059c1363bac26e65520c47da47d21b16_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

059c1363bac26e65520c47da47d21b16_JaffaCakes118
Size

208KB
MD5

059c1363bac26e65520c47da47d21b16
SHA1

34ceaad5ee9178fa58c10f2031638b4ab70d2650
SHA256

a8430771ca865a3aef81e0b6547f56f7970dac4169aaa0fbc34c4ae7c74f1931
SHA512

66e34219203417db428a44d43a547172ac28a0649cb736b5fb95a837fe6299a799dcea2bb12701631dab24b81cbd891f57cd6d204d76df19ce7149f17fac2eb0
SSDEEP

6144:w85qIz6+naOZcx6w+TDsRAV0PHK547HRSV:VqIz6XOklNRAV0Pqa9S

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
059c1363bac26e65520c47da47d21b16_JaffaCakes118

Files

059c1363bac26e65520c47da47d21b16_JaffaCakes118
.exe windows:5 windows x86 arch:x86

0a400effd9bd23b7e50b654d8a70388e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

Y:\msuuqIsfEbmu\gOoZNhuUpa\SendkNzAtmNElR\xdduiKEdtMc.pdb

Imports

msvcrt

_controlfp
fclose
sprintf
putchar
wcscoll
clock
strchr
iswalpha
strtok
__set_app_type
atol
__p__fmode
__p__commode
mktime
getenv
puts
strstr
gets
_amsg_exit
strerror
setvbuf
remove
_initterm
_acmdln
memset
isprint
wcscmp
exit
wcstod
free
_ismbblead
fprintf
towupper
_XcptFilter
swprintf
tolower
mbtowc
_exit
_cexit
fwrite
wcschr
towlower
wcscat
getc
mbstowcs
bsearch
realloc
__setusermatherr
__getmainargs
qsort
isdigit

comdlg32

FindTextW
GetSaveFileNameW
ChooseColorW
GetOpenFileNameW

gdi32

IntersectClipRect
GetDIBColorTable
SaveDC
LineTo
CreateDIBSection
GetViewportOrgEx
CreateRectRgnIndirect
PtVisible
GetLayout
CreatePenIndirect
PolyBezier
TextOutA
CreateDCW
SetRectRgn
DeleteDC
ExtFloodFill
SetLayout
GetObjectA
RoundRect
EnumFontsW
EnumFontFamiliesW
CreateEllipticRgnIndirect
CreateFontIndirectA
StretchDIBits
CreateBrushIndirect
GetTextCharsetInfo
UnrealizeObject
GetTextExtentPoint32W
GetClipBox
GetTextExtentPoint32A
RectInRegion
CombineRgn
GetPaletteEntries
GetDeviceCaps
GetTextExtentPointA
SetWindowOrgEx
GetNearestColor
SetAbortProc
GetTextFaceW
SetMapMode
TextOutW
WidenPath
ExcludeClipRect
CreateSolidBrush
BeginPath
CreateDIBitmap
OffsetRgn
CreateDiscardableBitmap
Polygon
GetBkMode
PatBlt
GetMapMode
MoveToEx

kernel32

GetUserDefaultUILanguage
OpenFileMappingA
SetThreadAffinityMask
TerminateThread
ReadFile
GetCurrentThreadId
CopyFileA
RemoveDirectoryA
IsBadReadPtr
GlobalLock
LockFile
GetSystemDirectoryW
IsValidLanguageGroup
GetSystemTimeAsFileTime
WaitCommEvent
LocalSize
GetComputerNameExW
WideCharToMultiByte
GetOverlappedResult
IsDBCSLeadByteEx
SetUnhandledExceptionFilter
FormatMessageW
DeleteCriticalSection
TlsFree
GetFullPathNameW
ConvertDefaultLocale
EscapeCommFunction
SetLocalTime
GetModuleHandleW
CompareFileTime
GetModuleHandleA
CreateNamedPipeA
lstrcpynA
GlobalMemoryStatusEx
SetSystemTime
DefineDosDeviceW
GlobalMemoryStatus
HeapAlloc
SetMailslotInfo
GetCPInfo
HeapCreate
CreateMutexW
GetLastError
GetLocaleInfoW
EnumSystemLocalesA
GetTimeFormatW
DeleteFileA
GetFileAttributesA
RegisterWaitForSingleObject
SetFileAttributesA
lstrcmpiA
ExitThread
GetModuleFileNameA
ClearCommError
VirtualFree
RemoveDirectoryW
OpenFile
OpenEventW
lstrcmpA

