f0a12c4866ac1edf4895b8dacf0a6ea7_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f0a12c4866ac1edf4895b8dacf0a6ea7_JaffaCakes118
Size

148KB
MD5

f0a12c4866ac1edf4895b8dacf0a6ea7
SHA1

42e9c559a44da6cd6a3ff70cf2d52b9057744997
SHA256

ab56af4986ca56b6be5ac7e9f436e9fd351dd3d7f64d429f1bd8aa838f96176c
SHA512

1b8fdf3faee70a8086ab63a6fcfce05838d54e0b6869496e3536bbed5f8417d9cd01a415ed99d740412cffacd3ec87063364080d3e4bd1ce8176ca2b3df18e91
SSDEEP

3072:b45/s3RROEYlqo3N/Z1bGf2RMbO1Fr3NbbX0Y3KZrp5Cw+KTUC:tRAELohqf2mbGLbEY3KZy5n

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f0a12c4866ac1edf4895b8dacf0a6ea7_JaffaCakes118

Files

f0a12c4866ac1edf4895b8dacf0a6ea7_JaffaCakes118
.exe windows:5 windows x86 arch:x86

8fd72e51fb9c90314eb91804886a7df9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

J:\ldwjhmprNDj\lSebcPr\hJoAcHzv.pdb

Imports

user32

SetCursor
GetClientRect
GetMenuStringW
DialogBoxParamW
IsCharAlphaNumericW
CharUpperBuffA
LoadCursorA
ModifyMenuW
wvsprintfW
BeginPaint
IsWindowVisible
CharPrevW
WaitForInputIdle
SetWindowLongA
EnableMenuItem
CharUpperA
DrawStateW
IsIconic
GetWindowModuleFileNameW
OemToCharA
GetMessageTime
GetWindowPlacement
GetSystemMetrics
GetTopWindow
InsertMenuA
GetKeyboardLayoutList
InvalidateRgn
keybd_event
OpenDesktopW
ArrangeIconicWindows
DrawFrameControl
SetForegroundWindow
GetFocus
ToUnicodeEx
CheckMenuRadioItem
ScrollWindowEx
GetUserObjectInformationW
CreatePopupMenu
InSendMessageEx
GetAsyncKeyState
UnionRect
InsertMenuW
ShowCaret
VkKeyScanW
wsprintfA
SetWindowTextA
PostMessageW
EnableWindow
CreateDialogParamA
CreateWindowExA
RegisterClassExA
wvsprintfA
InvalidateRect
ReplyMessage
InSendMessage
GetGUIThreadInfo
LoadMenuW
GetIconInfo
DrawIcon
MessageBoxA
PostThreadMessageW
UpdateWindow
SendMessageW
SetPropW
BeginDeferWindowPos
OpenInputDesktop
LoadImageA
SetCaretPos
LoadAcceleratorsA
DispatchMessageA
SetRect
RegisterClassExW
GetClassLongW
ShowWindowAsync
ChangeMenuW
LookupIconIdFromDirectory
ShowCursor
CopyAcceleratorTableW
AttachThreadInput
SetActiveWindow
DefFrameProcW
RemoveMenu
IsCharLowerA
ValidateRect
IsCharUpperA
GetSystemMenu
GetClassInfoW
SendMessageA
LoadStringA
TranslateAcceleratorW
IsRectEmpty
CheckDlgButton
GetCaretBlinkTime
CharLowerBuffW
GetMenuItemID
ShowWindow
OemToCharBuffA
DialogBoxIndirectParamA
GetDoubleClickTime
CopyImage
CreateDialogParamW
DrawEdge
CloseDesktop
SendMessageTimeoutA
LoadCursorW
IsDlgButtonChecked
AdjustWindowRectEx
SetScrollPos
CharToOemBuffA
IntersectRect
FindWindowExW
CheckMenuItem
CharUpperBuffW
RemovePropW
CopyRect
EqualRect
DestroyWindow
mouse_event
DestroyCaret
GetDlgItemInt
CharUpperW
SendDlgItemMessageW
GetWindowDC
CreateIconFromResource
CascadeWindows
RegisterHotKey

kernel32

IsBadReadPtr
SetMailslotInfo
FindResourceExA
AddAtomA
EnumSystemLocalesA
AreFileApisANSI
CreateEventA
IsBadWritePtr
HeapCreate
FoldStringW
GetThreadLocale
GetCommandLineW
GetFileAttributesA
QueryDosDeviceW
CreateMailslotW
GetFileTime
DeleteFileW
IsValidLanguageGroup
GlobalFree
GetSystemWindowsDirectoryA
SetFileAttributesW
ResetEvent
GetTempPathW
CancelWaitableTimer
HeapFree
GetCurrentThreadId
CreateThread
CreateSemaphoreA
GetFileSize
LocalFree
GetProcessHeap
GetTempFileNameA
GetSystemDefaultLangID
LoadLibraryW
SetFileAttributesA
EnumResourceTypesA
EnumResourceNamesW
GetUserDefaultLangID
GetVersionExA
lstrcatA
GetModuleHandleA
CopyFileW
VirtualAlloc
LoadLibraryA
GetCompressedFileSizeW
LoadLibraryExW
CreateFileA
GlobalAddAtomW
CancelIo
CreateFileMappingA
SearchPathA
SetPriorityClass
GetLocalTime
lstrlenW
LCMapStringA
SetCommBreak
HeapAlloc

msvcrt

_controlfp
__set_app_type
__p__fmode
isprint
__p__commode
_amsg_exit
strcpy
_initterm
wcstok
puts
iswspace
strrchr
_ismbblead
wcstoul
strtok
wcsncmp
fprintf
clock
towupper
swprintf
_XcptFilter
ungetc
wcscmp
strpbrk
getc
fgets
_exit
sscanf
wcstod
isdigit
mbstowcs
swscanf
_cexit
memset
atol
calloc
wcsncpy
printf
strchr
getenv
tolower
iswprint
putchar
toupper
__setusermatherr
__getmainargs
strncpy
rand

shlwapi

StrToIntW

Exports

Exports

?GenericOutputInfoYSUh@@YGK_KHE[D

Sections

.text
Size: 67KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 63KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8fd72e51fb9c90314eb91804886a7df9

Headers

File Characteristics

PDB Paths

Imports

user32

kernel32

msvcrt

shlwapi

Exports

Exports

Sections

.text Size: 67KB - Virtual size: 66KB

.data Size: 15KB - Virtual size: 80KB

.rsrc Size: 63KB - Virtual size: 62KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 67KB - Virtual size: 66KB

.data
Size: 15KB - Virtual size: 80KB

.rsrc
Size: 63KB - Virtual size: 62KB

.reloc
Size: 2KB - Virtual size: 1KB