141ba8a56ff57ca292c98a0e57454891_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

141ba8a56ff57ca292c98a0e57454891_JaffaCakes118
Size

81KB
MD5

141ba8a56ff57ca292c98a0e57454891
SHA1

dacc46536fc04e51d1b35b6b07a7d801ba5bb86d
SHA256

768ad2074ab2cdbad4adb8ff1fc945fabf694fcf4b1358c9682c35403b8203f7
SHA512

33dc1d6727658711a25ada80a595d818c7448ba283ca2df02f3645bedc93b615b65057b49a42fc7086688fca6132b79dcf7fffc17ac78a6c8ea18cc693874d97
SSDEEP

768:wWCIYB0HyNMc/Ek5E//5qhDBSwKA/HUQKTqH7rCbb2rC/vw2aIyQpwfznKvYi8hr:1CV6LRCQrTW7rCbS+/Nacpw7OYi8hmi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
141ba8a56ff57ca292c98a0e57454891_JaffaCakes118

Files

141ba8a56ff57ca292c98a0e57454891_JaffaCakes118
.exe windows:5 windows x86 arch:x86

2ecc1bf0286a3dfe8b35d0b50f9a7c76

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

user32

GetDesktopWindow
OffsetRect
MoveWindow
SetWindowTextA
CheckDlgButton
IsClipboardFormatAvailable
KillTimer
CheckRadioButton
EmptyClipboard
GetDC
SetClipboardData
CloseClipboard
GetDlgItemInt
SetDlgItemInt
GetDlgItemTextA
SetFocus
IsIconic
SetWindowLongA
SetTimer
GetSystemMenu
InvertRect
ReleaseDC
UpdateWindow
SendMessageA
SetCapture
GetWindowLongA
PostQuitMessage
CheckMenuItem
DialogBoxParamA
GetSubMenu
FlashWindow
ReleaseCapture
DefWindowProcA
WinHelpA
CreateWindowExA
DestroyWindow
GetSysColor
LoadStringA
SetClassLongA
ShowWindow
GetMessageA
LoadIconA
RegisterClassA
BeginPaint
TranslateMessage
DispatchMessageA
ScrollWindow
EndPaint
ValidateRect
SetScrollPos
GetWindowRect
SetScrollRange
SetWindowPos
SystemParametersInfoA
GetSystemMetrics
GetDlgItem
LoadCursorA
EndDialog
SendDlgItemMessageA
EnableMenuItem
SetCursor
GetMenu
ModifyMenuA
AppendMenuA
wsprintfA
GetAsyncKeyState
DrawMenuBar
PostMessageA
GetClipboardData
MessageBoxA
OpenClipboard
MessageBeep
GetKeyState
InvalidateRect

comdlg32

ChooseColorA
ChooseFontA
GetOpenFileNameA

wsock32

htons
WSACleanup
WSAStartup
ioctlsocket
gethostbyname
getservbyname
socket
bind
setsockopt
WSAAsyncSelect
send
WSAGetLastError
recv
closesocket
connect

advapi32

RegOpenKeyExA
RegSetValueExA
RegCreateKeyExA
RegQueryValueExA
RegCloseKey

kernel32

HeapFree
VirtualFree
HeapCreate
RtlUnwind
GetFileType
GetStdHandle
HeapDestroy
GetOEMCP
GetCPInfo
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
MultiByteToWideChar
FreeEnvironmentStringsA
FreeEnvironmentStringsW
UnhandledExceptionFilter
GetCurrentProcess
GetModuleFileNameA
ExitProcess
GetVersion
TerminateProcess
GetStartupInfoA
GetModuleHandleA
GetCommandLineA
CloseHandle
CreateFileA
GetACP
GetProcAddress
FreeLibrary
LoadLibraryA
LocalReAlloc
WriteFile
SetLastError
GetThreadLocale
lstrcpyA
OutputDebugStringA
lstrlenA
Sleep
lstrcmpiA
GlobalSize
LocalAlloc
lstrcatA
GlobalAlloc
GlobalLock
LocalFree
GetStringTypeW
HeapAlloc
VirtualAlloc
GetLastError
ReadFile
SetFilePointer
SetStdHandle
FlushFileBuffers
GetStringTypeA
GlobalUnlock
GlobalFree

gdi32

PatBlt
CreateFontIndirectA
CreateSolidBrush
DeleteObject
GetTextMetricsA
SelectObject
TextOutA
ExtTextOutA
SetBkColor
SetTextColor
TranslateCharsetInfo

Sections

.text
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 11KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2ecc1bf0286a3dfe8b35d0b50f9a7c76

Headers

File Characteristics

Imports

user32

comdlg32

wsock32

advapi32

kernel32

gdi32

Sections

.text Size: 48KB - Virtual size: 47KB

.data Size: 11KB - Virtual size: 24KB

.rsrc Size: 8KB - Virtual size: 7KB

.text
Size: 48KB - Virtual size: 47KB

.data
Size: 11KB - Virtual size: 24KB

.rsrc
Size: 8KB - Virtual size: 7KB