ab94133b7e3934ae3adb3dbd2eb7272b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

ab94133b7e3934ae3adb3dbd2eb7272b_JaffaCakes118
Size

202KB
MD5

ab94133b7e3934ae3adb3dbd2eb7272b
SHA1

0177c372ecac6adb7722992ab07ed8c1f000c3db
SHA256

797df1a394c72b245063523c0e59ed869001c852fc85a4b581ebef741b01bf34
SHA512

3d5ccecad8193e60c6232505124ec68cb166d24329409857d4bb59e571395a72cd1c5c494907cae88f35ee01fffa9541e5e0d6aa8abcc8ab772386e6da1a5f98
SSDEEP

6144:yQo2kCkPAAfJ4OEL2YeaO8w7ma0oWq8FHK44jDx:ybCkY6hEDeX8ymLXbI4q

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ab94133b7e3934ae3adb3dbd2eb7272b_JaffaCakes118

Files

ab94133b7e3934ae3adb3dbd2eb7272b_JaffaCakes118
.exe windows:5 windows x86 arch:x86

9e023812bd843071cd66e109289d0755

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

R:\kUxbjrK\szQfgoxxf\LXnUTmCwgia.pdb

Imports

user32

GetScrollPos
ShowCaret
DialogBoxIndirectParamA
GetSysColorBrush
FindWindowW
EqualRect
GetClassNameW
ScrollWindow
IntersectRect
RegisterClassA
UpdateWindow
DispatchMessageW
SetActiveWindow
DeferWindowPos
IsCharAlphaW
GetDlgItemInt
GetFocus
VkKeyScanW
CallWindowProcA
SetRect
GetDC
CheckDlgButton
AttachThreadInput
SetWindowPos
DialogBoxIndirectParamW
RegisterClassExA
InsertMenuA
GetDCEx
IsCharUpperA
SetFocus
GetIconInfo
DrawMenuBar
SetPropW
SetDlgItemTextW
MoveWindow
ExitWindowsEx
GetMessageA
RegisterWindowMessageW
SendNotifyMessageW
CallWindowProcW
CharLowerBuffW
DispatchMessageA
DrawAnimatedRects
GetClientRect
LoadBitmapA
AppendMenuW
GetNextDlgTabItem
DefWindowProcW
GetCaretPos
CopyAcceleratorTableW
ChildWindowFromPointEx
AdjustWindowRectEx
GetMessagePos
EnumThreadWindows
GetDialogBaseUnits
DefFrameProcA
GetShellWindow
CopyImage
SetWindowLongW
GetWindow
ToUnicodeEx
ArrangeIconicWindows
SendMessageTimeoutA
CharNextA
ShowWindowAsync
IsIconic
DrawTextExW
SetScrollInfo
MessageBoxExW
GetMenuStringA
SendInput
MapVirtualKeyA
GetWindowLongA
OemToCharA
SetSysColors
IsCharAlphaA
CreateCursor
CharLowerA
CheckMenuItem
GetDlgItem
DeleteMenu
CreateCaret
DefFrameProcW
EnumWindows
InvalidateRgn
LoadStringA
TrackPopupMenu
IsZoomed
GetParent
HiliteMenuItem
OffsetRect
TrackPopupMenuEx
GetMenuStringW
SetUserObjectInformationW
SetWindowTextW
TranslateMessage
IsCharAlphaNumericW
EnableScrollBar
InflateRect
GetKeyboardLayoutList
LookupIconIdFromDirectory
CharUpperW
FrameRect
RegisterHotKey
GetWindowTextW
UnloadKeyboardLayout
RemovePropW
wvsprintfW
ShowOwnedPopups
GetGUIThreadInfo
GetKeyNameTextW
MessageBoxExA
SendMessageTimeoutW
ScrollWindowEx
TileWindows
GetDlgCtrlID
ClipCursor
DestroyCaret
RedrawWindow
CreateWindowExA
GetMenu
IsWindowEnabled
GetTopWindow

kernel32

GetCommState
lstrcmpW
EnumResourceTypesA
SetMailslotInfo
HeapReAlloc
HeapAlloc
lstrlenW
VerifyVersionInfoW
GetWindowsDirectoryW
HeapFree
ReadFile
UnmapViewOfFile
DeleteCriticalSection
GetModuleHandleA
CreateEventA
ResetEvent
GetSystemTimeAsFileTime
SetThreadExecutionState
SetEndOfFile
FlushFileBuffers
RaiseException
GetTimeZoneInformation
GlobalMemoryStatus
GlobalAddAtomW
LockResource
GetAtomNameW
CreateFileMappingA
FileTimeToDosDateTime
FileTimeToSystemTime
GetCurrentThread
FormatMessageW
SetTimerQueueTimer
GetComputerNameW
CreateNamedPipeA
CreateFileMappingW
DisconnectNamedPipe
CreateFileA
SearchPathW
SearchPathA
SetUnhandledExceptionFilter
lstrcatW
SetHandleCount
GetUserDefaultUILanguage
GlobalFlags
GetSystemDirectoryA
WaitForMultipleObjects
GetExitCodeThread
GetSystemWindowsDirectoryW
SleepEx
FormatMessageA
OpenFileMappingW
GetCompressedFileSizeW
GetSystemDefaultLangID
GetNumberFormatA
GetProcessHeap
GetVersionExW
ReleaseMutex
CreateRemoteThread

msvcrt

isspace
iswalpha
toupper
iswxdigit
realloc
wcslen
swscanf
_controlfp
isalnum
__set_app_type
__p__fmode
setlocale
fseek
calloc
wcstombs
__p__commode
exit
free
wcspbrk
_amsg_exit
_initterm
_ismbblead
strerror
atoi
_XcptFilter
gets
_exit
_cexit
qsort
strcpy
fputc
getc
tolower
fputs
malloc
__setusermatherr
__getmainargs
strspn
wcsrchr
wcstod
fprintf
puts
atol
perror
gmtime
swprintf
strtoul

Exports

Exports

?DialogReactivateIns@@YGK_KHE[D

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 200KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 176KB - Virtual size: 176KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9e023812bd843071cd66e109289d0755

Headers

File Characteristics

PDB Paths

Imports

user32

kernel32

msvcrt

Exports

Exports

Sections

.text Size: 8KB - Virtual size: 7KB

.data Size: 15KB - Virtual size: 200KB

.rsrc Size: 176KB - Virtual size: 176KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 8KB - Virtual size: 7KB

.data
Size: 15KB - Virtual size: 200KB

.rsrc
Size: 176KB - Virtual size: 176KB

.reloc
Size: 1KB - Virtual size: 1KB