1556a26fd79ac0224c4edb8cbcb6b7e5_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

1556a26fd79ac0224c4edb8cbcb6b7e5_JaffaCakes118
Size

23KB
MD5

1556a26fd79ac0224c4edb8cbcb6b7e5
SHA1

7c4a6719f0ea5d5f85dca75ddd642858787ad095
SHA256

4ea21d90dd94d6ad13ebb106eba11dcdc3f332341e0f73a338e41c6501e54d29
SHA512

5a5108e609e51393d3be7bae88e3128d5166044521cb6ac1d97b48901dc9e223c3de291658cf59a6012563a5b2dbf1ea726c490801a80dddde3ebca310a48edb
SSDEEP

384:lrIjXb9yDV5qKkpaeWLUi+ZH88RkbcDftXDvD0JQlY36ijpKvpsJaIoParyDbXZ6:lrIjXb9yDV5qKkpaeWLUlfCbclD08Aog

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1556a26fd79ac0224c4edb8cbcb6b7e5_JaffaCakes118

Files

1556a26fd79ac0224c4edb8cbcb6b7e5_JaffaCakes118
.exe windows:5 windows x86 arch:x86

685c392fe5d9c17d6798e765a0b3e92f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

qtsql4

??0QSqlTableModel@@QAE@PAVQObject@@VQSqlDatabase@@@Z
??1QSqlTableModel@@UAE@XZ
?defaultConnection@QSqlDatabase@@2PADA
?addDatabase@QSqlDatabase@@SA?AV1@ABVQString@@0@Z
?setDatabaseName@QSqlDatabase@@QAEXABVQString@@@Z
?open@QSqlDatabase@@QAE_NXZ
??1QSqlDatabase@@QAE@XZ
??0QSqlDatabase@@QAE@XZ
??0QSqlQuery@@QAE@ABVQString@@VQSqlDatabase@@@Z
?exec@QSqlQuery@@QAE_NABVQString@@@Z
??1QSqlQuery@@QAE@XZ

