c117ec81e76df1f81356b526bec7383c_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

c117ec81e76df1f81356b526bec7383c_JaffaCakes118
Size

43KB
MD5

c117ec81e76df1f81356b526bec7383c
SHA1

ffe14afd7eedc06b42e91c6884a1f9364a8108e6
SHA256

a8027c2183b80146354023dbbf24857c7c27328e300a76b5de55c4ce68ba4621
SHA512

5f2fbc7788f22d1a36cbff91464a4b7a5e4e6ec06f9a2818b11aa2ba40f277b8b06357259461a271cd7e3db1acc16983cbcedf9527d29bc7c25aa645dcd963a2
SSDEEP

768:xFwd/luwk/zhyknN3p8OaxzxcfchG5aNFmJfVG2w+FdPv1BS:xF6/UwkrAkdxaBWfSGu0A2wsR7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c117ec81e76df1f81356b526bec7383c_JaffaCakes118

Files

c117ec81e76df1f81356b526bec7383c_JaffaCakes118
.exe windows:5 windows x86 arch:x86

a8a437f0dd86bdc139baad2c66c165f6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

U:\wXGOrvTGxaiBD\mlxwpzcskmbzsI\yauWouphwwnlni\hjMthlGMij\rmZrsdkurD.pdb

Imports

comctl32

ImageList_GetIconSize
ImageList_Write
ImageList_GetIcon
CreateStatusWindowW
DestroyPropertySheetPage
CreatePropertySheetPageA

kernel32

GetCurrentThread
LCMapStringA
TlsFree
EnumSystemLocalesA
LocalLock
WaitCommEvent
ExitThread
CompareStringW
LocalUnlock
GetComputerNameExA
GetCommandLineW
IsBadCodePtr
GetComputerNameA
CancelWaitableTimer
VerifyVersionInfoW
CreateWaitableTimerA
lstrcatA
GlobalFlags
GetModuleFileNameA
SetUnhandledExceptionFilter
GlobalAlloc
CreateMutexA
GetNumberFormatA
GetModuleHandleA
HeapValidate
VirtualQuery
SetThreadAffinityMask
RemoveDirectoryA
GetSystemTimeAsFileTime
GetExitCodeThread
ResetEvent
GetSystemDefaultLangID
ConvertDefaultLocale
GlobalCompact
TryEnterCriticalSection
CreateEventW
DeleteAtom
GlobalFree
LeaveCriticalSection
GetACP
CreateSemaphoreA
GetSystemWindowsDirectoryA
GlobalHandle
lstrcpyA
GetVersion
GetUserDefaultLangID
GetLocaleInfoA
SetThreadContext
GetTickCount
GetBinaryTypeA
lstrcpyW
CopyFileA
EnterCriticalSection

comdlg32

CommDlgExtendedError
ChooseFontW
PrintDlgW
ReplaceTextW
GetOpenFileNameW
GetSaveFileNameW

msvcrt

_controlfp
sscanf
setlocale
swscanf
fputc
fclose
towlower
strtol
time
__set_app_type
strerror
__p__fmode
wcspbrk
isalnum
printf
fwrite
isspace
localtime
strncmp
towupper
__p__commode
_amsg_exit
strcoll
_initterm
_ismbblead
fputs
strtoul
_XcptFilter
iswctype
tolower
isxdigit
_exit
mktime
wcscpy
strpbrk
wcsncmp
malloc
mbtowc
_cexit
__setusermatherr
gmtime
ftell
rand
strtok
fread
__getmainargs
wcstod

