33516ae95e2fb05d1c634a9b30656037_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

33516ae95e2fb05d1c634a9b30656037_JaffaCakes118
Size

145KB
MD5

33516ae95e2fb05d1c634a9b30656037
SHA1

348ca3e7d9439a7a8433bf12cba9e948635552a5
SHA256

2a0b5cdef39005293e48f402597b8e9d7f685064ab0d4c528abbf18cca1b12d6
SHA512

917bc35f22ec2194fa39fccde6c4a77451d4db2838ed9f62536df0d8bfac8cdecc2a4f604ffde7aa391bdd3a02b899b99090bb2a614d809c8bbf72aa87385ffe
SSDEEP

3072:B9dFEDr3YbxlIGLfmOxcsUq0Bp5y2RMWfNOwXOYcwwWXuwcubp5:B/FEAbxlB/D70jo2mWfcwGwwWXtcu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
33516ae95e2fb05d1c634a9b30656037_JaffaCakes118

Files

33516ae95e2fb05d1c634a9b30656037_JaffaCakes118
.exe windows:5 windows x86 arch:x86

780276eddfde8ece1848b691ef21c709

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

Y:\oxfciaqtrJPp\lvcbZvVEnoQg\SvLyysR\lwMdghvbwqqsdd\KmHWPmT.pdb

Imports

msvcrt

iswxdigit
strncpy
_controlfp
towupper
wcstod
fseek
vsprintf
__set_app_type
wcscspn
__p__fmode
__p__commode
_amsg_exit
system
atol
fgets
memset
_initterm
gmtime
fread
strerror
mbstowcs
perror
_ismbblead
_XcptFilter
isprint
wcslen
strtol
isdigit
realloc
remove
toupper
_exit
iswdigit
puts
sprintf
wcstol
_cexit
putc
__setusermatherr
strspn
gets
strtoul
__getmainargs
wcsstr
getenv
clock
qsort
strrchr

kernel32

GetAtomNameW
lstrcmpiA
GetStartupInfoW
GetCurrentDirectoryW
RegisterWaitForSingleObject
HeapFree
GlobalMemoryStatusEx
LocalAlloc
IsValidLocale
lstrcatA
GetSystemTimeAdjustment
CreateDirectoryA
LocalLock
GetStdHandle
CreateFileW
ExitThread
LCMapStringW
CreatePipe
GetCommModemStatus
GetThreadTimes
CompareStringW
GetACP
GetSystemDefaultUILanguage
GetFileTime
GetProcessHeap
WaitForMultipleObjects
HeapLock
GlobalHandle
GlobalFindAtomW
CreateEventW
AddAtomW
EnumResourceTypesA
GetTimeFormatA
DeleteFileA
GlobalGetAtomNameA
VirtualAlloc
GetUserDefaultUILanguage
GetUserDefaultLangID
GetNumberFormatA
CopyFileW
TlsGetValue
HeapAlloc
SetThreadPriority
GetCurrentThreadId
UnlockFile
CancelIo
GetCommandLineA
GetExitCodeThread
SetTimerQueueTimer
GetFileAttributesA
SetSystemTime
GetWindowsDirectoryA
SetHandleInformation
FindNextFileW
GetModuleHandleA
GlobalAddAtomA
SetCommTimeouts
WaitForSingleObjectEx
WriteFile

shlwapi

StrToIntW

user32

FillRect
GetWindowTextLengthW
ActivateKeyboardLayout
keybd_event
TileWindows
GetWindowModuleFileNameW
SendMessageA
IsMenu
BringWindowToTop
TranslateMessage
LoadMenuA
GetSystemMetrics
DestroyCursor
DrawMenuBar
WaitForInputIdle
SetRect
wvsprintfA
ShowWindowAsync
RegisterClassExA
MapVirtualKeyA
VkKeyScanW
ScreenToClient
IsDialogMessageW
DeferWindowPos
CreateMenu
GetFocus
CharToOemBuffA
MoveWindow
MonitorFromRect
EndDialog
ReplyMessage
ShowWindow
MonitorFromPoint
DefFrameProcA
CharPrevW
UpdateWindow
OpenInputDesktop
AdjustWindowRect
SendMessageW
DefWindowProcW
InflateRect
AdjustWindowRectEx
BeginDeferWindowPos
SetDlgItemTextA
SwitchToThisWindow
GetClassInfoExA
GetClassLongA
SetScrollInfo
GetDlgItem
DialogBoxParamA
ShowOwnedPopups
GetMenuItemCount
LoadIconA
AttachThreadInput
DispatchMessageW
SetClassLongW
SetMenu
GetGUIThreadInfo
OpenDesktopW
GetCaretBlinkTime
DrawFocusRect
CharNextW
SendMessageTimeoutA
IsDialogMessageA
DialogBoxIndirectParamA
RegisterWindowMessageW
SendDlgItemMessageW
ChildWindowFromPoint
GetNextDlgGroupItem
IsCharAlphaNumericW
GetMessageExtraInfo
CharLowerA
SetTimer
SetDlgItemTextW
AppendMenuW
wsprintfW
SetForegroundWindow
EnableScrollBar
GetNextDlgTabItem
SetCaretPos
IsRectEmpty
GetKeyboardType
SetPropW
CopyImage
FrameRect
DrawTextA
GetDialogBaseUnits
SetWindowRgn
IsCharAlphaW
CheckMenuRadioItem
RemoveMenu
MapDialogRect
LoadImageW
CharPrevA
GetMessageTime
ChangeMenuW
LoadStringW
RegisterClassExW
ArrangeIconicWindows
GrayStringW
GetMessageA
GetWindowTextA
DefDlgProcA
RegisterClassW
PostThreadMessageW
ShowScrollBar
InSendMessage
BeginPaint
SetWindowLongW
LoadBitmapA
TranslateAcceleratorW
DeleteMenu
SetLastErrorEx
GetSysColorBrush
OemToCharBuffA
DrawStateW
DrawIconEx
DialogBoxParamW
EnableWindow
MapWindowPoints
IsWindowUnicode
TrackPopupMenuEx
OemToCharA
GetMenuCheckMarkDimensions
GetMonitorInfoW
SystemParametersInfoW

Exports

Exports

?GenericOutputInfoYSUh@@YGK_KHE[D

Sections

.text
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 67KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

780276eddfde8ece1848b691ef21c709

Headers

File Characteristics

PDB Paths

Imports

msvcrt

kernel32

shlwapi

user32

Exports

Exports

Sections

.text Size: 60KB - Virtual size: 60KB

.data Size: 14KB - Virtual size: 18KB

.rsrc Size: 67KB - Virtual size: 66KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 60KB - Virtual size: 60KB

.data
Size: 14KB - Virtual size: 18KB

.rsrc
Size: 67KB - Virtual size: 66KB

.reloc
Size: 2KB - Virtual size: 1KB