16ae70e437c3d92fd132f73f9142e5ef_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

16ae70e437c3d92fd132f73f9142e5ef_JaffaCakes118
Size

220KB
MD5

16ae70e437c3d92fd132f73f9142e5ef
SHA1

57ac5344b2f0edd2b209813489f7733e1d6ed3ec
SHA256

88bb8e16cb4be087cdf256ebb95e6b5089df4ee9611ed1c96a35e43fbfc9bb0a
SHA512

39ce177add0585ca1eaec181650e82253bcf5081a9e57fc6d5ba1ebf49200d5e18a969d8cfc4f5005c7a84c6579642ec662314aaad36d6c070d8bcf69b7f566c
SSDEEP

6144:YkvPK1GONc2ecZ4HMqtEIfIXEPudWdx3NIkySDBIM:Y+PU5cPcZ4HMq+IfIzWdx3NBL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
16ae70e437c3d92fd132f73f9142e5ef_JaffaCakes118

Files

16ae70e437c3d92fd132f73f9142e5ef_JaffaCakes118
.exe windows:5 windows x86 arch:x86

772b2183cc572537946c93a626aff381

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

T:\ftjVzdwDbW\ekzrmxypO\lccqvbumpLerWD\Zidydhe\BNuJkwQRnqsx.pdb

Imports

user32

GetWindowRect
BeginDeferWindowPos
FrameRect
WaitForInputIdle
LoadIconA
SetMenu
GetMenuItemRect
EqualRect
TrackPopupMenu
ShowScrollBar
GetDC
IsRectEmpty
IsCharAlphaNumericW
ChildWindowFromPointEx
ModifyMenuW
PeekMessageW
IntersectRect
LoadAcceleratorsW
GetSystemMetrics
CheckRadioButton
TranslateMessage
CharToOemW
MapWindowPoints
ScrollWindowEx
ClientToScreen
SystemParametersInfoW
SetForegroundWindow
SendMessageTimeoutA
GetClassInfoA
ReleaseDC
DrawMenuBar
GetWindowDC
CheckDlgButton
SetClassLongW
CallWindowProcW
LoadAcceleratorsA
GetMenuState
GetMessageA
UnloadKeyboardLayout
CascadeWindows
AdjustWindowRectEx
LoadStringA
DestroyIcon
RegisterHotKey
SetMenuItemBitmaps
GetKeyState
GetClientRect
EndPaint
SetSysColors
GetSystemMenu
DestroyWindow
DefWindowProcW
ShowWindowAsync
GetDlgItemTextW
DeleteMenu
CheckMenuItem
DrawTextExW
GetClassInfoExA
BeginPaint
CharLowerW
UnionRect
IsCharLowerA
ArrangeIconicWindows
CharPrevW
SetScrollRange
wvsprintfA
SetWindowPos
LockWindowUpdate
SetParent
IsZoomed
BringWindowToTop
SetUserObjectInformationW
SetFocus
ReplyMessage
SetWindowLongW
GetNextDlgTabItem
SetRectEmpty
InflateRect
RegisterWindowMessageA
SendMessageTimeoutW
TileWindows
FindWindowA
InsertMenuA
RegisterClassW
TranslateAcceleratorW
SetRect
GetSubMenu
mouse_event
CloseDesktop
SetDlgItemTextA
CreateWindowExA
CopyImage
IsWindow
GetWindowPlacement
SwitchToThisWindow
SendDlgItemMessageW
InvertRect
GetFocus
GetTopWindow
ExitWindowsEx
OpenDesktopW
EndTask
MapDialogRect
InvalidateRgn
SetPropW
DrawIcon
InSendMessageEx
LoadStringW
wsprintfA
GetSysColor

msvcrt

wcscoll
clock
wcscmp
wcschr
wcsstr
bsearch
toupper
strspn
tolower
_controlfp
wcscat
wcstol
isalpha
iswdigit
atol
__set_app_type
strcspn
putc
fclose
__p__fmode
strncpy
strrchr
__p__commode
isprint
_amsg_exit
_initterm
_ismbblead
vsprintf
_XcptFilter
time
wcsrchr
setvbuf
wcstok
iswxdigit
ftell
_exit
wcscspn
_cexit
__setusermatherr
fputs
__getmainargs
fgets
strtol
putchar

comdlg32

GetOpenFileNameA
ChooseFontW
GetSaveFileNameA
CommDlgExtendedError
GetFileTitleW
FindTextW

kernel32

lstrcmpiW
GetAtomNameA
CreateNamedPipeA
SystemTimeToFileTime
CompareStringW
GetModuleFileNameA
LocalAlloc
LocalLock
GlobalGetAtomNameW
CreateFileMappingA
GetSystemTimeAdjustment
GlobalFindAtomW
GetSystemTime
SetLastError
FindResourceA
GetCommProperties
CreateNamedPipeW
GetCompressedFileSizeW
GetStringTypeExW
MapViewOfFile
AddAtomA
GetFileSize
CreateFileMappingW
GetFileTime
WideCharToMultiByte
GetVersionExA
CloseHandle
ReleaseMutex
GetSystemDirectoryA
SetThreadPriority
DuplicateHandle
GetCommandLineW
GetStartupInfoW
GetShortPathNameA
GetFileAttributesW
WaitForSingleObject
FindFirstChangeNotificationW
LoadLibraryA
RegisterWaitForSingleObject
InitializeCriticalSection
GetThreadContext
SetCurrentDirectoryA
FindNextChangeNotification
CreateFileA
CreateRemoteThread
GetHandleInformation
GetSystemWindowsDirectoryA
ReleaseSemaphore
TlsGetValue
QueryDosDeviceW
TryEnterCriticalSection

comctl32

ImageList_Destroy
ImageList_AddMasked
ImageList_Read
CreateStatusWindowW
CreatePropertySheetPageW
CreateToolbarEx

gdi32

SetBkMode
GetTextMetricsA
CreateDIBSection
LineTo
GetTextCharsetInfo
StretchDIBits
ExtTextOutA
MoveToEx
ScaleViewportExtEx
SelectObject
GetPixel
SetBrushOrgEx
Ellipse
CreateBrushIndirect
SetTextColor
CreateCompatibleDC
DeleteObject
GetViewportOrgEx
CreateSolidBrush
SetDIBits
GetROP2
SetMapMode
DPtoLP
SetPixel
CreateBitmapIndirect
Rectangle
SetPaletteEntries
SetDIBitsToDevice
GetTextAlign
PtInRegion
GetClipBox
ExtTextOutW
GetMapMode
CreateFontW
AddFontResourceW
SetWindowExtEx
StartDocW
SelectClipRgn
OffsetRgn
EndDoc
BeginPath
SetViewportExtEx
CreateFontIndirectA
RectInRegion
GetTextExtentExPointW
PtVisible

Exports

Exports

?CopySizeExA@@YGPAXFK[W

Sections

.text
Size: 177KB - Virtual size: 177KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

772b2183cc572537946c93a626aff381

Headers

File Characteristics

PDB Paths

Imports

user32

msvcrt

comdlg32

kernel32

comctl32

gdi32

Exports

Exports

Sections

.text Size: 177KB - Virtual size: 177KB

.data Size: 39KB - Virtual size: 38KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 177KB - Virtual size: 177KB

.data
Size: 39KB - Virtual size: 38KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 2KB - Virtual size: 1KB