shlwapi

UrlGetPartA

user32

GetParent
AppendMenuW
GetKeyboardLayoutList
MapVirtualKeyA
MapVirtualKeyExW
GetNextDlgTabItem
SetWindowPos
DestroyIcon
SendNotifyMessageW
CreateMenu
HiliteMenuItem
CopyAcceleratorTableW
SendDlgItemMessageW
CharLowerBuffW
DialogBoxParamW
GetCursorPos
CallWindowProcW
wvsprintfA
GetSubMenu
GetSystemMetrics
MonitorFromRect
ClientToScreen
SetParent
IsRectEmpty
IsChild
CharUpperA
IsCharAlphaNumericW
UnloadKeyboardLayout
SetWindowTextA
GetForegroundWindow
PostMessageA
GetClipCursor
IsCharAlphaW
GetFocus
DialogBoxParamA
SetDlgItemTextW
ShowCursor
GetDoubleClickTime
GetActiveWindow
DefWindowProcW
DefFrameProcW
GetClientRect
ModifyMenuW
PostThreadMessageW
InSendMessage
ArrangeIconicWindows
FindWindowExW
CopyRect
SetForegroundWindow
SendDlgItemMessageA
CheckMenuItem
GetMenuItemInfoW
GetAsyncKeyState
CheckMenuRadioItem
SetScrollPos
GetDlgItemTextW
GetMessageA
EnumWindows
LoadMenuW
SetDlgItemInt
CreateAcceleratorTableW
GetWindowTextA
TabbedTextOutW
MessageBoxExA
AdjustWindowRectEx
SetFocus
CreateIconIndirect
InsertMenuW
TrackPopupMenu
SendMessageTimeoutW
InsertMenuA
RedrawWindow
GetLastActivePopup
SetTimer
DrawTextA
SetRectEmpty
GetClassInfoW
BeginPaint
IntersectRect
mouse_event
GetIconInfo
LoadImageA
WaitForInputIdle
ShowScrollBar
CharPrevW
MessageBoxA
DefDlgProcW
GetMenuItemCount
DrawEdge
DestroyWindow
GetDCEx
CharUpperBuffW
GetScrollRange
IsCharAlphaA
RegisterClassA
EnumThreadWindows
OpenInputDesktop
InSendMessageEx
CharPrevA
OpenDesktopW
TranslateAcceleratorA
WaitMessage
PostQuitMessage
FindWindowA
HideCaret
GetMenuItemID
ChangeMenuW
GetClassInfoA
LoadBitmapA
SystemParametersInfoA
GetClassNameW
GetMenuItemRect
keybd_event
SetCursor
GetDlgItemInt
AttachThreadInput
CharToOemA
wsprintfW
GetWindowTextLengthW

Exports

Exports

?RedirectOutputMsg@@YGKPBDDKPAX:O

Sections

.text
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.cexp
Size: 512B - Virtual size: 95B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.regs
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.citab
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.$dbug
Size: 512B - Virtual size: 125B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.lime
Size: 1024B - Virtual size: 529B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tdat
Size: 512B - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a8a437f0dd86bdc139baad2c66c165f6

Headers

File Characteristics

PDB Paths

Imports

comctl32

kernel32

comdlg32

msvcrt

shlwapi

user32

Exports

Exports

Sections

.text Size: 22KB - Virtual size: 21KB

.cexp Size: 512B - Virtual size: 95B

.regs Size: 1KB - Virtual size: 1KB

.citab Size: 6KB - Virtual size: 5KB

.data Size: 2KB - Virtual size: 1KB

.$dbug Size: 512B - Virtual size: 125B

.lime Size: 1024B - Virtual size: 529B

.tdat Size: 512B - Virtual size: 192B

.rsrc Size: 8KB - Virtual size: 7KB

.text
Size: 22KB - Virtual size: 21KB

.cexp
Size: 512B - Virtual size: 95B

.regs
Size: 1KB - Virtual size: 1KB

.citab
Size: 6KB - Virtual size: 5KB

.data
Size: 2KB - Virtual size: 1KB

.$dbug
Size: 512B - Virtual size: 125B

.lime
Size: 1024B - Virtual size: 529B

.tdat
Size: 512B - Virtual size: 192B

.rsrc
Size: 8KB - Virtual size: 7KB