44d14a050dac3ad8cb82eb2a80d5463f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

44d14a050dac3ad8cb82eb2a80d5463f_JaffaCakes118
Size

132KB
MD5

44d14a050dac3ad8cb82eb2a80d5463f
SHA1

510a7993d31c2754c8d09a240d356927025ea846
SHA256

45f2c364f4ac921c39c8bc0fa915a9b80c3a66c86e4d40d25ff7a2a61a679eab
SHA512

096011b6a9497210aba8bb7ae28011cc8908d3e73b979d14e7ad214d1046ceeb60a054e89078978212cabbc6a75faa1ca0bfdbed408f63514e151b5fde37889a
SSDEEP

3072:E3oirn/wbxPi4JexA/dQXADfz3fEv+eACyBbpEOs0+81WIAh0X9NJyI0d:E3oirn/wViVdXQz3fEv+fCyVpEOs0+8G

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
44d14a050dac3ad8cb82eb2a80d5463f_JaffaCakes118

Files

44d14a050dac3ad8cb82eb2a80d5463f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

727a0938a544adc22d2bcb52a3e58968

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcatW
lstrcpynW
WideCharToMultiByte
GetCommandLineA
GetCommandLineW
GetPrivateProfileStringA
GetPrivateProfileStringW
WritePrivateProfileStringA
WritePrivateProfileStringW
FindClose
FindFirstFileA
FindFirstFileW
GetFullPathNameA
GetFullPathNameW
CreateFileA
CreateFileW
ReadFile
WriteFile
HeapAlloc
HeapFree
CreateProcessA
CreateProcessW
GlobalFree
MulDiv
lstrcpynA
GlobalUnlock
GlobalLock
GetCurrentThreadId
GetPrivateProfileStructA
GetPrivateProfileStructW
MultiByteToWideChar
WritePrivateProfileStructA
WritePrivateProfileStructW
SetFilePointer
AddAtomA
FindAtomA
AddAtomW
FindAtomW
ExpandEnvironmentStringsA
ExpandEnvironmentStringsW
GetFileTime
SetFileTime
SetFileAttributesA
GetFileAttributesA
SetFileAttributesW
GetFileAttributesW
FindNextFileA
FindNextFileW
lstrcatA
lstrlenW
lstrlenA
lstrcmpW
lstrcmpA
GetProcessHeap
GetWindowsDirectoryW
GetACP
GetOEMCP
GetUserDefaultLangID
GetLocaleInfoW
GetLocaleInfoA
GetModuleHandleA
GetModuleFileNameA
GetStartupInfoA
CreateMutexA
GetLastError
WaitForSingleObject
GetProcAddress
lstrcmpiA
GlobalAddAtomA
GlobalDeleteAtom
LoadLibraryA
GetModuleHandleW
GetModuleFileNameW
GetStartupInfoW
lstrcmpiW
GlobalAddAtomW
LoadLibraryW
FreeLibrary
lstrcpyW
SearchPathW
GetAtomNameW
GlobalGetAtomNameW
InitAtomTable
ReleaseMutex
CloseHandle
lstrcpyA
SearchPathA
GetAtomNameA
GlobalGetAtomNameA
CompareFileTime
GlobalAlloc
ExitProcess

