ab8fe892b0f901b1e717a88e05d7030b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

ab8fe892b0f901b1e717a88e05d7030b_JaffaCakes118
Size

259KB
MD5

ab8fe892b0f901b1e717a88e05d7030b
SHA1

47acd78d1abf57282ff94bf2d80ebce16331355e
SHA256

65f2d48702458cf4d916bd59f9fef622e4ad123c8337497568063a2d69e31912
SHA512

75785379f3580b5d2e0f70b5f75f146ee2e272464fe5df8397264cdfe78482e3ed7cc067717216ba196408651f45a37ccc76088b15d2bd3794c52e97477fa585
SSDEEP

6144:IfCxJpgOShVrEffq88OlmBsZ2N1vEhJK:IfCBg1hVr+fF5QBsAT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ab8fe892b0f901b1e717a88e05d7030b_JaffaCakes118

Files

ab8fe892b0f901b1e717a88e05d7030b_JaffaCakes118
.exe windows:5 windows x86 arch:x86

904bfd6f460289cffacd924688284da1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DefWindowProcA
UpdateWindow
MessageBoxExW
InvalidateRect
IsWindow
HideCaret
ScrollWindowEx
IsZoomed
LoadCursorW
SetScrollRange
CopyImage
LoadStringW
OpenDesktopW
CreateDialogParamW
GetDC
CheckDlgButton
MessageBoxExA
ScreenToClient
AppendMenuA
GetMenuCheckMarkDimensions
FindWindowW
DrawFocusRect
WaitForInputIdle
CharUpperA
GetDoubleClickTime
ShowCursor
CharUpperW
AllowSetForegroundWindow
OffsetRect
GetFocus
DefDlgProcW
GetDlgCtrlID
BeginPaint
GetClassInfoExA
GetWindowLongW
OemToCharA

gdi32

CreateFontIndirectA
EnumFontFamiliesExW
GetNearestPaletteIndex
GetRgnBox
WidenPath
RectVisible
ScaleWindowExtEx
SetLayout
EnumFontFamiliesW
CreateDiscardableBitmap
GetTextMetricsA
SetBkMode
OffsetViewportOrgEx
CreatePalette
BitBlt
GetCurrentPositionEx
SelectPalette
SelectClipRgn

comdlg32

GetOpenFileNameA
ChooseFontW
FindTextW
CommDlgExtendedError
ChooseColorW

ntdll

memset

kernel32

GetDateFormatW
IsDBCSLeadByte
lstrcatW
GetThreadContext
EnterCriticalSection
GetVersionExA
SuspendThread
CallNamedPipeW
IsBadWritePtr
CreateThread
SetLastError
LCMapStringA
FindResourceExW
SetCommState
FindFirstChangeNotificationW
FormatMessageA
lstrcpynA
PulseEvent

Exports

Exports

?JHFjhkfjlKLUJFiufiOUuifHLFJHlffgdgf@@YGKEPA_WG@Z

Sections

.text
Size: 163KB - Virtual size: 162KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.nfodat
Size: 512B - Virtual size: 360B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.point
Size: 512B - Virtual size: 484B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.temp
Size: 1024B - Virtual size: 752B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.port
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 52KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

904bfd6f460289cffacd924688284da1

Headers

File Characteristics

Imports

user32

gdi32

comdlg32

ntdll

kernel32

Exports

Exports

Sections

.text Size: 163KB - Virtual size: 162KB

.nfodat Size: 512B - Virtual size: 360B

.point Size: 512B - Virtual size: 484B

.data Size: 1KB - Virtual size: 1KB

.rdata Size: 14KB - Virtual size: 14KB

.temp Size: 1024B - Virtual size: 752B

.port Size: 22KB - Virtual size: 22KB

.rsrc Size: 52KB - Virtual size: 56KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 163KB - Virtual size: 162KB

.nfodat
Size: 512B - Virtual size: 360B

.point
Size: 512B - Virtual size: 484B

.data
Size: 1KB - Virtual size: 1KB

.rdata
Size: 14KB - Virtual size: 14KB

.temp
Size: 1024B - Virtual size: 752B

.port
Size: 22KB - Virtual size: 22KB

.rsrc
Size: 52KB - Virtual size: 56KB

.reloc
Size: 2KB - Virtual size: 1KB