ab78aef620d1dc9aa97f29719564a684_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

ab78aef620d1dc9aa97f29719564a684_JaffaCakes118
Size

178KB
MD5

ab78aef620d1dc9aa97f29719564a684
SHA1

ec34a74caaf1ec8204f2c0981a74a0ddad7cc89f
SHA256

070a261435e194816843311d85f64b80efa74beacd98550d9dd857d28512656c
SHA512

3511b0ee440e2c42dc03e0982f7574bc3027fc777024f9c0c341e3e95cfe70fba949946ac979275da5744ad8c062b993077b80216f9d3006b8dcd1f75628090d
SSDEEP

3072:K30NzMx9t+fXwpVMgFvkkpy4fPp72QrqpjiOAZ6UE9jfrFkrRYsT:K3yzEt+fuMgFvL72QrqNbAFK2rL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ab78aef620d1dc9aa97f29719564a684_JaffaCakes118

Files

ab78aef620d1dc9aa97f29719564a684_JaffaCakes118
.exe windows:5 windows x86 arch:x86

81f64ffeb4b0417baea6ac2e6e4e46cc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

ChooseColorW
PrintDlgExW
CommDlgExtendedError
GetOpenFileNameW
ChooseFontW
PrintDlgW
GetSaveFileNameA

user32

InvalidateRgn
LockWindowUpdate
FindWindowExW
SetWindowLongA
GetMenuItemRect
OemToCharA
SetWindowTextW
SetRectEmpty
ScreenToClient
CreateIconIndirect
DrawIcon
GetMenuState
HiliteMenuItem
GetKeyboardLayoutNameW
DrawTextExW
GetDesktopWindow
LoadImageA
ArrangeIconicWindows
EndTask
GetClassInfoExW
SetWindowPlacement
ScrollWindowEx
PeekMessageW
SetWindowRgn
AdjustWindowRectEx
GetNextDlgTabItem
CharNextW
SetUserObjectInformationW
ShowWindowAsync
EnumThreadWindows
FrameRect
CharUpperBuffW
DeleteMenu
OpenInputDesktop
keybd_event
BeginDeferWindowPos
TrackPopupMenu
VkKeyScanW
GetDlgCtrlID
RegisterClassA
IsDialogMessageA
CascadeWindows
KillTimer
IsCharLowerA
GetClientRect
GetFocus
SetPropW
GetMessageA
GetUserObjectInformationA
IsCharAlphaW
MessageBoxExA
InvalidateRect
CharPrevA
SetActiveWindow
SetCaretPos
GetKeyboardLayoutList
ShowScrollBar
SetMenu
LoadStringA
SetFocus
CheckMenuRadioItem
CharNextA
WindowFromPoint
SystemParametersInfoA
LoadCursorA
SetTimer
MonitorFromPoint
InSendMessage
MapDialogRect
DefFrameProcW
MessageBoxExW
EnableMenuItem
LoadMenuA
GetMonitorInfoW
MessageBoxW
CharToOemBuffA
DrawStateW
IsRectEmpty
EnableScrollBar
GetKeyNameTextW
OpenIcon
PostThreadMessageA
MonitorFromRect
CreateWindowExA
MapVirtualKeyA
SendInput
TranslateAcceleratorA
GetTopWindow
DestroyWindow
InsertMenuItemW
IsCharUpperA
RemoveMenu
WaitMessage
WaitForInputIdle
SwitchToThisWindow
UnionRect
CreateCursor
RegisterWindowMessageA
RegisterClassExA
GetWindowTextLengthW
RedrawWindow
MapVirtualKeyW
CallWindowProcW
FindWindowW
HideCaret
ChildWindowFromPoint
LoadStringW
wsprintfA
ActivateKeyboardLayout
CheckDlgButton
GetWindowRect
DefWindowProcW
IsDlgButtonChecked
GetDlgItemTextA
DrawStateA
ShowOwnedPopups
CopyAcceleratorTableW
wvsprintfA
CreateDialogParamW
SetLastErrorEx
GetSysColor
GetClipCursor
CreateAcceleratorTableW
GetWindowLongW
SetMenuItemInfoW
DestroyAcceleratorTable
DrawIconEx
SetMenuDefaultItem
GetSystemMenu
GetDialogBaseUnits
CharLowerBuffW
GetShellWindow
RemovePropW
CharToOemW
PostMessageW
IntersectRect
ShowCaret
LookupIconIdFromDirectory
ShowWindow
GetWindowTextA
OemToCharBuffA
GetMessageExtraInfo
DialogBoxParamW
DefWindowProcA
wvsprintfW
DialogBoxIndirectParamA
GetClassNameW
LoadAcceleratorsW
DrawTextA
LoadImageW
InsertMenuA
SwapMouseButton
AppendMenuA
SetForegroundWindow
DestroyCaret
SetClassLongW
GetParent
EnumChildWindows
DestroyMenu
GetDlgItemInt
GetDlgItemTextW
MapWindowPoints
CallWindowProcA
SetParent

