73f58449e7fb0e68471f8a2c7ab06f25_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

73f58449e7fb0e68471f8a2c7ab06f25_JaffaCakes118
Size

60KB
MD5

73f58449e7fb0e68471f8a2c7ab06f25
SHA1

a9d4f13a2c92c5f2e18e81c622e4187fc40ca275
SHA256

7221eece457df4f304d997ab4bd3335131e2253c0319615d395934df5f8d1cb9
SHA512

09e3a948786b0f9e9fe2a5b376323f840fe2471369861c21c467ac5b285c5215305a8fdd590de421d70bed09b37a16b53c379e0b5bc7077d70853a13ce383e74
SSDEEP

1536:PzEUN64sXxDx+OqHHUK2P6tBof0x4hTpwgRr:PzN6VxD6UK2PgKf0ShFww

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
73f58449e7fb0e68471f8a2c7ab06f25_JaffaCakes118

Files

73f58449e7fb0e68471f8a2c7ab06f25_JaffaCakes118
.exe windows:5 windows x86 arch:x86

076c40c469ec35aadf2f1fdc0c891814

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

K:\OjhQvJwtg\hBseuvJrvx\NuqZqwWWKhiCt\cSewMTq.pdb

Imports

user32

EndDialog
DestroyCaret
SetMenuItemBitmaps
CreateIconIndirect
IsCharAlphaW
IsDialogMessageW
GetMenuItemRect
ClipCursor
SystemParametersInfoA
ActivateKeyboardLayout
FillRect
SetDlgItemInt
MessageBoxW
CreatePopupMenu
TabbedTextOutW
GetMessagePos
GetIconInfo
InternalGetWindowText
SetRectEmpty
CharToOemW
EnableWindow
CreateWindowExW
wsprintfW
DefDlgProcW
TranslateMessage
CharNextA
IsCharAlphaA
DialogBoxIndirectParamA
SetFocus
WaitForInputIdle
PostThreadMessageW
DestroyMenu
GetDCEx
CharNextExA
OffsetRect
SetWindowPos
ScrollWindowEx
EnumThreadWindows
TileWindows
ShowCaret
InsertMenuW
MessageBoxExA
SetParent
IsZoomed
LoadBitmapW
GetMessageExtraInfo
FindWindowExA
GetMenuItemInfoW
WaitMessage
DragObject
AllowSetForegroundWindow
GetClientRect
SendNotifyMessageW
CreateWindowExA
GetCursorPos
SendDlgItemMessageW
GetDlgItemTextA
LoadIconA
GetClassInfoExW
SetRect
CharUpperBuffW
GetMonitorInfoW
OpenDesktopW
GetDC
TrackPopupMenu
LoadStringW
PostMessageA
SetActiveWindow
IntersectRect
GetKeyboardLayoutList
GetClassLongA
RegisterClassExA
wsprintfA
GetWindowTextA
GetPropW
CallWindowProcW
GetMenuState
DestroyAcceleratorTable
CopyImage
CharPrevW
IsMenu
SetLastErrorEx
IsCharUpperA
InSendMessageEx
GetMessageA

msvcrt

_controlfp
tolower
mbtowc
bsearch
__set_app_type
__p__fmode
isalpha
setvbuf
atoi
__p__commode
strerror
strchr
gmtime
_amsg_exit
_initterm
sscanf
wcstombs
_ismbblead
realloc
islower
free
strtoul
strtol
_XcptFilter
iswdigit
time
wcspbrk
_exit
_cexit
__setusermatherr
fputc
perror
mktime
iswspace
malloc
__getmainargs

kernel32

SetCurrentDirectoryA
GetCurrentThreadId
CreateWaitableTimerW
CreateWaitableTimerA
LocalReAlloc
lstrcpyA
SetHandleCount
IsDBCSLeadByteEx
CompareStringW
SetThreadLocale
DisconnectNamedPipe
GetOEMCP
SleepEx
ReadFile
GetModuleFileNameA
GlobalGetAtomNameA
LoadLibraryW
SetHandleInformation
OpenFile
GetPriorityClass
lstrcmpiA
AddAtomW
ConvertDefaultLocale
SetSystemTime
GetFullPathNameA
GlobalFlags
SetNamedPipeHandleState
GetLongPathNameW
CreateDirectoryA
CreateSemaphoreA
GetVersion
SetCurrentDirectoryW
UnlockFile
FindNextChangeNotification
HeapReAlloc
HeapSize
GetModuleHandleA
lstrcpynW
CreateSemaphoreW
GetCommandLineW

shlwapi

UrlGetLocationA

Exports

Exports

?HistoryLoggingOn@@YGKDKPAX:O

Sections

.text
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdbg
Size: 512B - Virtual size: 102B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.iplan
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.eplan
Size: 512B - Virtual size: 91B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.run
Size: 512B - Virtual size: 331B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.0dat
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ram
Size: - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

076c40c469ec35aadf2f1fdc0c891814

Headers

File Characteristics

PDB Paths

Imports

user32

msvcrt

kernel32

shlwapi

Exports

Exports

Sections

.text Size: 24KB - Virtual size: 23KB

.rdbg Size: 512B - Virtual size: 102B

.data Size: 3KB - Virtual size: 2KB

.iplan Size: 4KB - Virtual size: 4KB

.eplan Size: 512B - Virtual size: 91B

.run Size: 512B - Virtual size: 331B

.0dat Size: 24KB - Virtual size: 23KB

.ram Size: - Virtual size: 39KB

.tls Size: 512B - Virtual size: 512B

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 24KB - Virtual size: 23KB

.rdbg
Size: 512B - Virtual size: 102B

.data
Size: 3KB - Virtual size: 2KB

.iplan
Size: 4KB - Virtual size: 4KB

.eplan
Size: 512B - Virtual size: 91B

.run
Size: 512B - Virtual size: 331B

.0dat
Size: 24KB - Virtual size: 23KB

.ram
Size: - Virtual size: 39KB

.tls
Size: 512B - Virtual size: 512B

.rsrc
Size: 2KB - Virtual size: 1KB