qtgui4

?rowsInserted@QAbstractItemView@@MAEXABVQModelIndex@@HH@Z
?rowsAboutToBeRemoved@QAbstractItemView@@MAEXABVQModelIndex@@HH@Z
?selectionChanged@QTableView@@MAEXABVQItemSelection@@0@Z
?currentChanged@QTableView@@MAEXABVQModelIndex@@0@Z
?updateEditorData@QAbstractItemView@@MAEXXZ
?updateEditorGeometries@QAbstractItemView@@MAEXXZ
?updateGeometries@QTableView@@MAEXXZ
?verticalScrollbarAction@QTableView@@MAEXH@Z
?horizontalScrollbarAction@QTableView@@MAEXH@Z
?verticalScrollbarValueChanged@QAbstractItemView@@MAEXH@Z
?horizontalScrollbarValueChanged@QAbstractItemView@@MAEXH@Z
?closeEditor@QAbstractItemView@@MAEXPAVQWidget@@W4EndEditHint@QAbstractItemDelegate@@@Z
?commitData@QAbstractItemView@@MAEXPAVQWidget@@@Z
?editorDestroyed@QAbstractItemView@@MAEXPAVQObject@@@Z
?dataChanged@QAbstractItemView@@MAEXABVQModelIndex@@0@Z
?horizontalOffset@QTableView@@MBEHXZ
?verticalOffset@QTableView@@MBEHXZ
?isIndexHidden@QTableView@@MBE_NABVQModelIndex@@@Z
?setSelection@QTableView@@MAEXABVQRect@@V?$QFlags@W4SelectionFlag@QItemSelectionModel@@@@@Z
?visualRegionForSelection@QTableView@@MBE?AVQRegion@@ABVQItemSelection@@@Z
?selectedIndexes@QTableView@@MBE?AV?$QList@VQModelIndex@@@@XZ
?selectionCommand@QAbstractItemView@@MBE?AV?$QFlags@W4SelectionFlag@QItemSelectionModel@@@@ABVQModelIndex@@PBVQEvent@@@Z
?startDrag@QAbstractItemView@@MAEXV?$QFlags@W4DropAction@Qt@@@@@Z
?viewOptions@QTableView@@MBE?AVQStyleOptionViewItem@@XZ
?devType@QWidget@@UBEHXZ
?paintEngine@QWidget@@UBEPAVQPaintEngine@@XZ
?getDC@QWidget@@UBEPAUHDC__@@XZ
?releaseDC@QWidget@@UBEXPAUHDC__@@@Z
?metric@QWidget@@MBEHW4PaintDeviceMetric@QPaintDevice@@@Z
??1QTableView@@UAE@XZ
?critical@QMessageBox@@SA?AW4StandardButton@1@PAVQWidget@@ABVQString@@1V?$QFlags@W4StandardButton@QMessageBox@@@@W421@@Z
?tr@QApplication@@SA?AVQString@@PBD0@Z
?exec@QApplication@@SAHXZ
?move@QWidget@@QAEXABVQPoint@@@Z
?x@QWidget@@QBEHXZ
?y@QWidget@@QBEHXZ
?show@QWidget@@QAEXXZ
??1QApplication@@UAE@XZ
??0QApplication@@QAE@AAHPAPADH@Z
?edit@QAbstractItemView@@MAE_NABVQModelIndex@@W4EditTrigger@1@PAVQEvent@@@Z
?selectAll@QAbstractItemView@@UAEXXZ
?doItemsLayout@QAbstractItemView@@UAEXXZ
?setRootIndex@QTableView@@UAEXABVQModelIndex@@@Z
?reset@QAbstractItemView@@UAEXXZ
?sizeHintForColumn@QTableView@@MBEHH@Z
?sizeHintForRow@QTableView@@MBEHH@Z
?indexAt@QTableView@@UBE?AVQModelIndex@@ABVQPoint@@@Z
?scrollTo@QTableView@@UAEXABVQModelIndex@@W4ScrollHint@QAbstractItemView@@@Z
?visualRect@QTableView@@UBE?AVQRect@@ABVQModelIndex@@@Z
?keyboardSearch@QAbstractItemView@@UAEXABVQString@@@Z
?setSelectionModel@QTableView@@UAEXPAVQItemSelectionModel@@@Z
?setModel@QTableView@@UAEXPAVQAbstractItemModel@@@Z
?scrollContentsBy@QTableView@@MAEXHH@Z
?viewportEvent@QAbstractItemView@@MAE_NPAVQEvent@@@Z
?languageChange@QWidget@@MAEXXZ
?windowActivationChange@QWidget@@MAEX_N@Z
?fontChange@QWidget@@MAEXABVQFont@@@Z
?paletteChange@QWidget@@MAEXABVQPalette@@@Z
?enabledChange@QWidget@@MAEX_N@Z
?styleChange@QWidget@@MAEXAAVQStyle@@@Z
?focusNextPrevChild@QAbstractItemView@@MAE_N_N@Z
?inputMethodQuery@QAbstractItemView@@UBE?AVQVariant@@W4InputMethodQuery@Qt@@@Z
?inputMethodEvent@QAbstractItemView@@MAEXPAVQInputMethodEvent@@@Z
?changeEvent@QFrame@@MAEXPAVQEvent@@@Z
?winEvent@QWidget@@MAE_NPAUtagMSG@@PAJ@Z
?hideEvent@QWidget@@MAEXPAVQHideEvent@@@Z
?showEvent@QWidget@@MAEXPAVQShowEvent@@@Z
?dropEvent@QAbstractItemView@@MAEXPAVQDropEvent@@@Z
?dragLeaveEvent@QAbstractItemView@@MAEXPAVQDragLeaveEvent@@@Z
?dragMoveEvent@QAbstractItemView@@MAEXPAVQDragMoveEvent@@@Z
?dragEnterEvent@QAbstractItemView@@MAEXPAVQDragEnterEvent@@@Z
?actionEvent@QWidget@@MAEXPAVQActionEvent@@@Z
?tabletEvent@QWidget@@MAEXPAVQTabletEvent@@@Z
?contextMenuEvent@QAbstractScrollArea@@MAEXPAVQContextMenuEvent@@@Z
?closeEvent@QWidget@@MAEXPAVQCloseEvent@@@Z
?resizeEvent@QAbstractItemView@@MAEXPAVQResizeEvent@@@Z
?moveEvent@QWidget@@MAEXPAVQMoveEvent@@@Z
?paintEvent@QTableView@@MAEXPAVQPaintEvent@@@Z
?leaveEvent@QWidget@@MAEXPAVQEvent@@@Z
?enterEvent@QWidget@@MAEXPAVQEvent@@@Z
?focusOutEvent@QAbstractItemView@@MAEXPAVQFocusEvent@@@Z
?focusInEvent@QAbstractItemView@@MAEXPAVQFocusEvent@@@Z
?keyReleaseEvent@QWidget@@MAEXPAVQKeyEvent@@@Z
?keyPressEvent@QAbstractItemView@@MAEXPAVQKeyEvent@@@Z
?wheelEvent@QAbstractScrollArea@@MAEXPAVQWheelEvent@@@Z
?mouseMoveEvent@QAbstractItemView@@MAEXPAVQMouseEvent@@@Z
?mouseDoubleClickEvent@QAbstractItemView@@MAEXPAVQMouseEvent@@@Z
?mouseReleaseEvent@QAbstractItemView@@MAEXPAVQMouseEvent@@@Z
?mousePressEvent@QAbstractItemView@@MAEXPAVQMouseEvent@@@Z
?heightForWidth@QWidget@@UBEHH@Z
?minimumSizeHint@QAbstractScrollArea@@UBE?AVQSize@@XZ
?sizeHint@QAbstractScrollArea@@UBE?AVQSize@@XZ
?setVisible@QWidget@@UAEX_N@Z
?timerEvent@QTableView@@MAEXPAVQTimerEvent@@@Z
?event@QAbstractItemView@@MAE_NPAVQEvent@@@Z
?qt_metacall@QTableView@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?qt_metacast@QTableView@@UAEPAXPBD@Z
?metaObject@QTableView@@UBEPBUQMetaObject@@XZ
??0QTableView@@QAE@PAVQWidget@@@Z
?setWindowTitle@QWidget@@QAEXABVQString@@@Z
?moveCursor@QTableView@@MAE?AVQModelIndex@@W4CursorAction@QAbstractItemView@@V?$QFlags@W4KeyboardModifier@Qt@@@@@Z

