2ede1ade3404c6e906fde41785db9a29_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2ede1ade3404c6e906fde41785db9a29_JaffaCakes118
Size

144KB
MD5

2ede1ade3404c6e906fde41785db9a29
SHA1

779f99a2d22297af54cc6888b7661225e5f1eb65
SHA256

0052d76855a64dae0978a4d5fd0e744ec2d9d587ca42cfffa5ce0e7d9f97b960
SHA512

78d9d46edcbe4cd959d6ee65316b215fc14e0388e694efca51fa3a0e63e0e48d0fa395af43d065241336f03cc5dd7ce8c7777ac33daf2aa43464caf1a3215282
SSDEEP

3072:vISh7WJ9SlCxNl3D4z0kF8VTXyfwfoUszOUSvKQp31Sm3:wtJgCvlzUXFiry275rZ1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2ede1ade3404c6e906fde41785db9a29_JaffaCakes118

Files

2ede1ade3404c6e906fde41785db9a29_JaffaCakes118
.exe windows:5 windows x86 arch:x86

13afad226009a3469b177ca44a82a753

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

R:\kGediajSYsP\yuGbQalgw\jtjmIUwtcLcbd\vwXfSldwiljxVC\JPfZIoBgmiba.pdb

Imports

user32

wsprintfA
PostThreadMessageW
LoadBitmapA
CharNextExA
LoadStringW
SetScrollPos
GetDialogBaseUnits
EnumThreadWindows
CreateIconIndirect
SetCursorPos
DefFrameProcA
IsWindowEnabled
TrackPopupMenuEx
GetClassNameW
AllowSetForegroundWindow
RegisterHotKey
GetClassInfoExA
GetClassLongA
DrawTextExW
CharLowerW
LoadMenuW
GetSysColorBrush
GetClassInfoW
CreateWindowExA
CreatePopupMenu
GetMenuItemRect
LoadAcceleratorsA
SendMessageTimeoutW
GetMenu
ValidateRect
GetWindowTextA
DrawEdge
OffsetRect
GetUserObjectInformationA
ShowWindowAsync
InternalGetWindowText
InvertRect
DrawStateW
SetMenu
SetScrollInfo
GetDlgItem
CharPrevW
SetUserObjectInformationW
RegisterClassW
DispatchMessageA
SendMessageW
CreateDialogIndirectParamW
TrackPopupMenu
SetWindowRgn
DrawFocusRect
DestroyMenu
GetMonitorInfoW
GetUpdateRgn
GetShellWindow
EnableMenuItem
CreateMenu
RemoveMenu
DrawIcon
GetDC
SystemParametersInfoW
GetKeyboardLayoutList
IsWindowUnicode
ReplyMessage
RegisterClassExW
GetMenuState
GetLastActivePopup
GetMenuItemInfoW
ShowCursor
CharUpperBuffA
CreateWindowExW
CreateDialogParamA
CloseDesktop
AdjustWindowRect
CheckDlgButton
GetWindowRect
GetClassInfoA
GetAltTabInfoA
LoadMenuA
MoveWindow
RedrawWindow
GetMenuStringW
GetMenuCheckMarkDimensions
SetCaretPos
GetDoubleClickTime
keybd_event
EnumChildWindows
CopyAcceleratorTableW
CreateCursor
TranslateAcceleratorA
ClientToScreen
DialogBoxIndirectParamA
CharLowerBuffW
DrawStateA
RegisterWindowMessageW
GetKeyboardType
RemovePropW
ToUnicodeEx
GetSysColor
GetIconInfo
DefDlgProcA
ClipCursor
IsDialogMessageW
WindowFromPoint
DialogBoxIndirectParamW
FrameRect
IsDialogMessageA
FindWindowExW
PeekMessageA
OemToCharA
InSendMessage
GetDlgCtrlID
SetWindowLongW
EndPaint
DeleteMenu
DestroyCaret
GetActiveWindow
ModifyMenuW
VkKeyScanW

comctl32

DestroyPropertySheetPage
ImageList_Destroy
CreatePropertySheetPageA
ImageList_GetImageCount
ImageList_Draw
ImageList_Write

comdlg32

ReplaceTextW
FindTextW
GetSaveFileNameW
ChooseFontW
PrintDlgW
GetFileTitleW

kernel32

OpenEventW
IsBadReadPtr
VerifyVersionInfoW
GetModuleFileNameW
GlobalCompact
ReadFile
SetCommMask
FindResourceA
OpenEventA
FindClose
GlobalFindAtomW
GetComputerNameExW
DeleteFileA
SetLastError
SetSystemTime
GetFileTime
GetCommProperties
LeaveCriticalSection
EnterCriticalSection
CreateNamedPipeW
GetStdHandle
DeleteCriticalSection
IsDBCSLeadByteEx
HeapFree
GlobalAlloc
GetThreadLocale
SetFileAttributesA
GetVersion
FileTimeToLocalFileTime
GetThreadPriority
EnumResourceNamesA
OpenFileMappingA
LoadLibraryExW
WaitCommEvent
FlushViewOfFile
lstrcmpiW
RaiseException
SetEvent
SetSystemTimeAdjustment
LoadLibraryExA
GlobalDeleteAtom
lstrlenW
TerminateThread
TlsGetValue
DeleteAtom
TransactNamedPipe
CreateFileMappingW
HeapAlloc
FindResourceExA
GetDateFormatA
GetProcessHeap
CancelIo
GetFileAttributesExW
GetCommModemStatus
GetComputerNameW
LoadLibraryW

msvcrt

_controlfp
tolower
__set_app_type
malloc
sscanf
isprint
srand
fwrite
vsprintf
getenv
iswprint
gets
__p__fmode
isupper
calloc
remove
__p__commode
system
qsort
iswdigit
free
_amsg_exit
iswxdigit
fseek
strcoll
fputs
strchr
wcslen
islower
mbstowcs
toupper
puts
sprintf
_initterm
strpbrk
wcsrchr
_ismbblead
printf
fclose
_XcptFilter
_exit
_cexit
__setusermatherr
wcstok
realloc
__getmainargs
swscanf

Exports

Exports

?TestAccountSecDUoiJDK@@YGKGE[D

Sections

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 10KB - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 111KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

13afad226009a3469b177ca44a82a753

Headers

File Characteristics

PDB Paths

Imports

user32

comctl32

comdlg32

kernel32

msvcrt

Exports

Exports

Sections

.text Size: 20KB - Virtual size: 20KB

.data Size: 10KB - Virtual size: 134KB

.rsrc Size: 111KB - Virtual size: 110KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 20KB - Virtual size: 20KB

.data
Size: 10KB - Virtual size: 134KB

.rsrc
Size: 111KB - Virtual size: 110KB

.reloc
Size: 1KB - Virtual size: 1KB