d58cb2e1215cfaf5bea37247f4c804ea_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

d58cb2e1215cfaf5bea37247f4c804ea_JaffaCakes118
Size

184KB
MD5

d58cb2e1215cfaf5bea37247f4c804ea
SHA1

555037f1c933d52ee3540ca51aadf996d2b52d64
SHA256

7f180ed41f9dce56756bc999ae26d2ebdf9e4095f97455207daf22ba53a54bca
SHA512

a879ad535d9e7f40f4ca4028698ac901e77baab7534ec435c774d528afecabf8e3f89a64a134519ad44742ce7a948d9bb33168fa6a6f69511e2f90ad799d7404
SSDEEP

3072:XBeLYf1Tat3w5kJ7iBvaUsr2ZBQ8d5/7IGRV+ZtQAAcfJ:XBebt3w+JulS2cuZNRV+ZtAcf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d58cb2e1215cfaf5bea37247f4c804ea_JaffaCakes118

Files

d58cb2e1215cfaf5bea37247f4c804ea_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d5d1bb5ee4c38d04aedeaec03fed640a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

ole32

CoRegisterClassObject
CoUnmarshalInterface
CoTaskMemFree
ReleaseStgMedium
CoCreateGuid
CoRevokeClassObject
StringFromIID
CoCreateFreeThreadedMarshaler
CoUninitialize
MkParseDisplayName

comctl32

ImageList_DragShowNolock
ImageList_Draw
ImageList_Create
ImageList_Add
ImageList_Destroy
ImageList_Remove
ImageList_DrawEx
ImageList_Read
ImageList_GetBkColor
ImageList_Write

user32

MessageBoxA
IntersectRect
EnumChildWindows
EnableScrollBar
CharNextW
UnhookWindowsHookEx
RemoveMenu
UnregisterClassA
IsIconic
IsWindow
DestroyWindow
EndPaint
DrawEdge
ShowWindow
RegisterClassA
SetScrollInfo
CharNextA
GetMenuItemInfoA
GetCapture
GetWindowDC
SetWindowsHookExA
GetWindowLongA
SetMenu
GetClassLongA
UpdateWindow
GetParent
DeleteMenu
SetActiveWindow
DrawMenuBar
IsRectEmpty
CreateWindowExA
ScrollWindow
ReleaseCapture
LoadBitmapA
CreatePopupMenu
SetWindowLongA
GetClassNameA
GetSystemMetrics
DefMDIChildProcA
IsWindowUnicode
ChildWindowFromPoint
DestroyIcon
ActivateKeyboardLayout
GetPropA
InsertMenuA
GetDC
MoveWindow
InsertMenuItemA
SetWindowPos
RemovePropA
AdjustWindowRectEx
ShowScrollBar
InflateRect
SetClipboardData
IsChild
GetIconInfo
BeginPaint
SendMessageA
RedrawWindow
GetScrollPos
GetSysColor
EnableMenuItem
DefFrameProcA
CharLowerBuffA
SystemParametersInfoA
ClientToScreen
GetWindow
FindWindowA
CreateIcon
GetKeyboardLayoutList
CharLowerA
OpenClipboard
IsWindowVisible
SetScrollPos
PtInRect
FillRect
ScreenToClient
MapWindowPoints
GetWindowLongW
DispatchMessageA
KillTimer
IsZoomed
MessageBeep
GetLastActivePopup
GetMenuStringA
SetCursor
WindowFromPoint
IsCharLowerA
DestroyMenu
GetWindowTextLengthA
GetKeyboardLayoutNameA
GetKeyNameTextA
DrawIcon
DrawAnimatedRects
GetDlgItem
IsDialogMessageA
SetParent
SetWindowPlacement
LoadCursorA
GetMenuItemCount
MsgWaitForMultipleObjects
CallNextHookEx
GetWindowTextA
PostMessageA
LoadStringA
DefWindowProcA
GetSubMenu
PeekMessageW
GetScrollInfo
InvalidateRect
PeekMessageA
GetClipboardData
PostQuitMessage
GetActiveWindow
CallWindowProcA
GetCursor
CreateMenu
LoadKeyboardLayoutA
GetMenuState
GetMenuItemID
SetWindowLongW
EnumWindows
GetForegroundWindow
SetCapture
GetTopWindow
GetKeyState
GetScrollRange
RegisterClipboardFormatA
TrackPopupMenu
SetWindowTextA
SetRect
GetKeyboardLayout
IsDialogMessageW
GetSysColorBrush
OemToCharA
GetFocus
SetClassLongA
EqualRect
DrawIconEx
GetCursorPos
WaitMessage
CharUpperA
SendMessageW
GetKeyboardState
GetKeyboardType
GetMenu
CloseClipboard
GetSystemMenu
SetFocus
RegisterWindowMessageA
EmptyClipboard

shlwapi

SHGetValueA
PathIsDirectoryA

gdi32

CreateBrushIndirect
SelectObject
GetTextAlign
GetBkColor
BitBlt
CreateFontIndirectA
SaveDC

kernel32

lstrcpyA
WriteFile
CreateFileA
GetUserDefaultLCID
lstrlenA
GetFileAttributesA
SetThreadLocale
lstrcpynA
GetModuleHandleA
GetCurrentThread
GetDateFormatA
VirtualAlloc
GetStartupInfoA
FreeLibrary
GetCurrentThreadId
WaitForSingleObject
MoveFileA
FormatMessageA
LoadResource
GetSystemDefaultLangID
GetLocaleInfoA
MoveFileExA
GetProcAddress
VirtualFree
InitializeCriticalSection
GetCommandLineW
LoadLibraryA
SetErrorMode
GetModuleHandleW
VirtualAllocEx
DeleteCriticalSection
LockResource

Exports

Exports

_IkDWDt
_o7qgUDdH

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 145KB - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 512B - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 20KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d5d1bb5ee4c38d04aedeaec03fed640a

Headers

File Characteristics

Imports

ole32

comctl32

user32

shlwapi

gdi32

kernel32

Exports

Exports

Sections

.text Size: 8KB - Virtual size: 8KB

.data Size: 145KB - Virtual size: 148KB

.bss Size: 512B - Virtual size: 100KB

.idata Size: 7KB - Virtual size: 8KB

.tls Size: 512B - Virtual size: 4KB

.rdata Size: 512B - Virtual size: 4KB

.edata Size: 512B - Virtual size: 4KB

.rsrc Size: 20KB - Virtual size: 24KB

.text
Size: 8KB - Virtual size: 8KB

.data
Size: 145KB - Virtual size: 148KB

.bss
Size: 512B - Virtual size: 100KB

.idata
Size: 7KB - Virtual size: 8KB

.tls
Size: 512B - Virtual size: 4KB

.rdata
Size: 512B - Virtual size: 4KB

.edata
Size: 512B - Virtual size: 4KB

.rsrc
Size: 20KB - Virtual size: 24KB