2929bb544d051a1c89be281b78302297_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2929bb544d051a1c89be281b78302297_JaffaCakes118
Size

102KB
MD5

2929bb544d051a1c89be281b78302297
SHA1

a0e138ea3a2adbb7c49b32505c9fb95885cf783e
SHA256

28eb517ebd92e40a0dbe4f6427d5cd8df0f63781fa385313422e93ee09e2cfdf
SHA512

47954a94598314fa93a7ce46d7c818e6b3a61a25bdbeded80bdf9259e704b1a2cdb6b62f120f30fb5774044c270a41c84d6ce6d9edebe3091e817c1484aacec7
SSDEEP

1536:jhnMfJX/iaHGuDLYhlJCw45ImFjRXTpMbsuyktCtijCSGyE3B5IOOVRqqfxuL:jhyRmu759HIyktCQDGyiaOzL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2929bb544d051a1c89be281b78302297_JaffaCakes118

Files

2929bb544d051a1c89be281b78302297_JaffaCakes118
.dll windows:5 windows x86 arch:x86

d8dcfac9af954f0cbef5f3ac6095c47c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

Y:\gjGkCmyUUEpD\gskzJzohxibm\ASkgkdbb\xzmzrIrk.pdb

Imports

gdi32

GetObjectW
CombineRgn
CreateRectRgn
GetPixel
Rectangle
CreateDCW
CreateDIBSection
PolyBezier
CreateBrushIndirect
CreateDiscardableBitmap
SelectObject
SetBrushOrgEx
Polyline
CreateHatchBrush
SetViewportOrgEx
GetMapMode
SetBitmapDimensionEx
RectVisible
CreatePolygonRgn
CreateFontIndirectW
GetDIBColorTable
CreateEllipticRgnIndirect
SetDIBitsToDevice
GetNearestPaletteIndex
OffsetRgn
GetBkMode
ExtTextOutA
CreatePen
GetTextMetricsA
GetTextExtentPointA
CreateFontA
OffsetViewportOrgEx
EndDoc
CreateRoundRectRgn
RectInRegion
TranslateCharsetInfo
GetBitmapBits
SetRectRgn
GetTextExtentExPointW
SetTextColor
EnumFontsW
GetWindowOrgEx
CreateFontIndirectA
ExtFloodFill
WidenPath
SaveDC
StartDocW
SetAbortProc
Polygon
CreatePenIndirect
SetPaletteEntries

user32

ScrollWindow
CreateIconIndirect
IsDialogMessageW
wvsprintfA
GetClassInfoExA
IsCharLowerA
InsertMenuItemW
AllowSetForegroundWindow
GetWindowTextW
EnableScrollBar
GetKeyboardLayoutList
CheckMenuItem
GetPropW
FindWindowW
RegisterWindowMessageA
GetDC
WaitForInputIdle
GetWindowPlacement
GetClientRect
GrayStringW
IsWindowEnabled
GetUserObjectInformationW
ExitWindowsEx
LoadCursorW
GetKeyboardLayout
SetLastErrorEx
ShowCaret
GetForegroundWindow
LoadImageW
TileWindows
GetAltTabInfoW
IsCharAlphaNumericW
SendMessageA
EnableWindow
GetMenuStringW
SetWindowLongA
RegisterClassExW
GetShellWindow
MoveWindow
UnionRect
GetSubMenu
GetMessagePos
DrawFocusRect
DialogBoxIndirectParamW
OffsetRect
LoadIconW
InternalGetWindowText
SetUserObjectInformationW
GetKeyboardType
MessageBoxExA
DrawFrameControl
FrameRect
GetSysColorBrush
InflateRect
PostQuitMessage
UnloadKeyboardLayout
SetParent
CreatePopupMenu
GetDlgItemTextA
EqualRect
GetScrollInfo
CopyImage
IsWindowUnicode
GetParent
DefFrameProcW
TabbedTextOutW
DrawIconEx
CharUpperBuffA
LoadBitmapW
EnableMenuItem
DefWindowProcW
DrawMenuBar
DestroyCursor
GetDlgItemInt
DrawTextA
HideCaret
SetCaretPos
SetDlgItemInt
KillTimer
SendNotifyMessageW
CreateWindowExW
CheckDlgButton
CreateDialogIndirectParamW
SendDlgItemMessageW
ClientToScreen
FindWindowExA
CreateIconFromResource
GetClassLongA
SetWindowLongW
CharUpperA
PostMessageA
EnumThreadWindows
IsWindowVisible
CharUpperBuffW
CheckMenuRadioItem
CharUpperW
DestroyIcon
ScreenToClient
DispatchMessageA
GetUserObjectInformationA
GetCursorPos
SetMenuItemInfoW
SystemParametersInfoW
GetDCEx
FindWindowA
GetWindowTextA
OpenIcon
DrawTextExW
GetWindowRect
BeginDeferWindowPos
WindowFromPoint
GetUpdateRect
SetWindowRgn
CreateWindowExA
GetMessageTime
OpenInputDesktop
MapVirtualKeyA
GetScrollRange
RedrawWindow
GetDialogBaseUnits
GetCaretPos

