04f7f45d69c6c11d6954e9ceeb858c6b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

04f7f45d69c6c11d6954e9ceeb858c6b_JaffaCakes118
Size

340KB
MD5

04f7f45d69c6c11d6954e9ceeb858c6b
SHA1

30e26448a2e2a3f45e4f9d78ecf1ad69c189680a
SHA256

5dbbb4cf98a406a33e2558ecdc250400b020a41067a89c9b73f2c6bfc52ca5ba
SHA512

de8e3b5e9987413048a30cf228019ad1e2529c3d27f0759ebfc9ef54fc476d1e99bcd49e55a3dc3f90dd7cc28ac92e8bc3e3bb3842f79c9b9e5bdda8d2180f16
SSDEEP

6144:lsYOHaYWV7x8FFlWPbHqrIn4p3cdc3AudFG/N7ZgHZ8tK8N2xYzV:ls9I7aFFlWPrK3hdFa7a8cxw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
04f7f45d69c6c11d6954e9ceeb858c6b_JaffaCakes118

Files

04f7f45d69c6c11d6954e9ceeb858c6b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

fdfa65564a2be2b8d5058b627528fe56

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

EnableScrollBar
PeekMessageW
RegisterClassA
TrackPopupMenu
UpdateWindow
LoadKeyboardLayoutA
SetActiveWindow
GetClipboardData
SetWindowsHookExA
RemovePropA
CreateWindowExA
GetCapture
CharLowerBuffA
MessageBeep
InflateRect
CharNextA
GetTopWindow
UnregisterClassA
GetClientRect
DestroyMenu
DestroyWindow
GetClassLongA
SendMessageW
GetSystemMenu
GetSysColor
RemoveMenu
GetFocus
EnumChildWindows
GetLastActivePopup
GetMenu
ChildWindowFromPoint
GetKeyNameTextA
SetWindowPlacement
SetScrollInfo
SystemParametersInfoA
LoadBitmapA
IsWindowUnicode
GetMenuItemID
FindWindowA
DefFrameProcA
SetWindowPos
SetRect
GetDC
EqualRect
RegisterClipboardFormatA
CharNextW
ShowOwnedPopups
DrawFrameControl
GetMenuStringA
KillTimer
AdjustWindowRectEx
GetScrollRange
GetPropA
GetKeyboardLayout
CreatePopupMenu
GetKeyboardState
IsWindowEnabled
ShowScrollBar
DefWindowProcA
GetClassInfoA
InsertMenuA
IsWindowVisible
MsgWaitForMultipleObjects
GetParent
OpenClipboard
GetKeyboardLayoutNameA
IsChild
GetMenuItemCount
OffsetRect
GetKeyState
IsDialogMessageW
LoadStringA
IsDialogMessageA
ActivateKeyboardLayout
WindowFromPoint
LoadCursorA
SendMessageA
GetMenuState
InvalidateRect
IsIconic
CheckMenuItem
DefMDIChildProcA
EnableWindow
DestroyCursor
RegisterWindowMessageA
CallWindowProcA
EnumWindows
GetWindowRect
DrawAnimatedRects
GetWindowPlacement
CharUpperBuffA
PostQuitMessage
EnumThreadWindows
IsRectEmpty
ReleaseCapture
DeleteMenu
GetSubMenu
GetSystemMetrics
CallNextHookEx
wsprintfA
GetForegroundWindow
SetFocus
GetKeyboardType
SetWindowLongW
GetScrollPos
GetKeyboardLayoutList
GetDesktopWindow
GetDCEx
SetCursor
GetScrollInfo
IntersectRect
SetParent
RedrawWindow
SetCapture
WaitMessage
PtInRect
MapWindowPoints
FillRect
DrawEdge
TranslateMessage
IsZoomed
GetCursor
TranslateMDISysAccel
GetWindowTextA
SetWindowTextA
SetScrollRange
GetWindowLongW
EmptyClipboard
ClientToScreen
PostMessageA
SetPropA
DispatchMessageW
SetScrollPos
DrawMenuBar
FrameRect
ScreenToClient
CreateMenu
PeekMessageA
DrawIconEx
CharLowerA
MessageBoxA
GetWindowLongA
GetDlgItem
OemToCharA
InsertMenuItemA
ReleaseDC
EndPaint
DrawIcon
SetClassLongA
CharToOemA
UnhookWindowsHookEx
GetCursorPos
SetForegroundWindow
SetTimer
GetMessagePos
LoadIconA
ScrollWindow
CloseClipboard
DrawTextA
SetMenu
SetWindowLongA
GetMenuItemInfoA
CreateIcon
MapVirtualKeyA
DestroyIcon
EnableMenuItem
SetMenuItemInfoA
MoveWindow
GetActiveWindow
GetWindowDC
GetSysColorBrush

gdi32

GetClipBox
BitBlt
SetBkColor
GetPaletteEntries
GetPixel
SetTextColor

kernel32

GlobalAlloc
GetTickCount
GetOEMCP
WriteFile
GetProcessHeap
LoadLibraryExA
LoadLibraryA
GetModuleHandleA
GetVersionExA
EnumCalendarInfoA
IsBadReadPtr
FindClose
GetProcAddress
MulDiv
GetStartupInfoA
lstrcmpiA
SetEndOfFile
ExitProcess
GetACP
lstrlenA
SizeofResource
ExitThread
VirtualAlloc
LocalAlloc
GetCommandLineA
GetFileType
HeapFree
MoveFileA
lstrcpyA
GetVersion
IsBadHugeReadPtr
GlobalAddAtomA

oleaut32

SafeArrayGetUBound
SysAllocStringLen
VariantChangeType
SysFreeString
GetErrorInfo
VariantCopyInd

shell32

SHGetFolderPathA
SHGetDiskFreeSpaceA
DragQueryFileA
SHGetSpecialFolderLocation
SHFileOperationA

Sections

.text
Size: 63KB - Virtual size: 63KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 265KB - Virtual size: 264KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc6
Size: 1024B - Virtual size: 713B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc9
Size: 512B - Virtual size: 378B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc5
Size: 1024B - Virtual size: 856B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc1
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc8
Size: 512B - Virtual size: 306B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 992B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fdfa65564a2be2b8d5058b627528fe56

Headers

File Characteristics

Imports

user32

gdi32

kernel32

oleaut32

shell32

Sections

.text Size: 63KB - Virtual size: 63KB

DATA Size: 265KB - Virtual size: 264KB

.rsrc6 Size: 1024B - Virtual size: 713B

.rsrc9 Size: 512B - Virtual size: 378B

.rsrc5 Size: 1024B - Virtual size: 856B

.rsrc1 Size: 6KB - Virtual size: 6KB

.rsrc8 Size: 512B - Virtual size: 306B

.rsrc Size: 1024B - Virtual size: 992B

.text
Size: 63KB - Virtual size: 63KB

DATA
Size: 265KB - Virtual size: 264KB

.rsrc6
Size: 1024B - Virtual size: 713B

.rsrc9
Size: 512B - Virtual size: 378B

.rsrc5
Size: 1024B - Virtual size: 856B

.rsrc1
Size: 6KB - Virtual size: 6KB

.rsrc8
Size: 512B - Virtual size: 306B

.rsrc
Size: 1024B - Virtual size: 992B