e8223c2b1cfbe88e6f207c79bf798f2b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

e8223c2b1cfbe88e6f207c79bf798f2b_JaffaCakes118
Size

560KB
MD5

e8223c2b1cfbe88e6f207c79bf798f2b
SHA1

588f7194dba0a4b57437972a949a984b19b6463c
SHA256

e15a46b217d780ad69591ade4a286342cb09d936fe7597980c85783caa609863
SHA512

03e9cc6a6a2b042d75cb05ee9cc16192fbc738d058c6144be824b9b94a60b8e9cf69086175ebb29035e97a62f57063944a97a42ee39aef23f659d3add6eb882d
SSDEEP

12288:MKpgTHv9H1fU9rHLVBzoZlqofnOeGXfwHvEkXG0q55IPK0o:MKYWGXqofnOeIYHsd5Vh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e8223c2b1cfbe88e6f207c79bf798f2b_JaffaCakes118

Files

e8223c2b1cfbe88e6f207c79bf798f2b_JaffaCakes118
.dll windows:4 windows x86 arch:x86

f72c1fa67c976e3b9954053484a89499

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

pngu3267

??0CPNBitmapImage@@QAE@XZ
?LoadFromResource@CPNBitmapImage@@UAEHK@Z
?MakeDeviceDependent@CPNBitmapImage@@UAEHPAVCPNDC@@@Z
?LoadFromFile@CPNBitmapImage@@UAEHPBD@Z
?SaveToFile@CPNBitmapImage@@UAEHPBD@Z
?CreateBlankImage@CPNBitmapImage@@UAEHABVCPNDC@@ABVCPNxSize@@@Z
?MakeDeviceIndependent@CPNBitmapImage@@UAEHXZ
?Detach@XPNImage@@UAEXXZ
?GetColorAt@CPNBitmapImage@@UAEHJJAAVCPNColor@@@Z
?ReplaceColorAtPoint@CPNBitmapImage@@UAEHJJJJ@Z
?ConvertToGrayscale@CPNBitmapImage@@UAEHXZ
?Colorize@CPNBitmapImage@@UAEHABVCPNColor@@@Z
?ColorizeWithMask@XPNBitmapImage@@UAEHABVCPNColor@@PAV2@K@Z
?Clone@CPNBitmapImage@@UAEPAVCPNImage@@XZ
?Adopt@CPNBitmapImage@@UAEHK@Z
?Free@CPNBitmapImage@@UAEXXZ
?ReplaceColorAt@CPNBitmapImage@@UAEHJJABVCPNColor@@@Z
??1CPNBitmapImage@@UAE@XZ
?GetColorTableIndexAt@CPNBitmapImage@@UAEJJJ@Z
?LoadStandardBmp@CPNBitmapImage@@UAEHK@Z
?GetDataPtr@CPNBitmapImage@@UAEXPAPAX@Z
?GetRowBytes@CPNBitmapImage@@UAEKXZ
?Attach@CPNBitmapImage@@UAEXPAUHBITMAP__@@@Z
?GetControlsFontName@CPNDrawHelper@@SAPBDXZ
?GetControlsFontSize@CPNDrawHelper@@SAJXZ
??0CPNColor@@QAE@EEE@Z
??1CPNColor@@UAE@XZ
?SetColorAtColorTableIndex@CPNBitmapImage@@UAEHJABVCPNColor@@@Z
?DeviceDependentImageCopy@CPNImage@@MAEHK@Z
?GetColorAtColorTableIndex@CPNBitmapImage@@UAEHJAAVCPNColor@@@Z

pncrt

_onexit
_iob
rand
__dllonexit
exit
_purecall
_putenv
fprintf
_getmbcp
_mbctype
strtod
isdigit
strtol
getenv
_stricmp
atol
_ismbcspace
_vsnprintf
memmove
tolower
sscanf
strtok
remove
isspace
strncmp
atof
longjmp
_setjmp3
strncat
_strupr
_strlwr
fwrite
_snprintf
realloc
fopen
fseek
ftell
fread
fclose
_ftol
sprintf
_splitpath
??3@YAXPAX@Z
_initterm
strchr
strstr
_strnicmp
strrchr
calloc
_stat
atoi
free
malloc
strncpy
_adjust_fdiv
printf
_strcmpi
_itoa
??2@YAPAXI@Z

