570047b5d012d0b2345fb48cc9aaec9d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

570047b5d012d0b2345fb48cc9aaec9d_JaffaCakes118
Size

116KB
MD5

570047b5d012d0b2345fb48cc9aaec9d
SHA1

0254d7098094c222405c87c9217fcf432cdb785d
SHA256

ed3fb681718b9333a9e58de4e87c399f06bd16eb2929671f9f45e0029d953b0e
SHA512

035d77dee5942b32440bf45967c09a66ff4f74602e21e93eec131f531af1e99c050e1e2753b79182033fb9074cb7ad340b2b30a1273704f46c64edc8949994c6
SSDEEP

3072:eymzq1Wrxewfs2d0Ro9fs30wuYShtEQIqv:wzqCYqDd+Ws5zSht9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
570047b5d012d0b2345fb48cc9aaec9d_JaffaCakes118

Files

570047b5d012d0b2345fb48cc9aaec9d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b48f25cdd1839a8562886ac6491c8b18

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comdlg32

GetOpenFileNameA
GetSaveFileNameA
ChooseColorA
FindTextA
GetFileTitleA

kernel32

GetOEMCP
GetSystemDefaultLangID
WriteFile
FindClose
LocalAlloc
SizeofResource
GetACP
SetFilePointer
lstrcatA
CompareStringA
GetStdHandle
GetDiskFreeSpaceA
DeleteCriticalSection
LocalReAlloc
Sleep
ResetEvent
HeapAlloc
SetLastError
VirtualAllocEx
SetErrorMode
InitializeCriticalSection
GetModuleFileNameA
FormatMessageA
GlobalAddAtomA
GetFullPathNameA
GetFileSize
EnumCalendarInfoA
SetEndOfFile
GetCurrentProcess
GetCurrentProcessId
MulDiv
GetVersion
WaitForSingleObject
GetThreadLocale
GetCurrentThreadId
lstrcpyA
FreeLibrary
HeapFree
LoadLibraryExA
SetThreadLocale
FreeResource
LocalFree
GetProcAddress
GetStringTypeW
GetModuleHandleA
GetEnvironmentStrings
GetLocalTime
WideCharToMultiByte
GetVersionExA
VirtualFree
GlobalAlloc
GetFileType
GetLastError
ExitThread
FindFirstFileA
VirtualAlloc
GetProcessHeap
CreateEventA
GetFileAttributesA
lstrcmpA
GetTickCount
GetUserDefaultLCID
GlobalFindAtomA
GetStartupInfoA
VirtualQuery
ReadFile
CloseHandle
lstrcpynA
MoveFileA
GetDateFormatA
DeleteFileA
SetEvent
RaiseException
ExitProcess
lstrlenA
GlobalDeleteAtom
MoveFileExA
LockResource
EnterCriticalSection
LoadResource
GetCommandLineA