user32

PtInRect
WindowFromPoint
GetForegroundWindow
GetDC
GetDlgItemTextA
LoadImageW
FillRect
CreateAcceleratorTableW
TrackPopupMenuEx
SystemParametersInfoA
CheckMenuItem
SetMenuItemInfoW
DestroyWindow
CallWindowProcA
CopyAcceleratorTableW
SetMenu
SetCaretPos
InsertMenuItemW
DrawStateA
EnableWindow
GetNextDlgGroupItem
SetUserObjectInformationW
ShowWindowAsync
PostQuitMessage
GetSysColor
RegisterWindowMessageW
EndPaint
MonitorFromPoint
SetActiveWindow
MessageBoxExA
CreateCursor
SendDlgItemMessageA
mouse_event
GetClipCursor
DialogBoxParamA
ActivateKeyboardLayout
GetClassLongA
LoadCursorA
DefWindowProcW
EnableScrollBar
FindWindowExW
MapVirtualKeyA
InSendMessageEx
SetDlgItemTextW
wsprintfA
CreateDialogParamW
SendMessageW
CharUpperBuffW
GetClassInfoExW
CreateIconFromResource
ChildWindowFromPoint
OemToCharA
RedrawWindow
LoadCursorW
GetClientRect
ShowScrollBar
DestroyMenu
AdjustWindowRect
CheckRadioButton
LoadAcceleratorsA
ChangeMenuW
EndDialog
GetScrollRange
LoadBitmapW
GetDCEx
ScrollWindowEx
OemToCharBuffA
LoadStringA
SetSysColors
GetKeyboardLayout
GetWindowTextA
FindWindowExA
EqualRect
OffsetRect
PostThreadMessageA
DestroyAcceleratorTable
CharUpperW
InvertRect
SendMessageA
GetScrollPos
SetWindowLongA
SetMenuDefaultItem
GetMenuItemRect
DefDlgProcA
GetWindowPlacement
GetUserObjectInformationA
LoadIconA
GetSystemMetrics
DeferWindowPos
CheckDlgButton
CharPrevW
WaitForInputIdle
DestroyCursor
SetRect
PeekMessageA
DialogBoxIndirectParamW
SetWindowTextW
DrawTextExW
TranslateMessage
MonitorFromRect
TabbedTextOutW
MessageBoxA
CharNextA
CharToOemW
SwapMouseButton
IsCharLowerA
DrawStateW
TileWindows
EnableMenuItem
ShowCaret
RegisterClassA
IntersectRect
SetDlgItemInt
GetDialogBaseUnits
InternalGetWindowText
GetMenuStringW
SendDlgItemMessageW
GetShellWindow
SetDlgItemTextA
InsertMenuA
IsRectEmpty
GetScrollInfo
GetAsyncKeyState
BeginPaint
CharPrevA
GetMessageW
ToUnicodeEx

Exports

Exports

?CopyMutexW@@IJPANNMPAMD@X
?GenerateSystemExA@@IJME@X
?FindMemoryOriginal@@IJEIKE@X
?CrtKeyNameA@@IJFGNPA_N@X

Sections

.text
Size: 131KB - Virtual size: 131KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.import
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.cfg1
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pcode
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.cfg2
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.cfg3
Size: 512B - Virtual size: 379B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0a400effd9bd23b7e50b654d8a70388e

Headers

File Characteristics

PDB Paths

Imports

msvcrt

comdlg32

gdi32

kernel32

user32

Exports

Exports

Sections

.text Size: 131KB - Virtual size: 131KB

.import Size: 1KB - Virtual size: 1KB

.rdata Size: 6KB - Virtual size: 6KB

.cfg1 Size: 512B - Virtual size: 44B

.pcode Size: 13KB - Virtual size: 12KB

.cfg2 Size: 512B - Virtual size: 44B

.cfg3 Size: 512B - Virtual size: 379B

.data Size: 2KB - Virtual size: 1KB

.rsrc Size: 48KB - Virtual size: 48KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 131KB - Virtual size: 131KB

.import
Size: 1KB - Virtual size: 1KB

.rdata
Size: 6KB - Virtual size: 6KB

.cfg1
Size: 512B - Virtual size: 44B

.pcode
Size: 13KB - Virtual size: 12KB

.cfg2
Size: 512B - Virtual size: 44B

.cfg3
Size: 512B - Virtual size: 379B

.data
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 48KB - Virtual size: 48KB

.reloc
Size: 2KB - Virtual size: 2KB