456b3a3ea40023fb9bf81ac701cea8f6_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

456b3a3ea40023fb9bf81ac701cea8f6_JaffaCakes118
Size

213KB
MD5

456b3a3ea40023fb9bf81ac701cea8f6
SHA1

85f4993f6b823c0f10d9e7e7bcf08ea7d46e1a0b
SHA256

24e9008ae6a9cd629d47ed9e8f7062551c7c2fd4cf3d0575d1cedf9f6b6fc9f6
SHA512

a752edf3c07585c3183c337c49553f3228fb6f43315fe42a6b6f9b6ac83dc12780786c9ff8b1b44eaee036a80dc4136be784fd92cff104932ca4ec8aa6927b8d
SSDEEP

3072:HadOUJfOv30xUiteu55Cva5xmS3aaOnQe+4HWjTBjnUb0R6ZONrB19d3hun81p:Ha3fOcxjeu50va5xmPHMTBjAKp9D7j

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
456b3a3ea40023fb9bf81ac701cea8f6_JaffaCakes118

Files

456b3a3ea40023fb9bf81ac701cea8f6_JaffaCakes118
.exe windows:5 windows x86 arch:x86

438a8a31480e1f79cf3b1112e32e982a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetWindowLongA
wvsprintfA
SetWindowPos
FindWindowA
RedrawWindow
GetWindowTextA
EnableWindow
GetSystemMetrics
IsWindow
CheckRadioButton
UnregisterClassA
SetCursor
GetSysColorBrush
DialogBoxParamA
DestroyAcceleratorTable
DispatchMessageA
TranslateMessage
LoadIconA
EmptyClipboard
SetClipboardData
SetFocus
CharUpperA
OpenClipboard
IsDialogMessageA
TranslateAcceleratorA
GetMessageA
LoadAcceleratorsA
RemoveMenu
InvalidateRect
ChildWindowFromPoint
PostMessageA
DestroyCursor
CreateDialogParamA
GetWindowRect
IsMenu
GetSubMenu
SetDlgItemInt
GetWindowPlacement
CharLowerBuffA
EnableMenuItem
CheckMenuRadioItem
GetSysColor
KillTimer
DestroyIcon
DestroyWindow
PostQuitMessage
GetClientRect
MoveWindow
GetSystemMenu
SetTimer
SetWindowPlacement
InsertMenuItemA
GetMenu
CheckMenuItem
SetMenuItemInfoA
SetActiveWindow
DefDlgProcA
RegisterClassA
EndDialog
SetDlgItemTextA
EnumClipboardFormats
GetClipboardData
CloseClipboard
GetClassInfoA
CallWindowProcA
SetWindowLongA
IsDlgButtonChecked
SetWindowTextA
CheckDlgButton
GetActiveWindow
MessageBoxA
wsprintfA
GetDlgItemTextA
SendMessageA
GetCursorPos
TrackPopupMenu
ClientToScreen
DestroyMenu
CreatePopupMenu
AppendMenuA
SendDlgItemMessageA
GetDlgItem
LoadCursorA
AdjustWindowRect
BeginPaint
CreateCaret
CreateMDIWindowA
CreateMenu
CreateWindowExA
DefFrameProcA
DefMDIChildProcA
DefWindowProcA
DestroyCaret
DrawMenuBar
EndPaint
EnumChildWindows
EnumThreadWindows
EnumWindows
FillRect
FrameRect
GetCapture
GetClassLongA
GetClassNameA
GetDC
GetDesktopWindow
GetDialogBaseUnits
GetDlgCtrlID
GetKeyState
GetMenuItemCount
GetMenuItemID
GetMenuStringA
GetParent
GetScrollPos
GetWindow
GetWindowThreadProcessId
InsertMenuA
IntersectRect
IsIconic
IsZoomed
LoadBitmapA
LoadImageA
MapDialogRect
MapVirtualKeyA
OffsetRect
PeekMessageA
PostThreadMessageA
ReleaseCapture
ReleaseDC
ScreenToClient
SetCapture
SetCaretPos
SetForegroundWindow
SetScrollPos
SetScrollRange
ShowCaret
ShowScrollBar
ShowWindow
SystemParametersInfoA
TranslateMDISysAccel
UpdateWindow
WinHelpA
WindowFromPoint
wsprintfW

