1838c7178457eabde718fecb168d2ada_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

1838c7178457eabde718fecb168d2ada_JaffaCakes118
Size

90KB
MD5

1838c7178457eabde718fecb168d2ada
SHA1

dae9b3af6e975cc8b319646a999ff4f7daa32f8f
SHA256

e650ec25488407dd1be65345e91c4866c747a4fee3f0c793824977282b9bf104
SHA512

eb26205e130c661fe9a0782a71edddf4ae290c7407cd5de8c38f3781159d10a98289924b922a8322980a76e806e7ce14335ff9de55f188e33006fd5310994ee4
SSDEEP

1536:k0SyMi37epJgmtU0QZlV31HbRGaO2gbMPKQmItq+SOuFpkT6AF:AyZ37IShlVF7RGaO2gbMyktuDkT6Y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1838c7178457eabde718fecb168d2ada_JaffaCakes118

Files

1838c7178457eabde718fecb168d2ada_JaffaCakes118
.exe windows:4 windows x86 arch:x86

566326e3fd79eae6a11491b6801baaac

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

atol
exit
tolower
memcpy
memmove
time
clock
strlen
sprintf
wcscspn
wcschr
sqrt
calloc
malloc
wcstol
memset
swprintf
rand
_acmdln
srand
mbstowcs

comdlg32

GetOpenFileNameA
FindTextA
GetSaveFileNameA
ChooseColorA

kernel32

CreateEventA
LoadLibraryA
GetCurrentThread
GlobalDeleteAtom
ReadFile
Sleep
GetModuleHandleA
ExitProcess
SizeofResource
GetSystemDefaultLangID
GetTickCount
GlobalAlloc
WaitForSingleObject
LocalReAlloc
LoadLibraryExA
lstrlenA
GetACP
GetFileSize
GetVersion
MulDiv
FindClose
DeleteFileA
WriteFile
lstrcmpA
MoveFileA
GetStringTypeW
LockResource
GlobalFindAtomA
EnumCalendarInfoA
GetThreadLocale
SetLastError
GetLastError
SetErrorMode
GetVersionExA
WideCharToMultiByte
LocalAlloc
ExitThread
GetFileType
SetEndOfFile
HeapAlloc
HeapDestroy
GetStartupInfoA
VirtualAllocEx
lstrcpynA
MoveFileExA
GetCurrentThreadId
SetEvent
HeapFree
GetModuleFileNameA
lstrcmpiA
VirtualAlloc
SetHandleCount
GetFileAttributesA
FindFirstFileA
EnterCriticalSection
GetCPInfo
lstrcatA
GlobalAddAtomA

user32

EndPaint
DefFrameProcA
GetWindow
GetCursor
GetClassInfoA
SetWindowLongA
GetFocus
EnumThreadWindows
GetWindowTextA
SetTimer
IsMenu
GetActiveWindow
GetPropA
ClientToScreen
GetMenuItemID
CallNextHookEx
CheckMenuItem
DrawEdge
CreatePopupMenu
GetDCEx
ShowWindow
GetClipboardData
GetParent
GetMenuStringA
RegisterClassA
GetSysColorBrush
EnableMenuItem
GetMessagePos
IsChild
CharNextA
CharLowerA
DrawIcon
DrawMenuBar
GetSysColor
ShowScrollBar
DrawFrameControl
IsWindowVisible
FindWindowA
DispatchMessageA
DefWindowProcA
CallWindowProcA
BeginDeferWindowPos
EnumChildWindows
GetMenuItemCount
GetCursorPos
SystemParametersInfoA
EnableScrollBar
GetScrollRange
GetForegroundWindow
FillRect
DispatchMessageW
EnumWindows
GetCapture
GetDesktopWindow
SetWindowPos
CreateIcon
FrameRect
GetMenu
GetDC
IsWindowEnabled
TrackPopupMenu
SetWindowTextA
GetLastActivePopup
DefMDIChildProcA
GetMenuItemInfoA
GetScrollInfo
CreateMenu
GetDlgItem
GetSubMenu
CreateWindowExA
MessageBoxA
GetKeyNameTextA
GetIconInfo
GetKeyState
EqualRect
DrawTextA
DrawIconEx
CharToOemA
EndDeferWindowPos
HideCaret

Sections

text
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 52KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: 512B - Virtual size: 458B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.init
Size: 1024B - Virtual size: 679B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 571B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

566326e3fd79eae6a11491b6801baaac

Headers

File Characteristics

Imports

msvcrt

comdlg32

kernel32

user32

Sections

text Size: 29KB - Virtual size: 28KB

.idata Size: 52KB - Virtual size: 51KB

.rdata Size: 5KB - Virtual size: 5KB

.bss Size: 512B - Virtual size: 458B

.init Size: 1024B - Virtual size: 679B

.rsrc Size: 1024B - Virtual size: 571B

text
Size: 29KB - Virtual size: 28KB

.idata
Size: 52KB - Virtual size: 51KB

.rdata
Size: 5KB - Virtual size: 5KB

.bss
Size: 512B - Virtual size: 458B

.init
Size: 1024B - Virtual size: 679B

.rsrc
Size: 1024B - Virtual size: 571B