user32

GetMessageW
RegisterClassW
FindWindowW
DispatchMessageA
TranslateMessage
TranslateAcceleratorA
IsDialogMessageA
GetMessageA
UpdateWindow
RegisterClassA
RegisterWindowMessageA
GetParent
SetForegroundWindow
FindWindowA
GetClassNameA
GetClassNameW
SetWindowPos
SendMessageW
EndDialog
GetKeyNameTextA
MapVirtualKeyA
GetKeyNameTextW
MapVirtualKeyW
UnhookWindowsHookEx
SetDlgItemTextA
SetDlgItemTextW
ActivateKeyboardLayout
GetKeyboardLayout
ReleaseDC
GetDC
GetCursorPos
LoadMenuA
LoadMenuW
LoadAcceleratorsA
LoadAcceleratorsW
LoadIconA
LoadIconW
LoadImageA
LoadImageW
LoadStringA
LoadStringW
CreateDialogParamA
CreateDialogParamW
DialogBoxParamA
DialogBoxParamW
EnumThreadWindows
WaitForInputIdle
SetWindowsHookExA
GetWindowTextLengthA
GetWindowTextLengthW
GetDlgItemInt
SetDlgItemInt
InsertMenuA
ModifyMenuA
InsertMenuW
ModifyMenuW
RegisterHotKey
UnregisterHotKey
DrawMenuBar
IsDialogMessageW
SetWindowTextW
IsCharLowerW
CharLowerW
CharUpperW
CharLowerBuffW
CharUpperBuffW
ShowCaret
HideCaret
FindWindowExA
FindWindowExW
PeekMessageW
GetDlgItemTextA
EnableWindow
GetDlgItemTextW
CloseClipboard
GetClipboardData
OpenClipboard
IsCharLowerA
CharLowerA
CharUpperA
CharLowerBuffA
CharUpperBuffA
PeekMessageA
ShowWindow
GetSubMenu
DeleteMenu
CreateWindowExA
GetClassLongA
SetClassLongA
GetSystemMetrics
GetSysColor
DestroyAcceleratorTable
DestroyMenu
PostQuitMessage
DefFrameProcA
GetSystemMenu
CreateMDIWindowW
CreateMDIWindowA
DestroyWindow
DestroyIcon
CallWindowProcW
GetKeyState
CallWindowProcA
GetScrollInfo
DefWindowProcW
DefWindowProcA
MessageBoxW
wsprintfW
GetWindowTextW
DefMDIChildProcW
SendMessageA
EnableMenuItem
SetFocus
PostMessageA
GetWindowRect
TrackPopupMenu
MessageBoxA
wsprintfA
TranslateAcceleratorW
DispatchMessageW
CreateWindowExW
GetClientRect
SetClassLongW
GetWindowLongW
SetWindowLongW
SetWindowTextA
DefFrameProcW
SetWindowLongA
InvalidateRect
GetDlgItem
MoveWindow
GetWindowLongA
CheckMenuItem
GetWindowTextA
DefMDIChildProcA
GetClassLongW

gdi32

StartDocW
StartDocA
StartPage
EndPage
EndDoc
DeleteDC
GetCharWidthW
SelectObject
GetCharWidthA
GetDeviceCaps
GetStockObject
GetObjectW
GetObjectA
CreateFontIndirectW
CreateFontIndirectA
DeleteObject

advapi32

RegOpenKeyExW
RegSetValueExW
RegCreateKeyExA
RegSetValueExA
RegQueryValueExW
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
RegEnumValueW
RegDeleteValueW
RegDeleteKeyW
RegEnumKeyExW
RegDeleteValueA
RegDeleteKeyA
RegEnumKeyExA
RegEnumValueA
RegCreateKeyExW

shell32

SHGetMalloc
ShellExecuteW
DragAcceptFiles
DragQueryFileW
DragQueryFileA
DragFinish
ShellExecuteA
SHChangeNotify

comctl32

ImageList_Destroy
ImageList_SetBkColor
ImageList_Create
ord17
PropertySheetA
PropertySheetW
ImageList_ReplaceIcon
ImageList_Remove

comdlg32

GetOpenFileNameW
GetSaveFileNameA
GetOpenFileNameA
ChooseFontA
ChooseFontW
PrintDlgW
PrintDlgA
ChooseColorW
ChooseColorA
PageSetupDlgW
GetSaveFileNameW
PageSetupDlgA

version

GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeW

Sections

.text
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 306KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

727a0938a544adc22d2bcb52a3e58968

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

comctl32

comdlg32

version

Sections

.text Size: 98KB - Virtual size: 98KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 3KB - Virtual size: 306KB

.rsrc Size: 16KB - Virtual size: 15KB

.text
Size: 98KB - Virtual size: 98KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 3KB - Virtual size: 306KB

.rsrc
Size: 16KB - Virtual size: 15KB