3450551f6743af819aea5d0b65835135_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

3450551f6743af819aea5d0b65835135_JaffaCakes118
Size

150KB
MD5

3450551f6743af819aea5d0b65835135
SHA1

eb1023d6b920c83cd9c067b76aedaadccf43a35f
SHA256

93738f1957019b979cddbb3dbc35b52f303b2e35985e2f1915c825d76d4af4c1
SHA512

1ab780801e2c27a4a930897a8b90b1235d3c3c904dcd0dfd6cdf4f4a9c4a63e792104c89d68089af8d2de49f578281ca18d2a19d7780807bc6b6dbeeb82ebed1
SSDEEP

3072:oM84S+aM5tWb7Zgn6r5xuCiu/EqZPiXvgpRghuSXuAwyP:jS+aM5kfZBxuPu/EqZPUvgUhuSl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3450551f6743af819aea5d0b65835135_JaffaCakes118

Files

3450551f6743af819aea5d0b65835135_JaffaCakes118
.exe windows:5 windows x86 arch:x86

94deb6ff8455dd99083125ea6d31b5f4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

??1type_info@@UAE@XZ
__CxxFrameHandler
_time64
_localtime64
iswctype
wcsncpy
memset
??3@YAXPAX@Z
wcsncmp
memcpy
_wtol
_CxxThrowException
_except_handler3

kernel32

ExpandEnvironmentStringsA
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
RtlUnwind
ExitProcess
CreateFileA
lstrcmpA
lstrlenA
lstrcpynA
WriteFile
lstrcatA
GetLastError
GetProcAddress
LoadLibraryA
GetModuleFileNameA
GetModuleHandleA
CloseHandle
GetTempPathA
lstrcpyA
GetCommandLineW
LocalUnlock
FindFirstFileW
GetLocaleInfoW
lstrcpynW
MulDiv
CreateFileW
CompareStringW
lstrcmpW
lstrlenW
LocalLock
GlobalFree
FindClose
LocalAlloc
FoldStringW
lstrcatW
LocalFree
lstrcpyW
GetDateFormatW
GetUserDefaultLCID
GetTimeFormatW
GetLocalTime
MapViewOfFile
UnmapViewOfFile
SetEndOfFile
GetUserDefaultLangID
WideCharToMultiByte
FormatMessageW
LocalReAlloc
GetACP
MultiByteToWideChar
SetLastError
CreateFileMappingW
DeleteFileW
GetFileInformationByHandle
lstrcmpiW
LocalSize
GlobalLock
GlobalUnlock
GetCPInfo
IsDBCSLeadByte

user32

DrawTextExW
GetWindowTextW
PeekMessageW
CreateDialogParamW
EnableWindow
CharLowerW
SetWindowPlacement
GetSystemMenu
IsWindowVisible
EqualRect
GetCursorPos
InflateRect
wsprintfA
GetFocus
ClientToScreen
DispatchMessageW
MoveWindow
CheckMenuItem
DefWindowProcW
WinHelpW
SetWindowTextW
GetDlgCtrlID
SendMessageW
SetDlgItemTextW
GetDlgItemTextW
GetSystemMetrics
MessageBoxW
OpenClipboard
GetDesktopWindow
SendDlgItemMessageW
EndDialog
GetMenuState
EnableMenuItem
ReleaseDC
InvalidateRect
GetKeyboardLayout
LoadIconW
IsDialogMessageW
GetMenu
GetForegroundWindow
ChildWindowFromPoint
TranslateMessage
GetDC
wsprintfW
SetFocus
MessageBeep
IsClipboardFormatAvailable
DialogBoxParamW
GetSubMenu
PostMessageW
IsIconic
CharNextW
PostQuitMessage
GetMessageW
SetActiveWindow
ScreenToClient
TranslateAcceleratorW
CloseClipboard
SetCursor
DestroyWindow
GetWindowLongW
UpdateWindow
SetScrollPos
CreateWindowExW
ShowWindow
LoadStringW
SetWindowLongW
CharUpperW
GetWindowPlacement
RegisterClassExW
LoadAcceleratorsW
GetClientRect
LoadCursorW
LoadImageW
RegisterWindowMessageW

shell32

DragQueryFileW
DragAcceptFiles
DragFinish
ShellAboutW

shlwapi

SHGetValueA

gdi32

GetBkMode
EndPage
GetTextExtentPoint32W
GetTextMetricsW
LPtoDP
SetWindowExtEx
StartPage
DeleteDC
SetAbortProc
CreateDCW
SetBkMode
SetMapMode
StartDocW
SetViewportExtEx
TextOutW
EndDoc
EnumFontsW
SelectObject
GetObjectW
GetTextFaceW
GetStockObject
CreateFontIndirectW
GetDeviceCaps
DeleteObject
GetBkColor

comdlg32

PageSetupDlgW
PrintDlgExW
CommDlgExtendedError
GetFileTitleW
FindTextW
GetSaveFileNameW
ReplaceTextW
GetOpenFileNameW
ChooseFontW

advapi32

RegOpenKeyExA
RegQueryValueExA
RegQueryValueExW
IsTextUnicode
RegSetValueExW
RegCloseKey
RegCreateKeyW

winspool.drv

ClosePrinter
GetPrinterDriverW
OpenPrinterW

Sections

.text
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 85KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

94deb6ff8455dd99083125ea6d31b5f4

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

kernel32

user32

shell32

shlwapi

gdi32

comdlg32

advapi32

winspool.drv

Sections

.text Size: 39KB - Virtual size: 39KB

.rdata Size: 6KB - Virtual size: 5KB

.data Size: 85KB - Virtual size: 91KB

.rsrc Size: 18KB - Virtual size: 17KB

.text
Size: 39KB - Virtual size: 39KB

.rdata
Size: 6KB - Virtual size: 5KB

.data
Size: 85KB - Virtual size: 91KB

.rsrc
Size: 18KB - Virtual size: 17KB