31eb9ca74fe1e608b1170b63a8eec8d6_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

31eb9ca74fe1e608b1170b63a8eec8d6_JaffaCakes118
Size

112KB
MD5

31eb9ca74fe1e608b1170b63a8eec8d6
SHA1

5cc40f51a39c741a87b95b73cac6d2a0819b4ee1
SHA256

bc08f013429d258e4c63f72e4cbb14ae99fa895e79e4101cbf67a1a54daa9884
SHA512

97579936945390351a011b4e9c0ebb350acc8591c3da0d53d786710cee68561e34689abd4e16bc2fe96bb103ac5d83270451288656511513b027f80e68bc0656
SSDEEP

3072:0FPsuHFse2q1vuE3dKgGyTfw1y6P6LtUmAA:0FPXH6svP3dKu+y6P6L

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
31eb9ca74fe1e608b1170b63a8eec8d6_JaffaCakes118

Files

31eb9ca74fe1e608b1170b63a8eec8d6_JaffaCakes118
.exe windows:5 windows x86 arch:x86

6407e0c4908914cb626310997e0971cc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

R:\xmqrzZpNTmG\pSltWXYmAVod\bVsxiBeP\vtdcvrRapipmbb\XYbWbfzdk.pdb

Imports

gdi32

SetBitmapBits
Polyline
RoundRect
PathToRegion
SelectClipRgn
SetTextAlign
CreateSolidBrush
CombineRgn
GetNearestPaletteIndex
GetTextMetricsA
CreateCompatibleDC
GetNearestColor
SetStretchBltMode
RestoreDC
SetROP2
StartPage
CreateBitmapIndirect
GetTextFaceW
OffsetViewportOrgEx
GetLayout
GetTextAlign
GetPixel
CreateRectRgnIndirect
UnrealizeObject
SetBkMode
GetObjectW
SetLayout
CreateBitmap
Polygon
WidenPath
SelectObject
GetTextExtentPoint32A
ScaleWindowExtEx
ScaleViewportExtEx
CreateRectRgn
SetMapMode
SetRectRgn
CreatePatternBrush
StretchDIBits
StretchBlt
GetDIBits
GetWindowOrgEx
AddFontResourceA
PtInRegion
GetBkMode
GetViewportOrgEx
GetTextExtentPointA
ExtFloodFill
CreatePen
GetTextExtentPoint32W
SetDIBits
SetPaletteEntries
CreateDIBSection
CreateBrushIndirect
LPtoDP
BeginPath
ResizePalette
CreateFontIndirectA
Rectangle
SetBrushOrgEx
CreateHalftonePalette
CreateFontA
GetMapMode
SetAbortProc
AddFontResourceW
GetObjectA
EnumFontFamiliesW
RemoveFontResourceW
GetTextColor
GetTextCharsetInfo
SetTextColor
LineDDA
CreateFontIndirectW
ExtTextOutA

msvcrt

wcslen
wcstod
_controlfp
towlower
wcschr
isalpha
strcpy
fread
localtime
fseek
islower
__set_app_type
fgets
wcstombs
__p__fmode
strspn
__p__commode
iswalpha
setlocale
calloc
ungetc
wcscpy
toupper
strncpy
_amsg_exit
_initterm
vswprintf
time
_ismbblead
qsort
wcsstr
iswspace
strtol
iswdigit
swprintf
isxdigit
mktime
floor
strtoul
_XcptFilter
_exit
wcsncpy
iswctype
sscanf
_cexit
__setusermatherr
isalnum
free
isupper
strchr
fgetc
isdigit
isspace
printf
puts
vsprintf
getc
__getmainargs
system
wcstok
srand
iswxdigit

