General

Malware Config

Signatures

Files

• 631545bb910def12263fbd08ad675d6e_JaffaCakes118

  .exe windows:5 windows x86 arch:x86

  c229788dd5736e66d1fac0a57c73ac50

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  PDB Paths

  c:\Users\User\Desktop\2008\Tracker\Release\Tracker.pdb

  Imports

  kernel32

  SetHandleCount

  GetFileType

  HeapCreate

  VirtualFree

  QueryPerformanceCounter

  GetSystemTimeAsFileTime

  GetACP

  IsValidCodePage

  InitializeCriticalSectionAndSpinCount

  GetTimeZoneInformation

  GetConsoleCP

  GetConsoleMode

  LCMapStringA

  GetEnvironmentStringsW

  GetStringTypeA

  GetStringTypeW

  GetUserDefaultLCID

  EnumSystemLocalesA

  IsValidLocale

  GetLocaleInfoW

  SetStdHandle

  WriteConsoleA

  GetConsoleOutputCP

  WriteConsoleW

  CompareStringW

  SetEnvironmentVariableA

  FreeEnvironmentStringsW

  GetEnvironmentStrings

  FreeEnvironmentStringsA

  GetStdHandle

  HeapSize

  FreeResource

  HeapReAlloc

  VirtualAlloc

  ExitProcess

  Sleep

  HeapFree

  HeapAlloc

  GetStartupInfoA

  GetCommandLineA

  IsDebuggerPresent

  SetUnhandledExceptionFilter

  UnhandledExceptionFilter

  TerminateProcess

  RaiseException

  RtlUnwind

  GetTickCount

  SetErrorMode

  GetModuleHandleW

  GetFileSizeEx

  SystemTimeToFileTime

  LocalFileTimeToFileTime

  FileTimeToLocalFileTime

  FileTimeToSystemTime

  CreateFileA

  GetShortPathNameA

  GetVolumeInformationA

  FindFirstFileA

  FindClose

  GetCurrentProcess

  DuplicateHandle

  GetFileSize

  SetEndOfFile

  UnlockFile

  LockFile

  FlushFileBuffers

  SetFilePointer

  WriteFile

  ReadFile

  lstrcmpiA

  GetThreadLocale

  GetStringTypeExA

  DeleteFileA

  MoveFileA

  GetCurrentDirectoryA

  GetPrivateProfileStringA

  WritePrivateProfileStringA

  GetPrivateProfileIntA

  GetOEMCP

  GetCPInfo

  InterlockedIncrement

  TlsFree

  DeleteCriticalSection

  LocalReAlloc

  TlsSetValue

  TlsAlloc

  InitializeCriticalSection

  GlobalHandle

  GlobalReAlloc

  EnterCriticalSection

  TlsGetValue

  LeaveCriticalSection

  LocalAlloc

  GlobalFlags

  InterlockedDecrement

  GetModuleFileNameW

  FormatMessageA

  LocalFree

  MulDiv

  GetProfileIntA

  GetDiskFreeSpaceA

  GetFullPathNameA

  GetTempFileNameA

  GetFileTime

  SetFileTime

  GetFileAttributesA

  CloseHandle

  GetCurrentThread

  ConvertDefaultLocale

  EnumResourceLanguagesA

  GetModuleFileNameA

  GetLocaleInfoA

  InterlockedExchange

  lstrcmpA

  GlobalAlloc

  GetCurrentProcessId

  lstrlenA

  GetCurrentThreadId

  GlobalGetAtomNameA

  GlobalAddAtomA

  GlobalFindAtomA

  GlobalDeleteAtom

  FreeLibrary

  WideCharToMultiByte

  CompareStringA

  LoadLibraryA

  GetLastError

  SetLastError

  MultiByteToWideChar

  lstrcmpW

  GetModuleHandleA

  GetProcAddress

  GetVersionExA

  SizeofResource

  GlobalLock

  GlobalUnlock

  GlobalFree

  FindResourceA

  LoadResource

  LockResource

  LCMapStringW

  user32

  RegisterClipboardFormatA

  CharUpperA

  DestroyIcon

  DeleteMenu

  WindowFromPoint

  KillTimer

  SetTimer

  GetSysColorBrush

  GetMenuItemInfoA

  DestroyCursor

  EndPaint

  BeginPaint

  GetWindowDC

  ClientToScreen

  GrayStringA

  DrawTextExA

  DrawTextA

  TabbedTextOutA

  FillRect

  GetMenuStringA

  AppendMenuA

  InsertMenuA

  RemoveMenu

  LoadCursorA

  SetCapture

  GetDCEx

  InflateRect

  SetRect

  ShowOwnedPopups

  GetMessageA

  TranslateMessage

  GetCursorPos

  ValidateRect

  PostQuitMessage

  IsZoomed

  UnpackDDElParam

  ReuseDDElParam

  LoadMenuA

  DestroyMenu

  GetWindowThreadProcessId

  SetCursor

  ReleaseCapture

  LoadAcceleratorsA

  InsertMenuItemA

  CreatePopupMenu

  SetRectEmpty

  GetDC

  ReleaseDC

  RedrawWindow

  TranslateAcceleratorA

  TranslateMDISysAccel

  BringWindowToTop

  DrawMenuBar

  DefMDIChildProcA

  DefFrameProcA

  ShowWindow

  SetWindowTextA

  SetDlgItemTextA

  SetMenuItemBitmaps

  GetMenuCheckMarkDimensions

  LoadBitmapA

  ModifyMenuA

  GetMenuState

  EnableMenuItem

  CheckMenuItem

  RegisterWindowMessageA

  LoadIconA

  SendDlgItemMessageA

  WinHelpA

  IsChild

  GetCapture

  SetWindowsHookExA

