26a4502cbb4a2d45fd0b47ae10f50d49_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

26a4502cbb4a2d45fd0b47ae10f50d49_JaffaCakes118
Size

146KB
MD5

26a4502cbb4a2d45fd0b47ae10f50d49
SHA1

037e80ecbe3634158bb4faaf6100df2e6408753c
SHA256

f454508841b52f3cef26b1a10d049edc6a81d10ea3d68816c7b353b5db1036ff
SHA512

78e0305a92763bc94568de7782bf22db310bc8a15d2cd568ea539fc37d55de6daa4080e31f8a4a5ba3913806bdf2536be135f0d84a127f80087c22da799ea7ac
SSDEEP

3072:EmMO22RM/I5vk3J5/eqvJP4GFL7QPeu0HyVEfbVkOo8A6GNwkF:IB2me4vJg2Cdc28b

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
26a4502cbb4a2d45fd0b47ae10f50d49_JaffaCakes118

Files

26a4502cbb4a2d45fd0b47ae10f50d49_JaffaCakes118
.exe windows:5 windows x86 arch:x86

7591d43fc5d8a14133d8915c5a330176

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

T:\ywPYovxUdneK\qqrmrqqg\aqveLJCihfRn\ldBitdtmXn.pdb

Imports

shlwapi

StrToIntW

msvcrt

fflush
_controlfp
fgets
fread
__set_app_type
strncpy
__p__fmode
getc
wcsncmp
__p__commode
iswdigit
isxdigit
wcscat
wcslen
iswctype
wcstol
_amsg_exit
isprint
clock
memset
sprintf
strtoul
wcstok
isupper
_initterm
gmtime
wcschr
isspace
_ismbblead
strrchr
_XcptFilter
_exit
mbstowcs
strcpy
putchar
_cexit
islower
fseek
fclose
__setusermatherr
free
fprintf
wcscpy
__getmainargs
atoi
srand
ftell
wcsrchr

kernel32

GetExitCodeThread
lstrlenA
GetCommProperties
lstrcmpA
GetStartupInfoA
lstrcpynA
GetTempPathA
AddAtomA
GetProcessHeap
CreateFileMappingA
GetThreadPriority
FileTimeToDosDateTime
GetUserDefaultLCID
GetSystemDefaultLangID
GetStringTypeExW
GetFullPathNameW
GetFileAttributesExW
lstrcpynW
HeapFree
SetFileApisToOEM
HeapAlloc
SetHandleInformation
LeaveCriticalSection
FindCloseChangeNotification
SetCurrentDirectoryA
CloseHandle
GetCompressedFileSizeW
DeleteCriticalSection
CreateThread
SetErrorMode
LockFile
EnumResourceLanguagesA
FormatMessageW
GlobalFree
WaitForMultipleObjects
GetVersionExW
GetBinaryTypeW
DeleteFileW
FindNextFileA
WaitCommEvent
GetSystemDefaultUILanguage
FindFirstChangeNotificationW
DisconnectNamedPipe
GetThreadLocale
LCMapStringW
OpenEventA
GetComputerNameExA
GetCurrentThreadId
SetSystemTimeAdjustment
GetDateFormatW
GetAtomNameA
FreeLibrary
CompareFileTime
GetFileAttributesW
CancelIo
CopyFileA
GlobalReAlloc
GetModuleFileNameA
GetCommModemStatus

user32

IsDialogMessageW
GetWindowLongW
SetRect
GetGUIThreadInfo
GetForegroundWindow
TabbedTextOutW
LoadIconA
MapWindowPoints
LoadStringA
IsDialogMessageA
OemToCharA
DrawFrameControl
SetWindowLongA
GetMenuItemCount
DestroyCursor
SetCursor
GetClassInfoExA
WaitForInputIdle
FrameRect
InvalidateRect
GetCaretBlinkTime
MonitorFromPoint
SetWindowPlacement
GrayStringW
GetDialogBaseUnits
LoadIconW
GetDlgCtrlID
ScrollWindowEx
KillTimer
LoadCursorW
CreateIconFromResource
DrawFocusRect
CreatePopupMenu
MessageBoxA
InSendMessage
GetWindowPlacement
InflateRect
PostMessageA
IsCharAlphaW
CharUpperW
SetMenu
wvsprintfA
EnableMenuItem
CreateWindowExW
MapVirtualKeyW
LoadImageA
CharUpperA
wsprintfW
PostThreadMessageA
CheckDlgButton
ClientToScreen
CheckRadioButton
IsCharAlphaNumericW
IsChild
LoadCursorA
GetAsyncKeyState
CharToOemBuffA
IsWindow
SetCursorPos
SetSysColors
DefDlgProcW
ShowOwnedPopups
SendMessageTimeoutW
GetWindowLongA
GetKeyboardLayout
GetFocus
MessageBoxExA
ChangeMenuW
GetDoubleClickTime
CharLowerA
GetWindowTextA
AdjustWindowRectEx
OpenDesktopW
GetSysColorBrush
HiliteMenuItem
GetShellWindow
CreateCaret
DestroyIcon
DispatchMessageW
EndDialog
OpenIcon
CharNextExA
GetScrollRange
UpdateWindow
MapDialogRect
SetScrollInfo
UnionRect
DragObject
GetClassInfoExW
DrawTextW
LoadAcceleratorsW
MessageBoxExW
GetMessageA
EnumChildWindows
GetActiveWindow
GetKeyboardLayoutList
MapVirtualKeyA
GetWindowModuleFileNameW
ShowScrollBar
SetLastErrorEx
SetScrollRange
GetLastActivePopup
FindWindowW
CharNextA
GetCursorPos
EnableScrollBar
CloseDesktop
GetMenuStringW
BringWindowToTop
LoadBitmapW
RedrawWindow
GetPropW
GetClassLongA
FindWindowA
PostMessageW
DestroyCaret
GetMenuItemInfoW
GetSystemMenu
RemoveMenu
AttachThreadInput
EnumWindows
DrawMenuBar
AllowSetForegroundWindow
CharPrevA
LockWindowUpdate

Exports

Exports

?GenericOutputInfoYSUh@@YGK_KHE[D

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 145KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 114KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7591d43fc5d8a14133d8915c5a330176

Headers

File Characteristics

PDB Paths

Imports

shlwapi

msvcrt

kernel32

user32

Exports

Exports

Sections

.text Size: 8KB - Virtual size: 8KB

.data Size: 21KB - Virtual size: 145KB

.rsrc Size: 114KB - Virtual size: 114KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 8KB - Virtual size: 8KB

.data
Size: 21KB - Virtual size: 145KB

.rsrc
Size: 114KB - Virtual size: 114KB

.reloc
Size: 1KB - Virtual size: 1KB