1c64816ef2d37d1eaa3ead1c87dce826_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

1c64816ef2d37d1eaa3ead1c87dce826_JaffaCakes118
Size

208KB
MD5

1c64816ef2d37d1eaa3ead1c87dce826
SHA1

c93964ec312409b8feb08665c2dd135725402fe9
SHA256

dbd3c501725e272b9320afce96f849f7a44c55108bf665087097977b30a6354b
SHA512

27d45dd55e35e2ca13e9db6cf6839b424e2c89c50ca5c2585d3d8940182e1b3a1e215bf6d3e10caaeda7d26bbabd32581c2ee46e6b96c678292c870a5acbd78a
SSDEEP

6144:CoL9izSBGWecMgN5l8Qfp0L5CY/So80W6B+bP0kmlolPHsaY:LbMYNyUp6IbP0kmlolPs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1c64816ef2d37d1eaa3ead1c87dce826_JaffaCakes118

Files

1c64816ef2d37d1eaa3ead1c87dce826_JaffaCakes118
.exe windows:5 windows x86 arch:x86

0a8dafb02801845e165886805ba6b157

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

K:\GDorpghPLsDrhq\dvzpIiDwopu\PxwSShfgJyu.pdb

Imports

msvcrt

_controlfp
strstr
wcspbrk
tolower
strchr
iswalpha
iswspace
wcstombs
vsprintf
wcsrchr
strspn
__set_app_type
gets
__p__fmode
__p__commode
remove
getenv
fputs
realloc
_amsg_exit
vswprintf
fprintf
mbstowcs
strrchr
strncpy
wcsncmp
_initterm
malloc
swprintf
wcslen
fgetc
time
qsort
srand
isdigit
_ismbblead
wcscoll
isupper
wcstol
wcstod
localtime
fwrite
strerror
_XcptFilter
_exit
strcoll
memset
strpbrk
strtol
strcspn
mktime
printf
wcsncpy
wcscpy
exit
_cexit
__setusermatherr
floor
iswctype
__getmainargs

user32

DialogBoxIndirectParamW
GetDlgItemTextW
RegisterWindowMessageW
GetMessageExtraInfo
SendMessageTimeoutA
SetClassLongW
SetWindowTextW
SendMessageA
LockWindowUpdate
TileWindows
GetAsyncKeyState
CharPrevA
SetCursor
OpenInputDesktop
GetMessagePos
MessageBoxW
AllowSetForegroundWindow
GetWindowDC
GetParent
GetSystemMenu
GetUpdateRect
RegisterWindowMessageA
CharUpperBuffA
InSendMessageEx
CharUpperBuffW
EnableWindow
RegisterClassExW
DestroyWindow
ShowOwnedPopups
GetClassInfoW
HiliteMenuItem
DrawAnimatedRects
GetWindowTextLengthW
SetWindowLongW
UnionRect
ValidateRect
DialogBoxParamA
LoadStringW
ClipCursor
IsWindowEnabled
GetPropW
CharNextW
SwapMouseButton
DialogBoxIndirectParamA
WindowFromPoint
GetNextDlgGroupItem
ShowWindow
CharLowerBuffW
EnumWindows
DestroyMenu
GetKeyboardLayout
InvalidateRect
GetSubMenu
FindWindowExA
RemovePropW
GetMenuState
TranslateAcceleratorW
UnloadKeyboardLayout
SetWindowLongA
SetMenu
CheckMenuItem
BeginDeferWindowPos
DefWindowProcW
ShowWindowAsync
CreateIconIndirect
ChangeMenuW
SetCursorPos
MessageBoxExA
AdjustWindowRectEx
GetCaretPos
GetClientRect
SetDlgItemTextW
LoadCursorW
LoadImageW
DefFrameProcW
InsertMenuW
FindWindowExW
CreateWindowExA
MessageBoxExW
ScrollWindow
MapVirtualKeyA
DrawMenuBar
MapDialogRect
SendNotifyMessageW
UpdateWindow
OffsetRect
LoadAcceleratorsW
AttachThreadInput
IsCharAlphaNumericW
GetKeyNameTextW
CharLowerA
SetMenuDefaultItem
ScrollWindowEx
SetParent
BringWindowToTop
IsCharLowerA
GetMessageTime
GetForegroundWindow
SetDlgItemInt
CharNextA
GetMessageA
ReleaseDC
GetScrollInfo
LoadCursorA
DefWindowProcA
GetClassInfoExW
SetPropW
FindWindowA
InvertRect
GetDlgItemInt
LookupIconIdFromDirectory
CharToOemW
FindWindowW
SetWindowRgn
CopyAcceleratorTableW
InvalidateRgn
DrawIcon
SetLastErrorEx
GetDCEx
CharPrevW
ShowCursor
SendDlgItemMessageA
IsMenu
CreateWindowExW
CopyImage
SetWindowTextA
GetWindowTextA
GetUserObjectInformationW
LoadMenuW
RegisterClassW
GetClassNameW
BeginPaint
ChildWindowFromPointEx
CascadeWindows
GetClassLongA
CreateMenu
GetDialogBaseUnits
wsprintfA
GetMenuItemID
LoadIconA
ClientToScreen
SendDlgItemMessageW
OemToCharA
EnumChildWindows
CreatePopupMenu
GetDlgCtrlID
DialogBoxParamW
IsZoomed
GetScrollPos
MapVirtualKeyExW
IsWindowUnicode
EnumThreadWindows
InsertMenuItemW
ReplyMessage
VkKeyScanW
PostThreadMessageW
TabbedTextOutW
DrawFocusRect
EqualRect
CallWindowProcA