kernel32

FindNextChangeNotification
FindFirstFileW
SetEvent
FindCloseChangeNotification
FileTimeToSystemTime
HeapValidate
HeapFree
GetModuleHandleW
LoadLibraryA
GetFileAttributesExW
FileTimeToDosDateTime
ReleaseMutex
GetCurrentThread
LoadLibraryW
GetSystemTimeAdjustment
GetFileAttributesA
SetupComm
GetLongPathNameW
MoveFileA
IsValidLocale
GlobalMemoryStatusEx
GlobalSize
GetComputerNameA
VirtualQuery
GetWindowsDirectoryA
GetModuleFileNameW
SetHandleCount
GlobalHandle
LCMapStringW
LocalSize
UnhandledExceptionFilter
CreateFileW
LocalUnlock
FreeResource
VirtualAlloc
CreateSemaphoreA
SetFilePointer
GetCompressedFileSizeW
GetThreadPriority
AddAtomA
CompareStringW
WinExec
FlushViewOfFile
SetEndOfFile
SetErrorMode
CreateRemoteThread
DisconnectNamedPipe
CreateDirectoryA
GetCommConfig
lstrcpynA
lstrcpynW
WriteFile
TlsFree
LockResource
GetOverlappedResult

msvcrt

system
iswprint
_controlfp
strncpy
__set_app_type
strncmp
strchr
__p__fmode
strtoul
ungetc
iswspace
qsort
wcstok
__p__commode
strtol
_amsg_exit
_initterm
toupper
_acmdln
isspace
vsprintf
fputc
tolower
gmtime
exit
iswalpha
_ismbblead
_XcptFilter
wcsrchr
clearerr
_exit
strcspn
iswdigit
fseek
sscanf
localtime
islower
_cexit
sprintf
atoi
bsearch
__setusermatherr
fprintf
strrchr
getc
fgets
wcstoul
__getmainargs
fflush

comdlg32

PrintDlgW
GetFileTitleW
GetSaveFileNameW
GetOpenFileNameA

Exports

Exports

InstallU
PluginCommand
PluginMain
PluginName
PluginType
PluginVersion
WSPStartup
?BitCounterArrayIdeDunAs@@YGKGE@Z

Sections

.text
Size: 9KB - Virtual size: 85KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 73KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d8dcfac9af954f0cbef5f3ac6095c47c

Headers

File Characteristics

PDB Paths

Imports

gdi32

user32

kernel32

msvcrt

comdlg32

Exports

Exports

Sections

.text Size: 9KB - Virtual size: 85KB

.rsrc Size: 73KB - Virtual size: 72KB

.reloc Size: 19KB - Virtual size: 19KB

.text
Size: 9KB - Virtual size: 85KB

.rsrc
Size: 73KB - Virtual size: 72KB

.reloc
Size: 19KB - Virtual size: 19KB