daa2d236771da57ccfc34387303d350c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

daa2d236771da57ccfc34387303d350c_JaffaCakes118
Size

108KB
MD5

daa2d236771da57ccfc34387303d350c
SHA1

ebf8b704dbac1dbaa296f786e194bf59d467bdb1
SHA256

ccae7be3362ff3ecc7a5c577f79b885392ae959837b505ae516d0b3a4735a27d
SHA512

da2c938973206c1c4e2edef428cef592804d6a39d3a6165f108833f52f3b84126fda20f82100f5a3fde501cc2479098ae6e3976eda44369ee5595b0a4fbea0b3
SSDEEP

1536:5qhF4OosjWo2oj+twrh/82oAUThspMOMXbR7T4s7uxhCM0jlevTQlFFsOs00aoGY:chtxWo2oCty/STOAPIP0YEljsJ6rq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
daa2d236771da57ccfc34387303d350c_JaffaCakes118

Files

daa2d236771da57ccfc34387303d350c_JaffaCakes118
.exe windows:5 windows x86 arch:x86

d9e161439df736947c615c89dea1e487

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

O:\oCAmzfezjisr\mzcjKkvhV\azEvklEvBnLm.pdb

Imports

user32

GetAsyncKeyState
GetWindowTextLengthW
GrayStringW
IsCharAlphaA
GetSysColor
ArrangeIconicWindows
DestroyWindow
InsertMenuItemW
CreateWindowExW
GetKeyboardLayout
GetCaretPos
DialogBoxIndirectParamA
LockWindowUpdate
PeekMessageA
CharUpperBuffW
IsChild
SetMenu
GetMessagePos
TabbedTextOutW
GetForegroundWindow
ReplyMessage
OpenDesktopW
ChildWindowFromPointEx
InvertRect
CreatePopupMenu
CheckMenuRadioItem
GetClientRect
TranslateMessage
CharNextA
MonitorFromRect
SetWindowTextW
EnableScrollBar
LoadAcceleratorsW
DrawStateA
SendDlgItemMessageW
IsCharUpperA
IsDialogMessageW
SetWindowLongA
GetDCEx
CreateIconIndirect
DefFrameProcA
GetIconInfo
WaitForInputIdle
LoadIconA
AppendMenuW
wvsprintfW
RemovePropW
DeleteMenu
GetDlgItem
GetWindowPlacement
LoadStringA
GetMenuItemInfoW
CreateDialogIndirectParamW
SetMenuDefaultItem
DrawAnimatedRects
SetSysColors
SetScrollRange
SwitchToThisWindow
GetKeyNameTextW
CharToOemBuffA
TranslateAcceleratorW
AllowSetForegroundWindow
BeginPaint
PostQuitMessage
EqualRect
TileWindows
MessageBoxW
EndDialog
TrackPopupMenu
GetDlgItemTextA
FindWindowA
GetParent
SetForegroundWindow
LoadBitmapW
SetMenuItemInfoW
GetScrollInfo
DefDlgProcW
GetClassInfoA
EnumThreadWindows
CascadeWindows
ClipCursor
GetMessageExtraInfo
EnableWindow
IsRectEmpty
UpdateWindow
CharToOemW
GetDoubleClickTime
FindWindowW
LoadBitmapA
CreateDialogParamA
GetMenu
IsZoomed
GetNextDlgTabItem
DrawFrameControl
GetWindowTextA
MapVirtualKeyA
DrawMenuBar
CreateWindowExA
LoadIconW
GetClassInfoExW
MonitorFromPoint
EndPaint
FindWindowExW
SetScrollPos
ModifyMenuW
GetUserObjectInformationW
BringWindowToTop
GetKeyState
GetKeyboardLayoutList
GetMessageW
wsprintfW
LoadMenuA
CreateMenu
GetDialogBaseUnits
SendMessageTimeoutA
OpenIcon
ScrollWindowEx
GetSysColorBrush
CloseDesktop

comdlg32

PageSetupDlgW
GetOpenFileNameA
ReplaceTextW
GetSaveFileNameA
GetSaveFileNameW
ChooseColorW

comctl32

CreatePropertySheetPageA
ImageList_Write
ImageList_Read
ImageList_Remove
PropertySheetW
ImageList_Draw

msvcrt

malloc
strncmp
wcstol
_controlfp
__set_app_type
vswprintf
wcsstr
wcscoll
localtime
clock
__p__fmode
fputs
__p__commode
_amsg_exit
isprint
strtoul
isxdigit
wcslen
_initterm
fputc
wcstod
iswctype
realloc
tolower
wcstok
setvbuf
floor
printf
fseek
wcsncmp
swscanf
wcsrchr
wcstombs
setlocale
isdigit
strcspn
_ismbblead
_XcptFilter
iswprint
_exit
strtol
_cexit
fclose
__setusermatherr
atol
wcspbrk
__getmainargs

kernel32

GetCommProperties
CallNamedPipeW
DeleteFileW
ClearCommError
SetMailslotInfo
RegisterWaitForSingleObject
FreeLibrary
SetThreadAffinityMask
GetBinaryTypeW
Sleep
GetStartupInfoA
LoadLibraryA
lstrcatW
lstrcmpiA
GetCompressedFileSizeW
LoadResource
GetBinaryTypeA
FindNextFileA
FindResourceW
GetTimeFormatA
DefineDosDeviceW
OpenEventW
CompareFileTime
GlobalReAlloc
GetModuleHandleA
SetCommState
SetPriorityClass
lstrcatA
SetHandleCount
GetVersion
ConnectNamedPipe
HeapSize
VirtualAlloc
GetSystemTimeAsFileTime
GlobalLock
WinExec
IsDBCSLeadByte
lstrcpynA
lstrlenA
GlobalGetAtomNameW
GlobalFree
GetSystemDefaultLangID
UnhandledExceptionFilter
GetThreadTimes
ConvertDefaultLocale
GetCommModemStatus
GetCommConfig
GetComputerNameW
EnumResourceNamesA
GlobalMemoryStatusEx
GetCurrentThreadId
IsValidLanguageGroup

Exports

Exports

?ExtractOptions@@YGK_KHE[D

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 134B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.div
Size: 512B - Virtual size: 128B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 323KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 77KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d9e161439df736947c615c89dea1e487

Headers

File Characteristics

PDB Paths

Imports

user32

comdlg32

comctl32

msvcrt

kernel32

Exports

Exports

Sections

.text Size: 20KB - Virtual size: 19KB

.idata Size: 6KB - Virtual size: 5KB

.edata Size: 512B - Virtual size: 134B

.div Size: 512B - Virtual size: 128B

.data Size: 2KB - Virtual size: 323KB

.rsrc Size: 77KB - Virtual size: 77KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 20KB - Virtual size: 19KB

.idata
Size: 6KB - Virtual size: 5KB

.edata
Size: 512B - Virtual size: 134B

.div
Size: 512B - Virtual size: 128B

.data
Size: 2KB - Virtual size: 323KB

.rsrc
Size: 77KB - Virtual size: 77KB

.reloc
Size: 1KB - Virtual size: 1KB