  CallNextHookEx

  GetClassLongA

  GetClassNameA

  SetPropA

  GetPropA

  RemovePropA

  GetFocus

  SetFocus

  GetWindowTextLengthA

  GetWindowTextA

  GetForegroundWindow

  GetLastActivePopup

  DispatchMessageA

  BeginDeferWindowPos

  EndDeferWindowPos

  GetTopWindow

  UnhookWindowsHookEx

  GetMessageTime

  GetMessagePos

  PeekMessageA

  MapWindowPoints

  ScrollWindow

  TrackPopupMenu

  GetKeyState

  SetMenu

  SetScrollRange

  GetScrollRange

  SetScrollPos

  GetScrollPos

  SetForegroundWindow

  ShowScrollBar

  IsWindowVisible

  GetClientRect

  PostMessageA

  GetSubMenu

  GetMenuItemID

  GetMenuItemCount

  MessageBoxA

  CreateWindowExA

  GetClassInfoExA

  GetClassInfoA

  RegisterClassA

  GetSysColor

  AdjustWindowRectEx

  ScreenToClient

  EqualRect

  DeferWindowPos

  GetScrollInfo

  UnregisterClassA

  GetTabbedTextExtentA

  PostThreadMessageA

  CreateMenu

  CopyAcceleratorTableA

  SetWindowRgn

  IsDialogMessageA

  DrawIcon

  SetScrollInfo

  CopyRect

  PtInRect

  GetDlgCtrlID

  DefWindowProcA

  CallWindowProcA

  GetMenu

  SetWindowLongA

  SetWindowPos

  OffsetRect

  SystemParametersInfoA

  IsIconic

  GetWindowPlacement

  GetWindowRect

  GetSystemMetrics

  GetWindow

  GetDesktopWindow

  GetActiveWindow

  SetActiveWindow

  CreateDialogIndirectParamA

  DestroyWindow

  IsWindow

  GetWindowLongA

  GetDlgItem

  IsWindowEnabled

  GetParent

  GetNextDlgTabItem

  EndDialog

  MessageBeep

  InvalidateRect

  IntersectRect

  UpdateWindow

  LoadStringW

  SendMessageA

  EnableWindow

  gdi32

  SetViewportOrgEx

  OffsetViewportOrgEx

  SetViewportExtEx

  ScaleViewportExtEx

  SetWindowOrgEx

  SetWindowExtEx

  ScaleWindowExtEx

  GetCurrentPositionEx

  GetStockObject

  DPtoLP

  StartPage

  Escape

  SetAbortProc

  AbortDoc

  TextOutA

  GetViewportOrgEx

  CreateFontIndirectA

  GetBkColor

  CreateRectRgnIndirect

  SetRectRgn

  CombineRgn

  CreateEllipticRgn

  LPtoDP

  Ellipse

  GetNearestColor

  GetBkMode

  GetPolyFillMode

  GetROP2

  GetStretchBltMode

  GetTextColor

  GetTextAlign

  GetTextFaceA

  GetTextExtentPointA

  GetWindowOrgEx

  EndPage

  ExtTextOutA

  SetTextAlign

  MoveToEx

  LineTo

  IntersectClipRect

  RectVisible

  PtVisible

  StartDocA

  GetPixel

  BitBlt

  GetWindowExtEx

  GetViewportExtEx

  CreateRectRgn

  SelectClipRgn

  EndDoc

  CreateSolidBrush

  ExcludeClipRect

  SetMapMode

  SetStretchBltMode

  SetROP2

  SetPolyFillMode

  SetBkMode

  RestoreDC

  SaveDC

  CreateDCA

  GetDeviceCaps

  UnrealizeObject

  CreatePatternBrush

  CreatePen

  Rectangle

  GetTextExtentPoint32A

  CreateCompatibleBitmap

  CreateCompatibleDC

  StretchDIBits

  DeleteDC

  CreateFontA

  SelectObject

  GetCharWidthA

  DeleteObject

  CreateBitmap

  GetObjectA

  SetBkColor

  SetTextColor

  GetClipBox

  GetTextMetricsA

  PatBlt

  comdlg32

  GetFileTitleA

  winspool.drv

  ClosePrinter

  OpenPrinterA

  GetJobA

  DocumentPropertiesA

  advapi32

  RegDeleteValueA

  RegSetValueExA

  RegCreateKeyExA

  RegSetValueA

  GetFileSecurityA

  SetFileSecurityA

  RegQueryValueA

  RegOpenKeyA

  RegEnumKeyA

  RegDeleteKeyA

  RegOpenKeyExA

  RegQueryValueExA

  RegCloseKey

  SetFileSecurityW

  RegCreateKeyA

  shell32

  DragFinish

  DragQueryFileA

  ExtractIconA

  SHGetFileInfoA

  CommandLineToArgvW

  shlwapi

  PathFindFileNameA

  PathStripToRootA

  PathIsUNCA

  PathFindExtensionA

  PathRemoveFileSpecW

  ole32

  OleDestroyMenuDescriptor

  OleCreateMenuDescriptor

  IsAccelerator

  OleTranslateAccelerator

  CoInitializeEx

  CoCreateInstance

  CoUninitialize

  CoTaskMemFree

  oleaut32

  VariantClear

  SysAllocStringLen

  VariantInit

  VariantChangeType

  Exports

  Exports

  FadsweRKliFFDXCS

  Sections

  .text

  Size: 364KB - Virtual size: 364KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 73KB - Virtual size: 72KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 77KB - Virtual size: 92KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 36KB - Virtual size: 35KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