shell32

SHGetDesktopFolder
SHGetSpecialFolderLocation
DragQueryFileA

oleaut32

SafeArrayPtrOfIndex
VariantChangeType

user32

DeleteMenu
GetMenu
OpenClipboard
GetMenuItemCount
UnhookWindowsHookEx
RegisterWindowMessageA
SetScrollInfo
DispatchMessageA
ChildWindowFromPoint
GetScrollRange
GetDesktopWindow
DrawIcon
PeekMessageW
IsWindowVisible
DrawEdge
MsgWaitForMultipleObjects
MapVirtualKeyA
SetWindowTextA
EmptyClipboard
PeekMessageA
InsertMenuA
GetWindowLongW
IsDialogMessageW
GetClipboardData
SetWindowsHookExA
SystemParametersInfoA
OffsetRect
ShowScrollBar
SetCursor
DrawTextA
GetWindowThreadProcessId
SetWindowLongW
CallWindowProcA
SetFocus
CharLowerA
RemoveMenu
DrawFrameControl
DestroyIcon
MessageBoxA
TranslateMessage
GetMenuItemID
LoadKeyboardLayoutA
ShowWindow
CloseClipboard
FindWindowA
FrameRect
GetMenuItemInfoA
GetScrollPos
EnumThreadWindows
ScrollWindow
SetActiveWindow
GetWindowDC
BeginPaint
CharNextW
PtInRect
IsChild
CharNextA
EnableScrollBar
SetRect
ShowOwnedPopups
EnumWindows
LoadIconA
EnableMenuItem
IsIconic
GetKeyboardLayout
GetSystemMenu
IsWindowUnicode
GetDCEx
DestroyWindow
IsWindow
GetClientRect
OemToCharA
LoadCursorA
UpdateWindow
GetKeyboardState
CreateWindowExA
SetWindowPos
GetClassNameA
ReleaseDC
GetDC
SetTimer
RemovePropA
SetParent
InvalidateRect
PostMessageA
GetCapture
EqualRect
GetParent
ReleaseCapture
FillRect
GetKeyState
EnumChildWindows
DestroyMenu
MessageBeep
IsRectEmpty
DrawIconEx
GetClassInfoA
IntersectRect
GetKeyNameTextA
DrawAnimatedRects
GetClassLongA
ScreenToClient
GetCursor
GetCursorPos
SetScrollPos
LoadBitmapA
CharToOemA
GetTopWindow
GetWindowLongA
CreateMenu
SetMenu
SetMenuItemInfoA
AdjustWindowRectEx
InsertMenuItemA
DestroyCursor
GetSysColor
GetMenuStringA
CharLowerBuffA
GetWindow
SendMessageW
GetLastActivePopup
GetWindowPlacement
CreateIcon
GetFocus
GetDlgItem
CharUpperBuffA
GetIconInfo
SetWindowPlacement
GetScrollInfo
SetWindowLongA
GetSubMenu
WaitMessage
SendMessageA
IsDialogMessageA
ClientToScreen
TrackPopupMenu
SetPropA
IsWindowEnabled
SetCapture
SetForegroundWindow
CallNextHookEx
GetPropA
DispatchMessageW
GetForegroundWindow
GetActiveWindow
DefWindowProcA
RegisterClassA
GetSysColorBrush
GetWindowRect
RegisterClipboardFormatA
WindowFromPoint
IsZoomed
MapWindowPoints
GetMenuState
SetScrollRange
RedrawWindow
TranslateMDISysAccel
DefMDIChildProcA
CreatePopupMenu
SetClassLongA
MoveWindow
DrawMenuBar
CheckMenuItem
LoadStringA
ActivateKeyboardLayout
UnregisterClassA
wsprintfA
DefFrameProcA
GetKeyboardType
GetSystemMetrics
GetKeyboardLayoutNameA
GetWindowTextA
EndPaint
GetMessagePos
PostQuitMessage
GetKeyboardLayoutList
KillTimer
InflateRect

comctl32

ImageList_Read
ImageList_Create
ImageList_DragShowNolock
ImageList_DrawEx
ImageList_Add
ImageList_Write
ImageList_Destroy

msvcrt

cos
memmove
memcpy

version

VerFindFileA
GetFileVersionInfoA

shlwapi

SHDeleteValueA
SHStrDupA
SHEnumValueA

Sections

.text
Size: 103KB - Virtual size: 103KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b48f25cdd1839a8562886ac6491c8b18

Headers

File Characteristics

Imports

comdlg32

kernel32

shell32

oleaut32

user32

comctl32

msvcrt

version

shlwapi

Sections

.text Size: 103KB - Virtual size: 103KB

.idata Size: 8KB - Virtual size: 7KB

.edata Size: 4KB - Virtual size: 3KB

.text
Size: 103KB - Virtual size: 103KB

.idata
Size: 8KB - Virtual size: 7KB

.edata
Size: 4KB - Virtual size: 3KB