fb282c81454be1ffd623086757cbc97c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

fb282c81454be1ffd623086757cbc97c_JaffaCakes118
Size

154KB
MD5

fb282c81454be1ffd623086757cbc97c
SHA1

ab184ada94814ec97a3786c9530a1dcac962024b
SHA256

c1c0a2d76dbdb5e38732678b49f8f4474a51065b485dc1abc226084528af789a
SHA512

42550f81b0bc355d34444cbab1917fc4ba02dee0e686debc2e5f284d7d0bc5c3f71aecad2ddab9545a6a5fe9085386e6dae16758e441183a6b8e921924dcf17d
SSDEEP

3072:9tMZ0sW4G8qblR/6Mk4nsyYveKj6LlcN5AUEXlSZBUnSWJFDBUXWA5yR5Jm0d9N2:9JEG8qblJ+bLveqVN5AUWRSWfBUXWA5y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fb282c81454be1ffd623086757cbc97c_JaffaCakes118

Files

fb282c81454be1ffd623086757cbc97c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8271f786b55f3700e1a9d879fca38618

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcatW
GetCommandLineA
GetCommandLineW
GetPrivateProfileStringA
GetPrivateProfileStringW
WritePrivateProfileStringA
WritePrivateProfileStringW
FindClose
FindFirstFileA
FindFirstFileW
GetModuleFileNameA
GetModuleFileNameW
GetFullPathNameA
GetFullPathNameW
CreateFileA
CreateFileW
ReadFile
WriteFile
HeapAlloc
lstrcatA
CreateProcessA
CreateProcessW
GetCurrentThreadId
WideCharToMultiByte
GetPrivateProfileStructA
GetPrivateProfileStructW
WritePrivateProfileStructA
WritePrivateProfileStructW
SetFilePointer
FindNextFileA
FindNextFileW
ExpandEnvironmentStringsA
ExpandEnvironmentStringsW
GetFileTime
SetFileTime
SetFileAttributesA
GetFileAttributesA
SetFileAttributesW
GetFileAttributesW
lstrlenW
MultiByteToWideChar
GetCurrentDirectoryW
GetCurrentDirectoryA
GlobalLock
GlobalUnlock
lstrlenA
lstrcmpW
lstrcmpA
GetProcessHeap
GetWindowsDirectoryW
GetACP
GetOEMCP
GetUserDefaultLangID
GetLocaleInfoW
GetLocaleInfoA
GetModuleHandleA
GetStartupInfoA
CreateMutexA
GetLastError
WaitForSingleObject
GetProcAddress
lstrcpynA
LoadLibraryA
GetModuleHandleW
GetStartupInfoW
lstrcpynW
LoadLibraryW
FreeLibrary
SetCurrentDirectoryW
SearchPathW
lstrcpyW
lstrcmpiW
MulDiv
ReleaseMutex
CloseHandle
SetCurrentDirectoryA
SearchPathA
lstrcpyA
lstrcmpiA
CompareFileTime
ExitProcess
GlobalFree
HeapFree
GlobalAlloc

