fd7dc604797d457b56b66836157d413d_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

fd7dc604797d457b56b66836157d413d_JaffaCakes118
Size

63KB
MD5

fd7dc604797d457b56b66836157d413d
SHA1

587d9d3c5bf9abf8a6ab9600b10c700f608d786c
SHA256

0d6033fede2f92c9ac8efabdce3368ba8a5e225e048467d2b10cbd98479bc408
SHA512

8c3660bd93f3b295ea8df09487cfd7974b0e51bf93d31fc1a02808c1966e5a80f119818f65f53375229b5469f05ef51f7bcc21a9d9e3d3c162d01de9a4aac865
SSDEEP

768:Da7lwK3oEKnvP/yBV9uCMC0rWIAbpAtuUHAwP9RskhSegWlUuXTiAoOB2dh1tk4w:Da7R3a4eCMWLwP9R3wegWlJoOodh2t

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fd7dc604797d457b56b66836157d413d_JaffaCakes118

Files

fd7dc604797d457b56b66836157d413d_JaffaCakes118
.exe windows:5 windows x86 arch:x86

8634578d11584547853a13bb55ba4149

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

Q:\bJopoGtcfihg\yelaxhnzdVkhwX\jtZMHTknAS.pdb

Imports

user32

CheckMenuItem
WaitForInputIdle
InternalGetWindowText
FindWindowExA
SwitchToThisWindow
ActivateKeyboardLayout
IsCharAlphaW
MapWindowPoints
InsertMenuA
SetWindowTextW
HideCaret
GetDlgItemInt
DrawAnimatedRects
SetMenu
MonitorFromPoint
GetWindowLongW
SetWindowLongW
DefDlgProcA
SendMessageW
MessageBoxA
WaitMessage
GetPropW
wvsprintfW
MoveWindow
RegisterHotKey
DragObject
GetMenuItemCount
GetNextDlgTabItem
IsZoomed
IsDlgButtonChecked
GetAsyncKeyState
DefDlgProcW
GetScrollInfo
GetDC
GetLastActivePopup
InvertRect
EnumThreadWindows
SetDlgItemInt
PostMessageW
InflateRect
UnloadKeyboardLayout
GetWindow
ShowOwnedPopups
ClipCursor
GetWindowTextLengthW
GetCursorPos
FindWindowW
ScreenToClient
GetKeyboardType
CloseDesktop
GetSystemMetrics
RegisterWindowMessageA
SetCaretPos
CharLowerW
ValidateRect
PostQuitMessage
GetSystemMenu
WindowFromPoint
SetClassLongW
GetKeyState
IsDialogMessageA
InSendMessage
CharNextW
DialogBoxParamW
GetUserObjectInformationW
ChildWindowFromPointEx
LoadImageW
RegisterClassExA
GetMessageExtraInfo
GetDlgItemTextW
ToUnicodeEx
BeginPaint
SetTimer
ExitWindowsEx
SetSysColors
GetSysColor
CharUpperA
GetClassNameW
IsWindowEnabled
CopyImage
GetDoubleClickTime
ModifyMenuW
LockWindowUpdate
AllowSetForegroundWindow
RemoveMenu
BringWindowToTop
SendMessageTimeoutW
CallWindowProcW
GetScrollRange
CharUpperBuffW
SendDlgItemMessageA
SetFocus
ScrollWindowEx
RegisterClassA
IsChild
GetDialogBaseUnits
SystemParametersInfoA
MapVirtualKeyExW
GetDCEx
DestroyWindow
EnumChildWindows
CreateDialogParamA
IsMenu
GetUpdateRect
LookupIconIdFromDirectory
wvsprintfA
CopyRect
EnableScrollBar
GetMessageA
LoadAcceleratorsW
LoadIconA
IsCharAlphaNumericW
DestroyCaret
CheckDlgButton
CreateDialogParamW
LoadCursorW
LoadStringA
ChildWindowFromPoint

msvcrt

_controlfp
toupper
__set_app_type
__p__fmode
fgetc
qsort
__p__commode
_amsg_exit
clock
ftell
fwrite
fread
wcscat
_initterm
time
_ismbblead
vsprintf
_XcptFilter
strstr
getc
wcsrchr
strtoul
wcstombs
fprintf
iswspace
_exit
wcsncpy
fflush
_cexit
fgets
realloc
isxdigit
strerror
vswprintf
ungetc
__setusermatherr
fputc
setlocale
__getmainargs
strncpy
puts
wcscspn
gmtime
mbtowc
iswalpha
malloc
strcspn

comctl32

CreatePropertySheetPageW
ImageList_GetImageCount
ImageList_GetIconSize
ImageList_Destroy
ImageList_Draw
ImageList_GetIcon

shlwapi

StrToIntW

kernel32

GetDateFormatW
SetCommBreak
LCMapStringA
LoadLibraryA
CreateDirectoryA
RemoveDirectoryW
GetSystemTimeAsFileTime
SetThreadExecutionState
FlushViewOfFile
GetFileAttributesExW
ClearCommBreak
UnlockFile
FindNextChangeNotification
SearchPathA
GetAtomNameA
AddAtomW
GetCommandLineW
LocalFree
MapViewOfFile
MoveFileExW
CloseHandle
GetLongPathNameW
DeleteFileW
EnumResourceNamesW
FindNextFileA
FindFirstFileA
lstrlenA
GlobalGetAtomNameW
IsValidLanguageGroup
CancelIo
EnumResourceTypesA
CreateSemaphoreA
OpenFile
SizeofResource
LeaveCriticalSection
ResetEvent
IsDBCSLeadByte
GetModuleHandleW
GetCommTimeouts
GetCommState
SetWaitableTimer
MoveFileA
GetVersion
GetStdHandle
GetCompressedFileSizeW
CreateFileW
FindFirstChangeNotificationW
GetThreadContext
SetCommTimeouts
GetFileTime
GetCommProperties
VirtualProtect
SetupComm
ReadFile
RaiseException
SetEndOfFile

Exports

Exports

?GetShiftAltInfo@@YGK_KHE:O

Sections

.text
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bit
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.insec
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.inmin
Size: 512B - Virtual size: 86B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.wall
Size: 512B - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.zdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8634578d11584547853a13bb55ba4149

Headers

File Characteristics

PDB Paths

Imports

user32

msvcrt

comctl32

shlwapi

kernel32

Exports

Exports

Sections

.text Size: 8KB - Virtual size: 7KB

.bit Size: 1KB - Virtual size: 1KB

.insec Size: 6KB - Virtual size: 5KB

.inmin Size: 512B - Virtual size: 86B

.wall Size: 512B - Virtual size: 42KB

.zdata Size: 12KB - Virtual size: 12KB

.data Size: 2KB - Virtual size: 1KB

.tls Size: 512B - Virtual size: 512B

.rsrc Size: 30KB - Virtual size: 29KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 8KB - Virtual size: 7KB

.bit
Size: 1KB - Virtual size: 1KB

.insec
Size: 6KB - Virtual size: 5KB

.inmin
Size: 512B - Virtual size: 86B

.wall
Size: 512B - Virtual size: 42KB

.zdata
Size: 12KB - Virtual size: 12KB

.data
Size: 2KB - Virtual size: 1KB

.tls
Size: 512B - Virtual size: 512B

.rsrc
Size: 30KB - Virtual size: 29KB

.reloc
Size: 1KB - Virtual size: 1KB