695579360bdbdab40a0df450af10628d_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

695579360bdbdab40a0df450af10628d_JaffaCakes118
Size

474KB
MD5

695579360bdbdab40a0df450af10628d
SHA1

254c8f577b9f44727de32aa440328ef00955db59
SHA256

29ac9f2b359f91e5403bd422e55fa24ce3f890adc58b59bee29d7b0e3a8259e6
SHA512

9314b8dc206a798e05db9796e64da2ed177b8d23777ffb23ca7ebdec63f438a516be6b01c9e65b7c76355bc96e220124200d3e1400d34e4fc094314d50e098ed
SSDEEP

6144:uB4cfIB+6+AVbYXkbv7xxfC0Gwxbr6hYYJg:uehB+YVbYUbjxx60b

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
695579360bdbdab40a0df450af10628d_JaffaCakes118

Files

695579360bdbdab40a0df450af10628d_JaffaCakes118
.exe windows:5 windows x86 arch:x86

f8f5916d7af3145e78e4dd5b43539fea

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetModuleHandleW
VirtualAlloc

user32

SetCursor
SetCursorPos
SetDlgItemTextA
SetFocus
SetForegroundWindow
SetMenu
SetWindowLongA
SetWindowPos
SetWindowTextA
ShowWindow
TranslateMessage
UnregisterClassA
UpdateWindow
WinHelpA
wsprintfA
GetWindowTextA
GetWindowRect
GetWindowLongA
GetSystemMetrics
GetSubMenu
GetParent
GetMonitorInfoW
GetMessageTime
GetMessageA
GetMenuStringW
GetMenuItemID
GetMenu
GetKeyboardLayoutNameW
GetKeyboardLayoutList
GetKeyNameTextA
GetDlgItemTextA
GetDlgItem
GetDesktopWindow
GetDC
GetCursorPos
GetCursorInfo
GetClipboardViewer
GetClipboardData
GetClassNameW
GetCaretPos
SetCapture
FillRect
EndPaint
EndDialog
EnableWindow
EnableMenuItem
DrawTextA
DrawMenuBar
DrawCaption
DispatchMessageA
DialogBoxParamA
DialogBoxIndirectParamW
DialogBoxIndirectParamA
DestroyWindow
DeleteMenu
DefWindowProcA
DdePostAdvise
CreateWindowExA
CreateDialogParamW
CreateDesktopW
ClientToScreen
CheckMenuRadioItem
CheckMenuItem
CharUpperBuffA
ChangeDisplaySettingsA
BeginPaint
CharLowerA
IsIconic
DestroyCursor
InSendMessage
CharUpperA
IsCharAlphaNumericW
IsCharLowerA
GetWindowTextLengthA
ReleaseCapture
IsWindowVisible
LoadIconW
CloseWindowStation
GetLastActivePopup
CountClipboardFormats
AnyPopup
CloseClipboard
SendMessageTimeoutW
SendMessageA
SendDlgItemMessageA
ReleaseDC
RegisterWindowMessageA
RegisterHotKey
RegisterClassA
RedrawWindow
PtInRect
PostThreadMessageW
PostQuitMessage
PostMessageA
PeekMessageA
MoveWindow
MonitorFromPoint
MessageBoxA
MessageBeep
MapVirtualKeyA
LoadStringA
LoadIconA
LoadCursorA
LoadBitmapA
IsZoomed
IsCharUpperW
IsCharLowerW
IsCharAlphaW
FindWindowA
InvalidateRect

gdi32

GetROP2
GetGraphicsMode
GetTextColor
StrokeAndFillPath
StretchBlt
SetViewportOrgEx
SetTextColor
SetPixel
SetBkMode
SetBkColor
SelectObject
RoundRect
Rectangle
PolyDraw
MoveToEx
LineTo
GetTextFaceW
GetTextExtentPoint32W
GetPixel
GetObjectW
GetKerningPairsA
GetDeviceCaps
GetDIBits
GdiAlphaBlend
ExtCreatePen
EndPath
Ellipse
DeleteObject
DeleteDC
CreateSolidBrush
CreatePen
CreateFontW
CreateDCW
CreateCompatibleDC
CreateCompatibleBitmap
CloseFigure
BeginPath
AngleArc
CreateMetaFileA
GetMapMode
UnrealizeObject
GetStockObject
GetFontLanguageInfo
GetTextCharacterExtra
StrokePath
GetSystemPaletteUse
GetStretchBltMode
SaveDC
GetTextCharset
PathToRegion
WidenPath
GetLayout
GetPixelFormat
RealizePalette
GetObjectType
SetMetaRgn
SwapBuffers
GetTextAlign
GetPolyFillMode
UpdateColors

comdlg32

GetOpenFileNameW
GetSaveFileNameW

advapi32

RegOpenKeyW
RegQueryValueExW

shell32

SHFileOperationW
Shell_NotifyIcon
ShellExecuteW
DoEnvironmentSubstA
DragFinish
DragQueryFileW
DragQueryPoint
ExtractIconExW
SHBrowseForFolderW
SHCreateDirectoryExW
SHEmptyRecycleBinA
SHEmptyRecycleBinW
Shell_NotifyIconW
SHGetDesktopFolder
SHGetDiskFreeSpaceExW
SHGetFileInfo
SHGetFolderPathW
SHGetMalloc
SHGetPathFromIDListA
SHGetPathFromIDListW
SHGetSpecialFolderPathA
SHPathPrepareForWriteA
ShellExecuteExW

ole32

CLSIDFromProgID
CLSIDFromString
CoCreateInstance
CoCreateInstanceEx
StringFromIID
StringFromCLSID
OleUninitialize
OleSetMenuDescriptor
OleSetContainedObject
OleInitialize
MkParseDisplayName
IIDFromString
CreateStreamOnHGlobal
CreateBindCtx
CoUninitialize
CoTaskMemFree
CoTaskMemAlloc
CoSetProxyBlanket
CoInitializeSecurity
CoInitialize

shlwapi

StrStrW
StrRChrW
StrRStrIW

msvcrt

_cexit
wcslen
wcscpy
strstr
sscanf
sprintf
realloc
rand
memmove
malloc
isspace
isdigit
isalnum
free
fopen
floor
fclose
exit
calloc
atol
atoi
_CIacos
_XcptFilter
__getmainargs
__p__commode
__p__fmode
__set_app_type
__setusermatherr
_acmdln
_adjust_fdiv
_c_exit
_controlfp
_except_handler3
_exit
_ftol
_initterm
_itoa
_ltoa
_purecall
_strnicmp

Sections

.text
Size: 261KB - Virtual size: 260KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 177KB - Virtual size: 177KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f8f5916d7af3145e78e4dd5b43539fea

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

shlwapi

msvcrt

Sections

.text Size: 261KB - Virtual size: 260KB

.rdata Size: 28KB - Virtual size: 27KB

.data Size: 177KB - Virtual size: 177KB

.rsrc Size: 7KB - Virtual size: 6KB

.text
Size: 261KB - Virtual size: 260KB

.rdata
Size: 28KB - Virtual size: 27KB

.data
Size: 177KB - Virtual size: 177KB

.rsrc
Size: 7KB - Virtual size: 6KB