qtcore4

?allocate@QVectorData@@SAPAU1@HH@Z
?qMemSet@@YAPAXPAXHI@Z
?reallocate@QVectorData@@SAPAU1@PAU1@HHH@Z
?qFree@@YAXPAX@Z
?qWinMain@@YAXPAUHINSTANCE__@@0PADHAAHAAV?$QVector@PAD@@@Z
?detach@QByteArray@@QAEXXZ
?toLocal8Bit@QString@@QBE?AVQByteArray@@XZ
?fromWCharArray@QString@@SA?AV1@PBGH@Z
?qBadAlloc@@YAXXZ
?fromLatin1_helper@QString@@CAPAUData@1@PBDH@Z
?shared_null@QString@@0UData@1@A
?disconnectNotify@QObject@@MAEXPBD@Z
?connectNotify@QObject@@MAEXPBD@Z
?customEvent@QObject@@MAEXPAVQEvent@@@Z
?childEvent@QObject@@MAEXPAVQChildEvent@@@Z
?eventFilter@QObject@@UAE_NPAV1@PAVQEvent@@@Z
?fromAscii_helper@QString@@CAPAUData@1@PBDH@Z
?free@QString@@CAXPAUData@1@@Z
?tr@QObject@@SA?AVQString@@PBD0@Z
??0QVariant@@QAE@ABVQString@@@Z
??1QVariant@@QAE@XZ
??1QString@@QAE@XZ
?free@QVectorData@@SAXPAU1@H@Z

msvcr90

_ismbblead
_XcptFilter
_exit
_cexit
__getmainargs
_amsg_exit
??2@YAPAXI@Z
??3@YAXPAX@Z
memcpy
_CxxThrowException
exit
_controlfp_s
_invoke_watson
_except_handler4_common
_decode_pointer
_onexit
_lock
__dllonexit
_unlock
?_type_info_dtor_internal_method@type_info@@QAEXXZ
?terminate@@YAXXZ
_crt_debugger_hook
__set_app_type
_encode_pointer
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_configthreadlocale
_initterm_e
_initterm
_acmdln
__CxxFrameHandler3

kernel32

GetCommandLineW
Sleep
InterlockedCompareExchange
GetStartupInfoA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetSystemTimeAsFileTime
GetCurrentProcessId
InterlockedExchange

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 960B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

685c392fe5d9c17d6798e765a0b3e92f

Headers

DLL Characteristics

File Characteristics

Imports

qtsql4

qtgui4

qtcore4

msvcr90

kernel32

Sections

.text Size: 7KB - Virtual size: 7KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 512B - Virtual size: 1KB

.rsrc Size: 1024B - Virtual size: 960B

.text
Size: 7KB - Virtual size: 7KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 512B - Virtual size: 1KB

.rsrc
Size: 1024B - Virtual size: 960B