2ec0ab5aebf084d91d5a3ed1307cdbb7_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

2ec0ab5aebf084d91d5a3ed1307cdbb7_JaffaCakes118
Size

142KB
MD5

2ec0ab5aebf084d91d5a3ed1307cdbb7
SHA1

b0acb58f2e4991c37290eeadcce46985124df00e
SHA256

2149f237da52f99864356cb1b59b52ad3cc2a9530e1db29ff2f765b8b7b3a4ac
SHA512

e673bf4630e8ef85d4ae63a4764e10d4aa4f4cabf89371eb104bf0b4314d9a2ceb3716f8bc53db1f7b7673fc5eb3fd79dfbab560ec228519a050196a699baa5d
SSDEEP

3072:wDGDvq4vHFlrdnrvHqljnOLDt45cZ+1Oz131eQ8hHrcVfo:f3HFxVvHeoDtUcZ+ox1eVBrc9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2ec0ab5aebf084d91d5a3ed1307cdbb7_JaffaCakes118

Files

2ec0ab5aebf084d91d5a3ed1307cdbb7_JaffaCakes118
.exe windows:5 windows x86 arch:x86

b84e7850a9b4dbe150e700185d6f2ffc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

Q:\NQpEwpjat\UeBvepxvFyu\XwOPPakbda.pdb

Imports

comctl32

ImageList_GetIcon
ImageList_AddMasked
CreateToolbarEx
ImageList_Create
ImageList_ReplaceIcon
CreatePropertySheetPageW

gdi32

GetCurrentObject
PatBlt
GetRgnBox
RealizePalette
CreateFontIndirectA
CreateSolidBrush
GetTextFaceW
StartDocW
CreateBitmap
ResizePalette
PtInRegion
SetBitmapBits
AddFontResourceW
OffsetRgn
GetTextMetricsW
GetMapMode
SetBkMode
SetBkColor
ExcludeClipRect
SetBrushOrgEx
GetFontData
ScaleViewportExtEx
SetWindowExtEx
TextOutW
GetPixel
CreateCompatibleBitmap
CreateBitmapIndirect
RoundRect
SetPaletteEntries
SelectClipRgn
CreatePolygonRgn
CreatePatternBrush
LineDDA
CreateRectRgnIndirect
GetTextCharsetInfo
Escape
SetDIBitsToDevice
GetDIBits
CombineRgn
GetDeviceCaps
GetTextColor
FillRgn
SetBitmapDimensionEx
PathToRegion
SetViewportExtEx
GetPaletteEntries
CreatePen
GetStockObject

user32

DrawIcon
DefDlgProcW
CharUpperBuffW
GetMenuItemRect
ReleaseDC
GetMenuItemInfoW
GetMenuItemCount
LoadCursorW
CharPrevA
DispatchMessageW
DialogBoxParamA
GetShellWindow
RedrawWindow
GetDlgItemTextA
GetKeyState
PeekMessageA
ClientToScreen
CreateDialogIndirectParamW
wsprintfA
OpenDesktopW
RemovePropW
IsDialogMessageA
GetSystemMetrics
SetPropW
ClipCursor
GetSubMenu
SendDlgItemMessageA
CharPrevW
IsCharAlphaW
CreatePopupMenu
GetTopWindow
SetDlgItemInt
GetClassInfoA
GetKeyboardLayoutNameW
GetWindow
ScreenToClient
SetScrollInfo
wsprintfW
GetKeyboardLayoutList
SetUserObjectInformationW
DefFrameProcW
InsertMenuA
CharLowerA
WaitMessage
GetClipCursor
mouse_event
SetActiveWindow
ValidateRect
ShowScrollBar
SetMenuItemBitmaps
InternalGetWindowText
GetDCEx
DialogBoxParamW
RegisterClassA
SetWindowPos
GetMessageExtraInfo
IsDlgButtonChecked
DispatchMessageA
SetDlgItemTextA
DrawFocusRect
ChildWindowFromPoint
GetMessageW
IsWindowEnabled
GetAltTabInfoW
AdjustWindowRect
SwitchToThisWindow
EnumWindows
GetMessageA
TrackPopupMenuEx
GetClientRect
MoveWindow
EnumThreadWindows
GetWindowTextA
DeferWindowPos
GetNextDlgGroupItem
GetSysColorBrush
GetMonitorInfoW
SetMenuItemInfoW
MapVirtualKeyA
DrawAnimatedRects
SystemParametersInfoA
CheckMenuRadioItem
GetWindowPlacement
GetSysColor
GetKeyNameTextW
LockWindowUpdate
TabbedTextOutW
GetClassLongW
ScrollWindow
GetMessagePos
CharNextW
SetRectEmpty
DialogBoxIndirectParamW
RegisterClassExA
ShowWindowAsync
DialogBoxIndirectParamA
InsertMenuItemW
SetDlgItemTextW
FindWindowExW
OffsetRect
MonitorFromRect
SetRect
SetCursorPos
GetMenuCheckMarkDimensions
GetMenu
UnloadKeyboardLayout
TranslateMessage
CreateDialogParamW
DrawTextExW
IsDialogMessageW
DrawTextW
CharNextA
LookupIconIdFromDirectory
GetUpdateRgn
CallWindowProcA
LoadIconA
GetParent
MapVirtualKeyExW
InSendMessageEx

