fa5887a6be545710199f71f64bd4ef3e_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

fa5887a6be545710199f71f64bd4ef3e_JaffaCakes118
Size

206KB
MD5

fa5887a6be545710199f71f64bd4ef3e
SHA1

bb184ab8cd6361b2d000499870056eb8810a9208
SHA256

702e9a08e271e6d1b57e2a135a5e3bfdc8241ef1a19901e70d90523db78eae33
SHA512

2998af871df5f9301a2fa7c79be3b22abed7f0a81b78a5660a85464e6962aeb40058faa90d47cadb06b2d5cb5f1d4caf9a7c2d0e90429107dd5525536e45aa01
SSDEEP

3072:G2FGDHNQILdeh2NjLsGkraC5kHd53yJhdErCLHCnQ137SnvY96Jv2Kj:G28DHNQ2ehosLaHdcEaFWvIW2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fa5887a6be545710199f71f64bd4ef3e_JaffaCakes118

Files

fa5887a6be545710199f71f64bd4ef3e_JaffaCakes118
.exe windows:5 windows x86 arch:x86

6adc48a3c8906a24a182b661a583b30d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetRectEmpty
CallWindowProcA
DestroyCursor
GetAsyncKeyState
SwitchToThisWindow
ShowWindow
UnionRect
IsCharAlphaW
IsWindowEnabled
DialogBoxIndirectParamA
DispatchMessageW
FindWindowA
CreateDialogParamW
GetMessageExtraInfo
GetWindowRect
GetCaretPos
CallWindowProcW
CharPrevW
IsZoomed
wvsprintfA
DispatchMessageA
MoveWindow
GetMenuItemRect
TrackPopupMenuEx
RegisterWindowMessageW
DrawStateA
InvalidateRect
SendMessageTimeoutA
SetPropW
RemoveMenu
LoadAcceleratorsW
ScrollWindow
GetWindowLongA
EnableWindow
MonitorFromPoint
ChildWindowFromPointEx
ModifyMenuW
LoadImageA
CascadeWindows
GetActiveWindow
LookupIconIdFromDirectory
CharToOemBuffA
PeekMessageW
ShowCursor
GetSystemMetrics
GetDlgItemInt
SendDlgItemMessageA
BeginPaint
GetClassInfoExW
DestroyAcceleratorTable
GetWindowPlacement
DestroyCaret
CreateDialogParamA
SendInput
LoadImageW
AttachThreadInput
LoadStringW
GetWindow
GetForegroundWindow
ScrollWindowEx
DeferWindowPos
DefWindowProcW
RemovePropW
CheckMenuItem
AppendMenuA
GetWindowLongW
GetFocus
UpdateWindow
BeginDeferWindowPos
CreatePopupMenu
MapVirtualKeyExW
SetTimer
CreateWindowExW
DrawFrameControl
CopyAcceleratorTableW
GetLastActivePopup
CharLowerW
GetCursorPos
SetCaretPos
SetParent
ClientToScreen
DefWindowProcA
CharUpperBuffW
IsChild
GetSubMenu
TileWindows
LoadMenuA
GetShellWindow
LoadCursorA
ReplyMessage
GetDesktopWindow
RedrawWindow
GetMessageTime
WaitForInputIdle
GetClientRect
GetDCEx
RegisterClassExW
wsprintfA
IsDialogMessageW
EnumThreadWindows
CharPrevA
CreateWindowExA
ChangeMenuW
DrawStateW
PostThreadMessageA
CharNextA
SetMenuDefaultItem
GetMenuStringW
RegisterClassW
TranslateAcceleratorW
DrawEdge

msvcrt

strtoul
clearerr
_controlfp
remove
fseek
__set_app_type
localtime
atoi
perror
strncmp
strrchr
wcscspn
putc
__p__fmode
wcscmp
__p__commode
tolower
_amsg_exit
fgetc
_initterm
wcstombs
wcscoll
_ismbblead
isxdigit
fgets
_XcptFilter
putchar
iswalpha
strpbrk
realloc
_exit
fputc
_cexit
free
strcpy
__setusermatherr
isalnum
toupper
islower
strtok
sscanf
wcslen
__getmainargs
vswprintf

gdi32

GetRgnBox
Escape
GetTextExtentPointA
StretchDIBits
CreateFontW
GetPaletteEntries
GetLayout
CreateHalftonePalette
Polyline
CreateDCW
SetViewportExtEx
CreateBitmapIndirect
GetTextCharsetInfo
CreateBrushIndirect
ResizePalette
SetRectRgn
RectVisible
GetPixel
SelectPalette
GetROP2
SetBkMode
CreateRectRgnIndirect
SetStretchBltMode
GetNearestPaletteIndex
SetDIBColorTable
GetTextExtentPointW
SetWindowOrgEx
EndPath
LineTo
Ellipse
CreatePolygonRgn
AddFontResourceA
DeleteDC
OffsetViewportOrgEx
LineDDA
SetDIBitsToDevice
CreateCompatibleDC
GetDIBits
FillRgn
ExtFloodFill
SetTextColor
CreateFontIndirectW
PatBlt
SelectClipRgn
CreatePalette
GetObjectW
CreateDIBitmap
TranslateCharsetInfo

kernel32

MultiByteToWideChar
FreeLibrary
Sleep
GetUserDefaultUILanguage
CreateWaitableTimerW
MoveFileA
SetFileTime
CreateRemoteThread
CreateNamedPipeW
VerifyVersionInfoW
DeleteAtom
OpenFile
CreateSemaphoreW
GetCommModemStatus
IsDBCSLeadByteEx
ReleaseSemaphore
IsBadCodePtr
lstrcmpW
SetSystemTime
AddAtomA
FormatMessageA
GlobalAddAtomA
CompareStringA
SetFilePointer
GetSystemWindowsDirectoryA
GlobalMemoryStatus
GetWindowsDirectoryW
CreateDirectoryW
FindNextChangeNotification
ConnectNamedPipe
GetUserDefaultLangID
TerminateThread
LoadLibraryExA
GetOEMCP
QueryDosDeviceW
GetStdHandle
EnumSystemLocalesA
HeapValidate
SizeofResource
GetExitCodeThread
SuspendThread
PulseEvent
GetEnvironmentStrings
IsBadReadPtr
FindFirstChangeNotificationW
FindNextFileW
TlsSetValue
GetCommConfig
lstrcmpiA
RemoveDirectoryA
GlobalGetAtomNameA
FreeResource

Exports

Exports

?Header@@YGPAXKPAEFF<V

Sections

.text
Size: 82KB - Virtual size: 81KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 121KB - Virtual size: 188KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6adc48a3c8906a24a182b661a583b30d

Headers

File Characteristics

Imports

user32

msvcrt

gdi32

kernel32

Exports

Exports

Sections

.text Size: 82KB - Virtual size: 81KB

.data Size: 121KB - Virtual size: 188KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 82KB - Virtual size: 81KB

.data
Size: 121KB - Virtual size: 188KB

.reloc
Size: 2KB - Virtual size: 1KB