45f8550a77e404f0e51a6152454b95e5_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

45f8550a77e404f0e51a6152454b95e5_JaffaCakes118
Size

71KB
MD5

45f8550a77e404f0e51a6152454b95e5
SHA1

d00b36b3a648c30de933ffb001549bb4efab03b3
SHA256

bb48a3328255cf921ff9f9a136447e065e9b980f821f8dfd971abafaea7f2052
SHA512

415c79fd45c702f11d20f52df5af309e0b3786a797572d22360e6656812000dfc6ab4bd3d48eb709b8d7c076746715c3fd62d1bdd1dcb8bf8853c64afb6d3487
SSDEEP

1536:aLpvz2M/wfTKbMpr3gYHi32fuAbi9zN2fIjqzT:aLpvz7YfeoxwYHe2xxgET

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
45f8550a77e404f0e51a6152454b95e5_JaffaCakes118

Files

45f8550a77e404f0e51a6152454b95e5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f004971d75a9126865de757a8ebdfeb1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

ReleaseStgMedium
OleCreateStaticFromData
CoDisconnectObject

kernel32

VirtualAllocEx
GetACP
GetCommandLineA
GetFileType
GetFileSize
LoadLibraryA
GetFileAttributesA
ExitProcess

version

VerQueryValueA
GetFileVersionInfoSizeA

shlwapi

SHEnumValueA
SHDeleteKeyA
SHGetValueA

comdlg32

FindTextA
ChooseColorA

gdi32

RestoreDC
GetTextColor
GetBitmapBits
SetPixel

msvcrt

sprintf
wcscspn
atol
wcsncmp
swprintf

advapi32

GetLengthSid
RegQueryValueExA

shell32

Shell_NotifyIconW

user32

GetMenu
IsWindowUnicode
EnumWindows
OemToCharA
SetWindowLongW
GetCapture
IsDialogMessageA
LoadKeyboardLayoutA
ReleaseDC
GetForegroundWindow
EnableMenuItem
PeekMessageW
GetCursor
SendMessageA
WaitMessage
EnumChildWindows
PtInRect
ChildWindowFromPoint
RemovePropA
EndDialog
DrawTextA
GetActiveWindow
SetFocus
SetParent
UnregisterClassA
InsertMenuItemA
CharUpperA
GetSystemMetrics
ScreenToClient
DeleteMenu
GetWindowLongA
OpenClipboard
BeginPaint
SystemParametersInfoA
GetSubMenu
SetScrollInfo
TranslateMessage
InsertMenuA
DrawFrameControl
CreatePopupMenu
GetClientRect
SetWindowTextA
PostQuitMessage
DrawEdge
GetClipboardData
GetScrollRange
GetPropA
UpdateWindow
InflateRect
GetKeyboardType
GetMenuItemID
GetScrollPos
ClientToScreen
LoadIconA
CreateWindowExA
PeekMessageA
CharNextA
GetWindowPlacement
wsprintfA
UnhookWindowsHookEx
GetIconInfo
GetDlgItem
IsWindow
SetMenuItemInfoA
IsRectEmpty
GetWindowTextA
GetMenuItemCount
IntersectRect
ShowWindow
SetScrollRange
GetParent
MsgWaitForMultipleObjects
GetWindow
RegisterWindowMessageA
MapWindowPoints
GetWindowDC
ScrollWindow
GetSystemMenu
DefMDIChildProcA
DefWindowProcA
RedrawWindow
GetClassInfoA
SetClipboardData
GetScrollInfo
SetClassLongA
MapVirtualKeyA
SetWindowLongA
TranslateMDISysAccel
CharLowerA
GetClassLongA
CharLowerBuffA
IsWindowEnabled
GetClassNameA
GetTopWindow

Exports

Exports

_PgAqTWw

Sections

.text
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 52KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.data
.rdata
.rsrc/0/DIALOG/TEXTFILEDLG
.rsrc/0/MANIFEST/1
.xml
.rsrc/0/RCDATA/DVCLAL
.rsrc/0/STRING/4094
.rsrc/0/STRING/4095
.rsrc/1033/BITMAP/BBABORT.bmp
.rsrc/1033/version.txt
.text

Sharing

General

Malware Config

Signatures

Files

f004971d75a9126865de757a8ebdfeb1

Headers

File Characteristics

Imports

ole32

kernel32

version

shlwapi

comdlg32

gdi32

msvcrt

advapi32

shell32

user32

Exports

Exports

Sections

.text Size: 10KB - Virtual size: 9KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 52KB - Virtual size: 103KB

.rsrc Size: 5KB - Virtual size: 4KB

.text
Size: 10KB - Virtual size: 9KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 52KB - Virtual size: 103KB

.rsrc
Size: 5KB - Virtual size: 4KB