370a0053b9a1c3dde7a7ea6cdcda37eb_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

370a0053b9a1c3dde7a7ea6cdcda37eb_JaffaCakes118
Size

213KB
MD5

370a0053b9a1c3dde7a7ea6cdcda37eb
SHA1

ce822f5ac6995dedbdc8586009806fd25ed57d62
SHA256

e0256a2f8432d9209a8d36d83658205576090b82b7e4ad431e3e6fea17e3ae77
SHA512

ea5cef78d7aaaa1439cb273dc3f582bfac73efa25167a56eb0f67d3c8e3011bfa3f02d0cc05ff2b5623da79edea663b2135ce48da49d3a179de44d2cadb70581
SSDEEP

6144:amqhc6duQb9X0BAyyArNTAHKSQyGLHj/PD42c5HE:dRhQb9kBFyY5mKSXs/8/k

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
370a0053b9a1c3dde7a7ea6cdcda37eb_JaffaCakes118

Files

370a0053b9a1c3dde7a7ea6cdcda37eb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

46c152d95241ad595dfc2a04c11ea7a3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

gdi32

AbortDoc
DeleteObject
StartDocW
GetTextExtentPoint32W
SetBkMode
EndPage
TextOutW
EnumFontsW
CreateDCW
GetObjectW
EndDoc
SetAbortProc
SetWindowExtEx
SetMapMode
GetTextMetricsW
DeleteDC
GetDeviceCaps
SelectObject
SetViewportExtEx
LPtoDP
CreateFontIndirectW
StartPage
GetStockObject
GetTextFaceW

user32

DestroyWindow
GetDlgCtrlID
LoadStringW
TranslateMessage
MoveWindow
GetClientRect
DrawTextExW
IsDialogMessageW
IsChild
CharLowerW
GetKeyboardLayout
CheckMenuItem
PeekMessageW
CharUpperA
GetSysColorBrush
SendDlgItemMessageW
ReleaseDC
ShowWindow
OpenClipboard
GetTopWindow
EnableWindow
CreateWindowExW
GetWindowLongW
DispatchMessageW
GetWindowPlacement
InvalidateRect
GetForegroundWindow
GetWindowTextW
GetDlgItem
wsprintfW
GetMessagePos
SendMessageW
SetActiveWindow
MessageBoxW
PostMessageW
CreateDialogParamW
DestroyIcon
LoadImageW
UnionRect
DialogBoxParamW
PostQuitMessage
GetFocus
ChildWindowFromPoint
GetMenuState
GetSystemMenu
DefWindowProcW
GetNextDlgTabItem
SetWindowTextW
RegisterClassExW
UpdateWindow
GetWindowTextA
ScreenToClient
WinHelpW
RegisterWindowMessageW
GetParent
EndDialog
SetWinEventHook
GetScrollInfo
SetScrollPos
CharNextW
CloseClipboard
GetMenu
GetSubMenu
LoadAcceleratorsW
MessageBeep
SetWindowPlacement
LoadCursorW
IsDlgButtonChecked
GetDC
IsClipboardFormatAvailable
GetMessageW
CharUpperW
SetWindowLongW
GetDlgItemTextW
RegisterWindowMessageA
OffsetRect
GetCursorPos
SetDlgItemTextW
GetSystemMetrics
EnableMenuItem
LoadIconW
RedrawWindow
UnhookWinEvent
SetFocus
FindWindowA
SetDlgItemTextA
IsIconic
GetDesktopWindow
GetKeyState
TranslateAcceleratorW
SetCursor
GetWindowLongA

msvcrt

??0exception@@QAE@ABQBD@Z
_XcptFilter
fclose
exit
_unlock
_onexit
__getmainargs
iswctype
__dllonexit
__set_app_type
__p__fmode
memset
memcpy
??2@YAPAXI@Z
_wtol
wcsncpy
time
_controlfp
_cexit
_snwprintf
??3@YAXPAX@Z
??_V@YAXPAX@Z
_amsg_exit
wcsstr
_exit
_initterm
_lock
__p__commode
_stricmp
_acmdln
_c_exit
__setusermatherr
wcsncmp
localtime
_adjust_fdiv

