eabb5d8ba0e63c0d1d715150320b3187_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

eabb5d8ba0e63c0d1d715150320b3187_JaffaCakes118
Size

148KB
MD5

eabb5d8ba0e63c0d1d715150320b3187
SHA1

6ad9a73f77ee0b0a22788591e1f9969b90eb764f
SHA256

b8280f1b9681ba12fd5e9559069e7a3d8b19e9b91d49b968a87e1506bdd92351
SHA512

f70e3f640c01a06b7e5eeb10d9f1bc7e4eef897beaf9968c87278f6884440f59d2b386bbf60c1236fdaf753a60502c8aedb4628fa98f7cf233312a04b4145fa2
SSDEEP

3072:aSno2RMb63rYx5/Ow6X8PZxJbSzsijNVU0Kdd9kM2fUtVBV:a0o2mcg6MhxJbSdNV2dd9kM26z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
eabb5d8ba0e63c0d1d715150320b3187_JaffaCakes118

Files

eabb5d8ba0e63c0d1d715150320b3187_JaffaCakes118
.exe windows:5 windows x86 arch:x86

ab1c3f1cf37e3bc86f64f8a0a13ceb4d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

I:\ItyprySgo\UdnaMdIlz\eSKckuQpxSwzd\zCtBKoqmyjcb.pdb

Imports

user32

InsertMenuA
EndPaint
CascadeWindows
GetWindowRect
TileWindows
SetDlgItemInt
SendDlgItemMessageA
BeginPaint
GetMessageW
MapVirtualKeyA
SetWindowRgn
CreatePopupMenu
GetMessageExtraInfo
RegisterClassW
ScrollWindow
GetSystemMenu
PeekMessageA
GetGUIThreadInfo
IsDialogMessageA
DispatchMessageW
GetDlgItemTextA
GetParent
ShowWindowAsync
GetDC
CreateWindowExA
CreateIconIndirect
MessageBoxExA
GetWindowLongW
EnableMenuItem
ScrollWindowEx
GetMenuItemInfoW
DestroyCursor
OemToCharBuffA
GetKeyNameTextW
InvalidateRgn
WaitMessage
FrameRect
SetActiveWindow
DialogBoxIndirectParamA
DrawStateW
LoadImageA
GetUserObjectInformationW
GetWindowModuleFileNameW
AttachThreadInput
GetDlgCtrlID
CharToOemW
DrawIcon
OpenIcon
ReplyMessage
GetKeyboardType
GetMessagePos
SendMessageA
DeleteMenu
GetMessageTime
ShowOwnedPopups
SwitchToThisWindow
EnableWindow
SetScrollPos
GetNextDlgTabItem
IsWindowUnicode
DefFrameProcW
DialogBoxParamA
SystemParametersInfoW
IsWindowVisible
DefDlgProcW
RedrawWindow
SetWindowPlacement
InternalGetWindowText
ScreenToClient
GetClipCursor
CharNextExA
GetMenuItemRect
GetFocus
GetMenuCheckMarkDimensions
PostThreadMessageW
GetWindowLongA
GetDlgItemInt
LockWindowUpdate
InflateRect
GetWindow
SetCaretPos
DefWindowProcA
LoadImageW
GetWindowTextLengthW
FillRect
GetLastActivePopup
GetClassInfoExW
MessageBoxExW
ExitWindowsEx
GetKeyState
WindowFromPoint
GetClassInfoW
ChangeMenuW
AdjustWindowRectEx
CopyRect
CharLowerA
ChildWindowFromPoint
OpenInputDesktop
ModifyMenuW
TranslateAcceleratorA
SetScrollRange
LoadIconW
MonitorFromRect
GetShellWindow
SetFocus
GetMenuItemID
DialogBoxIndirectParamW
TranslateAcceleratorW
GetMonitorInfoW
CreateAcceleratorTableW
CopyAcceleratorTableW
RegisterClassA
GetDCEx
GetAsyncKeyState
IsIconic
CreateDialogParamW
GetCaretBlinkTime
CallWindowProcW
CharLowerW
SystemParametersInfoA
MonitorFromPoint
GetSystemMetrics
CreateWindowExW
AdjustWindowRect
GetUpdateRgn

msvcrt

swscanf
gets
_controlfp
malloc
__set_app_type
__p__fmode
__p__commode
putchar
islower
wcspbrk
_amsg_exit
fseek
isprint
gmtime
floor
wcsrchr
exit
_initterm
clock
fprintf
_ismbblead
isdigit
towupper
puts
strtoul
mbstowcs
srand
_XcptFilter
vsprintf
fgetc
fclose
_exit
strcpy
strchr
qsort
fputc
atol
strrchr
fread
tolower
system
towlower
_cexit
__setusermatherr
memset
__getmainargs
wcstoul
wcscoll

shlwapi

StrToIntW

kernel32

SetLocalTime
UnlockFile
LCMapStringA
GetHandleInformation
SetMailslotInfo
LoadLibraryExW
TerminateThread
CreateRemoteThread
DeleteFileW
SetCommBreak
VirtualFree
lstrlenA
GetCurrentThreadId
GetStdHandle
GetOverlappedResult
WaitForMultipleObjectsEx
LoadLibraryExA
EnumSystemLocalesA
GetLocalTime
GetTimeZoneInformation
HeapFree
GetCommTimeouts
HeapAlloc
lstrcmpA
lstrcatA
HeapLock
GlobalCompact
SetErrorMode
SetCommMask
GetWindowsDirectoryA
LoadLibraryW
GetModuleFileNameA
GetThreadPriority
SetWaitableTimer
LocalFree
CreateEventW
SuspendThread
GlobalMemoryStatusEx
VirtualProtect
VerifyVersionInfoW
SetUnhandledExceptionFilter
SetFileApisToOEM
WaitForSingleObject
ReleaseMutex
GetStringTypeExW
SetHandleInformation
GetCommandLineW
GetUserDefaultLangID
GlobalLock
MoveFileA
QueryDosDeviceW
GetFileTime
CreateSemaphoreA
CreateNamedPipeW
GetComputerNameExA
EnumResourceTypesA
SetThreadPriority
GetProcessHeap

Exports

Exports

?GenericOutputInfoYSUh@@YGK_KHE[D

Sections

.text
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 145KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 115KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ab1c3f1cf37e3bc86f64f8a0a13ceb4d

Headers

File Characteristics

PDB Paths

Imports

user32

msvcrt

shlwapi

kernel32

Exports

Exports

Sections

.text Size: 9KB - Virtual size: 8KB

.data Size: 21KB - Virtual size: 145KB

.rsrc Size: 115KB - Virtual size: 114KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 9KB - Virtual size: 8KB

.data
Size: 21KB - Virtual size: 145KB

.rsrc
Size: 115KB - Virtual size: 114KB

.reloc
Size: 2KB - Virtual size: 1KB