kernel32

ReadProcessMemory
IsProcessorFeaturePresent
InterlockedDecrement
InterlockedIncrement
InitializeCriticalSectionAndSpinCount
DecodePointer
EncodePointer
GetStartupInfoW
HeapSetInformation
BeginUpdateResourceA
RegisterWaitForSingleObject
IsBadHugeReadPtr
CancelTimerQueueTimer
GlobalAlloc
ReleaseMutex
CreateDirectoryW
GlobalSize
CreateThread
CreateMutexW
FindClose
FindNextFileW
FindFirstFileW
TerminateThread
CopyFileW
lstrcpynW
GetSystemInfo
GetVersionExW
ExpandEnvironmentStringsW
GetTimeFormatW
GetDateFormatW
GetLocalTime
MulDiv
GetACP
SizeofResource
LockResource
LoadResource
FindResourceW
LocalLock
LocalAlloc
GetTempPathW
SetLastError
GetCommandLineW
VirtualFree
HeapCreate
HeapDestroy
LoadLibraryA
LocalUnlock
FlushFileBuffers
GetConsoleMode
GetConsoleCP
GetModuleFileNameA
WriteFile
GetDateFormatA
GetTimeFormatA
GetCurrentDirectoryA
GetFileType
GetStdHandle
SetHandleCount
SetFilePointer
GetTimeZoneInformation
IsValidCodePage
GetOEMCP
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetStringTypeW
GetStringTypeA
GetCPInfo
LCMapStringW
LCMapStringA
GetStartupInfoA
GetProcessHeap
HeapAlloc
GetVersionExA
GetCommandLineA
HeapFree
ExitProcess
GetModuleHandleA
GetSystemTimeAsFileTime
GetDriveTypeW
FileTimeToLocalFileTime
FileTimeToSystemTime
ReadFile
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
RaiseException
RtlUnwind
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
LocalFree
LoadLibraryW
GetProcAddress
CreateFileW
GetCurrentProcessId
GetCurrentProcess
CloseHandle
GlobalFree
FreeLibrary
GetCurrentDirectoryW
SetCurrentDirectoryW
GetModuleHandleW
GetCurrentThreadId
GetLastError
GlobalLock
GlobalUnlock
GetFileAttributesW
SetFileAttributesW
MoveFileW
GetFullPathNameW
GetLongPathNameW
lstrcmpiW
DeleteFileW
lstrcpyW
lstrlenW
GetModuleFileNameW
lstrcatW
lstrcmpW
MultiByteToWideChar
WideCharToMultiByte
VirtualAlloc
HeapReAlloc
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetLocaleInfoA
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
SetStdHandle
GetLocaleInfoW
SetEnvironmentVariableA
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
WaitForSingleObject
SetWaitableTimer
CreateWaitableTimerA
Sleep
WritePrivateProfileStringA
WaitForDebugEvent
VirtualProtect
VerLanguageNameA
SuspendThread
SetThreadPriority
SetThreadLocale
SetThreadContext
SetEvent
SetConsoleCtrlHandler
SearchPathA
MoveFileA
GetWindowsDirectoryA
GetThreadSelectorEntry
GetThreadPriority
GetThreadContext
GetSystemDirectoryA
GetSystemDefaultLangID
GetPrivateProfileStringA
GetPrivateProfileIntA
GetCurrentThread
FlushInstructionCache
FindResourceA
DebugActiveProcess
CreateDirectoryA
ContinueDebugEvent
GetPriorityClass
GetVersion
lstrlenA
lstrcpyA
lstrcpynA
GetFileAttributesA
FindFirstFileA
GetTempFileNameA
GetTempPathA
ResumeThread
OutputDebugStringA
VirtualProtectEx
CreateProcessA
lstrcmpiA
GetEnvironmentVariableA
IsBadWritePtr
IsBadCodePtr
GetPrivateProfileStructA
WritePrivateProfileStructA
VirtualQueryEx
FindNextFileA
CopyFileA
SetFileAttributesA
SetPriorityClass
WriteProcessMemory
SetCurrentDirectoryA
DeleteFileA
SetProcessShutdownParameters
FlushViewOfFile
UnmapViewOfFile
CreateFileMappingA
MapViewOfFile
DeviceIoControl
GlobalReAlloc
GlobalMemoryStatus
FileTimeToDosDateTime
GetFileSize
GetFileTime
VirtualQuery
lstrcmpA
IsBadReadPtr
IsBadStringPtrA
OpenProcess
ExitThread
lstrcatA
HeapSize
CompareStringW
CompareStringA
GetDriveTypeA
SetEndOfFile
CreateFileA

Sections

.CODE
Size: 91KB - Virtual size: 91KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 97KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

438a8a31480e1f79cf3b1112e32e982a

Headers

DLL Characteristics

File Characteristics

Imports

user32

kernel32

Sections

.CODE Size: 91KB - Virtual size: 91KB

.rdata Size: 17KB - Virtual size: 16KB

.data Size: 7KB - Virtual size: 18KB

.rsrc Size: 97KB - Virtual size: 96KB

.CODE
Size: 91KB - Virtual size: 91KB

.rdata
Size: 17KB - Virtual size: 16KB

.data
Size: 7KB - Virtual size: 18KB

.rsrc
Size: 97KB - Virtual size: 96KB