384bd77b20749f7b3bb1cb8618b6ad20_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

384bd77b20749f7b3bb1cb8618b6ad20_JaffaCakes118
Size

157KB
MD5

384bd77b20749f7b3bb1cb8618b6ad20
SHA1

55ce0ca15b0f826fe2bf13f7899e8f7d2a9272d5
SHA256

02cdc6f52238d7a7852d87dec965db0c746413546236aa87143b8e4f53ccd979
SHA512

2229563c543db16f2ad459f4aac8d9ddf807769bde576cf16372d6a2ee9a45bca825f422b9cad4e6de3acfac467c02d70f057939f29ecc1bf114ada4536ceb01
SSDEEP

3072:aVoOjBsJ0LX1OTTUv1DdnDsJUe6eH6PG:0l4nUthnDPe9H6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
384bd77b20749f7b3bb1cb8618b6ad20_JaffaCakes118

Files

384bd77b20749f7b3bb1cb8618b6ad20_JaffaCakes118
.exe windows:5 windows x86 arch:x86

21838218b26ed0e8750330fe815584cd

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetWindowPlacement
MoveWindow
MapWindowPoints
CreateMenu
GetSysColorBrush
GetWindowTextLengthW
GetClassLongA
OemToCharBuffA
AppendMenuA
ReplyMessage
GetDC
GetKeyboardType
GetMessageExtraInfo
LockWindowUpdate
SetMenuDefaultItem
MapDialogRect
GetMenuItemRect
EqualRect
SetDlgItemTextW
MapVirtualKeyExW
MapVirtualKeyW
GetForegroundWindow
EnumChildWindows
IsWindow
CreateWindowExA
BringWindowToTop
DestroyMenu
ChildWindowFromPointEx
CharPrevA
FindWindowW
OemToCharA
DefFrameProcW
GetMenuStringW
HiliteMenuItem
EnableMenuItem
SendMessageTimeoutA
keybd_event
AdjustWindowRectEx
OffsetRect
DispatchMessageA
RedrawWindow
DrawFrameControl
SetScrollRange
SetActiveWindow

comctl32

PropertySheetA
ImageList_GetImageCount
ImageList_AddMasked
ImageList_Create
ImageList_GetIconSize

gdi32

Rectangle
CreateFontW
CreateDCW
BeginPath
StartDocW
GetBkMode
GetTextExtentPointW
CreateHatchBrush
DeleteObject
CreatePatternBrush
CreateRectRgnIndirect
RemoveFontResourceW
SetPixel
OffsetViewportOrgEx
CreateFontIndirectW
AddFontResourceW
GetNearestPaletteIndex

msvcrt

_controlfp
clearerr
getenv
__set_app_type
strncmp
__p__fmode
__p__commode
system
_amsg_exit
_initterm
printf
strcoll
_acmdln
exit
_ismbblead
atoi
_XcptFilter
clock
_exit
strchr
fputc
_cexit
free
sscanf
strpbrk
__setusermatherr
__getmainargs

comdlg32

ChooseFontW
PrintDlgExW
FindTextW

shlwapi

StrNCatW
StrToIntA
PathRemoveBlanksW

kernel32

GetACP
FindResourceExA
GetProcessHeap
LocalSize
FindFirstFileA
DeviceIoControl
GlobalAlloc
TransactNamedPipe
OpenEventA
GetTempFileNameA
GetModuleHandleA
OpenSemaphoreW
SetErrorMode
VirtualProtect
GetSystemDirectoryA
EnumResourceTypesA
IsValidLanguageGroup
HeapAlloc
MoveFileExW
OpenFileMappingW
LoadResource
HeapFree
GetComputerNameExW

Exports

Exports

?PenExA@@YGXIJPAF*Z
?IsTime@@YGEDHPAMF*Z
?PutDeviceEx@@YGIPAIPAG*Z
?ValidateTextOriginal@@YGM_NPAHK*Z
?FormatSystemExW@@YGPAKNPAN*Z
?FindNameOld@@YGMFGGD*Z
?InvalidateListExA@@YGDEDD*Z

Sections

.text
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ditxt
Size: 1024B - Virtual size: 516B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dbug
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dimp
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dbg
Size: 512B - Virtual size: 62B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dvr
Size: 512B - Virtual size: 140B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dpt
Size: 1024B - Virtual size: 583B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dcode
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 88KB - Virtual size: 87KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

21838218b26ed0e8750330fe815584cd

Headers

File Characteristics

Imports

user32

comctl32

gdi32

msvcrt

comdlg32

shlwapi

kernel32

Exports

Exports

Sections

.text Size: 45KB - Virtual size: 44KB

.ditxt Size: 1024B - Virtual size: 516B

.dbug Size: 512B - Virtual size: 28B

.dimp Size: 3KB - Virtual size: 2KB

.dbg Size: 512B - Virtual size: 62B

.dvr Size: 512B - Virtual size: 140B

.dpt Size: 1024B - Virtual size: 583B

.dcode Size: 12KB - Virtual size: 12KB

.data Size: 2KB - Virtual size: 97KB

.rsrc Size: 88KB - Virtual size: 87KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 45KB - Virtual size: 44KB

.ditxt
Size: 1024B - Virtual size: 516B

.dbug
Size: 512B - Virtual size: 28B

.dimp
Size: 3KB - Virtual size: 2KB

.dbg
Size: 512B - Virtual size: 62B

.dvr
Size: 512B - Virtual size: 140B

.dpt
Size: 1024B - Virtual size: 583B

.dcode
Size: 12KB - Virtual size: 12KB

.data
Size: 2KB - Virtual size: 97KB

.rsrc
Size: 88KB - Virtual size: 87KB

.reloc
Size: 2KB - Virtual size: 1KB