8a5d79f281fdb0fa3a5c28a34bb97e3e_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

8a5d79f281fdb0fa3a5c28a34bb97e3e_JaffaCakes118
Size

120KB
MD5

8a5d79f281fdb0fa3a5c28a34bb97e3e
SHA1

7877c31ae2f4bb7ed679959d9630544f5323ae89
SHA256

2e5f2457d11d1536cacc011cf99b51ff58e82d113a36aa7accea160b79dd8fe8
SHA512

bd3a29f539679cdf61030d05b525abcd5be708c94833cfa84a66f435bee0db11d2a127e8738d1fd804c673f7a534a35e515b48bc7409aa8005fa6dfa19cf6729
SSDEEP

1536:XB7XVr9OjrYwNJ59fPKqnTuR2V+dPC8PtEKmpsmPP/eMuELAfjuCC1vwcRO:XZXVirPdPVG2QdPpEKIPP/eMY1C1I6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8a5d79f281fdb0fa3a5c28a34bb97e3e_JaffaCakes118

Files

8a5d79f281fdb0fa3a5c28a34bb97e3e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1b3637e7eeaec5c9c358763a4ba9cbf4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

RegisterClassA
ScrollWindowEx
EndPaint
BeginPaint
ShowCaret
CreateCaret
DestroyCaret
GetKeyState
InvalidateRect
CharLowerA
SetCaretPos
HideCaret
GetClipboardData
SetCursorPos
ScreenToClient
GetDlgItemInt
RegisterClassExA
CallWindowProcA
GetDlgCtrlID
GetWindowTextA
GetParent
IsDlgButtonChecked
DestroyWindow
EnableWindow
CreateDialogParamA
CharUpperA
CheckDlgButton
SetWindowPos
EndDialog
MessageBeep
DialogBoxParamA
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
SetWindowTextA
RegisterClipboardFormatA
SetScrollInfo
ModifyMenuA
TrackPopupMenuEx
DestroyMenu
GetClientRect
IntersectRect
GetWindowRect
MapWindowPoints
DrawAnimatedRects
KillTimer
GetDoubleClickTime
SetTimer
wsprintfA
MessageBoxA
PeekMessageA
IsDialogMessageA
GetWindow
LoadStringA
CharNextA
FindWindowA
GetLastActivePopup
BringWindowToTop
SetForegroundWindow
LoadAcceleratorsA
TranslateAcceleratorA
TranslateMessage
GetSysColor
DestroyIcon
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
ClientToScreen
SetCursor
ShowCursor
IsIconic
GetWindowLongA
SetCapture
DispatchMessageA
SetDlgItemTextA
SendDlgItemMessageA
MoveWindow
GetDlgItem
GetMessagePos
LoadMenuA
GetMessageA
ReleaseCapture
SetWindowLongA
GetMenuItemInfoA
EnableMenuItem
GetMenuItemID
InsertMenuA
SetMenuDefaultItem
CheckMenuItem
PostMessageA
WinHelpA
GetWindowPlacement
PostQuitMessage
GetMenu
GetSubMenu
DeleteMenu
DefWindowProcA
SetFocus
UpdateWindow
SendMessageA
GetSystemMetrics
GetDC
ReleaseDC
CreateWindowExA
SetWindowPlacement
ShowWindow
LoadIconA
LoadCursorA
LoadImageA
GetDlgItemTextA
IsClipboardFormatAvailable
CheckRadioButton

kernel32

GetComputerNameA
LocalFree
LocalAlloc
GetLastError
WriteFile
CreateFileA
ReadFile
OpenFile
GetFileSize
CloseHandle
lstrcmpA
IsDBCSLeadByte
lstrcatA
GlobalAlloc
GlobalLock
RtlMoveMemory
GlobalUnlock
GetProcessHeap
lstrcmpiA
lstrlenA
lstrcpyA
FormatMessageA
GetCommandLineA
GetModuleHandleA
ExitProcess

gdi32

SetTextColor
StartPage
TextOutA
SetAbortProc
StartDocA
EndPage
EndDoc
AbortDoc
DeleteDC
SetBkColor
GetDeviceCaps
ExtTextOutA
CreateFontIndirectA
GetTextMetricsA
CreateBitmap
CreatePatternBrush
ExcludeClipRect
SelectClipRgn
PatBlt
SelectObject
DeleteObject

shell32

ord195
ord48
SHBrowseForFolderA
DragQueryFileA
DragFinish
ShellAboutA

comctl32

ord355
ord340
ord334
ord338
ord234
ord337
ord329
ord351
ord350
ImageList_SetBkColor
ImageList_Create
ImageList_ReplaceIcon
ord4
ord2
ImageList_Destroy
ord6

advapi32

RegConnectRegistryA
RegSetValueA
RegFlushKey
RegDeleteValueA
RegQueryInfoKeyA
RegDeleteKeyA
RegEnumValueA
RegCreateKeyA
RegSetValueExA
RegEnumKeyA
RegOpenKeyA
RegQueryValueExA
RegCloseKey

comdlg32

GetOpenFileNameA
PrintDlgA
GetSaveFileNameA

Sections

.text
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1b3637e7eeaec5c9c358763a4ba9cbf4

Headers

File Characteristics

Imports

user32

kernel32

gdi32

shell32

comctl32

advapi32

comdlg32

Sections

.text Size: 36KB - Virtual size: 35KB

.data Size: 4KB - Virtual size: 18KB

.idata Size: 8KB - Virtual size: 4KB

.rsrc Size: 24KB - Virtual size: 23KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 36KB - Virtual size: 35KB

.data
Size: 4KB - Virtual size: 18KB

.idata
Size: 8KB - Virtual size: 4KB

.rsrc
Size: 24KB - Virtual size: 23KB

.reloc
Size: 4KB - Virtual size: 3KB