user32

GetSubMenu
CharUpperBuffW
IsCharAlphaW
DrawStateA
DrawTextW
DestroyIcon
ShowCaret
TrackPopupMenuEx
InvalidateRect
SetMenuItemInfoW
MonitorFromPoint
SetTimer
EndPaint
GetDC
GetUserObjectInformationW
ToUnicodeEx
GetUpdateRgn
TranslateMessage
SetLastErrorEx
GetMenuItemCount
LoadStringW
CreateCursor
CharLowerW
DispatchMessageA
SendInput
MapVirtualKeyExW
GetWindowTextLengthW
GetLastActivePopup
OffsetRect
EnableMenuItem
GetWindowRect
GetClientRect
SendNotifyMessageW
CloseDesktop
SetWindowTextA
SwitchToThisWindow
SetCursorPos
SetClassLongW
GetMenuItemRect
GetMessagePos
SetSysColors
SetUserObjectInformationW
GetMonitorInfoW
ShowScrollBar
GetForegroundWindow
SendDlgItemMessageA
GetMenuItemInfoW
LoadCursorA
LoadAcceleratorsW
LoadMenuA
GetUpdateRect
SetWindowPlacement
CharNextExA
DefWindowProcW
ValidateRect
DefWindowProcA
GetMenuItemID
IsWindowUnicode
CharUpperW
IsCharUpperA
GetSysColor
OpenDesktopW
AdjustWindowRectEx
AttachThreadInput
MonitorFromRect
SystemParametersInfoA
IsChild
DrawFrameControl
SetRect
BringWindowToTop
WindowFromPoint
GetKeyboardLayoutList
EnableWindow
RemovePropW
FindWindowExW
EnumThreadWindows
GetDlgItemInt
EnumWindows
IsDialogMessageW
SetScrollPos
CreatePopupMenu
GetClipCursor
MoveWindow
GetMessageA
GetClassInfoA
LoadIconA
HideCaret
SendMessageA
LoadBitmapW
ChangeMenuW
GetIconInfo
DialogBoxIndirectParamW
GetClassLongA
DefDlgProcA
GetWindowTextW
CreateIconFromResource
CopyAcceleratorTableW
RegisterWindowMessageA
IsIconic
OemToCharA
SetCaretPos
SetMenu
MapVirtualKeyW
SetScrollInfo
IsCharLowerA
EnumChildWindows
GetClassLongW
GetKeyState
SetRectEmpty
CharLowerBuffW
SetDlgItemTextW
SetWindowRgn
EnableScrollBar
DrawIconEx
CreateDialogParamW
InsertMenuItemW
AppendMenuA
GetWindowTextA
PtInRect
GetNextDlgTabItem
FindWindowW
OemToCharBuffA
IsWindowEnabled
wsprintfW
IsZoomed
GetMenuStringA
IsMenu
DestroyAcceleratorTable
InSendMessage
InsertMenuW
RegisterClassExW
CharUpperBuffA
FillRect
FrameRect
GetKeyNameTextW
SendMessageTimeoutA
ChildWindowFromPointEx
IntersectRect
DestroyCaret
BeginDeferWindowPos
GetKeyboardLayout
SetWindowPos
SwapMouseButton
UpdateWindow
SetScrollRange
EndDialog
DrawTextA
MessageBoxA
GetClassInfoExW
ChildWindowFromPoint
GetWindowLongA
GetMenuCheckMarkDimensions
LockWindowUpdate
CallWindowProcA
SetPropW
DeleteMenu
GetDoubleClickTime
InvalidateRgn
IsWindow
GrayStringW
GetSystemMenu
GetDesktopWindow
ReplyMessage
CreateDialogParamA
DestroyWindow
GetAsyncKeyState
GetKeyboardLayoutNameW
LoadIconW
LoadBitmapA
LoadMenuW
GetDlgItem
DrawFocusRect
SendDlgItemMessageW
ReleaseDC

kernel32

GlobalAlloc
DisconnectNamedPipe
ClearCommError
GetSystemDirectoryW
GetSystemTimeAsFileTime
SleepEx
WriteFile
FindResourceExW
CreateDirectoryW
DuplicateHandle
GlobalAddAtomA
LoadLibraryExA
CreateSemaphoreA
lstrcmpW
GetShortPathNameA
ConnectNamedPipe
IsDBCSLeadByteEx
GetStartupInfoA
SetThreadPriority
CopyFileW
GetModuleFileNameA
CloseHandle
lstrlenA
GetCommandLineW
GetUserDefaultLCID
FindClose
HeapFree
CompareStringW
ReadFile
CreateWaitableTimerW
GetShortPathNameW
FileTimeToDosDateTime
AddAtomA
GlobalCompact
CreateNamedPipeA
lstrlenW
TransactNamedPipe
CreateFileA
EnumResourceNamesA
GetWindowsDirectoryA
SetEndOfFile
GetVersionExA
SetCommBreak
TerminateThread
SetFileAttributesW
GetFileAttributesA
LoadLibraryW
FindResourceW
FindResourceA
GetTempPathA
GetDateFormatW
FlushViewOfFile
GetCurrentDirectoryW
GetLocaleInfoW
GetCommandLineA
GetAtomNameW
GlobalLock
LockFile
GetCurrentThread
GetFileTime
SetPriorityClass
HeapAlloc
lstrcpyA
DeleteAtom
WaitForSingleObjectEx
HeapReAlloc
LocalLock
MoveFileExW
GetOverlappedResult
SetCurrentDirectoryA
SetWaitableTimer
GetUserDefaultUILanguage
GetModuleFileNameW
WaitForMultipleObjects
SetCommMask
EnumSystemLocalesA
FindNextFileW
SetFileTime

Exports

Exports

?SetWindowsHookAJHDkjkjdKUDFyuf@@YGKPA_WK@Z

Sections

.text
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tcdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.memvrt
Size: - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dttxt0
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dttxt1
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dttxt2
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dttxt3
Size: 31KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6407e0c4908914cb626310997e0971cc

Headers

File Characteristics

PDB Paths

Imports

gdi32

msvcrt

user32

kernel32

Exports

Exports

Sections

.text Size: 27KB - Virtual size: 27KB

.itext Size: 10KB - Virtual size: 9KB

.rdata Size: 9KB - Virtual size: 9KB

.tcdata Size: 12KB - Virtual size: 11KB

.data Size: 1KB - Virtual size: 1KB

.memvrt Size: - Virtual size: 104KB

.dttxt0 Size: 6KB - Virtual size: 5KB

.dttxt1 Size: 6KB - Virtual size: 5KB

.dttxt2 Size: 6KB - Virtual size: 5KB

.dttxt3 Size: 31KB - Virtual size: 30KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 27KB - Virtual size: 27KB

.itext
Size: 10KB - Virtual size: 9KB

.rdata
Size: 9KB - Virtual size: 9KB

.tcdata
Size: 12KB - Virtual size: 11KB

.data
Size: 1KB - Virtual size: 1KB

.memvrt
Size: - Virtual size: 104KB

.dttxt0
Size: 6KB - Virtual size: 5KB

.dttxt1
Size: 6KB - Virtual size: 5KB

.dttxt2
Size: 6KB - Virtual size: 5KB

.dttxt3
Size: 31KB - Virtual size: 30KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 1KB - Virtual size: 1KB