753d45918bbdac17be9087778ede7073_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

753d45918bbdac17be9087778ede7073_JaffaCakes118
Size

184KB
MD5

753d45918bbdac17be9087778ede7073
SHA1

502b123842670e9fe905e8141cb191055ffe9c10
SHA256

25ecbc3927aea3b6984919c78d30b22832162f538c74cec59e138670dd0ee5a1
SHA512

36b67a6e49dfa466dc27132c7c244417d5b4c6a571dbfd6ad96112eb1bf19f8347bba9fe7e4addb652d725dc40d769588dbe8e543314a7c43b04bb1bb899509d
SSDEEP

3072:Njbf8290HVx99QDhQgA7qQUo5KRExKrZUkx3SJP2S7TpScDeHEIgi:NjkHVX9QWP7qpoMREZkxiJPr71SAPIgi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
753d45918bbdac17be9087778ede7073_JaffaCakes118

Files

753d45918bbdac17be9087778ede7073_JaffaCakes118
.exe windows:4 windows x86 arch:x86

987a222570f0fafa9c1f5974df7315e9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetForegroundWindow
IsRectEmpty
SetForegroundWindow
GetNextDlgGroupItem
IsIconic
GetTopWindow
RegisterClassW
GetMenu
LoadIconW
EqualRect
CreateWindowExW
GetClassLongW
CharNextW
CharUpperW
OffsetRect
GetClassInfoExW
WinHelpW
GetClientRect
CallWindowProcW
CopyAcceleratorTableW
RemovePropW
GetWindowPlacement
IsChild
SetRect
SendDlgItemMessageA
GetNextDlgTabItem
DefWindowProcW
IntersectRect
GetClassInfoW
GetMessageTime
RegisterWindowMessageW
MapWindowPoints
SetActiveWindow
MessageBeep
InvalidateRect
GetPropW
AdjustWindowRectEx
GetMessagePos
UpdateWindow
InvalidateRgn
IsWindow
SetPropW
DestroyMenu

kernel32

LocalFileTimeToFileTime
CreateFileW
lstrcpyW
DeleteFileW
GetProcAddress
GetCurrentDirectoryW
GetThreadLocale
GetSystemDefaultLangID
MoveFileW
GetCalendarInfoA
GetVersionExW
SizeofResource
GetACP
GetCurrentProcessId
SystemTimeToFileTime
LockResource
FindResourceW
SetThreadContext
CreateMutexW
InterlockedDecrement
FindClose
WriteFile
WaitForSingleObject
EnumResourceNamesA
GetVersion
LoadResource
GetModuleFileNameW
lstrcmpiA
InterlockedExchange
CreateDirectoryW
GetLocaleInfoW
SetFilePointer
ExitProcess
GetModuleHandleW
VirtualFree
InitializeCriticalSection
CloseHandle
WideCharToMultiByte
ReleaseMutex
LoadLibraryW
DeleteCriticalSection
GetLocaleInfoA
FindFirstFileW
EnumResourceLanguagesW
SetFileTime
RaiseException
RemoveDirectoryW
FreeLibrary
MultiByteToWideChar
FindNextFileW
ConvertDefaultLocale
ReadFile
GetFileAttributesW
lstrcmpA

shlwapi

PathStripToRootW
PathIsUNCW
PathFindFileNameW
PathRemoveFileSpecW
PathFileExistsW
PathFindExtensionW
PathAppendW

shell32

SHCreateDirectoryExW
SHGetSpecialFolderPathW

advapi32

RegOpenKeyW
RegEnumKeyExW
RegDeleteKeyW
RegOpenKeyExW
RegSetValueExW
RegEnumKeyW
RegCloseKey
RegQueryInfoKeyW
RegQueryValueW
RegCreateKeyExW
RegQueryValueExW

ole32

CoCreateInstance
CreateILockBytesOnHGlobal
CoRegisterMessageFilter
CoTaskMemFree
CoUninitialize
CoTaskMemAlloc
CoInitialize
OleFlushClipboard
CoGetClassObject
CoFreeUnusedLibraries
StgOpenStorageOnILockBytes
OleInitialize
OleIsCurrentClipboard
StgCreateDocfileOnILockBytes
CLSIDFromProgID
CoRevokeClassObject
OleUninitialize
CLSIDFromString

comdlg32

GetFileTitleW

gdi32

GetViewportExtEx
GetStockObject
GetDeviceCaps
SetBkColor
SaveDC
GetClipBox
GetObjectW
ExtSelectClipRgn
GetRgnBox
SetWindowExtEx
DeleteObject
CreateBitmap
SelectObject
RestoreDC
SetTextColor
GetTextColor
Escape
DeleteDC
SetMapMode
PtVisible
SetViewportExtEx
GetMapMode
RectVisible
GetWindowExtEx
ExtTextOutW
TextOutW
SetViewportOrgEx
ScaleWindowExtEx
ScaleViewportExtEx
GetBkColor
OffsetViewportOrgEx
CreateRectRgnIndirect

winspool.drv

DocumentPropertiesW
ClosePrinter
OpenPrinterW

oledlg

OleUIBusyW

Sections

.text
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 77KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 1024B - Virtual size: 236KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

987a222570f0fafa9c1f5974df7315e9

Headers

File Characteristics

Imports

user32

kernel32

shlwapi

shell32

advapi32

ole32

comdlg32

gdi32

winspool.drv

oledlg

Sections

.text Size: 100KB - Virtual size: 100KB

.rdata Size: 5KB - Virtual size: 4KB

.bss Size: 77KB - Virtual size: 76KB

.edata Size: 1024B - Virtual size: 236KB

.text
Size: 100KB - Virtual size: 100KB

.rdata
Size: 5KB - Virtual size: 4KB

.bss
Size: 77KB - Virtual size: 76KB

.edata
Size: 1024B - Virtual size: 236KB