846772bc14b50c586861ff898ceaae0a_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

846772bc14b50c586861ff898ceaae0a_JaffaCakes118
Size

220KB
MD5

846772bc14b50c586861ff898ceaae0a
SHA1

73a02156e78187e8e612b53343c5ce70e2895693
SHA256

88be56b2076b412cb1dbba139e552a332243c47d5d38ee59bfe918ba9bbee32a
SHA512

d6e79137667d03ef1d1cc303b5548c132dace6be680b133bf3a05ffcc60b37c18963595d6d78626069153e4ec4e61512e961ab5f7e1f1f8090ad08e9f4e5af00
SSDEEP

3072:keUwApvUKXSRbgkX/joIJF93ZVqkt5uxY5RzEdLPho/QVecXm6dg49rOCHI5/T:7UltSRbg+tWvxYrZ/yXhdd9rOAIV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
846772bc14b50c586861ff898ceaae0a_JaffaCakes118

Files

846772bc14b50c586861ff898ceaae0a_JaffaCakes118
.exe windows:5 windows x86 arch:x86

11d7b814daa75413de54b402ef1b4abb

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

O:\mpySsNgDtg\iDWyHipJT\vKidKhdh\pLzVjrc\wkSRued.pdb

Imports

shell32

ord196
ord195

gdi32

EnumFontFamiliesW
GetBitmapBits
CreateSolidBrush
CreateBitmap
AbortDoc
ExtFloodFill
DPtoLP
AddFontResourceW
GetObjectW
SetWindowOrgEx
GetLayout
GetTextMetricsA
GetMapMode
CreateRectRgn
GetDIBColorTable
CreateCompatibleBitmap

kernel32

EnumResourceNamesA
GetCurrentDirectoryW
GlobalAddAtomW
SetLocalTime
LocalFree
TlsSetValue
GlobalMemoryStatus
Sleep
CopyFileW
lstrlenA
SetThreadContext
GlobalFree
SetNamedPipeHandleState
IsBadStringPtrA
GetTempPathA
GetNumberFormatA
SetFileTime
HeapSize

comctl32

PropertySheetA
CreatePropertySheetPageA
ImageList_Draw
ImageList_Write
CreateToolbarEx

msvcrt

sscanf
_controlfp
__set_app_type
fflush
__p__fmode
__p__commode
_amsg_exit
_initterm
_acmdln
exit
_ismbblead
_XcptFilter
_exit
wcsncmp
strpbrk
_cexit
iswdigit
__setusermatherr
wcstok
isspace
wcstoul
wcstol
__getmainargs

user32

EqualRect
HiliteMenuItem
IsWindowUnicode
LoadMenuW
InvalidateRgn
SetDlgItemInt
AttachThreadInput
KillTimer
BringWindowToTop
GetCaretPos
IsCharLowerA
GetActiveWindow
CheckMenuRadioItem
GetMenuStringA
CreateCaret
EnumChildWindows
CascadeWindows
GetForegroundWindow
DestroyCaret
GetMessageW
AdjustWindowRect
LoadIconA
SystemParametersInfoW
IsCharUpperA
DefFrameProcW
GetUpdateRect
DrawIconEx
InsertMenuW
IsMenu
GetKeyboardLayoutNameW
GrayStringW
SetScrollInfo
GetUserObjectInformationA
DialogBoxParamA
ScreenToClient
RegisterWindowMessageA

Exports

Exports

?EnterCriticalSectionJHhjhgGJj@@YGKEPA_WG@Z

Sections

.text
Size: 175KB - Virtual size: 175KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idat
Size: 512B - Virtual size: 424B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.div
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.diag_x
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.diag_y
Size: 512B - Virtual size: 77B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.imul
Size: 512B - Virtual size: 286B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.plus
Size: 512B - Virtual size: 453B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.minus
Size: 512B - Virtual size: 140B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

11d7b814daa75413de54b402ef1b4abb

Headers

File Characteristics

PDB Paths

Imports

shell32

gdi32

kernel32

comctl32

msvcrt

user32

Exports

Exports

Sections

.text Size: 175KB - Virtual size: 175KB

.idat Size: 512B - Virtual size: 424B

.div Size: 2KB - Virtual size: 2KB

.diag_x Size: 512B - Virtual size: 28B

.diag_y Size: 512B - Virtual size: 77B

.data Size: 3KB - Virtual size: 2KB

.imul Size: 512B - Virtual size: 286B

.plus Size: 512B - Virtual size: 453B

.minus Size: 512B - Virtual size: 140B

.rsrc Size: 32KB - Virtual size: 32KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 175KB - Virtual size: 175KB

.idat
Size: 512B - Virtual size: 424B

.div
Size: 2KB - Virtual size: 2KB

.diag_x
Size: 512B - Virtual size: 28B

.diag_y
Size: 512B - Virtual size: 77B

.data
Size: 3KB - Virtual size: 2KB

.imul
Size: 512B - Virtual size: 286B

.plus
Size: 512B - Virtual size: 453B

.minus
Size: 512B - Virtual size: 140B

.rsrc
Size: 32KB - Virtual size: 32KB

.reloc
Size: 2KB - Virtual size: 2KB