kernel32

EnterCriticalSection
WideCharToMultiByte
lstrcpyW
FormatMessageW
LoadLibraryExW
TlsFree
FindFirstFileA
DeleteCriticalSection
GetLastError
MapViewOfFile
CloseHandle
GetProcAddress
DisableThreadLibraryCalls
LocalUnlock
MulDiv
GetFileType
GetDriveTypeW
GetLocalTime
GetEnvironmentStringsW
WriteFile
FindClose
GetFileSize
VirtualQuery
LocalFree
InterlockedCompareExchange
GetSystemInfo
GlobalFree
QueryPerformanceCounter
lstrcmpiA
FindFirstFileW
SetEndOfFile
lstrcmpiW
GetProcessHeap
GetFileAttributesW
GetACP
LocalAlloc
MoveFileExW
lstrlenA
GetCommandLineW
RaiseException
GetEnvironmentStrings
GetLocaleInfoW
lstrcpynW
GetSystemTimeAsFileTime
DeleteFileW
CreateMutexA
CreateFileMappingW
CompareStringW
GetOEMCP
LocalSize
SetEnvironmentVariableA
lstrcatW
MultiByteToWideChar
LocalLock
LoadResource
VirtualFree
SetLastError
GlobalUnlock
GetTimeFormatW
lstrcmpW
VirtualProtect
GetStartupInfoW
LocalReAlloc
GetModuleHandleA
UnmapViewOfFile
GlobalLock
LoadLibraryA
SetHandleCount
GetCurrentThreadId
ExitProcess
CreateEventW
LCMapStringW
GetFileInformationByHandle
HeapReAlloc
GetTickCount
GetCurrentProcessId
GetModuleHandleW
VirtualAlloc
CreateFileA
IsValidCodePage
SetUnhandledExceptionFilter
GetUserDefaultLCID
GetDateFormatA
LoadLibraryW
ExpandEnvironmentStringsW
HeapDestroy
IsDebuggerPresent
GetCommandLineA
GlobalDeleteAtom
SetEvent
TerminateProcess
SystemTimeToFileTime
GetCurrentProcess
InterlockedExchange
GetStartupInfoA
GetCurrentDirectoryA
RemoveDirectoryA
SetThreadPriority
FileTimeToSystemTime
GetUserDefaultUILanguage
InterlockedIncrement
FoldStringW
CreateFileW
GetVersion
InterlockedDecrement
ReadFile
GetDateFormatW
GetVersionExA
InitializeCriticalSection
lstrlenW
HeapCreate
OpenMutexA
UnhandledExceptionFilter
GetConsoleOutputCP
GlobalSize
GetStringTypeW

advapi32

RegQueryValueExW
RegCreateKeyW
RegOpenKeyExA
RegSetValueExW
IsTextUnicode
RegCloseKey
RegQueryValueExA

shell32

DragQueryFileW
DragAcceptFiles
ShellAboutW
DragFinish

comdlg32

PrintDlgExW
GetOpenFileNameW
CommDlgExtendedError
ReplaceTextW
GetSaveFileNameW
ChooseFontW
PageSetupDlgW
FindTextW
GetFileTitleW

winspool.drv

ClosePrinter
GetPrinterDriverW
OpenPrinterW

comctl32

CreateStatusWindowW

Sections

.text
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 161KB - Virtual size: 161KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 106KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

46c152d95241ad595dfc2a04c11ea7a3

Headers

File Characteristics

Imports

gdi32

user32

msvcrt

kernel32

advapi32

shell32

comdlg32

winspool.drv

comctl32

Sections

.text Size: 3KB - Virtual size: 2KB

.rdata Size: 161KB - Virtual size: 161KB

.data Size: 28KB - Virtual size: 106KB

.rsrc Size: 20KB - Virtual size: 19KB

.text
Size: 3KB - Virtual size: 2KB

.rdata
Size: 161KB - Virtual size: 161KB

.data
Size: 28KB - Virtual size: 106KB

.rsrc
Size: 20KB - Virtual size: 19KB