94fc6b10b7fdb5072bb93b0c1cca303a_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

94fc6b10b7fdb5072bb93b0c1cca303a_JaffaCakes118
Size

29KB
MD5

94fc6b10b7fdb5072bb93b0c1cca303a
SHA1

5acb572c6597e143845bebb7f4fa12edb2158411
SHA256

be03423b78c107555e69f87d430ac36209acd2798a9f0d64c137a286d1f38b27
SHA512

4ed37a58fe837558009b40b3c69500ed34129d92f47a4a3390f6fb71d6fe45ccc18810bc3d1e66286021465b34fae52c74afc952f03382de4e0348a9434f9a8f
SSDEEP

384:JiKS9hN6HW9zQmq7yhlVO1RyM/ClHMNVLPUOoZilg0CgI0RFpaeR1/urj:Ji1iVmS1Rn7bgO0iligHFpVR1/ur

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
94fc6b10b7fdb5072bb93b0c1cca303a_JaffaCakes118

Files

94fc6b10b7fdb5072bb93b0c1cca303a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f9948ef1a051e3181ad437392a046e5a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetFontResourceInfoW
DeleteObject
GetStockObject
GetTextExtentPoint32W
GetDeviceCaps
RemoveFontResourceW
SelectObject
AddFontResourceW
GetTextExtentPointW
CreateFontIndirectW
SetTextColor
SetBkColor
ExtTextOutW

shlwapi

StrCmpNIW
SHRegGetUSValueW
PathRemoveFileSpecW
PathCombineW
StrDupW
PathAddBackslashW
PathFindFileNameW
StrChrW
PathAppendW
PathFindExtensionW
StrRChrW
wnsprintfW

user32

GetMenuItemCount
CreateWindowExW
SetWindowPos
CharUpperW
InsertMenuW
GetSysColor
GetDlgItem
TrackPopupMenuEx
IsWindowEnabled
LoadStringW
GetClassInfoW
SendDlgItemMessageW
CopyIcon
PeekMessageW
IsClipboardFormatAvailable
ShowWindow
DeleteMenu
CharNextW
LoadStringA
SetCursor
UpdateWindow
CharPrevW
GetWindowRect
SetFocus
UnregisterClassW
OpenClipboard
FrameRect
GetParent
DrawTextExW
LoadAcceleratorsW
MessageBoxA
EndDialog
GetDesktopWindow
GetDlgCtrlID
SetClipboardData
GetMenuState
CheckMenuItem
RegisterClassW
DestroyMenu
GetFocus
TranslateMessage
GetClientRect
GetWindowLongW
GetDC
EnableMenuItem
LoadMenuW
GetSystemMetrics
ReleaseDC
DefWindowProcW
WinHelpW
MessageBoxW
IsDialogMessageW
CreateDialogParamW
SetForegroundWindow
SetDlgItemTextW
RegisterWindowMessageW
GetDlgItemTextW
DestroyIcon
EnableWindow
SetWindowTextW
ChangeClipboardChain
DialogBoxParamW
MsgWaitForMultipleObjects
SetWindowLongW
GetDialogBaseUnits
ScreenToClient
CreateMenu
PostMessageW
GetSubMenu
DispatchMessageW
GetMenuItemInfoW
RegisterClipboardFormatW
EndPaint
CheckMenuRadioItem
MapWindowPoints
TrackPopupMenu
CloseClipboard
DefDlgProcW
PtInRect
LoadImageW
SetMenuItemInfoW
GetForegroundWindow
EmptyClipboard
GetClipboardData
LoadCursorW
CheckDlgButton
IsDlgButtonChecked
ClientToScreen
BeginPaint
MoveWindow
GetAsyncKeyState
InvalidateRect
InflateRect
TranslateAcceleratorW
DestroyWindow
SendMessageW
GetKeyState

setupapi

SetupCloseInfFile
SetupFindFirstLineW
SetupFindNextLine
SetupGetLineTextW
SetupOpenInfFileW
SetupGetStringFieldW

shell32

DragQueryFileW
SHFileOperationW
SHGetSpecialFolderPathA
SHGetPathFromIDListW
DragFinish
SHGetSpecialFolderPathW
ShellExecuteW
ShellExecuteExW
ExtractIconExW
DragAcceptFiles

