b19452d31c57a6727f20d99ef6bdd09a_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b19452d31c57a6727f20d99ef6bdd09a_JaffaCakes118
Size

213KB
MD5

b19452d31c57a6727f20d99ef6bdd09a
SHA1

8910d9e973ddbe72860e5ceae1ec1e6ead19ba2d
SHA256

7b69772b1d971bac72615e0306b293f465997397c34ac4b1a28742ec2a7ba352
SHA512

81004d44d38f94c30294e38ebd56cf91597472a3f775c02d761b8d9c1569344e1d5a57baa87428d8108956366dd50598fdd6cfcfeb72c52eb1fbc0f5607aa2e1
SSDEEP

3072:r00RNNep5XYttuDYw/N1n+bGwN+CIplATq7eSrGYo9C0jbraZNTL:r0AreLottK/N1nMGXpz7iYNg0Nn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b19452d31c57a6727f20d99ef6bdd09a_JaffaCakes118

Files

b19452d31c57a6727f20d99ef6bdd09a_JaffaCakes118
.exe windows:5 windows x86 arch:x86

bd462b6f0167f5e2a2326be9eceda6b9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetCaretPos
DrawAnimatedRects
GetMonitorInfoW
GetSysColorBrush
SetTimer
RemoveMenu
FindWindowExA
DestroyCaret
IsDialogMessageW
BeginDeferWindowPos
GetAsyncKeyState
HiliteMenuItem
GetDCEx
CreateDialogParamW
IsMenu
UnionRect
DialogBoxParamA
GetWindowLongA
CharNextExA
MapVirtualKeyA
InsertMenuW
LoadMenuA
InvalidateRect
DrawTextA
PostThreadMessageA
RegisterWindowMessageA
PeekMessageW
GetScrollInfo
DrawStateA
SystemParametersInfoW
VkKeyScanW
GetWindowDC
DispatchMessageW
AppendMenuA
GetShellWindow
CopyAcceleratorTableW
GetClientRect
CreateDialogParamA
ScrollWindow
ChildWindowFromPointEx
IsDlgButtonChecked
CreateWindowExW
GetClassInfoExW
EnableWindow
MoveWindow
GetMessageA
ChangeMenuW
IsWindowVisible
LoadAcceleratorsW
GetCursorPos
ReplyMessage
WaitForInputIdle
GetWindow
DestroyAcceleratorTable
AttachThreadInput
CharToOemW
LoadAcceleratorsA
SendDlgItemMessageA
ModifyMenuW
CallWindowProcA
InvertRect
GetWindowPlacement
InvalidateRgn
InSendMessage
ScrollWindowEx
GetDesktopWindow
GetWindowRect
CascadeWindows
CallWindowProcW
GetWindowLongW
RegisterClassExW
MonitorFromPoint
DefWindowProcW
MapVirtualKeyW
GetParent
CharUpperBuffW
EnableScrollBar
CreateDialogIndirectParamW
SendMessageTimeoutA
CharToOemBuffA
SendMessageTimeoutW
OpenInputDesktop
CreatePopupMenu
UpdateWindow
LoadImageA
ClientToScreen
GetClassLongA
RegisterClassW
GetDlgItemInt
CreateWindowExA
GetActiveWindow
InSendMessageEx
IsChild
DeferWindowPos
CharNextA
LoadImageW
SetWindowTextW
SendInput
CharLowerA
IsCharAlphaW
FindWindowA
LoadMenuW
ShowCursor
DefFrameProcW
CharPrevW
CharLowerW
GetCaretPos
LookupIconIdFromDirectory
IsRectEmpty
SetWindowTextA
CharUpperW
SetRectEmpty
DialogBoxIndirectParamA

msvcrt

wcscat
ftell
vswprintf
wcscpy
mbtowc
iswprint
_controlfp
isprint
strcspn
wcsrchr
__set_app_type
wcstol
__p__fmode
strstr
__p__commode
getenv
iswxdigit
_amsg_exit
iswctype
mbstowcs
strncmp
wcscoll
_initterm
tolower
wcscspn
towupper
printf
strcpy
_ismbblead
wcspbrk
realloc
sprintf
_XcptFilter
_exit
qsort
swscanf
wcstod
free
_cexit
wcscmp
__setusermatherr
strtoul
__getmainargs
gmtime

kernel32

GetTempFileNameW
GetVersionExA
GetFullPathNameW
GetUserDefaultLangID
TryEnterCriticalSection
LCMapStringA
HeapReAlloc
lstrcmpiA
GetCurrentProcessId
FoldStringW
TlsGetValue
GetFileAttributesExW
IsValidLanguageGroup
LoadResource
IsBadReadPtr
FlushViewOfFile
CreateFileA
GetModuleHandleW
GetSystemTimeAdjustment
AddConsoleAliasA
SetThreadPriority
PulseEvent
GetCurrentThread
SystemTimeToFileTime
CreateMutexW
LocalUnlock
CreateSemaphoreA
lstrcmpW
FindCloseChangeNotification
LockFile
GetSystemDirectoryW
FileTimeToSystemTime
SetCommBreak
lstrcpynW
ReleaseSemaphore
FreeLibrary
GetDateFormatW
GetTempPathW
GetThreadLocale
VerSetConditionMask
AddAtomA
LoadLibraryW
SetCommMask
ClearCommError
GetUserDefaultLCID
LocalAlloc
VirtualProtect
GetSystemInfo
WideCharToMultiByte
SetLastError
DeleteFileW
RegisterWaitForSingleObject
LocalLock
LoadLibraryA

gdi32

SetViewportOrgEx
RectInRegion
CreateFontIndirectA
DeleteDC
TextOutA
GetObjectW
CreateFontA
SetPixel
DeleteObject
GetPixel
SetDIBitsToDevice
GetFontData
SetBrushOrgEx
SelectClipRgn
ModifyWorldTransform
RoundRect
Polyline
RealizePalette
SetBitmapDimensionEx
EnumFontFamiliesW
CreateICW
SelectObject
TextOutW
GetStockObject
SetMapMode
DPtoLP
GetTextExtentPoint32A
EndDoc
SetDIBColorTable
CreateRoundRectRgn
ExtFloodFill
LineDDA
AddFontResourceW
IntersectClipRect
SetWindowExtEx
GetObjectA
StartDocW
ExtTextOutA
UnrealizeObject
Escape
TranslateCharsetInfo
GetCharWidth32W
CreateDIBSection
GetTextMetricsA
SetBkMode
GetPaletteEntries
FillRgn
PatBlt

Exports

Exports

?ValidateProcess@@YGHH<V

Sections

.text
Size: 88KB - Virtual size: 87KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 121KB - Virtual size: 178KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bd462b6f0167f5e2a2326be9eceda6b9

Headers

File Characteristics

Imports

user32

msvcrt

kernel32

gdi32

Exports

Exports

Sections

.text Size: 88KB - Virtual size: 87KB

.data Size: 121KB - Virtual size: 178KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 88KB - Virtual size: 87KB

.data
Size: 121KB - Virtual size: 178KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 2KB - Virtual size: 1KB