a20c7ce6746cc117f5ba6b7ef78d993e_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

a20c7ce6746cc117f5ba6b7ef78d993e_JaffaCakes118
Size

139KB
MD5

a20c7ce6746cc117f5ba6b7ef78d993e
SHA1

3539adb3ccaf78efaea3e563613be4e8b7d95a63
SHA256

995bbdf62777a69e2b025c2fb7f647b6eea1b74c29cb0f51c68798143526394c
SHA512

39f38e47cf9308e2043e0e2c68170b520fdab89b96240b49a85321fb6e842be58c80fa0614178751e4d5948c72506a1aa15629fbce922c06665e928bb185c8b5
SSDEEP

3072:dNUgjrUUnorSUTE08dKJf6gCZ9CZ6zdS6U5pC+3xbXYIwFTqfw:drUkQSK8dK1sZS6U5pCkOdAw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a20c7ce6746cc117f5ba6b7ef78d993e_JaffaCakes118

Files

a20c7ce6746cc117f5ba6b7ef78d993e_JaffaCakes118
.exe windows:5 windows x86 arch:x86

59b1f5e5134879155e7deaddef991748

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

X:\ahLgvrdn\bkkomEtpzjvnmw\mnswfkqBzoEpt\afddPNwDOyd\bhowwgau.pdb

Imports

shlwapi

StrToIntA

msvcrt

isprint
qsort
swscanf
ftell
fclose
strerror
strstr
system
fwrite
_controlfp
iswdigit
__set_app_type
wcscat
mbstowcs
__p__fmode
strspn
iswxdigit
__p__commode
putc
strchr
_amsg_exit
memset
remove
wcsrchr
swprintf
towupper
strcoll
strpbrk
islower
toupper
sscanf
isxdigit
_initterm
fputc
_ismbblead
towlower
fputs
realloc
tolower
_XcptFilter
wcstoul
_exit
_cexit
strcspn
free
__setusermatherr
clearerr
__getmainargs

kernel32

GetFileAttributesExA
WaitForSingleObject
GlobalAlloc
SetCurrentDirectoryA
GetSystemWindowsDirectoryW
GetModuleFileNameA
SetCommState
GetStartupInfoA
HeapCreate
GetCommConfig
lstrcatA
GetCompressedFileSizeW
GlobalGetAtomNameW
CreateSemaphoreA
GetUserDefaultLCID
GetThreadContext
FindCloseChangeNotification
GetStartupInfoW
ResetEvent
MoveFileExW
GetFullPathNameA
ConnectNamedPipe
GetTempPathW
SleepEx
GetCommandLineW
DeleteCriticalSection
EnterCriticalSection
SetFileApisToOEM
GetExitCodeThread
lstrcmpA
IsBadStringPtrW
ReadFile
GetCommState
GetTempFileNameA
FindFirstFileA
GetFileInformationByHandle
UnmapViewOfFile
FindNextFileW
OpenFileMappingW
WaitForMultipleObjectsEx
HeapFree
lstrcpyW
IsValidLocale
GetCommProperties
HeapUnlock
WinExec
FoldStringW
HeapAlloc
CompareFileTime
lstrcpynW
GetComputerNameA
GlobalMemoryStatusEx
GetProcessHeap
GetFileAttributesA
AddAtomA

comctl32

PropertySheetW
InitCommonControlsEx
CreatePropertySheetPageA
ImageList_Read
ImageList_Destroy
ImageList_ReplaceIcon

comdlg32

ChooseColorW
GetSaveFileNameW
PrintDlgExW
PrintDlgW

user32

GetMenuStringW
SetSysColors
SetTimer
AppendMenuW
ShowScrollBar
LoadCursorA
PostMessageA
CloseDesktop
CharLowerW
HideCaret
GetScrollPos
InsertMenuW
IsWindowUnicode
IsDialogMessageW
GetMenuStringA
DialogBoxIndirectParamA
IsChild
ClipCursor
GetDlgItemTextW
RegisterClassW
LockWindowUpdate
IsCharUpperA
CreateWindowExW
DragObject
RegisterWindowMessageA
SetRectEmpty
EndDialog
CharUpperW
SendMessageTimeoutW
IsZoomed
UpdateWindow
CreateMenu
IsWindow
GetIconInfo
ReleaseDC
GetClipCursor
wvsprintfA
AllowSetForegroundWindow
DeleteMenu
DefDlgProcA
IsWindowVisible
IsRectEmpty
ChangeMenuW
SetMenuItemInfoW
SetUserObjectInformationW
ChildWindowFromPointEx
FindWindowA
RegisterWindowMessageW
GetKeyboardType
GetLastActivePopup
GetMenuItemRect
BeginDeferWindowPos
SendDlgItemMessageW
MonitorFromRect
GetDC
MapVirtualKeyA
CreateCaret
FindWindowExA
IntersectRect
MapVirtualKeyW
LoadAcceleratorsW
SetPropW
TranslateMessage
CheckMenuRadioItem
SendMessageA
DispatchMessageA
IsCharAlphaNumericW
ScrollWindowEx
GetDlgItemTextA
RegisterClassA
CharUpperA
ShowOwnedPopups
GetMenu
CreateWindowExA
SendInput
SetWindowTextW
LoadStringW
CharLowerBuffW
DrawTextA
CopyAcceleratorTableW
GetAltTabInfoA
EndPaint
BeginPaint
GetKeyNameTextW
IsDlgButtonChecked
DrawTextW
EqualRect
DrawIcon
InsertMenuA
SetRect
GetCursorPos
CharUpperBuffA
OpenInputDesktop
OemToCharBuffA
InflateRect
keybd_event
CharNextW
LoadMenuA
SetForegroundWindow
LoadMenuW
MessageBoxA
CreateDialogIndirectParamW
GetPropW
SetDlgItemInt
CreateIconFromResource
InvertRect
DeferWindowPos
SetFocus
GetSystemMetrics
GetDialogBaseUnits
ArrangeIconicWindows
CreateCursor
ChildWindowFromPoint
TabbedTextOutW
SetLastErrorEx
InvalidateRgn
GetMenuCheckMarkDimensions
LoadCursorW
GetUpdateRgn

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 111KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

59b1f5e5134879155e7deaddef991748

Headers

File Characteristics

PDB Paths

Imports

shlwapi

msvcrt

kernel32

comctl32

comdlg32

user32

Sections

.text Size: 8KB - Virtual size: 8KB

.data Size: 20KB - Virtual size: 77KB

.rsrc Size: 111KB - Virtual size: 111KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 8KB - Virtual size: 8KB

.data
Size: 20KB - Virtual size: 77KB

.rsrc
Size: 111KB - Virtual size: 111KB

.reloc
Size: 1KB - Virtual size: 1KB