82317e4356fc607f848edaf0fb4ad77a_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

82317e4356fc607f848edaf0fb4ad77a_JaffaCakes118
Size

212KB
MD5

82317e4356fc607f848edaf0fb4ad77a
SHA1

5d7f9818af511990518667eac94842eb5a379129
SHA256

4290d2722cc68c4c1ba14763d9e86b93ce742ef89e48d4a66fce1484656598e5
SHA512

1d066d5a566caffe4525db797657bee842c89511f290d45d943b73e4dc7d4cb4bd115ee8b3d27c7cbdd59e2b67f9f7f22f22bf2babc37c353464d05ce900ddea
SSDEEP

3072:V8FkTZEkTjOw1ThFEPtJQUEkoLk6R/1Bg0HSduiGmeCFt6hghEDU98gTV+X6o+:V6yjVSJGXQibMcCmetFTAq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
82317e4356fc607f848edaf0fb4ad77a_JaffaCakes118

Files

82317e4356fc607f848edaf0fb4ad77a_JaffaCakes118
.exe windows:5 windows x86 arch:x86

0456ee212599554b7ec10f2a2be18754

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

W:\zfimYEkyumoN\nejclzeahyTx\iuxwktatIk\bFFwliphxQvvte.pdb

Imports

user32

IsCharLowerA
GetMenuStringA
SetMenuDefaultItem
DefDlgProcW
GetDlgItemTextW
SendMessageA
CharNextExA
LoadImageA
SetMenuItemInfoW
CharUpperW
LoadMenuA
HideCaret
TileWindows
WindowFromPoint
InternalGetWindowText
CheckDlgButton
InsertMenuItemW
LoadAcceleratorsW
SendMessageW
AdjustWindowRectEx
CallWindowProcW
GetDCEx
DialogBoxParamA
SetActiveWindow
DrawEdge
DialogBoxParamW
CharToOemBuffA
GetNextDlgGroupItem
GetWindowRect
ActivateKeyboardLayout
SystemParametersInfoA
SystemParametersInfoW
ToUnicodeEx
CharUpperA

advapi32

LookupPrivilegeValueA

kernel32

GetModuleHandleA
SetFileApisToOEM
HeapAlloc
CopyFileA
CreateMailslotW
GetSystemDirectoryW
GetFileAttributesW
lstrlenW
ReleaseSemaphore
DeleteCriticalSection
GetACP
OpenSemaphoreW
GetTimeZoneInformation
GetVersion
lstrcatW
FoldStringW
CreateFileMappingA

gdi32

RoundRect
CreateBrushIndirect
OffsetViewportOrgEx
CreateRoundRectRgn
GetROP2
DeleteObject
RestoreDC
MoveToEx
CreateRectRgnIndirect
GetCharWidth32W
PatBlt
SetBitmapDimensionEx
EndPath
BeginPath

comctl32

ImageList_Create
ImageList_GetImageCount
CreatePropertySheetPageA
PropertySheetA

msvcrt

_controlfp
__set_app_type
fseek
__p__fmode
__p__commode
_amsg_exit
iswspace
_initterm
_acmdln
exit
_ismbblead
_XcptFilter
wcstok
swscanf
_exit
strstr
gmtime
atol
_cexit
__setusermatherr
localtime
__getmainargs
srand
wcstol

comdlg32

ReplaceTextW
GetSaveFileNameW

Exports

Exports

?InitializeCriticalSectionAndSpinCountHDhdhHGHdhds@@YGKEPA_WG@Z

Sections

.text
Size: 173KB - Virtual size: 173KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.diag_y
Size: 512B - Virtual size: 83B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.diag_x
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idat
Size: 512B - Virtual size: 412B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.div
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.plus
Size: 1024B - Virtual size: 607B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.minus
Size: 512B - Virtual size: 140B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0456ee212599554b7ec10f2a2be18754

Headers

File Characteristics

PDB Paths

Imports

user32

advapi32

kernel32

gdi32

comctl32

msvcrt

comdlg32

Exports

Exports

Sections

.text Size: 173KB - Virtual size: 173KB

.diag_y Size: 512B - Virtual size: 83B

.diag_x Size: 512B - Virtual size: 28B

.idat Size: 512B - Virtual size: 412B

.div Size: 2KB - Virtual size: 2KB

.data Size: 2KB - Virtual size: 1KB

.plus Size: 1024B - Virtual size: 607B

.minus Size: 512B - Virtual size: 140B

.rsrc Size: 28KB - Virtual size: 28KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 173KB - Virtual size: 173KB

.diag_y
Size: 512B - Virtual size: 83B

.diag_x
Size: 512B - Virtual size: 28B

.idat
Size: 512B - Virtual size: 412B

.div
Size: 2KB - Virtual size: 2KB

.data
Size: 2KB - Virtual size: 1KB

.plus
Size: 1024B - Virtual size: 607B

.minus
Size: 512B - Virtual size: 140B

.rsrc
Size: 28KB - Virtual size: 28KB

.reloc
Size: 2KB - Virtual size: 1KB