2484037d29ba03ad858ef2c55c6c569f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2484037d29ba03ad858ef2c55c6c569f_JaffaCakes118
Size

214KB
MD5

2484037d29ba03ad858ef2c55c6c569f
SHA1

65e610fa802f302404fae22c353031c28e828750
SHA256

781fa8e0f3f61dafe4db715bc52ac9895fd0ef36968fd9d33fdf870c916ac111
SHA512

485559db1b62af08eaaa1c84eea02c5f0a9ba47c99e9f8f741acab402aac3680dc6c724bb045e0a8b210f4e61b700ebd0fad1bd87a8974344929484e11d4a056
SSDEEP

3072:k+qGv2txI7eoWqRYXpnK1nRCSChW5wX3aD2xgUWkmsUo7USQ+SvLjEAsxE+EIZpp:Yc7juX5KT4QSh+kmsl7tQvjKKWp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2484037d29ba03ad858ef2c55c6c569f_JaffaCakes118

Files

2484037d29ba03ad858ef2c55c6c569f_JaffaCakes118
.exe windows:5 windows x86 arch:x86

665bedf4fd865b5901d8ca7cf1ca98fe

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

K:\crcsdpV\vrllhxkmmofu\DFljEZoEfdd\VnTnKqo.pdb

Imports

gdi32

TextOutA
PtVisible
CreateEllipticRgnIndirect
GetDeviceCaps
CreateRectRgn
SetBkColor
GetTextExtentExPointW
CreateDiscardableBitmap
GetPaletteEntries
GetSystemPaletteEntries
ScaleWindowExtEx
MoveToEx
GetTextCharsetInfo
GetObjectW
BitBlt
GetROP2
PolyBezier
DPtoLP
CreatePatternBrush
GetCharWidth32W
GetStockObject
ExtTextOutA
CreateFontIndirectA
Rectangle
GetFontData
StretchBlt
GetTextExtentPointA
CreateDIBSection
OffsetViewportOrgEx
CombineRgn
SetViewportExtEx
SetWindowExtEx
GetDIBits
CreateCompatibleDC
GetWindowOrgEx
SetLayout
DeleteObject

msvcrt

wcstol
isxdigit
_controlfp
wcstok
__set_app_type
wcstoul
tolower
__p__fmode
iswctype
fputc
wcsncmp
wcstod
gmtime
__p__commode
bsearch
vsprintf
_amsg_exit
swprintf
setvbuf
_initterm
fclose
_acmdln
strcoll
strspn
iswprint
exit
wcsstr
_ismbblead
time
_XcptFilter
_exit
mbtowc
strtol
iswalpha
_cexit
__setusermatherr
fgetc
__getmainargs
toupper

comdlg32

GetOpenFileNameW
ChooseFontW
GetSaveFileNameW
GetFileTitleW

user32

LoadStringA
LoadMenuW
PostMessageW
GetMenu
EndPaint
CreateWindowExW
GetKeyboardType
HideCaret
SendDlgItemMessageA
DefWindowProcA
SetRect
SetMenuItemBitmaps
keybd_event
IsCharAlphaW
EnumThreadWindows
SetSysColors
RegisterWindowMessageW
MapDialogRect
EnumWindows
SetClassLongW
SetScrollRange
mouse_event
SetCursor
wsprintfW
OpenDesktopW
TrackPopupMenuEx
ScrollWindowEx
DeleteMenu
CharToOemBuffA
IsWindowUnicode
TranslateMessage
SetMenu
DrawAnimatedRects
DrawIconEx
PostQuitMessage
GetUpdateRect
ReplyMessage
DefDlgProcW
GetDlgItemTextA
InvalidateRect
RegisterWindowMessageA
GetDlgItem
CreateWindowExA
TabbedTextOutW
DialogBoxIndirectParamA
InsertMenuItemW
DrawFocusRect
BeginPaint
FindWindowExA
CharLowerA
CharToOemA
UnionRect
GetScrollRange
UpdateWindow
CopyImage
FindWindowW
GetShellWindow
MonitorFromRect
FindWindowExW
CheckMenuRadioItem
AppendMenuA
GetIconInfo
IsMenu
GetKeyNameTextW
GetDoubleClickTime
GetMessageA
LookupIconIdFromDirectory
IsDialogMessageA
LoadIconA
CreateDialogIndirectParamW
DeferWindowPos
CheckMenuItem
GetLastActivePopup
GetClassLongA
GetWindowLongA
CreatePopupMenu
IntersectRect
GetClassInfoExW
GetSystemMetrics
MessageBoxExA
PeekMessageW
IsRectEmpty
ShowScrollBar
GetMenuItemID
ShowOwnedPopups
ChildWindowFromPoint
IsCharLowerA

kernel32

DisconnectNamedPipe
lstrcmpiW
GetAtomNameW
IsBadWritePtr
EnumResourceNamesW
GetTempPathA
HeapCreate
HeapUnlock
GetSystemWindowsDirectoryA
FindResourceW
SetupComm
ClearCommBreak
GetFullPathNameA
GetVersionExW
HeapFree
GetCommTimeouts
GetUserDefaultUILanguage
ReleaseMutex
GetSystemInfo
InitializeCriticalSection
HeapSize
EnterCriticalSection
FindNextFileA
VirtualFree
GetNumberFormatW
GlobalReAlloc
LCMapStringW
GetFileSize
WaitForMultipleObjects
GlobalDeleteAtom
QueryPerformanceCounter
GetFileType
WinExec
GetLocalTime
BuildCommDCBAndTimeoutsW
GetTickCount
GlobalMemoryStatus
ConnectNamedPipe
GetThreadContext
TerminateThread
LoadLibraryExW

Exports

Exports

?WaitForMultipleObjectsIUIUDSiuld@@YGKEPA_WG@Z
?WaitForMultipleObjectsJUDiuDLIJU@@YGKEPA_WG@Z
?WaitForMultipleObjectsUYDyudkjh@@YGKEPA_WG@Z
?WaitForSingleObjectYDEyuhgDU6d@@YGKEPA_WG@Z

Sections

.text
Size: 82KB - Virtual size: 81KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 109KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

665bedf4fd865b5901d8ca7cf1ca98fe

Headers

File Characteristics

PDB Paths

Imports

gdi32

msvcrt

comdlg32

user32

kernel32

Exports

Exports

Sections

.text Size: 82KB - Virtual size: 81KB

.data Size: 18KB - Virtual size: 17KB

.rdata Size: 2KB - Virtual size: 58KB

.rsrc Size: 109KB - Virtual size: 108KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 82KB - Virtual size: 81KB

.data
Size: 18KB - Virtual size: 17KB

.rdata
Size: 2KB - Virtual size: 58KB

.rsrc
Size: 109KB - Virtual size: 108KB

.reloc
Size: 2KB - Virtual size: 1KB