7530854bc77bdfccac17c157c43ba4a0_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

7530854bc77bdfccac17c157c43ba4a0_JaffaCakes118
Size

147KB
MD5

7530854bc77bdfccac17c157c43ba4a0
SHA1

e3b26abb34026a6d830f04c5ccb09217a6ab4c5f
SHA256

713a0cb303838f73e7a032e19d84cc98cffd971ab128d0f0b78281605c526a40
SHA512

b7490e47ad0f81ec7995eb59d9aaf199a1cb9959ef23145236fc70bde6999195cd4f64439562ab3ef538313d97024dd7fa0c1cbd6f0b5b93b4235ccab9e55f50
SSDEEP

3072:BBL0pC+HLfAsROac0mn0D05gFr7kRhmd7HEVBTXT9lQqUsIsoVlvSg9Bt57PfrSW:/S6sr7kRh67HEVBLTQCodf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7530854bc77bdfccac17c157c43ba4a0_JaffaCakes118

Files

7530854bc77bdfccac17c157c43ba4a0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a9a1a45c380d5ab9e6cf4402320a2b65

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

npw32

ord27
ord32
ord35
ord5
ord33
ord2
ord7

pwdib32

ord19
ord22
hemfLoadMetafile
ord13

pwutlu32

ord100
ord200
ord256
ord108
ord255

pwdial32

ord8
ord9

kernel32

GetVersion
GetModuleHandleA
GetPrivateProfileIntA
GetFileSize
GetStartupInfoA
SetFilePointer
lstrcmpiA
WritePrivateProfileStringA
lstrcatA
GlobalAlloc
GlobalAddAtomA
GlobalDeleteAtom
GlobalFree
GlobalLock
GlobalUnlock
lstrcpyA
lstrcmpA
lstrlenA
LocalFree
LocalAlloc
GlobalReAlloc
GetPrivateProfileStringA

gdi32

GetStockObject
CreateDIBitmap
GetObjectA
RealizePalette
CreateFontA
GetTextExtentPointA
CreatePen
MoveToEx
LineTo
GetTextExtentPoint32A
SetViewportOrgEx
DPtoLP
LPtoDP
SaveDC
SetMapMode
SelectPalette
RestoreDC
CreateFontIndirectA
PlayEnhMetaFile
CreateRectRgnIndirect
CombineRgn
CreateRoundRectRgn
GetDeviceCaps
GetDIBits
CreatePalette
FillRgn
DeleteEnhMetaFile
SetBkMode
SetTextColor
CreateSolidBrush
OffsetViewportOrgEx
GetNearestColor
GetViewportOrgEx
DeleteObject
SelectObject

user32

SetCapture
FillRect
EndDialog
ScreenToClient
OffsetRect
GetDlgItem
CheckRadioButton
GetDlgItemInt
SetDlgItemInt
EnableWindow
ShowWindow
SetDlgItemTextA
GetDlgItemTextA
IsDlgButtonChecked
CheckDlgButton
SendDlgItemMessageA
GetParent
KillTimer
ReleaseDC
GetDC
GetSysColor
SetClassLongA
ClientToScreen
GetSystemMetrics
CreateWindowExA
GetWindowRect
UpdateWindow
SetWindowPos
SetWindowTextA
SetClassWord
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
BeginPaint
EndPaint
PtInRect
SetRect
WinHelpA
RegisterClassA
LoadIconA
LoadAcceleratorsA
RegisterClipboardFormatA
IsIconic
DrawTextA
EnableScrollBar
MoveWindow
SetScrollRange
SetFocus
GetScrollPos
GetScrollRange
GetClientRect
ScrollWindow
SetScrollPos
DestroyWindow
MessageBoxA
LoadStringA
DialogBoxParamA
LoadCursorA
SetCursor
CharLowerA
SendMessageA
InflateRect
InvalidateRect
GetKeyState
CopyRect
DrawFocusRect
ReleaseCapture
IsClipboardFormatAvailable
DefWindowProcA
wsprintfA
PostMessageA
GetMenu
GetSubMenu
DeleteMenu
DrawMenuBar
GetMessageA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
SetWindowsHookA
UnhookWindowsHook
GetClipboardData
SetTimer
CallNextHookEx
IntersectRect
PostQuitMessage
RegisterWindowMessageA

shell32

DragFinish
DragAcceptFiles
DragQueryFileA

fileio32

CloseFile32
ReadFile32
OpenFile32
WriteFile32

ctl3d32

ord12
ord6
ord16
ord13

comdlg32

ChooseFontA
GetSaveFileNameA
GetOpenFileNameA

msvcrt40

abs
_XcptFilter
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
__getmainargs
_initterm
__p__acmdln
exit
_exit
strtok
_ultoa
sprintf
_controlfp
fabs
strrchr
_ftol
memcpy
memset
atoi
strchr

Sections

.text
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a9a1a45c380d5ab9e6cf4402320a2b65

Headers

File Characteristics

Imports

npw32

pwdib32

pwutlu32

pwdial32

kernel32

gdi32

user32

shell32

fileio32

ctl3d32

comdlg32

msvcrt40

Sections

.text Size: 72KB - Virtual size: 72KB

.rdata Size: 512B - Virtual size: 512B

.data Size: 37KB - Virtual size: 37KB

.idata Size: 5KB - Virtual size: 5KB

.rsrc Size: 23KB - Virtual size: 23KB

.reloc Size: 9KB - Virtual size: 9KB

.text
Size: 72KB - Virtual size: 72KB

.rdata
Size: 512B - Virtual size: 512B

.data
Size: 37KB - Virtual size: 37KB

.idata
Size: 5KB - Virtual size: 5KB

.rsrc
Size: 23KB - Virtual size: 23KB

.reloc
Size: 9KB - Virtual size: 9KB