0c36ffd6d099856054e114a77577a491_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

0c36ffd6d099856054e114a77577a491_JaffaCakes118
Size

147KB
MD5

0c36ffd6d099856054e114a77577a491
SHA1

c9743b50c7e94b1ab6a6d5efd03b2c633b161871
SHA256

c8eeb474f033bbc8ab2da38dde06b764ee91b65bfd20faec39c8ac963ccaff26
SHA512

686dbb454276eceafb703a9e215b3b8b550f9e1383484dd2f779cc8492dba4d33b93ad7900b5c3be097a5a8fc4332a0851bcfbd3ff76f7e9a40e4594ce497f4a
SSDEEP

3072:/CzHi7ysssn6KBO1AKsDLYeDRHuwxgbH0DB9wVx4LKOkgNKtvBo:wss1v1A1fYELd9wD4+DLo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0c36ffd6d099856054e114a77577a491_JaffaCakes118

Files

0c36ffd6d099856054e114a77577a491_JaffaCakes118
.exe windows:5 windows x86 arch:x86

9d16674c5070dd29599c61192ae8d930

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

U:\qfQaaldl\lApjguqwjf\lXvlskhw\WbtkzXpD.pdb

Imports

shlwapi

StrChrIA

comctl32

ImageList_GetImageCount
ImageList_Remove
ImageList_Draw
ImageList_Create
CreateToolbarEx
ImageList_Write

user32

ShowWindowAsync
DestroyIcon
WaitForInputIdle
DrawFocusRect
SetDlgItemTextA
FindWindowA
InvalidateRect
GetMenuCheckMarkDimensions
DrawTextA
ShowOwnedPopups
EnumThreadWindows
DestroyAcceleratorTable
GetPropW
CharUpperBuffW
EnumWindows
RedrawWindow
DefFrameProcA
SetFocus
EnumChildWindows
LoadIconW
SetMenu
LoadImageA
GetClassInfoExA
LockWindowUpdate
InSendMessageEx
ReleaseDC
GrayStringW
GetMenuItemRect
DefFrameProcW
ScrollWindow
InsertMenuA
MapVirtualKeyExW
DialogBoxIndirectParamW
HideCaret
GetActiveWindow
EndPaint
GetMessageA
LoadAcceleratorsA
DefDlgProcW
SetTimer
GetMenuState
CreateWindowExA
MapWindowPoints
DestroyCursor
LoadAcceleratorsW
CheckMenuItem
GetDlgItemInt
GetMonitorInfoW
DrawFrameControl
CopyAcceleratorTableW
KillTimer
GetClassLongW
GetWindowPlacement
MapVirtualKeyW
CopyRect
GetClientRect
DrawStateW
FindWindowExA
CheckMenuRadioItem
ArrangeIconicWindows
CheckRadioButton
DrawTextW
CharNextExA
wsprintfW
MessageBoxExW
LoadBitmapW
CharNextA
OemToCharA
CreateIconIndirect
GetKeyNameTextW
DrawMenuBar
CharToOemA
GetMenuStringW
DrawStateA
GetWindowDC
SetActiveWindow
keybd_event
GetMenu
ScrollWindowEx
BeginDeferWindowPos
MessageBoxExA
GetKeyState
GetNextDlgTabItem
RegisterWindowMessageA
FillRect
GetClassLongA
SetParent
SendDlgItemMessageA
GetWindowTextW
IsDialogMessageA
CharLowerW
EnableMenuItem
TrackPopupMenuEx
GetDCEx
SetWindowTextW
InvertRect
ClientToScreen
SendNotifyMessageW
IsRectEmpty
GetSystemMenu
SetPropW
ClipCursor
IsCharAlphaW
InflateRect
DestroyMenu
CharUpperBuffA
RegisterClassExW
DeferWindowPos
SendMessageW
GetForegroundWindow
GetMenuItemCount
CreateDialogParamW
ShowCaret
BringWindowToTop
WaitMessage
mouse_event
LoadIconA
CharToOemW

msvcrt

vsprintf
_controlfp
wcslen
localtime
strcoll
system
fgetc
rand
wcscat
islower
__set_app_type
__p__fmode
wcscspn
__p__commode
isalnum
strcspn
strtol
_amsg_exit
_initterm
fprintf
_acmdln
iswdigit
isprint
exit
_ismbblead
strchr
mktime
gmtime
getenv
clearerr
_XcptFilter
putchar
_exit
swprintf
srand
wcsstr
_cexit
wcsncpy
wcstok
fseek
strncpy
remove
strtoul
iswalpha
__setusermatherr
atoi
towupper
__getmainargs
iswspace