kernel32

ReleaseMutex
SetErrorMode
GetFileAttributesW
InitializeCriticalSection
GetAtomNameW
GetProfileStringW
GetDriveTypeW
GetLocaleInfoW
SearchPathW
CopyFileW
GetSystemWindowsDirectoryW
CreateThread
DisableThreadLibraryCalls
WriteProfileStringW
DeleteCriticalSection
LocalReAlloc
FindNextChangeNotification
SetUnhandledExceptionFilter
LeaveCriticalSection
SetEndOfFile
GlobalAlloc
GlobalLock
CloseHandle
InterlockedDecrement
FindCloseChangeNotification
SetThreadPriority
GlobalFree
VirtualAlloc
GetProfileIntW
IsDBCSLeadByte
MapViewOfFile
WriteFile
QueryPerformanceCounter
CreateMutexW
CreateFileMappingW
_lread
GetCurrentThreadId
GetFileSize
GetCurrentProcessId
SetCurrentDirectoryW
GetLastError
GetTickCount
DeleteFileA
LocalFree
lstrlenW
GetCurrentProcess
SetFilePointer
SetEvent
lstrcpynW
GetSystemTimeAsFileTime
FormatMessageW
DeleteAtom
ReadFile
ResetEvent
SetLastError
GetThreadLocale
lstrcmpiW
TerminateProcess
CreateEventW
GlobalUnlock
GetWindowsDirectoryW
DeleteFileW
_lclose
WaitForMultipleObjects
FindNextFileW
FindClose
UnhandledExceptionFilter
FindFirstFileW
FindFirstChangeNotificationW
LocalLock
LocalAlloc
LoadLibraryW
GetCurrentDirectoryW
GetUserDefaultLCID
Sleep
GlobalSize
GetModuleHandleA
GetSystemDirectoryW
lstrcmpW
WaitForSingleObject
lstrlenA
CreateFileW
UnmapViewOfFile
CreateFileA
_lopen
MultiByteToWideChar
GetModuleFileNameW
LocalUnlock
MulDiv
WideCharToMultiByte
FreeLibrary
lstrcpyA
EnterCriticalSection
_lwrite
InitializeCriticalSectionAndSpinCount
CreateFileMappingA
SetFileAttributesW
OpenFile
lstrcmpA
GetProcAddress
InterlockedIncrement
GetFullPathNameW
GetModuleHandleW
_llseek
AddAtomW

advapi32

RegOpenKeyExA
RegDeleteValueW
ReportEventA
RegOpenKeyExW
RegEnumValueW
RegCloseKey
RegisterEventSourceA
RegQueryInfoKeyW
RegSetValueExW
RegQueryValueExA
DeregisterEventSource
RegQueryValueExW
RegCreateKeyExW

ole32

CoGetClassVersion
SetErrorInfo

cmdial32

AutoDialFunc

msvcrt

isspace
_except_handler3
_onexit
memmove
isdigit
ispunct
_vsnprintf
strncpy
_adjust_fdiv
malloc
_strcmpi
strstr
_purecall
_itoa
wcschr
tolower
_strnicmp
_strupr
strchr
wcsstr
bsearch
_initterm
realloc
qsort
atoi
_strlwr
wcscspn
free
_vsnwprintf
sprintf
strrchr
__dllonexit
_stricmp
_strdup
_wcsnicmp
toupper

lz32

LZRead
LZSeek
GetExpandedNameW
LZClose
LZOpenFileW
LZCopy

version

GetFileVersionInfoSizeW
VerQueryValueW
VerFindFileW
GetFileVersionInfoW

Sections

.text
Size: 512B - Virtual size: 420B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f9948ef1a051e3181ad437392a046e5a

Headers

File Characteristics

Imports

gdi32

shlwapi

user32

setupapi

shell32

kernel32

advapi32

ole32

cmdial32

msvcrt

lz32

version

Sections

.text Size: 512B - Virtual size: 420B

.rsrc Size: 13KB - Virtual size: 13KB

.idata Size: 8KB - Virtual size: 8KB

.rdata Size: 5KB - Virtual size: 5KB

.data Size: - Virtual size: 96KB

.text
Size: 512B - Virtual size: 420B

.rsrc
Size: 13KB - Virtual size: 13KB

.idata
Size: 8KB - Virtual size: 8KB

.rdata
Size: 5KB - Virtual size: 5KB

.data
Size: - Virtual size: 96KB