33afa063ac40c36082a98e224c04695b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

33afa063ac40c36082a98e224c04695b_JaffaCakes118
Size

200KB
MD5

33afa063ac40c36082a98e224c04695b
SHA1

9fa63ea4e784bf56d359350d5a670a12441ce845
SHA256

6c9fe2d9cd18a7a81ce6a34139a6d55540b821169b0c2981501c11b01fd6644e
SHA512

4c1ceeb88606434bdbaa68d3bf1a2141e02a42ffceffafd6d10c39706d310b589b71f3a1a8754471e85436eb7fbdcd3cfc66cc4641b758b25548f8b0a6096cd8
SSDEEP

3072:aYrQapfPTW8gdIVSdzHnUJcD0kBlTokxTGSCURcvr42nSn/4X2jEJyVaABnDVsa:aM68YIGz0iD0kHjTGlURE4OSdjEcxBa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
33afa063ac40c36082a98e224c04695b_JaffaCakes118

Files

33afa063ac40c36082a98e224c04695b_JaffaCakes118
.exe windows:5 windows x86 arch:x86

d5572f616779eaa7242c4b8201670ff6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

Q:\uthcgyJ\dpmnuWkfREKevr\Qbhwtcrz\DJrhhcrN.pdb

Imports

comctl32

ImageList_GetImageCount
ImageList_Create
CreatePropertySheetPageA
ImageList_Draw
ImageList_Read
ImageList_Remove

msvcrt

_controlfp
islower
__set_app_type
__p__fmode
iswxdigit
strspn
__p__commode
isdigit
_amsg_exit
srand
time
wcstoul
ungetc
fputs
_initterm
perror
ftell
_ismbblead
iswalpha
putc
_XcptFilter
_exit
tolower
towlower
wcsrchr
wcsncpy
strstr
_cexit
free
wcspbrk
fseek
__setusermatherr
strchr
wcscat
isxdigit
vsprintf
wcstol
strpbrk
sprintf
isprint
towupper
toupper
wcscoll
remove
atoi
wcstok
__getmainargs

kernel32

SleepEx
GetSystemDirectoryW
lstrcpyW
SetHandleInformation
GetComputerNameExW
SetLocalTime
GlobalUnlock
TransactNamedPipe
lstrcpynW
SetCommBreak
GlobalMemoryStatusEx
FormatMessageW
DisconnectNamedPipe
lstrcmpiW
GlobalLock
FindNextChangeNotification
TerminateThread
ResumeThread
CreateFileA
CreateSemaphoreA
WaitForSingleObject
IsBadWritePtr
FlushViewOfFile
CreatePipe
OpenEventW
LoadLibraryW
GlobalGetAtomNameW
LocalLock
FindCloseChangeNotification
RaiseException
VerSetConditionMask
GetCurrentDirectoryW
GlobalFree
FindNextFileW
CloseHandle
DeviceIoControl
GetComputerNameExA
GetCommandLineW
FindFirstFileW
LocalAlloc
HeapFree
FindClose
DeleteCriticalSection
HeapAlloc
DefineDosDeviceW
InitializeCriticalSection
GetModuleFileNameW
GetProcessHeap
SetTimerQueueTimer
GetThreadPriority
CompareStringA
GetPriorityClass
CreateDirectoryA
HeapValidate
SetThreadPriority

comdlg32

PrintDlgExW
GetOpenFileNameA
FindTextW
ChooseColorW
GetFileTitleW
GetSaveFileNameW

user32

DefFrameProcA
ShowOwnedPopups
MapDialogRect
TabbedTextOutW
CharPrevA
GetAltTabInfoA
DialogBoxParamA
CharToOemW
IsWindowUnicode
IsDialogMessageA
GetKeyboardType
PostThreadMessageA
LookupIconIdFromDirectory
FindWindowExW
ActivateKeyboardLayout
GetDlgItem
LockWindowUpdate
CreateWindowExA
LoadMenuA
GetMessagePos
LoadStringA
GetClassInfoW
ModifyMenuW
OpenInputDesktop
SendMessageTimeoutW
GetKeyboardLayout
GetUserObjectInformationW
SetTimer
CreateDialogIndirectParamW
mouse_event
SetFocus
ShowScrollBar
GetWindowTextW
GetWindow
EnumWindows
CreateCaret
ShowWindow
GetActiveWindow
GetDialogBaseUnits
DestroyIcon
DrawAnimatedRects
GetClientRect
CreateIconIndirect
SetRect
GetSysColorBrush
RemoveMenu
SetWindowRgn
CheckMenuRadioItem
EndPaint
DrawStateW
DefDlgProcA
MonitorFromRect
CharToOemBuffA
CreateWindowExW
GetCursorPos
DrawTextExW
GetClassInfoExW
IsRectEmpty
GetShellWindow
IntersectRect
FindWindowA
MessageBoxA
GetMenuState
GetMessageW
GetTopWindow
IsWindow
GetAsyncKeyState
SetUserObjectInformationW
RegisterWindowMessageA
SetWindowLongA
CascadeWindows
SendMessageA
DestroyMenu
GetWindowTextA
OemToCharBuffA
GetDlgItemTextW
IsMenu
SetWindowPos
GetMenu
SetCursor
IsDlgButtonChecked
IsChild
UnionRect
EnumThreadWindows
GetMessageExtraInfo
EndDialog
DispatchMessageA
CopyAcceleratorTableW
TrackPopupMenu
InSendMessageEx
GetParent
VkKeyScanW
CreateDialogParamW
MapVirtualKeyW
DrawFocusRect
SendMessageTimeoutA
CharUpperA
AppendMenuW
SetWindowTextA
keybd_event
PostMessageW
MapVirtualKeyA
wvsprintfA
TileWindows
DialogBoxIndirectParamW
ChangeMenuW
PeekMessageA
GetKeyState
InvalidateRect
ShowCaret
UpdateWindow
SetWindowLongW
DrawEdge
GetScrollPos
CreateDialogParamA
SendDlgItemMessageA
CharNextExA
GetWindowPlacement

Exports

Exports

?TestAccountSecDUoiJDK@@YGKGE[D

Sections

.text
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 10KB - Virtual size: 201KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 167KB - Virtual size: 166KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d5572f616779eaa7242c4b8201670ff6

Headers

File Characteristics

PDB Paths

Imports

comctl32

msvcrt

kernel32

comdlg32

user32

Exports

Exports

Sections

.text Size: 21KB - Virtual size: 20KB

.data Size: 10KB - Virtual size: 201KB

.rsrc Size: 167KB - Virtual size: 166KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 21KB - Virtual size: 20KB

.data
Size: 10KB - Virtual size: 201KB

.rsrc
Size: 167KB - Virtual size: 166KB

.reloc
Size: 1KB - Virtual size: 1KB