435c3b1f42139657adc53ea1403f97b3_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

435c3b1f42139657adc53ea1403f97b3_JaffaCakes118
Size

236KB
MD5

435c3b1f42139657adc53ea1403f97b3
SHA1

86df5b9c0460a0bcbac1ce6d4dcafba66f4c47aa
SHA256

e0b353904db86edf3391d95383cd02cfce12c905468653d44136d3dfdd425933
SHA512

4cbb27b6c4b44d205bc3fd7de2aa17fd06d13cdeeea4758e24b47046570abceabf8db4745397750455483daaac14fd7cb995610d63b417475d6de7cb8320a5cf
SSDEEP

3072:axMDADKbAtG1HVx+erzAaJ/h2DWEJXefoisp+OQsehH4q4/:aipHVxtEU4bJXefop+oehHR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
435c3b1f42139657adc53ea1403f97b3_JaffaCakes118

Files

435c3b1f42139657adc53ea1403f97b3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7247aa111fc8c26411fa31a9a8f4e6b1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetPaletteEntries
GetClipBox
GetDCOrgEx
GetDIBColorTable
GetDIBits
CreateCompatibleBitmap
GetRgnBox
GetObjectA

shell32

SHGetSpecialFolderLocation
SHGetFolderPathA
SHGetFileInfoA
SHGetDesktopFolder

oleaut32

RegisterTypeLib
SafeArrayGetUBound

user32

GetClassNameA
EnumChildWindows
LoadKeyboardLayoutA
RegisterWindowMessageA
CallWindowProcA
DrawEdge
SetFocus
SetWindowTextA
SetClassLongA
GetScrollRange
PeekMessageA
SetCapture
EnumWindows
GetSysColorBrush
ShowScrollBar
EnableMenuItem
CallNextHookEx
SetParent
GetDCEx
DestroyCursor
DefFrameProcA
DispatchMessageW
CheckMenuItem
InsertMenuA
EnableScrollBar
SendMessageW
GetMenuStringA
GetClassLongA
GetWindow
GetCursorPos
GetKeyNameTextA
TranslateMDISysAccel
GetMenuItemID
EndPaint
BeginPaint
FindWindowA
CharLowerBuffA
IsDialogMessageA
CharLowerA
GetParent
SetRect
DestroyWindow
GetDlgItem
GetMenuState
SetPropA
OpenClipboard
EnumThreadWindows
ClientToScreen
SendMessageA
GetClientRect
SetScrollRange
SetActiveWindow
GetWindowTextA
ChildWindowFromPoint
DestroyMenu
EqualRect
IsChild
CreatePopupMenu
CharToOemA
DrawFrameControl
GetKeyboardLayoutList
IsWindowVisible
TrackPopupMenu
ScrollWindow
SetTimer
IsIconic
SetMenu
GetLastActivePopup
CloseClipboard
GetKeyboardState
IsWindowEnabled
SetScrollPos
UnhookWindowsHookEx
SetWindowPos
ShowWindow
CreateMenu
GetWindowThreadProcessId
IsWindow
CharNextA
SetMenuItemInfoA
IsDialogMessageW
GetCursor
GetWindowRect
CharNextW
GetActiveWindow
IsZoomed
PtInRect
SetClipboardData
CharUpperBuffA
ShowOwnedPopups
GetTopWindow
TranslateMessage
GetMenuItemCount
DefMDIChildProcA
GetWindowLongA
PostMessageA
LoadIconA
RegisterClipboardFormatA
GetForegroundWindow
MapWindowPoints
UnregisterClassA
MessageBoxA
DispatchMessageA
LoadStringA
GetMessagePos
DestroyIcon
FillRect
GetDesktopWindow
RedrawWindow
DrawIconEx
RegisterClassA
SetWindowPlacement
InsertMenuItemA
KillTimer
MessageBeep
GetCapture
GetKeyboardLayoutNameA
OemToCharA
GetScrollInfo
FrameRect
DeleteMenu
InvalidateRect
GetMenu
DrawMenuBar
SetWindowLongA
PeekMessageW
SetForegroundWindow
SetCursor
GetMenuItemInfoA
OffsetRect
SetWindowsHookExA
GetKeyboardType
InflateRect
GetPropA
LoadCursorA
GetSystemMenu
GetDC
GetScrollPos
GetKeyState
IsWindowUnicode
GetWindowLongW
GetWindowDC

kernel32

MoveFileA
GetProcessHeap
VirtualAlloc
GetACP
GetModuleFileNameA
GetLastError
ExitThread
GetStringTypeA
GetStartupInfoA
lstrcpynA
FreeLibrary
IsBadReadPtr
GetCommandLineA
ReadFile
GetModuleHandleA
LocalReAlloc
ExitProcess
GlobalAlloc
GetProcAddress
LoadLibraryA
HeapAlloc

Sections

CODE
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

DATA
Size: 150KB - Virtual size: 149KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc5
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc0
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc6
Size: 1024B - Virtual size: 713B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc2
Size: 1024B - Virtual size: 670B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc4
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 984B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7247aa111fc8c26411fa31a9a8f4e6b1

Headers

File Characteristics

Imports

gdi32

shell32

oleaut32

user32

kernel32

Sections

CODE Size: 72KB - Virtual size: 71KB

DATA Size: 150KB - Virtual size: 149KB

.rsrc5 Size: 5KB - Virtual size: 5KB

.rsrc0 Size: 2KB - Virtual size: 1KB

.rsrc6 Size: 1024B - Virtual size: 713B

.rsrc2 Size: 1024B - Virtual size: 670B

.rsrc4 Size: 2KB - Virtual size: 1KB

.rsrc Size: 1024B - Virtual size: 984B

CODE
Size: 72KB - Virtual size: 71KB

DATA
Size: 150KB - Virtual size: 149KB

.rsrc5
Size: 5KB - Virtual size: 5KB

.rsrc0
Size: 2KB - Virtual size: 1KB

.rsrc6
Size: 1024B - Virtual size: 713B

.rsrc2
Size: 1024B - Virtual size: 670B

.rsrc4
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 1024B - Virtual size: 984B