kernel32

GetModuleFileNameW
LoadLibraryA
GlobalCompact
GetAtomNameA
CreateWaitableTimerA
SuspendThread
RemoveDirectoryW
GetModuleHandleA
FindResourceExA
GetCommConfig
GetComputerNameA
MulDiv
GetPriorityClass
GetTempFileNameA
WriteFile
SetEvent
GetSystemDirectoryA
GetModuleHandleW
EnumResourceTypesA
GetVersion
FindCloseChangeNotification
FileTimeToSystemTime
GetNumberFormatA
GetSystemWindowsDirectoryA
FindClose
VirtualAlloc
SetCurrentDirectoryW
lstrcpyA
EnumResourceNamesW
FindNextFileA
FlushViewOfFile
CallNamedPipeW
SetMailslotInfo
SetLocalTime
GetCommProperties
GlobalGetAtomNameA
GetSystemDirectoryW
GetLongPathNameW
HeapWalk
GlobalLock
ConvertDefaultLocale
GetFullPathNameA
SetWaitableTimer
HeapFree
lstrcatW
SetFilePointer
DisconnectNamedPipe
RegisterWaitForSingleObject
CreateThread
lstrcatA
SetThreadPriority
SetThreadExecutionState
VirtualFree
lstrcpynA
DeleteFileA

gdi32

GetObjectW
PtInRegion
PatBlt
SaveDC
SetDIBits
IntersectClipRect
CreateDiscardableBitmap
GetSystemPaletteEntries
CreateCompatibleBitmap
Polygon
DeleteObject
CreatePatternBrush
GetDIBColorTable
GetMapMode
SetLayout
GetFontData
CreateDIBitmap
SetBrushOrgEx
SetDIBColorTable
RealizePalette
GetNearestPaletteIndex
GetSystemPaletteUse
CreateHalftonePalette
SelectObject
CreateEllipticRgnIndirect
AddFontResourceW
EnumFontFamiliesW
SetMapMode
CreatePen
SetAbortProc
GetTextMetricsW
CreateFontA
CreateBrushIndirect
MoveToEx
RestoreDC
EnumFontsW
GetLayout
GetTextExtentPointA
ScaleViewportExtEx
SetTextAlign
CreateRoundRectRgn
Polyline
SetViewportOrgEx
SelectPalette
GetTextCharsetInfo
GetTextColor
ExcludeClipRect
CreateRectRgnIndirect
SetROP2
StretchDIBits
GetClipBox

Exports

Exports

?SetWindowInfoEx%%DFGJ_N~U
?IsStateW%%DFPAFFIHM~U
?ShowArgument%%DFFKPAF~U
?IsThreadExA%%DFF_NJPAN~U
?ShowPointExW%%DFEPAIEPA_N~U
?AddCharOriginal%%DFJPAI~U
?IsNotStateEx%%DFGPAMGPAM~U
?CopyFilePathNew%%DFXMPAMGJ~U
?ThreadOld%%DFJPAEFPAE~U
?ShowFolderEx%%DFPAIPAGPAD~U
?CancelMessageEx%%DFPAENPAHM~U
?SetFilePath%%DFIMK~U
?ModifyClassNew%%DFKFPANPADPA_N~U
?SendProjectA%%DFPAGPAFPAIPAFPAM~U
?HideListNew%%DFKPAD~U
?DeletePointer%%DFPAXKG~U
?KeyNameOld%%DFFIN~U
?SendMonitorOriginal%%DFPAIPAENJ~U
?FunctionA%%DFXFPAI~U
?HideExpressionW%%DFPANI~U
?InstallTimeNew%%DFXPAJ~U
?ValidateTextExW%%DFMPAF~U
?AddMediaTypeOld%%DFIPAEH~U
?GlobalDirectoryA%%DFHEPAD~U
?FindDateW%%DFPAFJPAMPAK~U
?SendKeyboardNew%%DFJKDJ~U
?ExecuteLoaderTrayXBwyGD@@YGKGHE@Z
?IsNotScreenExA%%DFXPAIMF~U
?IsNotDialog%%DFJDPADNPAK~U
?IsNotMemoryW%%DFXPAJHNPAK~U
?IsNotTaskEx%%DFNPAKIMI~U
?RemoveRect%%DFHPAFN~U
?DeleteTaskA%%DFXJM_N~U
?DeleteFolderPathW%%DFEHPAF~U
?SendTimeExW%%DFXGPAGMPAJ~U
?SetStateA%%DFDE~U

Sections

.text
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ticx
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zdata
Size: 1024B - Virtual size: 752B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 126KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 112KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9d16674c5070dd29599c61192ae8d930

Headers

File Characteristics

PDB Paths

Imports

shlwapi

comctl32

user32

msvcrt

kernel32

gdi32

Exports

Exports

Sections

.text Size: 21KB - Virtual size: 20KB

.ticx Size: 7KB - Virtual size: 7KB

.zdata Size: 1024B - Virtual size: 752B

.data Size: 3KB - Virtual size: 126KB

.rsrc Size: 112KB - Virtual size: 111KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 21KB - Virtual size: 20KB

.ticx
Size: 7KB - Virtual size: 7KB

.zdata
Size: 1024B - Virtual size: 752B

.data
Size: 3KB - Virtual size: 126KB

.rsrc
Size: 112KB - Virtual size: 111KB

.reloc
Size: 1KB - Virtual size: 1KB