msvcrt

_controlfp
atol
fflush
vsprintf
wcscat
fgetc
towlower
strncmp
iswdigit
fseek
putchar
wcschr
strcpy
__set_app_type
time
__p__fmode
__p__commode
setvbuf
fgets
isupper
wcstok
localtime
rand
_amsg_exit
wcscspn
_initterm
wcsncpy
swscanf
swprintf
sscanf
wcstombs
_ismbblead
_XcptFilter
puts
tolower
printf
sprintf
_exit
putc
_cexit
__setusermatherr
bsearch
fwrite
qsort
strtok
system
__getmainargs
clock
perror
mktime
isxdigit
vswprintf
malloc
gets
wcstoul
strtol
strrchr
wcstol
fputs

kernel32

SetEndOfFile
SetHandleCount
GetSystemDirectoryA
GetModuleHandleA
GetComputerNameExA
GetUserDefaultUILanguage
LoadLibraryExA
GetUserDefaultLangID
SetPriorityClass
DeleteAtom
GetTimeFormatA
SetFileApisToOEM
lstrlenW
lstrcpyW
SetThreadPriority
GetModuleFileNameA
GetCommProperties
GetDateFormatW
SetUnhandledExceptionFilter
MultiByteToWideChar
lstrcpyA
GetCommandLineA
ClearCommBreak
GetThreadLocale
CreateEventW
GlobalFlags
TerminateThread
GlobalUnlock
GetStartupInfoW
DeleteFileA
LocalReAlloc
LocalFree
TlsFree
FindFirstFileA
FlushFileBuffers
CreateMutexA
ReadFile
HeapLock
GetCommandLineW
SetSystemTimeAdjustment
SetFilePointer
GetVersionExA
OpenEventW
SuspendThread
ReleaseSemaphore
GetFullPathNameW
CreateNamedPipeW
SizeofResource
GetStringTypeExW
GetSystemWindowsDirectoryW
CopyFileW
SearchPathA
MulDiv
FindResourceExW
GlobalSize
RegisterWaitForSingleObject
SetCommState
SetCurrentDirectoryA
LoadResource
VirtualFree
LocalLock
CreateMutexW
GetCommState
GetSystemWindowsDirectoryA
CancelIo
MoveFileExA
EnumResourceLanguagesA
IsDBCSLeadByte
LockResource
CallNamedPipeW
WaitForMultipleObjectsEx
FormatMessageA
SetThreadAffinityMask
GetVersion
lstrlenA

gdi32

ExtTextOutA
SetTextAlign
GetNearestPaletteIndex
WidenPath
CreateFontIndirectW
CreateBitmapIndirect
GetTextMetricsA
SaveDC
ScaleWindowExtEx
CreatePen
GetTextCharsetInfo
EndPath
ScaleViewportExtEx
OffsetRgn
RoundRect
GetWindowOrgEx
SetAbortProc
GetDIBColorTable
PolyBezier
CreateFontW
LPtoDP
Ellipse
EnumFontsW
SetMapMode
CreateHatchBrush
PatBlt
TranslateCharsetInfo
CreateRectRgnIndirect
CreatePolygonRgn
ExtTextOutW
GetObjectA
GetFontData
AddFontResourceW
SetWindowOrgEx
CreateRoundRectRgn
GetCharWidth32W
CreateFontA
DeleteDC
MoveToEx
CreatePatternBrush
GetStockObject
GetDIBits
CreateHalftonePalette
ResizePalette
SelectObject
GetPaletteEntries
CreateCompatibleBitmap
BeginPath
CombineRgn
CreateICW
GetBkMode
SetBkMode
TextOutA
GetSystemPaletteUse
GetTextAlign
RemoveFontResourceW
StartPage
SetROP2
ExcludeClipRect
GetSystemPaletteEntries
RectInRegion
PathToRegion
GetTextMetricsW
CreateSolidBrush
SetBkColor
CreateBitmap
GetMapMode
RealizePalette
CreateDIBitmap

Exports

Exports

?RemoveFolderPathExW@@IJJDPAM@X

Sections

.text
Size: 116KB - Virtual size: 116KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.dust
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tmp
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 58KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ins
Size: - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

81f64ffeb4b0417baea6ac2e6e4e46cc

Headers

File Characteristics

Imports

comdlg32

user32

msvcrt

kernel32

gdi32

Exports

Exports

Sections

.text Size: 116KB - Virtual size: 116KB

.dust Size: 512B - Virtual size: 28B

.tmp Size: 1KB - Virtual size: 1KB

.data Size: 58KB - Virtual size: 58KB

.ins Size: - Virtual size: 27KB

.text
Size: 116KB - Virtual size: 116KB

.dust
Size: 512B - Virtual size: 28B

.tmp
Size: 1KB - Virtual size: 1KB

.data
Size: 58KB - Virtual size: 58KB

.ins
Size: - Virtual size: 27KB