ole32

RevokeDragDrop
RegisterDragDrop

kernel32

GetCurrentProcessId
GetVersion
GetSystemInfo
MultiByteToWideChar
WideCharToMultiByte
GetFileSize
GetVersionExA
GetDiskFreeSpaceA
CreateFileA
CloseHandle
GetFileAttributesA
GetModuleFileNameA
FindFirstFileA
FindNextFileA
FindClose
lstrcatA
lstrcmpiA
GetPrivateProfileStringA
GetLastError
CopyFileA
LoadLibraryA
GetProcAddress
RemoveDirectoryA
FreeLibrary
OutputDebugStringA
FindResourceA
SizeofResource
LoadResource
LockResource
CreateDirectoryA
GlobalMemoryStatus
GlobalSize
GlobalLock
GlobalUnlock
IsDBCSLeadByte
lstrcpynA
lstrlenA
GetModuleHandleA
GetCurrentThreadId
InterlockedIncrement
InterlockedDecrement
SetErrorMode

user32

PostMessageA
SetFocus
GetParent
UnhookWindowsHookEx
GetNextDlgTabItem
IsChild
IsWindowVisible
GetClientRect
GetActiveWindow
SendMessageA
GetDlgCtrlID
GetWindowLongA
GetClassNameA
GetFocus
GetKeyState
GetSysColor
FillRect
SetRect
MessageBoxA
RedrawWindow
MapWindowPoints
GetSystemMetrics
EndPaint
BeginPaint
GetScrollInfo
GetWindow
SetActiveWindow
CreateWindowExA
InvalidateRect
GetScrollPos
SetScrollRange
SetScrollInfo
SetScrollPos
ScrollWindowEx
SetCursor
LoadCursorA
DispatchMessageA
TranslateMessage
PeekMessageA
DialogBoxParamA
IsDlgButtonChecked
EndDialog
UpdateWindow
MoveWindow
SetWindowTextA
ReleaseDC
GetWindowRect
GetDC
DestroyWindow
SetWindowLongA
ShowWindow
GetWindowTextA
GetWindowTextLengthA
CharNextA
EnableWindow
ValidateRect
CopyRect
DrawTextA
wsprintfA
CloseClipboard
GetClipboardData
OpenClipboard
TrackPopupMenu
InsertMenuItemA
GetCursorPos
CreatePopupMenu
CallWindowProcA
CharLowerA
CharPrevA
GetWindowPlacement
GetWindowThreadProcessId
IsWindow
FindWindowA
IsRectEmpty
GetClassInfoA
DefWindowProcA
RegisterClassA
SetWindowsHookExA
SetWindowPos
GetDlgItem
CallNextHookEx

advapi32

RegCreateKeyExA
RegOpenKeyExA
RegCloseKey
RegSetValueExA
RegDeleteValueA
RegQueryValueExA
RegQueryInfoKeyA

shell32

DragAcceptFiles
DragQueryFileA

gdi32

CreateCompatibleBitmap
GetClipBox
CreateDIBitmap
SetBkMode
GetStockObject
GetTextExtentPointA
GetTextMetricsA
CreateFontA
CreatePatternBrush
BitBlt
CreateDIBSection
SelectObject
DeleteDC
DeleteObject
CreateSolidBrush
GetTextExtentPoint32A
SetTextColor
SetBkColor
CreateCompatibleDC
GetObjectA

comctl32

InitCommonControlsEx

Exports

Exports

GetAppPointer
LoadTMDEditShortcutSets
RMACreateInstance
RMAShutdown
SetAppPointer
SetDLLAccessPath
ShowTrackInfoEditor
ShowTrackInfoEditor2
UnLoadTMDEditShortcutSets

Sections

.text
Size: 248KB - Virtual size: 247KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 104KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 20KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f72c1fa67c976e3b9954053484a89499

Headers

File Characteristics

Imports

pngu3267

pncrt

ole32

kernel32

user32

advapi32

shell32

gdi32

comctl32

Exports

Exports

Sections

.text Size: 248KB - Virtual size: 247KB

.rdata Size: 32KB - Virtual size: 30KB

.data Size: 104KB - Virtual size: 105KB

.rsrc Size: 96KB - Virtual size: 95KB

.reloc Size: 20KB - Virtual size: 18KB

.text
Size: 248KB - Virtual size: 247KB

.rdata
Size: 32KB - Virtual size: 30KB

.data
Size: 104KB - Virtual size: 105KB

.rsrc
Size: 96KB - Virtual size: 95KB

.reloc
Size: 20KB - Virtual size: 18KB