14d549ce33573ef4e4af54218f550d75_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

14d549ce33573ef4e4af54218f550d75_JaffaCakes118
Size

225KB
MD5

14d549ce33573ef4e4af54218f550d75
SHA1

724408430e29ef7a05f5dab7f4b33ec8672eb343
SHA256

87115cf5166f8f4d7ecfc92a2370e1520b1d468a69e95d95ae2a5baaeb9b2ce8
SHA512

27dba9c1484e10ec59cf8f5e9ba7de3c431487384101f617aac4ad2fe68fdd2d9b4314c1a2d8ad8912fbc424e01bd5801aae436fc2333b7a29b63ce8cfc4f3a8
SSDEEP

3072:tJK5OArlCehAWNT9+qot6WQJ/HAUoHIeKnuEidgWg00Mfyk:tsOArlPL+uW2IVH6uVF6k

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
14d549ce33573ef4e4af54218f550d75_JaffaCakes118

Files

14d549ce33573ef4e4af54218f550d75_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3d63d7d1531d0edfa02fa4fcef7eaac1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetFileAttributesA
FindFirstFileA
FindNextFileA
MoveFileExA
GetVersionExA
RemoveDirectoryA
GetPrivateProfileStringA
GetLocalTime
CreateDirectoryA
LoadResource
LockResource
GetFileAttributesA
LoadLibraryA
GlobalLock
DeleteFileA
FreeResource
SetErrorMode
lstrcatA
GetWindowsDirectoryA
FreeLibrary
GlobalUnlock
GlobalFree
SizeofResource
_lcreat
_lwrite
_lclose
WinExec
CreateProcessA
WaitForSingleObject
WritePrivateProfileStringA
GetProcAddress
lstrcpynA
FileTimeToLocalFileTime
MultiByteToWideChar
GetFileTime
_lread
FileTimeToDosDateTime
_llseek
_lopen
GetDriveTypeA
GetSystemDirectoryA
MulDiv
lstrcmpA
lstrcmpiA
lstrcpyA
GetModuleFileNameA
lstrlenA
CopyFileA
GetTempPathA
GetTempFileNameA
GetPrivateProfileIntA
FindResourceA
GlobalAlloc
FindClose
FreeEnvironmentStringsA
HeapReAlloc
VirtualAlloc
UnhandledExceptionFilter
FreeEnvironmentStringsW
VirtualFree
HeapCreate
OpenFile
ReadFile
SetFilePointer
WriteFile
GetStdHandle
SetHandleCount
SetStdHandle
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
WideCharToMultiByte
GetCurrentProcess
TerminateProcess
ExitProcess
GetVersion
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
HeapFree
HeapAlloc
MoveFileA
CreateFileA
GetFileType
SetEndOfFile
CloseHandle
GetFullPathNameA
SetCurrentDirectoryA
GetCurrentDirectoryA
SetEnvironmentVariableA
GetLastError
GetEnvironmentStrings
GetEnvironmentStringsW
RtlUnwind
GetCPInfo
GetOEMCP
HeapDestroy
GetACP

user32

RegisterClassA
LoadIconA
UpdateWindow
ShowWindow
LoadBitmapA
PeekMessageA
SetTimer
TranslateMessage
CreateWindowExA
GetSystemMetrics
SetWindowTextA
GetMessageA
GetSysColor
LoadCursorA
SetCursor
EnableWindow
IsWindowVisible
CreateDialogParamA
IsDialogMessageA
PostMessageA
MessageBoxA
wsprintfA
ExitWindowsEx
EndPaint
PostQuitMessage
GetClientRect
BeginPaint
ReleaseDC
InvalidateRect
GetDC
DefWindowProcA
MoveWindow
GetWindowRect
SetDlgItemTextA
EndDialog
GetDlgItemTextA
SetRect
ScreenToClient
GetDlgItem
GetWindowTextA
SendDlgItemMessageA
SetFocus
OemToCharA
CharNextA
GetDialogBaseUnits
FillRect
DrawIcon
LoadStringA
GetParent
EnumChildWindows
FindWindowA
SendMessageA
DdeCreateDataHandle
DdeInitializeA
DdeConnect
DestroyWindow
DdeClientTransaction
DdeDisconnect
DdeUninitialize
DialogBoxParamA
DispatchMessageA
KillTimer
DdeFreeDataHandle
DdeGetData
DdeCreateStringHandleA

gdi32

DeleteObject
GetTextExtentPointA
TextOutA
GetObjectA
SetBkMode
CreateFontA
SetTextColor
DeleteDC
BitBlt
GetDeviceCaps
PatBlt
CreateSolidBrush
CreateCompatibleDC
RealizePalette
SelectPalette
SelectObject
SetBkColor
MoveToEx
ExtTextOutA
LineTo
CreateFontIndirectA
CreatePen
CreateCompatibleBitmap
CreateDIBitmap
StretchBlt
GetStockObject
CreatePalette

comdlg32

GetOpenFileNameA

advapi32

RegDeleteKeyA
RegCloseKey
RegQueryValueExA
RegOpenKeyExA
CloseServiceHandle
OpenSCManagerA
RegSetValueA
RegSetValueExA
RegCreateKeyExA
RegEnumKeyExA
RegEnumValueA
RegDeleteValueA
RegEnumKeyA
RegOpenKeyA
DeleteService
ControlService
OpenServiceA

ole32

CoUninitialize
CoCreateInstance
CoInitialize

Exports

Exports

_ItemDlg@16
_MainWndProc@16
_PromptDlg@16
_SharedDlg@16

Sections

.text
Size: 58KB - Virtual size: 57KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 5KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 73KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.erdata
Size: 80KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

3d63d7d1531d0edfa02fa4fcef7eaac1

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

ole32

Exports

Exports

Sections

.text Size: 58KB - Virtual size: 57KB

.rdata Size: 7KB - Virtual size: 7KB

.data Size: 5KB - Virtual size: 7KB

.rsrc Size: 73KB - Virtual size: 73KB

.erdata Size: 80KB - Virtual size: 80KB

.text
Size: 58KB - Virtual size: 57KB

.rdata
Size: 7KB - Virtual size: 7KB

.data
Size: 5KB - Virtual size: 7KB

.rsrc
Size: 73KB - Virtual size: 73KB

.erdata
Size: 80KB - Virtual size: 80KB