303ba88bfc47cb66410212e516d8a436_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

303ba88bfc47cb66410212e516d8a436_JaffaCakes118
Size

80KB
MD5

303ba88bfc47cb66410212e516d8a436
SHA1

b798f0720ad58c9661ec0e1dc230f034b565d909
SHA256

abeb6625aa7354f718b681d2adf0de2670e261eef8ac3309177261028af84481
SHA512

1367f67b711cd3ee6eab29933eb23c24d0581e309d5d18b8ab0a51a654ddb4c93767c7d3295e34494b59213df35be6d4eb20e522753c2bff11fe0286ae9f203f
SSDEEP

768:SGSzhtjHrntsEOhYxWnRxzoxophYAxxGxZSeJdMfAlq8g4MG+K7bQhVHRd:WLT5saunRpTxxUtJUAlleGhAR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
303ba88bfc47cb66410212e516d8a436_JaffaCakes118

Files

303ba88bfc47cb66410212e516d8a436_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2dd2d4baef0443382eb3b8a4a99b8d9d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetCursorPos
GetParent
ShowWindow
GetKeyboardLayout
SetWindowLongW
GetMenuState
DestroyWindow
GetMessageW
DefWindowProcW
EndDialog
OpenClipboard
GetClientRect
EnableMenuItem
GetSystemMenu
SetActiveWindow
DispatchMessageW
PeekMessageW
SetWinEventHook
DialogBoxParamW
InvalidateRect
GetDC
CreateWindowExW
GetDlgItemTextW
UpdateWindow
GetSystemMetrics
LoadCursorW
GetWindowTextW
CheckMenuItem
MessageBoxW
RegisterWindowMessageW
RegisterClassExW
SendDlgItemMessageW
ValidateRect
EnableWindow
LoadStringW
GetSysColor
SetWindowPos
DrawTextExW
SystemParametersInfoW
EndPaint
ChildWindowFromPoint
GetDesktopWindow
SetFocus
GetWindowTextA
LoadAcceleratorsW
SetDlgItemTextW
GetWindowRect
GetMenu
MessageBeep
SetCursor
CreateDialogParamW
PostQuitMessage
MoveWindow
GetFocus
UnhookWinEvent
ReleaseDC
CharLowerW
WinHelpW
SetWindowTextW
GetWindowLongW
SetScrollPos
GetSubMenu
LoadIconW
CharNextW
wsprintfA
wsprintfW
PeekMessageA
IsDialogMessageW
LoadImageW
PostMessageW
GetWindowPlacement
ScreenToClient
SendMessageW
TranslateMessage
GetDlgCtrlID
SetWindowPlacement
CloseClipboard
TranslateAcceleratorW
IsIconic
IsClipboardFormatAvailable
GetDlgItem
CharUpperW
SystemParametersInfoA
GetForegroundWindow

kernel32

GetCurrentThread
GlobalHandle
GetLastError
GetSystemInfo
UnhandledExceptionFilter
CloseHandle
WriteFile
GetCommandLineW
SizeofResource
GetCurrentProcessId
GetUserDefaultLCID
CreateThread
GetLocaleInfoW
OpenMutexA
GetProcessHeap
QueryPerformanceCounter
InterlockedDecrement
lstrlenW
FindFirstFileW
TerminateProcess
GetFileType
SetEndOfFile
CreateFileW
DeleteFileW
GetFileAttributesW
lstrcmpiW
GetCPInfo
lstrcmpW
GetCurrentThreadId
VirtualFree
CreateFileA
CreateDirectoryA
LCMapStringA
SetLastError
LocalReAlloc
GetStringTypeA
LeaveCriticalSection
GlobalLock
ResumeThread
LocalFree
FormatMessageW
VirtualProtect
lstrcpyW
GetProcAddress
WriteConsoleA
GetTimeFormatW
GetSystemTimeAsFileTime
LockResource
CreateMutexW
InitializeCriticalSection
InterlockedIncrement
GetEnvironmentStrings
GetModuleHandleW
MapViewOfFile
GetOEMCP
UnmapViewOfFile
HeapFree
LocalUnlock
MulDiv
MultiByteToWideChar
SetUnhandledExceptionFilter
GetLocalTime
ReadFile
GetModuleHandleA
VirtualAlloc
GetDateFormatW
GetFileSize
GetConsoleMode
CopyFileA
LocalA
GetCurrentProcess
TlsSetValue
HeapReAlloc
GetTickCount
FindClose
Sleep
WideCharToMultiByte
GetVersion
GlobalFree
InterlockedExchange
GetExitCodeProcess
LocalSize
RtlUnwind
FoldStringW
InitializeCriticalSectionAndSpinCount
FindNextFileA
DeleteCriticalSection
GetStartupInfoA
GlobalUnlock
LCMapStringW
GetFileInformationByHandle
GetStringTypeW
LoadLibraryA
InterlockedCompareExchange
ExitProcess
lstrcatW
HeapAlloc
GetUserDefaultUILanguage
CompareStringW
lstrcpynW
GetACP
EnterCriticalSection
CreateFileMappingW

msvcrt

_lock
_XcptFilter
fflush
memcpy
_initterm
_exit
_cexit
_errno
localtime
_adjust_fdiv
__setusermatherr
exit
wcsncmp
wcsncpy
_amsg_exit
calloc
_vsnwprintf
_acmdln
_controlfp
__set_app_type

comdlg32

ChooseFontW
GetFileTitleW
GetSaveFileNameW
GetOpenFileNameW
ReplaceTextW
CommDlgExtendedError
FindTextW
PrintDlgExW
PageSetupDlgW

winspool.drv

OpenPrinterW
GetPrinterDriverW
ClosePrinter

advapi32

RegOpenKeyExA
IsTextUnicode
RegCloseKey
RegSetValueExW
RegQueryValueExA
RegQueryValueExW
RegCreateKeyW

gdi32

GetDeviceCaps
EndPage
EnumFontsW
TextOutW
LPtoDP
CreateDCW
GetTextExtentPoint32W
SetB
SetViewportExtEx
StartDocW
GetStockObject
GetTextFaceW
SetAbortProc
DeleteDC
GetObjectW
CreateFontIndirectW
SetWindowExtEx
StartPage
DeleteObject
AbortDoc
EndDoc
SelectObject
SetMapMode

shell32

ShellAboutW
DragFinish
DragQueryFileW
DragAcceptFiles

comctl32

CreateStatusWindowW

Sections

.text
Size: 1024B - Virtual size: 981B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 65KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2dd2d4baef0443382eb3b8a4a99b8d9d

Headers

File Characteristics

Imports

user32

kernel32

msvcrt

comdlg32

winspool.drv

advapi32

gdi32

shell32

comctl32

Sections

.text Size: 1024B - Virtual size: 981B

.rdata Size: 65KB - Virtual size: 65KB

.data Size: 10KB - Virtual size: 99KB

.rsrc Size: 2KB - Virtual size: 2KB

.text
Size: 1024B - Virtual size: 981B

.rdata
Size: 65KB - Virtual size: 65KB

.data
Size: 10KB - Virtual size: 99KB

.rsrc
Size: 2KB - Virtual size: 2KB