gdi32

CreateSolidBrush
CreateHalftonePalette
GetBkMode
CreateFontA
TextOutA
BitBlt
IntersectClipRect
CreateRoundRectRgn
GetPixel
ResizePalette
ScaleWindowExtEx
CreateDIBSection
GetDIBColorTable
CreateCompatibleBitmap
GetViewportOrgEx
SetPaletteEntries
Ellipse
FillRgn
OffsetRgn
SetBitmapDimensionEx
GetObjectA
CreateRectRgnIndirect
GetTextMetricsA
EnumFontFamiliesExW
CreateBitmap
GetTextAlign
TextOutW
LineDDA
GetSystemPaletteEntries
GetFontData
StretchBlt
CreatePatternBrush
GetNearestColor
GetDIBits
DPtoLP
PtVisible
GetObjectW
GetTextExtentPointW
DeleteObject
GetMapMode
CreateEllipticRgnIndirect
GetTextMetricsW
ScaleViewportExtEx
GetClipBox
SetROP2
CreatePen
SetBitmapBits
SetRectRgn
GetRgnBox
EnumFontsW
SetPixel
CreateFontIndirectA
EndDoc
SelectClipRgn
SetTextColor
GetTextFaceW
SelectPalette
LPtoDP
Polyline
SelectObject
RealizePalette
ExtFloodFill
SetViewportOrgEx
StretchDIBits
Polygon

comctl32

CreateStatusWindowW
ImageList_Destroy
ImageList_LoadImageW
ImageList_SetIconSize
ImageList_Draw
ImageList_Read
ImageList_AddMasked
ImageList_GetImageCount
DestroyPropertySheetPage

comdlg32

ChooseFontW
GetSaveFileNameA
PrintDlgW
CommDlgExtendedError
PageSetupDlgW
ChooseColorW
GetFileTitleW

kernel32

lstrlenA
DeleteFileW
FreeLibrary
GetShortPathNameW
WaitForMultipleObjectsEx
RegisterWaitForSingleObject
LoadLibraryExA
SetCommState
GlobalSize
GetUserDefaultLangID
lstrcatW
WaitForMultipleObjects
SuspendThread
ClearCommError
GlobalAddAtomW
HeapLock
GetThreadPriority
GetPriorityClass
GetAtomNameW
FindResourceExW
GetDateFormatW
IsBadReadPtr
IsValidLanguageGroup
SearchPathA
SetFileApisToOEM
GetLocaleInfoW
GetFileTime
GetModuleFileNameA
GetFullPathNameW
GetTimeFormatW
GetAtomNameA
TerminateThread
OpenFileMappingW
SetThreadAffinityMask
TryEnterCriticalSection
ExitThread
GetFileAttributesExA
GetVersionExA
GetModuleHandleA
ConnectNamedPipe
GetCommProperties
EnumResourceNamesW
lstrcpynA
CompareStringA
GetDateFormatA
SetHandleCount
SetFileTime
GetComputerNameA
GetOverlappedResult
DefineDosDeviceW
GlobalFlags
MulDiv
GlobalFree
GetCommState
GlobalLock
RemoveDirectoryA
LocalAlloc
SetCommBreak
GetFileSize
CreateSemaphoreW
FreeResource
RemoveDirectoryW
CloseHandle
lstrcpyW
SleepEx
CancelWaitableTimer
GlobalMemoryStatusEx
LocalUnlock
FormatMessageW
AreFileApisANSI
lstrcmpiA
VerifyVersionInfoW
MoveFileA
CancelIo
SetNamedPipeHandleState

Exports

Exports

?IsValidFilePathEx@@IJPAGNHJF@X

Sections

.text
Size: 190KB - Virtual size: 190KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

0a8dafb02801845e165886805ba6b157

Headers

File Characteristics

PDB Paths

Imports

msvcrt

user32

gdi32

comctl32

comdlg32

kernel32

Exports

Exports

Sections

.text Size: 190KB - Virtual size: 190KB

.data Size: 20KB - Virtual size: 19KB

.text
Size: 190KB - Virtual size: 190KB

.data
Size: 20KB - Virtual size: 19KB