user32

GetWindowLongW
SetClassLongW
GetClassLongW
CreateWindowExW
SetClassLongA
TranslateAcceleratorW
IsDialogMessageW
GetMessageW
RegisterClassW
FindWindowW
DispatchMessageA
TranslateMessage
TranslateAcceleratorA
IsDialogMessageA
GetMessageA
UpdateWindow
RegisterClassA
LoadCursorA
FindWindowA
GetClassNameA
GetClassNameW
CloseClipboard
SetClipboardData
EmptyClipboard
GetClipboardData
OpenClipboard
ShowScrollBar
SetWindowPos
CharUpperA
CharUpperW
GetKeyNameTextA
MapVirtualKeyA
GetKeyNameTextW
MapVirtualKeyW
UnhookWindowsHookEx
EndDialog
SetDlgItemTextA
SetDlgItemTextW
ActivateKeyboardLayout
GetKeyboardLayout
GetFocus
ReleaseDC
GetDC
GetKeyState
SetForegroundWindow
MoveWindow
GetWindow
LoadMenuA
LoadMenuW
LoadAcceleratorsA
LoadAcceleratorsW
LoadIconA
LoadIconW
LoadImageA
LoadImageW
LoadStringA
LoadStringW
CreateDialogParamA
CreateDialogParamW
DialogBoxParamA
DialogBoxParamW
EnumThreadWindows
WaitForInputIdle
SetWindowsHookExA
SetWindowLongW
GetWindowTextLengthW
GetDlgItemInt
SetDlgItemInt
InsertMenuA
ModifyMenuA
InsertMenuW
ModifyMenuW
EnableWindow
SetWindowTextA
SetWindowTextW
GetCursorPos
DrawTextExA
DrawTextExW
IsCharLowerW
CharLowerW
CharLowerBuffW
CharUpperBuffW
GetDlgItemTextA
GetDlgItemTextW
IsCharLowerA
CharLowerA
CharLowerBuffA
CharUpperBuffA
FindWindowExA
FindWindowExW
ShowCaret
HideCaret
GetSystemMetrics
GetSysColor
ShowWindow
GetQueueStatus
GetMenuStringA
DefFrameProcA
DestroyAcceleratorTable
DestroyMenu
PostQuitMessage
GetWindowRect
GetSystemMenu
CreateMDIWindowW
CreateMDIWindowA
DestroyWindow
DestroyIcon
CallWindowProcW
SendMessageW
DefWindowProcW
CallWindowProcA
MessageBeep
SystemParametersInfoA
GetScrollInfo
DefWindowProcA
wsprintfW
MessageBoxW
PostMessageW
GetWindowTextW
DefMDIChildProcW
EnableMenuItem
SetFocus
wsprintfA
MessageBoxA
PostMessageA
ClientToScreen
TrackPopupMenu
GetParent
GetWindowLongA
GetMenuStringW
DefFrameProcW
GetSubMenu
DeleteMenu
DrawMenuBar
CreateWindowExA
GetClientRect
GetWindowTextLengthA
GetClassLongA
SetWindowLongA
InvalidateRect
GetDlgItem
CheckMenuItem
GetWindowTextA
DefMDIChildProcA
SendMessageA
DispatchMessageW

gdi32

StartDocW
GetTextMetricsW
StartDocA
GetTextMetricsA
StartPage
EndPage
EndDoc
DeleteDC
CreateFontIndirectW
GetCharWidthW
CreateFontIndirectA
SelectObject
GetCharWidthA
GetDeviceCaps
DeleteObject
GetObjectW
GetObjectA
GetStockObject

advapi32

RegQueryValueExW
RegOpenKeyExW
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
RegCreateKeyExA
RegSetValueExW
RegDeleteKeyW
RegEnumKeyExW
RegDeleteKeyA
RegEnumKeyExA
RegEnumValueW
RegDeleteValueW
RegEnumValueA
RegDeleteValueA
RegCreateKeyExW
RegSetValueExA

shell32

SHGetMalloc
DragAcceptFiles
DragQueryFileW
DragQueryFileA
DragFinish
ShellExecuteW
ShellExecuteA
SHChangeNotify

comctl32

ImageList_SetBkColor
ImageList_Create
ord17
PropertySheetA
ImageList_Destroy
ImageList_ReplaceIcon
PropertySheetW

comdlg32

GetOpenFileNameW
GetSaveFileNameA
GetOpenFileNameA
ChooseFontA
ChooseFontW
PrintDlgW
PrintDlgA
ChooseColorW
ChooseColorA
PageSetupDlgW
GetSaveFileNameW
PageSetupDlgA

version

GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeW

ole32

ReleaseStgMedium

Sections

.text
Size: 117KB - Virtual size: 117KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8271f786b55f3700e1a9d879fca38618

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

comctl32

comdlg32

version

ole32

Sections

.text Size: 117KB - Virtual size: 117KB

.rdata Size: 14KB - Virtual size: 13KB

.data Size: 3KB - Virtual size: 51KB

.rsrc Size: 18KB - Virtual size: 18KB

.text
Size: 117KB - Virtual size: 117KB

.rdata
Size: 14KB - Virtual size: 13KB

.data
Size: 3KB - Virtual size: 51KB

.rsrc
Size: 18KB - Virtual size: 18KB