msvcrt

floor
fgets
vsprintf
_controlfp
free
bsearch
isdigit
fseek
strstr
vswprintf
__set_app_type
setvbuf
__p__fmode
calloc
__p__commode
wcsncmp
strspn
strcpy
_amsg_exit
wcstombs
_initterm
realloc
fflush
islower
_acmdln
exit
_ismbblead
_XcptFilter
iswdigit
strncpy
printf
mbtowc
strcoll
isspace
swscanf
_exit
iswctype
setlocale
isalnum
isprint
_cexit
fclose
__setusermatherr
sscanf
fputs
iswspace
atoi
strrchr
__getmainargs

kernel32

SetEndOfFile
GetShortPathNameW
GetModuleHandleA
MoveFileA
TlsGetValue
AddAtomW
GetCommState
DefineDosDeviceW
FindFirstFileW
LocalSize
SetFileApisToOEM
VirtualProtect
FindResourceExA
FoldStringW
lstrlenW
GetModuleFileNameW
OpenEventW
FindNextChangeNotification
CloseHandle
lstrcmpW
DeleteFileW
GetLocaleInfoA
ReleaseSemaphore
GetCommandLineA
LocalLock
OpenSemaphoreW
LockFile
EnterCriticalSection
QueryPerformanceCounter
GetComputerNameExW
SetSystemTime
SetNamedPipeHandleState
FindFirstFileA
GetTempFileNameW
GetThreadPriority
GetWindowsDirectoryA
GlobalAlloc
HeapFree
WaitForSingleObjectEx
UnhandledExceptionFilter
LoadLibraryW
CopyFileW
SetCommBreak
GetCommTimeouts
SetThreadContext
FindResourceW
lstrcpynA
CreateMutexA
SetCommState
PulseEvent
DisconnectNamedPipe
GetThreadTimes
HeapReAlloc
AreFileApisANSI

comdlg32

CommDlgExtendedError
GetSaveFileNameW
PrintDlgExW
ChooseFontW
PrintDlgW

Exports

Exports

?RtlWindowInfoOld@@YGPAXPAK]A
?FormatScreenOld@@YGXPAK]A
?BitCounterArrayIdeDunAs@@YGKGE@Z

Sections

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 115KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b84e7850a9b4dbe150e700185d6f2ffc

Headers

File Characteristics

PDB Paths

Imports

comctl32

gdi32

user32

msvcrt

kernel32

comdlg32

Exports

Exports

Sections

.text Size: 20KB - Virtual size: 20KB

.data Size: 4KB - Virtual size: 128KB

.rsrc Size: 115KB - Virtual size: 115KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 20KB - Virtual size: 20KB

.data
Size: 4KB - Virtual size: 128KB

.rsrc
Size: 115KB - Virtual size: 115KB

.reloc
Size: 1KB - Virtual size: 1KB