6956b3a5203a681534b6343dcc159daa_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

6956b3a5203a681534b6343dcc159daa_JaffaCakes118
Size

252KB
MD5

6956b3a5203a681534b6343dcc159daa
SHA1

b4ce9d48300fc09f78372810da7e927c60c68377
SHA256

489ef0915500c0260cc5a7cdd29b49bf2594bcf4cfb6fc10e3807fb5ad72fa0b
SHA512

10963627f116bfe5e148d3129f632baa586bb9b2f61ba756a4373200723ea385f9eaf0d9b3a62dfaa8160deaf9a553f07cb1afb27ddc5ddc29ddb4668c6b1800
SSDEEP

3072:MZXVy7rbmnSWIda6xabiPZDpJWJF1azrmMk4X5X1jBNGRKbOkuOBrnbsx:rzOFI0FePZVJu1KLTjjfxNs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6956b3a5203a681534b6343dcc159daa_JaffaCakes118

Files

6956b3a5203a681534b6343dcc159daa_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d8ffeb911207d9c81ca82ad8a649eaf1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

RegisterClassA
SetScrollInfo
ScrollWindowEx
EndPaint
BeginPaint
ShowCaret
CreateCaret
DestroyCaret
GetKeyState
InvalidateRect
CharLowerA
SetCaretPos
HideCaret
GetClipboardData
SetCursorPos
ScreenToClient
GetDlgItemInt
RegisterClassExA
CallWindowProcA
GetDlgCtrlID
GetWindowTextA
GetParent
IsDlgButtonChecked
DestroyWindow
EnableWindow
CreateDialogParamA
CharUpperA
CharUpperBuffA
CheckDlgButton
EndDialog
MessageBeep
DialogBoxParamA
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
SetDlgItemTextA
RegisterClipboardFormatA
LoadMenuA
ModifyMenuA
TrackPopupMenuEx
DestroyMenu
GetClientRect
IntersectRect
GetWindowRect
MapWindowPoints
DrawAnimatedRects
KillTimer
GetDoubleClickTime
SetTimer
wsprintfA
MessageBoxA
PeekMessageA
IsDialogMessageA
GetWindow
LoadStringA
CharNextA
FindWindowA
GetLastActivePopup
BringWindowToTop
SetForegroundWindow
LoadAcceleratorsA
TranslateAcceleratorA
TranslateMessage
GetSysColor
DestroyIcon
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
ClientToScreen
SetCursor
ShowCursor
IsIconic
GetWindowLongA
SetCapture
DispatchMessageA
GetDlgItem
SendDlgItemMessageA
MoveWindow
SetWindowTextA
SetWindowPos
GetMessagePos
GetMessageA
ReleaseCapture
SetWindowLongA
GetMenuItemInfoA
EnableMenuItem
GetMenuItemID
InsertMenuA
SetMenuDefaultItem
CheckMenuItem
PostMessageA
WinHelpA
GetWindowPlacement
PostQuitMessage
GetMenu
GetSubMenu
DeleteMenu
DefWindowProcA
SetFocus
UpdateWindow
SendMessageA
GetSystemMetrics
GetDC
ReleaseDC
CreateWindowExA
SetWindowPlacement
ShowWindow
LoadIconA
LoadCursorA
LoadImageA
GetDlgItemTextA
IsClipboardFormatAvailable
CheckRadioButton

kernel32

LocalFree
GetComputerNameA
LocalAlloc
GetLastError
WriteFile
CreateFileA
ReadFile
OpenFile
GetFileSize
CloseHandle
lstrcmpA
lstrcatA
GlobalAlloc
GlobalLock
RtlMoveMemory
GlobalUnlock
GetProcessHeap
lstrcmpiA
lstrlenA
lstrcpyA
FormatMessageA
GetCommandLineA
GetModuleHandleA
ExitProcess

gdi32

SetTextColor
StartPage
TextOutA
SetAbortProc
StartDocA
EndPage
EndDoc
AbortDoc
DeleteDC
SetBkColor
GetDeviceCaps
ExtTextOutA
CreateFontIndirectA
GetTextMetricsA
CreateBitmap
CreatePatternBrush
ExcludeClipRect
SelectClipRgn
PatBlt
SelectObject
DeleteObject

shell32

ord195
SHBrowseForFolderA
ord48
DragFinish
ShellAboutA
DragQueryFileA

comctl32

ord355
ord340
ord334
ord338
ord234
ord337
ord329
ord351
ord350
ImageList_SetBkColor
ImageList_Create
ImageList_ReplaceIcon
ord4
ord2
ImageList_Destroy
ord6

advapi32

RegConnectRegistryA
RegSetValueA
RegFlushKey
RegDeleteValueA
RegQueryInfoKeyA
RegDeleteKeyA
RegEnumValueA
RegCreateKeyA
RegSetValueExA
RegEnumKeyA
RegOpenKeyA
RegQueryValueExA
RegCloseKey

comdlg32

GetOpenFileNameA
PrintDlgA
GetSaveFileNameA

Sections

.text
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d8ffeb911207d9c81ca82ad8a649eaf1

Headers

File Characteristics

Imports

user32

kernel32

gdi32

shell32

comctl32

advapi32

comdlg32

Sections

.text Size: 32KB - Virtual size: 32KB

.data Size: 4KB - Virtual size: 18KB

.idata Size: 8KB - Virtual size: 4KB

.rsrc Size: 24KB - Virtual size: 23KB

.reloc Size: 76KB - Virtual size: 76KB

.text
Size: 32KB - Virtual size: 32KB

.data
Size: 4KB - Virtual size: 18KB

.idata
Size: 8KB - Virtual size: 4KB

.rsrc
Size: 24KB - Virtual size: 23KB

.reloc
Size: 76KB - Virtual size: 76KB