2556fda607766dd7ce4aea86931b8e8c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2556fda607766dd7ce4aea86931b8e8c_JaffaCakes118
Size

221KB
MD5

2556fda607766dd7ce4aea86931b8e8c
SHA1

3f0bf48e6494f6ad26b38e0426a370283a71d616
SHA256

ffc2818741d95e3fb7dd6a14c01da3de487544a7e4244b6907f08a18684bab57
SHA512

15b8f417948905e7da4523027def12c34ec7e86064b8090221e76f3dc44af995881d8f4a71a68a23810a6745ae8e4469e8caf4e397ff9af9edbc39bffe094db8
SSDEEP

3072:HP8bb89Og6U/jdG/A0D4Y50CelD192g79HLz3yKHxdbUOBo7L39M7r9BJYW:SWf6ySA0D4Y5ilZ9v5H3yKHx3o7L39c

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2556fda607766dd7ce4aea86931b8e8c_JaffaCakes118

Files

2556fda607766dd7ce4aea86931b8e8c_JaffaCakes118
.exe windows:5 windows x86 arch:x86

3ee53656ccfb959f47ec4c87a9a6b81f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

K:\mGcVouxkNyTzNL\GyuRhUadJMGbm\pcamenhacpfjHn.pdb

Imports

gdi32

RestoreDC
GetSystemPaletteEntries
DeleteDC
SetBitmapDimensionEx
CreateCompatibleDC
IntersectClipRect
ResizePalette
RealizePalette
PtInRegion
GetStockObject
CreateHalftonePalette
CreateFontW
CreateRectRgn
GetSystemPaletteUse
SetPixel
SetStretchBltMode
SelectClipRgn

comdlg32

GetSaveFileNameA
ChooseColorW
GetOpenFileNameW

comctl32

InitCommonControlsEx
PropertySheetW
ImageList_Destroy

msvcrt

wcstombs
_controlfp
perror
__set_app_type
clearerr
clock
fputc
__p__fmode
strrchr
__p__commode
_amsg_exit
_initterm
iswalpha
floor
_acmdln
exit
_ismbblead
_XcptFilter
_exit
_cexit
tolower
__setusermatherr
strncmp
atol
__getmainargs
fwrite

kernel32

GetVersion
FileTimeToSystemTime
lstrlenW
GetSystemWindowsDirectoryA
SizeofResource
HeapAlloc
GetCurrentThread
GetOEMCP
HeapFree
LoadLibraryA
GetModuleFileNameA
GetSystemDirectoryA
GetProcessHeap
SleepEx
GlobalGetAtomNameA
SetLocalTime
Sleep
CreateDirectoryA
UnmapViewOfFile
GlobalMemoryStatus
ResumeThread
CreateFileA
FindFirstFileW

shlwapi

StrNCatW
StrToIntA
StrStrIA
PathRemoveBlanksW

user32

EnumChildWindows
DestroyCaret
InvalidateRect
AdjustWindowRectEx
CharUpperW
GetMenuCheckMarkDimensions
ScrollWindow
PeekMessageA
InvertRect
GetDoubleClickTime
GetSysColorBrush
SetFocus
RemovePropW
ShowWindow
IsIconic
IsDialogMessageW
GetKeyState
CharLowerW
BringWindowToTop
GetSubMenu
GetWindowTextW
GetDialogBaseUnits
LoadAcceleratorsW
EndPaint
SendMessageTimeoutA
DestroyWindow
CreateMenu
InsertMenuA
GetAsyncKeyState
CreatePopupMenu
CheckMenuItem
IsMenu
SetClassLongW
EqualRect
FindWindowW
DrawStateA
ChildWindowFromPoint
GetClassInfoExW
InsertMenuW
TrackPopupMenu
CharToOemBuffA

advapi32

OpenBackupEventLogA
SetSecurityDescriptorOwner

Exports

Exports

?DecrementThreadNew@@YGHG*Z
?InstallProviderNew@@YGPAKPAHDG*Z
?ModifyDateOld@@YGEJ*Z
?PutStateA@@YGNFPAE*Z
?FormatWindowInfo@@YGPAHD*Z
?IsNotProviderEx@@YGPAJ_NPAH*Z
?ModifyWidthW@@YGDPANGPAD*Z
?KillWidthExW@@YGH_NGD*Z
?SendAnchorW@@YGPAFPAHPAJIK*Z
?RemoveWidth@@YGJPAHPAJ*Z
?CancelTaskW@@YGEH*Z

Sections

.text
Size: 66KB - Virtual size: 65KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.stit
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.simp
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dbug
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dbg
Size: 512B - Virtual size: 75B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dvar
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.dpt
Size: 1024B - Virtual size: 616B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 133KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 142KB - Virtual size: 142KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3ee53656ccfb959f47ec4c87a9a6b81f

Headers

File Characteristics

PDB Paths

Imports

gdi32

comdlg32

comctl32

msvcrt

kernel32

shlwapi

user32

advapi32

Exports

Exports

Sections

.text Size: 66KB - Virtual size: 65KB

.stit Size: 1024B - Virtual size: 1008B

.simp Size: 3KB - Virtual size: 2KB

.dbug Size: 512B - Virtual size: 28B

.dbg Size: 512B - Virtual size: 75B

.dvar Size: 512B - Virtual size: 44B

.dpt Size: 1024B - Virtual size: 616B

.data Size: 3KB - Virtual size: 133KB

.rsrc Size: 142KB - Virtual size: 142KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 66KB - Virtual size: 65KB

.stit
Size: 1024B - Virtual size: 1008B

.simp
Size: 3KB - Virtual size: 2KB

.dbug
Size: 512B - Virtual size: 28B

.dbg
Size: 512B - Virtual size: 75B

.dvar
Size: 512B - Virtual size: 44B

.dpt
Size: 1024B - Virtual size: 616B

.data
Size: 3KB - Virtual size: 133KB

.rsrc
Size: 142KB - Virtual size: 142KB

.reloc
Size: 2KB - Virtual size: 1KB