81ce02ae55ada2a82d3312ef42d81ed1_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

81ce02ae55ada2a82d3312ef42d81ed1_JaffaCakes118
Size

55KB
MD5

81ce02ae55ada2a82d3312ef42d81ed1
SHA1

8cb85ef44f3578126245ce8b7ed5eb0aca022faa
SHA256

b49aa4b947333397cb9fe9ac4752437b2ff87bceff7add7494feb7074f6e0f9d
SHA512

d741d1d1eb356e38c707854651aaa55b3a7a2a8cc1682ba31d2ca74964f0e4ba8d0dd5a2177548251b85063bca7c76a739a044e9d1d806b955e5bc250d25dea1
SSDEEP

768:De1fm4vVLnlcDOZ80sprqSw/ZHOBFoSEWbDI41M8ujkuuqkcr4:De7xlcDH0YWSw/ZHOBFCoDIkLA4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
81ce02ae55ada2a82d3312ef42d81ed1_JaffaCakes118

Files

81ce02ae55ada2a82d3312ef42d81ed1_JaffaCakes118
.exe windows:5 windows x86 arch:x86

0a743d3c1825fd612ed080adaf723734

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FormatMessageW
GetACP
GetCPInfo
GetCommandLineW
GetDateFormatW
GetLocalTime
GetLocaleInfoW
GetStartupInfoA
GetTimeFormatW
GetUserDefaultLCID
GetUserDefaultLangID
GlobalFree
GlobalLock
GlobalUnlock
IsDBCSLeadByte
LocalAlloc
LocalFree
FoldStringW
LocalReAlloc
LocalSize
LocalUnlock
MapViewOfFile
MulDiv
MultiByteToWideChar
SetEndOfFile
UnmapViewOfFile
WideCharToMultiByte
WriteFile
lstrcatW
lstrcmpW
lstrcmpiW
lstrcpyW
lstrcpynW
lstrlenW
FindFirstFileW
FindClose
DeleteFileW
CreateFileW
CreateFileMappingW
CompareStringW
CloseHandle
GetModuleHandleA
GetProcessHeap
GetProcAddress
LocalLock
LoadLibraryA

user32

ChildWindowFromPointEx
ChildWindowFromPoint
CharLowerW
CharNextW
CharUpperW
CheckMenuItem
CreateDialogParamW
CreateWindowExW
DefWindowProcW
DestroyWindow
ClientToScreen
DispatchMessageW
DrawTextExW
GetClientRect
GetCursorPos
GetDC
GetDesktopWindow
GetDlgCtrlID
GetDlgItemTextW
GetFocus
GetForegroundWindow
GetKeyboardLayout
GetMenu
GetMenuState
GetMessageW
GetSubMenu
GetSystemMenu
GetSystemMetrics
GetWindowLongW
GetWindowPlacement
GetWindowTextW
InvalidateRect
IsClipboardFormatAvailable
IsDialogMessageW
IsIconic
LoadAcceleratorsW
LoadCursorW
LoadIconW
LoadImageW
LoadStringW
MessageBeep
MessageBoxW
MoveWindow
OpenClipboard
PeekMessageW
PostMessageW
PostQuitMessage
RegisterClassExW
RegisterWindowMessageW
ReleaseDC
ScreenToClient
SendDlgItemMessageW
SendMessageW
SetActiveWindow
SetCursor
SetDlgItemTextW
SetFocus
SetScrollPos
SetWindowLongW
SetWindowPlacement
SetWindowTextW
ShowWindow
TranslateAcceleratorW
TranslateMessage
UpdateWindow
WinHelpW
wsprintfW
ClipCursor
CloseClipboard
EmptyClipboard
EnableMenuItem
EnableScrollBar
EnableWindow
EndDeferWindowPos
EndDialog
EndMenu
EndPaint
EnumChildWindows
DialogBoxParamW

comdlg32

FindTextW
GetFileTitleW
GetOpenFileNameW
CommDlgExtendedError
PageSetupDlgW
PrintDlgExW
ReplaceTextW
GetSaveFileNameW
ChooseFontW

advapi32

RegOpenKeyA

msvcrt

memcpy
memset

Sections

.text
Size: 47KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 220B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 942B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0a743d3c1825fd612ed080adaf723734

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

comdlg32

advapi32

msvcrt

Sections

.text Size: 47KB - Virtual size: 47KB

.data Size: 512B - Virtual size: 220B

.rsrc Size: 5KB - Virtual size: 5KB

.reloc Size: 1024B - Virtual size: 942B

.text
Size: 47KB - Virtual size: 47KB

.data
Size: 512B - Virtual size: 220B

.rsrc
Size: 5KB - Virtual size: 5KB

.reloc
Size: 1024B - Virtual size: 942B