4026ac4648b83c145e879415390fe9a8_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

4026ac4648b83c145e879415390fe9a8_JaffaCakes118
Size

698KB
MD5

4026ac4648b83c145e879415390fe9a8
SHA1

3dfd0f8e5d73a600a252814009fcba1a2ccc71d0
SHA256

84ded9ccc96269b68452bb049c99bff47f716d43b017c06b0ebda868e352e9d6
SHA512

b7b5acf6472892b05c15b7e1e25515632598627e67c6aa03fb18a383f671fb64f915c56e8b522d71db8fa4c03539736f4b3418aa6edf3ae4cf14e62c902155ef
SSDEEP

12288:5y5HK03pha8IZZE9LdHIZpYt1bzcB2ArWvPVOkV27/SG+oNdJ+:5yK0rkE9tIZyt1kkmwS7Lt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4026ac4648b83c145e879415390fe9a8_JaffaCakes118

Files

4026ac4648b83c145e879415390fe9a8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a6a82ebe0f8267bef3fc9b1157364b29

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

K:\LOTBIUFY

Imports

comctl32

ImageList_DragEnter
CreatePropertySheetPage
InitCommonControlsEx
ImageList_GetDragImage
CreatePropertySheetPageA
ImageList_DragMove
ImageList_LoadImageW
ImageList_GetImageInfo
ImageList_SetOverlayImage
ImageList_GetIcon
ImageList_Replace
ImageList_GetImageCount
_TrackMouseEvent
ImageList_GetIconSize

user32

DlgDirSelectExW
ShowWindow
FindWindowExA
EnumDesktopWindows
ActivateKeyboardLayout
MessageBoxW
PaintDesktop
InflateRect
GetMenuStringA
CreateWindowExA
GetClipboardFormatNameA
EnableWindow
InsertMenuItemA
RegisterClipboardFormatW
DefWindowProcA
CallMsgFilterA
GetSystemMenu
TranslateAccelerator
ModifyMenuW
EndDeferWindowPos
OpenClipboard
RegisterClassA
SendMessageA
GrayStringW
GetUserObjectInformationW
SetSysColors
GetMenuState
GetWindowTextW
GetMessageW
SetClipboardViewer
IsCharAlphaW
WaitForInputIdle
DestroyWindow
OemToCharBuffA
ToAsciiEx
FillRect
GetWindowLongA
GetDlgItemTextA
DlgDirListW
wvsprintfW
SendDlgItemMessageW
LoadMenuIndirectW
FindWindowW
DrawStateA
DdeImpersonateClient
MessageBoxIndirectW
CallMsgFilter
GetMenu
ChangeClipboardChain
ScrollDC
DragObject
GetWindowTextLengthW
DdeInitializeW
LoadImageW
GetWindowWord
TranslateMessage
GetKeyNameTextW
SendMessageW
GetFocus
IsWindow
GetMenuInfo
RegisterClassExA
UnionRect
PostMessageW
GrayStringA
DispatchMessageA
GetMenuItemID
GetKeyboardType
SwapMouseButton
DragDetect

kernel32

HeapFree
GetSystemTimeAsFileTime
GetStartupInfoA
GetDateFormatA
GetThreadPriorityBoost
GetModuleHandleA
LCMapStringA
ReadConsoleOutputCharacterW
GetConsoleScreenBufferInfo
GetLocaleInfoW
SetHandleCount
SetConsoleScreenBufferSize
GetCurrentProcessId
SetVolumeLabelW
SetUnhandledExceptionFilter
OpenMutexA
EnumSystemLocalesA
CreateDirectoryExA
HeapCreate
Sleep
LoadLibraryA
CreateDirectoryA
GetTickCount
RaiseException
UnhandledExceptionFilter
DebugBreak
InterlockedExchange
TlsSetValue
GetFileType
WaitForMultipleObjects
WaitNamedPipeW
ReadConsoleInputA
GetACP
GetOEMCP
LoadLibraryExA
IsValidLocale
GetModuleFileNameA
RtlUnwind
LocalShrink
GetFileAttributesExW
ReadFile
GetLocaleInfoA
GetConsoleMode
SystemTimeToFileTime
SetStdHandle
GetStringTypeW
DeleteCriticalSection
GetCurrentThread
SetEnvironmentVariableA
LoadLibraryW
ExitProcess
TlsAlloc
VirtualQueryEx
CompareStringA
CreateFileA
ExitThread
PulseEvent
SetConsoleCtrlHandler
WaitForMultipleObjectsEx
EnumDateFormatsW
GetAtomNameW
CreateNamedPipeA
GetProcessHeap
GetPrivateProfileStructA
GetEnvironmentStringsW
CreateNamedPipeW
WritePrivateProfileSectionA
GlobalReAlloc
GetCurrentProcess
GetDiskFreeSpaceW
VirtualAlloc
WriteConsoleW
InterlockedIncrement
CompareStringW
GetEnvironmentStrings
ConvertDefaultLocale
OpenFile
HeapReAlloc
IsDebuggerPresent
GetLastError
EnumResourceTypesW
GetCPInfo
GetStringTypeA
GetStdHandle
MultiByteToWideChar
SetVolumeLabelA
GetTimeFormatA
GetCurrentThreadId
CloseHandle
EnumResourceLanguagesW
FreeEnvironmentStringsA
GetCommandLineA
GetConsoleCP
VirtualQuery
InterlockedDecrement
HeapSize
WriteConsoleA
FlushFileBuffers
GetFileSize
EnumDateFormatsExW
GetDriveTypeA
SetFileAttributesW
LocalAlloc
VirtualProtectEx
QueryPerformanceCounter
VirtualFree
GetConsoleTitleW
GetTimeZoneInformation
TlsGetValue
EnterCriticalSection
GlobalGetAtomNameW
GetProfileIntW
EnumSystemCodePagesW
GetVersionExA
OpenProcess
GetStartupInfoW
EnumCalendarInfoA
SetFilePointer
InitializeCriticalSection
lstrcmpiW
lstrlen
GetSystemDirectoryA
WideCharToMultiByte
CreateMutexA
GetCommandLineW
WriteProfileSectionA
GetFileTime
CreateEventA
GetUserDefaultLCID
GetProcAddress
IsValidCodePage
HeapAlloc
FreeEnvironmentStringsW
lstrlenA
TlsFree
CreateFileMappingA
GetModuleHandleW
LeaveCriticalSection
FreeLibrary
SetLastError
SetEnvironmentVariableW
TerminateProcess
GetModuleFileNameW
HeapDestroy
WritePrivateProfileStructA
WriteFile
LCMapStringW
GetConsoleOutputCP
lstrcpyn

Sections

.text
Size: 95KB - Virtual size: 94KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 450KB - Virtual size: 449KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 137KB - Virtual size: 160KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a6a82ebe0f8267bef3fc9b1157364b29

Headers

File Characteristics

PDB Paths

Imports

comctl32

user32

kernel32

Sections

.text Size: 95KB - Virtual size: 94KB

.rdata Size: 450KB - Virtual size: 449KB

.data Size: 137KB - Virtual size: 160KB

.rsrc Size: 14KB - Virtual size: 14KB

.text
Size: 95KB - Virtual size: 94KB

.rdata
Size: 450KB - Virtual size: 449KB

.data
Size: 137KB - Virtual size: 160KB

.rsrc
Size: 14KB - Virtual size: 14KB