71a1c8a8d94d111b4215a948eeaf133a_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

71a1c8a8d94d111b4215a948eeaf133a_JaffaCakes118
Size

45KB
MD5

71a1c8a8d94d111b4215a948eeaf133a
SHA1

57be64a0fffe8962153973956bc689b715b9f05c
SHA256

7316a6fe707e7f794256ea4322b5c3fae4c9c2cfd819c604cfdf9d7e92be6ef9
SHA512

995f513bca2aff44311b20a3f482e5287d307848013f11be413b92e571b3f1de4757f0e659662eaa3b078809739a586dfd167be4153105fb86ced5f8311553b6
SSDEEP

768:364udNCaIMC09WIAbpAtjVSVpkYUOf6UqlwuWhyXoCXn53Q:39u9IMggV6aKPkXBnS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
71a1c8a8d94d111b4215a948eeaf133a_JaffaCakes118

Files

71a1c8a8d94d111b4215a948eeaf133a_JaffaCakes118
.exe windows:5 windows x86 arch:x86

4b71c3a9c65df833be38bb965a4c726d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\VwJyzteLo\piygmilzQdm\rZasNugHxe.pdb

Imports

comctl32

ImageList_Remove
ImageList_Draw
ImageList_ReplaceIcon
CreatePropertySheetPageW
ImageList_Destroy
PropertySheetA

kernel32

GlobalAddAtomW
GetCommState
WriteFile
GetThreadPriority
TlsFree
MoveFileW
OpenEventW
GetTimeFormatA
SearchPathA
GetCommandLineA
LoadLibraryW
LockResource
IsValidLanguageGroup
HeapAlloc
GlobalAddAtomA
GlobalLock
GetBinaryTypeW
GetVersionExA
GetFileAttributesExA
TransactNamedPipe
GetFullPathNameW
SetLastError
GlobalAlloc
CreateMutexA
GetFileInformationByHandle
CreateWaitableTimerW
RegisterWaitForSingleObject
GetFullPathNameA
GetACP
FindNextFileA
SetupComm
LoadLibraryA
CreateFileMappingA
GlobalUnlock
lstrlenW
LeaveCriticalSection
ConnectNamedPipe
ReadFile
MoveFileExW
GetCommModemStatus
AreFileApisANSI
lstrcpyA
AddAtomW
GetStdHandle
GetSystemDefaultUILanguage
UnlockFile
SetEvent
FoldStringW
GlobalGetAtomNameW
GetFileAttributesExW
WaitForSingleObject
GetTempFileNameA

comdlg32

PrintDlgW
GetSaveFileNameW
ChooseFontW
FindTextW

user32

CallWindowProcA
GetWindowTextA
CharLowerBuffW
RemoveMenu
AppendMenuA
SwitchToThisWindow
keybd_event
FindWindowA
AttachThreadInput
ShowOwnedPopups
FindWindowW
ToUnicodeEx
IsDialogMessageW
GetScrollPos
OffsetRect
GetWindowRect
AdjustWindowRect
DefDlgProcA
DrawIcon
TabbedTextOutW
ScreenToClient
BeginPaint
LoadIconW
GetDialogBaseUnits
DispatchMessageA
InsertMenuW
GetMessageExtraInfo
FindWindowExA
wsprintfA
IntersectRect
ReleaseDC
SendMessageTimeoutW
GetUpdateRect
UpdateWindow
CharLowerW
MapVirtualKeyW
GetClipCursor
GetSystemMenu
CreateCaret
SendMessageTimeoutA
IsWindowUnicode
CreateWindowExW
GetUserObjectInformationA
GetKeyState
CharToOemW
RegisterClassA
EndPaint
wvsprintfA
DestroyMenu
GetLastActivePopup
PeekMessageA
LoadMenuW
DestroyCursor
RegisterClassExA
GetClassInfoExA
EnumWindows
GetWindowDC
MessageBoxExA
AppendMenuW
EnumChildWindows
ShowCaret
CreateCursor
LoadBitmapA
ScrollWindowEx
DefWindowProcA
GetMenuItemInfoW
MapDialogRect
IsWindowEnabled
GetMessageA
GetMenuStringW
CharUpperBuffA
GetUpdateRgn
LoadIconA
HiliteMenuItem
GetPropW
SetCaretPos
SetMenu
WaitForInputIdle
GetScrollRange
InvertRect
CreateDialogParamA
SendNotifyMessageW
LoadCursorW
EnableWindow
CharUpperW
GetKeyNameTextW
GetMenuItemRect
MapVirtualKeyA
SetClassLongW
LoadAcceleratorsW
SetWindowTextW
InternalGetWindowText
CharPrevW
ShowScrollBar
LoadMenuA
IsRectEmpty
DispatchMessageW
DefDlgProcW
TranslateAcceleratorA
WindowFromPoint
OemToCharBuffA
IsWindow
SetForegroundWindow
SendDlgItemMessageA
IsWindowVisible
DestroyIcon
GetMessageW
ExitWindowsEx
DialogBoxIndirectParamA
GetTopWindow
GetUserObjectInformationW
GetWindow
CopyImage
SetParent
InvalidateRect
BringWindowToTop
GetDoubleClickTime
DeleteMenu

msvcrt

fputs
floor
printf
islower
strcoll
wcsncmp
_controlfp
wcscat
isspace
wcscmp
__set_app_type
__p__fmode
calloc
__p__commode
strncpy
perror
setlocale
free
iswspace
qsort
rand
wcscpy
_amsg_exit
fprintf
_initterm
_ismbblead
sscanf
_XcptFilter
strpbrk
fwrite
_exit
_cexit
__setusermatherr
toupper
setvbuf
atoi
__getmainargs
getc
strerror
wcstoul
fread
clearerr
strstr
strtol
fflush
isupper
gmtime

Exports

Exports

?GetShiftAltInfo@@YGK_KHE:O

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.init
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.erts
Size: 512B - Virtual size: 86B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.wall
Size: 1024B - Virtual size: 650B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.info
Size: 512B - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.udata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4b71c3a9c65df833be38bb965a4c726d

Headers

File Characteristics

PDB Paths

Imports

comctl32

kernel32

comdlg32

user32

msvcrt

Exports

Exports

Sections

.text Size: 20KB - Virtual size: 19KB

.init Size: 6KB - Virtual size: 5KB

.erts Size: 512B - Virtual size: 86B

.wall Size: 1024B - Virtual size: 650B

.info Size: 512B - Virtual size: 192B

.data Size: 2KB - Virtual size: 2KB

.udata Size: 12KB - Virtual size: 11KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 20KB - Virtual size: 19KB

.init
Size: 6KB - Virtual size: 5KB

.erts
Size: 512B - Virtual size: 86B

.wall
Size: 1024B - Virtual size: 650B

.info
Size: 512B - Virtual size: 192B

.data
Size: 2KB - Virtual size: 2KB

.udata
Size: 12KB - Virtual size: 11KB

.reloc
Size: 1KB - Virtual size: 1KB