fefa99b59d2ef094d6305deaeb157176_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

fefa99b59d2ef094d6305deaeb157176_JaffaCakes118
Size

176KB
MD5

fefa99b59d2ef094d6305deaeb157176
SHA1

fe1ba2ad0f213eaa46024e3a2d04cc2ff654d421
SHA256

5cd249832dceda4d373ca389b2d19be834eb45da584f53baeff5decc8348e4f6
SHA512

4660f5faa53cd161a15584c46cf030c2f5c4dd7183f4dc78d0555d2198c51d41761fcdf7da93b2cf336ff06ad747839b10b962e317aa0ebf23f82d95c0d4a0fb
SSDEEP

3072:84vVU4roHO/3M2Lyy9I19+XrMIfkb7mxNxM1avZXr3kG+uVn:ZvVUcou/8taI1orMIfcmeg7UYV

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fefa99b59d2ef094d6305deaeb157176_JaffaCakes118

Files

fefa99b59d2ef094d6305deaeb157176_JaffaCakes118
.exe windows:5 windows x86 arch:x86

dd5164aa4e1f08791df7660d63ec3b6e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\hoEseshogspapMeme\ahpursbaazitoyshyyonrex\AginmegfroEdgeidalonrex\mmsaincudpiudepaesonrex.pdb

Imports

user32

ChildWindowFromPointEx
DefWindowProcA
IsDlgButtonChecked
SetWindowLongA
OpenIcon
SetRect
CreateDialogIndirectParamW
FrameRect
SetForegroundWindow
GetWindowPlacement
GetTopWindow
GetClassInfoW
GetClassInfoA
MessageBoxW
DrawEdge
SetCaretPos
FindWindowExA
BeginDeferWindowPos
OemToCharA
GetMenuState
IsCharAlphaNumericA
FindWindowA
TrackPopupMenu
EndDialog
GetMenu
LoadIconA
MessageBoxExA
AppendMenuW
UpdateWindow
RemoveMenu
IntersectRect
SetPropW
CharUpperA
IsWindowUnicode
LoadAcceleratorsA
GetWindowTextW
GetClientRect
ScreenToClient
TabbedTextOutW
AppendMenuA
LoadStringA
ArrangeIconicWindows
IsMenu
CreateMenu
PostThreadMessageA
GetKeyState
SetScrollInfo
GetWindowTextLengthW
GetDlgItemTextA
CreateDialogParamA
CheckDlgButton
DrawStateW
CreateIconIndirect
RegisterClassA
LoadImageW
DestroyAcceleratorTable
DestroyIcon
ReleaseDC
GetClassInfoExW
CheckMenuRadioItem
PostQuitMessage
DrawFocusRect
TrackPopupMenuEx
SetTimer
GetCursorPos
SetParent
CopyAcceleratorTableW
GetWindow
CloseDesktop
LoadCursorW
SendDlgItemMessageA
SendDlgItemMessageW
GetClassLongW
GetCaretPos
GetAsyncKeyState
GetDC
DefDlgProcW
GetLastActivePopup
DefWindowProcW
DefDlgProcA
DrawTextExW
GetDlgItemTextW
ToUnicodeEx
GetIconInfo
GetWindowLongW
UnloadKeyboardLayout
MoveWindow
ClientToScreen
CallWindowProcA
SystemParametersInfoW
GetWindowRect
GetUpdateRect
DrawAnimatedRects
EnumThreadWindows
GetScrollInfo
InflateRect
SetCursorPos
EnableMenuItem
HideCaret
SetUserObjectInformationW
CharUpperBuffA
CopyImage
SystemParametersInfoA
AttachThreadInput
TileWindows
ScrollWindowEx
DefFrameProcW
MapVirtualKeyW
CharNextW
GetWindowTextA
GetDlgItemInt
BringWindowToTop
SendMessageW
TranslateAcceleratorA
SetWindowTextA
IsDialogMessageW
GetMessageW
wsprintfA
InsertMenuItemW
AllowSetForegroundWindow
DrawFrameControl
ActivateKeyboardLayout
PeekMessageW

