUpdateRgn
GetCursorPos
PostThreadMessageA
CreateDialogParamW
GetClientRect
AdjustWindowRectEx
GetSysColorBrush
CreateIconFromResource
CreateWindowExA
IsMenu
ArrangeIconicWindows
DrawStateA
CharLowerBuffW
SendDlgItemMessageW
CharNextExA
CharUpperBuffW
GetScrollInfo
GetWindowPlacement
AttachThreadInput
GetUserObjectInformationA
SendNotifyMessageW
SetActiveWindow
CopyRect
DrawMenuBar
SetCursorPos
GetMenuCheckMarkDimensions
GetDlgItem
SetWindowLongA
GrayStringW
LoadMenuA
CreatePopupMenu
MessageBoxExW
DialogBoxParamA
DrawEdge
TranslateAcceleratorA
GetMessageTime
CreateAcceleratorTableW
GetDlgItemTextA
ChangeMenuW
DestroyAcceleratorTable
SystemParametersInfoA
EnumWindows
SetMenuItemInfoW
SendMessageTimeoutA
CharUpperA
ChildWindowFromPointEx
SetMenu
ScreenToClient
GetUpdateRect
CreateIconIndirect
GetDlgItemInt
SetMenuItemBitmaps
DialogBoxParamW
IsCharAlphaNumericW
DestroyIcon
GetMessagePos
CreateCursor
IsWindow
GetDlgItemTextW
LoadStringA
LoadMenuW
SetParent
GetAsyncKeyState
LoadCursorW
CharUpperW
RemoveMenu
GetWindowDC
GetUserObjectInformationW
LoadIconW
AdjustWindowRect
WaitForInputIdle
SetDlgItemTextA
CreateDialogIndirectParamW
ReleaseDC
RegisterClassExW
GetKeyState
PostMessageA
GetDialogBaseUnits
CreateDialogParamA
MapVirtualKeyA
SetFocus
GetCaretPos
GetActiveWindow
OemToCharBuffA
SetDlgItemTextW
LoadImageW
ShowCursor
SystemParametersInfoW
LoadAcceleratorsW
SetUserObjectInformationW
RegisterWindowMessageW
RegisterClassW
DestroyMenu
GetMenuState
EnableScrollBar
SetWindowPos
IsIconic
IsDialogMessageW
GetClipCursor
ExitWindowsEx
CallWindowProcA
TranslateAcceleratorW
GetClassInfoExW
DefWindowProcW
SetRect
FindWindowA
RedrawWindow
ModifyMenuW
LoadCursorA
GetShellWindow
LookupIconIdFromDirectory

msvcrt

_controlfp
__set_app_type
isxdigit
towupper
rand
malloc
setvbuf
__p__fmode
strtol
strcpy
ungetc
atoi
iswdigit
fread
__p__commode
swscanf
system
strpbrk
mktime
vsprintf
_amsg_exit
wcstoul
_initterm
_ismbblead
wcsncmp
iswprint
swprintf
bsearch
localtime
strrchr
gmtime
toupper
isspace
strcspn
towlower
wcspbrk
wcscpy
wcscoll
mbstowcs
iswxdigit
remove
_XcptFilter
strspn
_exit
_cexit
wcscat
__setusermatherr
__getmainargs

kernel32

lstrcpynA
CancelIo
CreateFileMappingA
UnhandledExceptionFilter
ExitThread
GetCommState
GetCommandLineA
RemoveDirectoryA
UnlockFile
IsBadReadPtr
GetCurrentThread
DeleteAtom
GetFileInformationByHandle
GetWindowsDirectoryA
GlobalMemoryStatus
SleepEx
LCMapStringW
OpenFile
GetNumberFormatA
CompareFileTime
GlobalFlags
HeapSize
CopyFileW
GlobalLock
CreateWaitableTimerW
CallNamedPipeW
GlobalFindAtomW
DuplicateHandle
RegisterWaitForSingleObject
LCMapStringA
lstrcmpiA
OpenFileMappingA
GlobalAddAtomA
SetFileTime
VirtualQuery
LockResource
SetWaitableTimer
LoadLibraryA
GetLongPathNameW
GetLocaleInfoA
DefineDosDeviceW
GetComputerNameExW
GetHandleInformation
GetExitCodeThread
GlobalMemoryStatusEx
CancelWaitableTimer
FreeLibrary
HeapAlloc
EnumSystemLocalesA
IsBadCodePtr
lstrlenW
ConvertDefaultLocale
SetUnhandledExceptionFilter
GetTempFileNameA
AddAtomA

Exports

Exports

?GetShiftAltInfo@@YGK_KHE:O

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bit
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.insec
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.inmin
Size: 512B - Virtual size: 86B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.wall
Size: 1024B - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.zdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

74a1b163d7d9049c9d83a041a28af897

Headers

File Characteristics

PDB Paths

Imports

user32

msvcrt

kernel32

Exports

Exports

Sections

.text Size: 8KB - Virtual size: 7KB

.bit Size: 1KB - Virtual size: 1KB

.insec Size: 6KB - Virtual size: 5KB

.inmin Size: 512B - Virtual size: 86B

.wall Size: 1024B - Virtual size: 38KB

.zdata Size: 12KB - Virtual size: 12KB

.data Size: 2KB - Virtual size: 1KB

.tls Size: 512B - Virtual size: 512B

.rsrc Size: 46KB - Virtual size: 45KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 8KB - Virtual size: 7KB

.bit
Size: 1KB - Virtual size: 1KB

.insec
Size: 6KB - Virtual size: 5KB

.inmin
Size: 512B - Virtual size: 86B

.wall
Size: 1024B - Virtual size: 38KB

.zdata
Size: 12KB - Virtual size: 12KB

.data
Size: 2KB - Virtual size: 1KB

.tls
Size: 512B - Virtual size: 512B

.rsrc
Size: 46KB - Virtual size: 45KB

.reloc
Size: 1KB - Virtual size: 1KB