General

Malware Config

Signatures

Files

• 56a5835bb0f93af28852afcdd5202176_JaffaCakes118

  .exe windows:5 windows x86 arch:x86

  7fcb99e518a79b0dd9fee5ea36b7a4da

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  Imports

  kernel32

  SetConsoleCP

  SetEnvironmentVariableW

  SetEvent

  SetLastError

  SetUnhandledExceptionFilter

  SystemTimeToTzSpecificLocalTime

  TerminateProcess

  TerminateThread

  UnhandledExceptionFilter

  ReadFileEx

  VerifyVersionInfoW

  WaitForMultipleObjects

  WaitForSingleObject

  WaitNamedPipeA

  WideCharToMultiByte

  lstrcpynA

  lstrcpynW

  lstrlenA

  ReadConsoleA

  RaiseException

  QueryPerformanceCounter

  MultiByteToWideChar

  Module32NextW

  LockResource

  LocalReAlloc

  LocalFree

  LocalAlloc

  LoadLibraryW

  LoadLibraryA

  LeaveCriticalSection

  IsBadReadPtr

  InterlockedIncrement

  InterlockedExchange

  InterlockedDecrement

  InitializeCriticalSection

  GlobalUnlock

  GlobalLock

  GlobalFree

  GlobalAlloc

  GetVersionExA

  GetUserDefaultLCID

  GetTimeFormatW

  GetTimeFormatA

  GetTickCount

  GetSystemTimeAsFileTime

  GetSystemDefaultLangID

  GetSystemDefaultLCID

  GetStartupInfoA

  GetProfileIntW

  GetProcAddress

  GetNumberFormatA

  GetModuleHandleA

  GetLastError

  GetFullPathNameW

  GetFileType

  GetModuleHandleW

  GetDateFormatW

  GetDateFormatA

  GetCurrentThreadId

  GetCurrentThread

  GetCurrentProcessId

  GetCurrentProcess

  GetACP

  FreeLibrary

  FormatMessageW

  FormatMessageA

  FillConsoleOutputCharacterW

  FileTimeToSystemTime

  FileTimeToLocalFileTime

  ExpandEnvironmentStringsW

  EnterCriticalSection

  DuplicateHandle

  DeleteCriticalSection

  CreateThread

  CreateIoCompletionPort

  CreateEventW

  CreateEventA

  CreateDirectoryA

  CompareStringA

  CloseHandle

  Beep

  AreFileApisANSI

  VirtualAlloc

  VerSetConditionMask

  user32

  SendMessageA

  SendMessageW

  SetCursor

  SetFocus

  SetForegroundWindow

  SetRect

  SetTimer

  SetWindowLongA

  SetWindowPos

  SetWindowTextA

  SetWindowTextW

  ShowWindow

  SystemParametersInfoA

  TranslateMessage

  UpdateWindow

  WinHelpA

  WinHelpW

  wsprintfW

  RegisterClassA

  RedrawWindow

  PostQuitMessage

  PostMessageA

  PeekMessageA

  OpenWindowStationA

  MsgWaitForMultipleObjects

  MessageBoxW

  MessageBoxA

  MapWindowPoints

  LockWorkStation

  LoadStringW

  LoadStringA

  LoadCursorA

  KillTimer

  IsWindowVisible

  IsWindowEnabled

  IsDialogMessageA

  InvalidateRect

  GetWindowRect

  ReleaseDC

  GetUserObjectInformationW

  GetThreadDesktop

  GetSystemMetrics

  GetSysColor

  GetParent

  GetMessageA

  GetFocus

  GetDC

  GetClientRect

  FindWindowW

  FindWindowExW

  FindWindowExA

  FindWindowA

  FillRect

  EndPaint

  EnableWindow

  DrawTextW

  DrawTextA

  DrawIcon

  DrawFocusRect

  DrawAnimatedRects

  DispatchMessageA

  DestroyWindow

  DefWindowProcW

  DefWindowProcA

  DefDlgProcW

  DefDlgProcA

  CreateWindowExW

  CreateWindowExA

  CreateDialogParamW

  CreateDialogParamA

  CharPrevW

  CallWindowProcW

  BeginPaint

  AttachThreadInput

  GetMessageExtraInfo

  GetMenuContextHelpId

  LoadCursorW

  GetMenu

  RegisterWindowMessageW

  RegisterWindowMessageA

  GetWindowLongA

  RegisterClassW

  GetWindowTextLengthW

  GetProcessWindowStation

  IsMenu

  CharUpperW

  LoadIconA

  GetDlgItem

  gdi32

  Polyline

  PtInRegion

  RealizePalette

  RectInRegion

  RestoreDC

  SaveDC

  ScaleWindowExtEx

  PolyTextOutA

  SelectClipPath

  SelectObject

  SetBkColor

  SetDIBits

  SetTextColor

  StartPage

  bInitSystemAndFontsDirectoriesW

  GetTextExtentPointW

  GetTextExtentPointA

  GetROP2

  GetObjectA

  GetDeviceGammaRamp

  GdiPlayDCScript

  GdiEntry6

  GdiConvertBitmap

  FONTOBJ_cGetGlyphs

  ExtFloodFill

  EngMultiByteToUnicodeN

  EngMarkBandingSurface

  EngDeleteSemaphore

  DeleteObject

  CreateHatchBrush

  CreateFontIndirectW

  CreateFontIndirectA

  CreateFontA

  CreateMetaFileW

  DeleteDC

  FillPath

  CreateSolidBrush

  GetStockObject

  SelectBrushLocal

  WidenPath

  advapi32

  RegEnumKeyA

  RegOpenKeyA

  GetUserNameA

  GetUserNameW

  OpenProcessToken

  RegSetValueExW

  RegSetValueExA

  RegQueryValueExW

  RegOpenKeyExW

  RegOpenKeyExA

  RegEnumKeyW

  RegQueryValueExA

  RegDeleteValueW

  RegCreateKeyExW

  RegCreateKeyExA

  RegConnectRegistryW

  RegCloseKey

  OpenThreadToken

  shell32

  SHGetPathFromIDListA

  ShellHookProc

  CommandLineToArgvW

  ole32

  CLSIDFromString

  CoCreateInstance

  CoFreeUnusedLibraries

  CoInitialize

  CoInitializeEx

  CoInitializeSecurity

  StringFromGUID2

  CoUninitialize

  CoTaskMemFree

  CoRevokeClassObject

  CoRegisterClassObject

  comctl32

  InitCommonControlsEx

  ImageList_ReplaceIcon

  ImageList_LoadImageW

  ImageList_Create

  ImageList_Draw

  msvcrt

  __winitenv

  wprintf

  wcslen

  wcscpy

  wcscmp

  toupper

  swscanf

  strncpy

  memmove

  malloc

  free

  exit

  _CxxThrowException

  _XcptFilter

  __CxxFrameHandler

  __argc

  __argv

  __dllonexit

  __getmainargs

  __p__commode

  __p__fmode

  __set_app_type

  __setusermatherr

  __wgetmainargs

  _acmdln

  _adjust_fdiv

  _c_exit

  _cexit

  _controlfp

  _except_handler3

  _exit

  _ftol

  _initterm

  _onexit

  _wcsicmp

  Sections

  .text

  Size: 1.9MB - Virtual size: 1.9MB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 598KB - Virtual size: 597KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 88KB - Virtual size: 88KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 48KB - Virtual size: 47KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