gdi32

SetMapMode
RemoveFontResourceW
SetRectRgn
ExtFloodFill
CreateSolidBrush
Polyline
ExtTextOutA
GetCurrentObject
GetTextColor
GetTextCharsetInfo
CreatePen
GetROP2
SelectPalette
CreateDIBitmap
PtVisible
GetDIBits
RectInRegion
CreateFontW
EndPage
ExcludeClipRect
RoundRect
SetBkColor
SelectObject
StretchDIBits
MoveToEx
SetPixel
CombineRgn
CreateDiscardableBitmap
SetBitmapBits
Ellipse
CreateCompatibleBitmap
SetDIBColorTable
GetClipBox
GetCharWidth32W
CreateFontIndirectA
GetLayout
Escape
SetDIBitsToDevice
DeleteDC
SetViewportExtEx
GetTextExtentPointA
GetObjectA
CreateFontIndirectW
CreateHatchBrush
GetPixel
RectVisible
CreateEllipticRgnIndirect
EnumFontsW
TextOutA
GetMapMode
GetTextFaceW

comctl32

ImageList_GetIcon
ImageList_GetImageCount
ImageList_LoadImageW
CreateToolbarEx
ImageList_Draw
PropertySheetA
ImageList_SetIconSize
InitCommonControlsEx
ImageList_Write
ImageList_GetIconSize

kernel32

ReleaseMutex
LeaveCriticalSection
GetSystemDefaultUILanguage
UnlockFile
lstrcmpW
CopyFileA
GetStringTypeExW
SetErrorMode
GetOEMCP
CreateFileMappingA
OpenFile
GetCurrentDirectoryW
FindNextChangeNotification
SetFileAttributesW
GetCompressedFileSizeW
SetSystemTimeAdjustment
FormatMessageW
EnumSystemLocalesA
GetTempPathW
LoadLibraryExW
VirtualFree
lstrlenW
GetBinaryTypeW
GetModuleHandleA
GetSystemDirectoryW
DuplicateHandle
GetVersionExW
IsValidLanguageGroup
TerminateThread
MulDiv
CreateMutexW
WaitCommEvent
GetFullPathNameA
GetStartupInfoW
GetShortPathNameW
FindNextFileW
CreateDirectoryW
SetCommMask
lstrcpynA
GlobalLock
WaitForSingleObject
GetBinaryTypeA
GetWindowsDirectoryW
SetEvent
FlushFileBuffers
GetModuleHandleW
GetFileAttributesExW
TryEnterCriticalSection
LocalLock
SetThreadLocale
GetFileAttributesExA
GetThreadContext
GetComputerNameA
MultiByteToWideChar
CreateNamedPipeW
GetModuleFileNameW
GetUserDefaultLCID
SetTimerQueueTimer

ole32

CoInitializeEx

Sections

.text
Size: 132KB - Virtual size: 132KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.psikif
Size: 1024B - Virtual size: 996B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.yid
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pox
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.hob
Size: 512B - Virtual size: 2B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Kuduag
Size: 512B - Virtual size: 26B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.refee
Size: 512B - Virtual size: 121B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 33KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

dd5164aa4e1f08791df7660d63ec3b6e

Headers

File Characteristics

PDB Paths

Imports

user32

gdi32

comctl32

kernel32

ole32

Sections

.text Size: 132KB - Virtual size: 132KB

.psikif Size: 1024B - Virtual size: 996B

.yid Size: 512B - Virtual size: 4B

.pox Size: 512B - Virtual size: 4B

.hob Size: 512B - Virtual size: 2B

.Kuduag Size: 512B - Virtual size: 26B

.refee Size: 512B - Virtual size: 121B

.rsrc Size: 6KB - Virtual size: 5KB

.reloc Size: 33KB - Virtual size: 33KB

.text
Size: 132KB - Virtual size: 132KB

.psikif
Size: 1024B - Virtual size: 996B

.yid
Size: 512B - Virtual size: 4B

.pox
Size: 512B - Virtual size: 4B

.hob
Size: 512B - Virtual size: 2B

.Kuduag
Size: 512B - Virtual size: 26B

.refee
Size: 512B - Virtual size: 121B

.rsrc
Size: 6KB - Virtual size: 5KB

.reloc
Size: 33KB - Virtual size: 33KB