365576d0ef4403847d0b774bcadbc33b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

365576d0ef4403847d0b774bcadbc33b_JaffaCakes118
Size

213KB
MD5

365576d0ef4403847d0b774bcadbc33b
SHA1

c85bc9ac26eb53d7c2cb288b85f2fc1be46089b7
SHA256

73a364fff017e1a9d883088babd80ce038959b34f2d7ea9f6d7ec53d30cc2f4c
SHA512

2906c5b543c601124ffd088926db9fcf576258203d0b3c51fc0512d71f1b3adc78c6603a9cf5724e2c559b41632adfc6e6fdccff2b5e64619852d0c2d39aa174
SSDEEP

6144:gRiUWK1lXPBW5VgXWNXrmtEDKSwG8Z/4eTGo:gsihkjXKi+SwGgT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
365576d0ef4403847d0b774bcadbc33b_JaffaCakes118

Files

365576d0ef4403847d0b774bcadbc33b_JaffaCakes118
.exe windows:5 windows x86 arch:x86

04f6b4358728c72c374353ed606786bf

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

M:\Zbpgikgbqeknq\fausLsJtVXdu\IcvyCrFq\erqcgqvcPt\RguvkKZps.pdb

Imports

gdi32

GetSystemPaletteEntries
UnrealizeObject
CreateDIBSection
Escape
GetTextExtentPointA
WidenPath
FillRgn
SelectObject
GetTextAlign
ScaleViewportExtEx
GetDIBits
GetFontData
AbortDoc
SetDIBColorTable
GetTextExtentPoint32A
SelectPalette

msvcrt

_controlfp
__set_app_type
__p__fmode
__p__commode
wcspbrk
sscanf
_amsg_exit
wcsstr
_initterm
isalnum
wcstombs
_acmdln
exit
_ismbblead
_XcptFilter
islower
wcscoll
srand
_exit
_cexit
__setusermatherr
towlower
__getmainargs
wcsncmp

comdlg32

CommDlgExtendedError
PrintDlgExW

user32

SetScrollPos
BringWindowToTop
MapVirtualKeyW
LoadBitmapW
GetSysColor
ScreenToClient
IsChild
CopyRect
BeginDeferWindowPos
CreateCaret
GetWindowLongW
DrawTextW
SetClassLongW
SendMessageTimeoutW
GetCursorPos
KillTimer
DestroyCaret
mouse_event
GetWindowPlacement
LoadStringA
PostQuitMessage
MonitorFromPoint
GetDlgItemTextW
CharToOemBuffA
GetClipCursor
SetWindowRgn
PostThreadMessageA
OemToCharBuffA
GetActiveWindow
LoadMenuW
ShowWindow
AdjustWindowRectEx
CreateAcceleratorTableW
GetForegroundWindow
GetWindowTextA
SystemParametersInfoW

kernel32

GetLastError
GlobalGetAtomNameW
GetFileAttributesW
UnmapViewOfFile
CreateEventW
RemoveDirectoryW
FindFirstFileA
FindFirstFileW
SetUnhandledExceptionFilter
lstrlenA
HeapSize
GetTimeZoneInformation
GetUserDefaultLCID
GetFileInformationByHandle
GetSystemDefaultLangID
lstrcatW
SetCommMask
IsBadStringPtrA
SetSystemTimeAdjustment

Exports

Exports

?LeaveCriticalSectionGDhkyjkjhHFJlF@@YGKEPA_WG@Z

Sections

.text
Size: 169KB - Virtual size: 168KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.diag_x
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.diag_y
Size: 512B - Virtual size: 88B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.div
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idat
Size: 512B - Virtual size: 408B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.imul
Size: 512B - Virtual size: 211B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.plus
Size: 512B - Virtual size: 425B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.minus
Size: 512B - Virtual size: 140B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

04f6b4358728c72c374353ed606786bf

Headers

File Characteristics

PDB Paths

Imports

gdi32

msvcrt

comdlg32

user32

kernel32

Exports

Exports

Sections

.text Size: 169KB - Virtual size: 168KB

.diag_x Size: 512B - Virtual size: 28B

.diag_y Size: 512B - Virtual size: 88B

.data Size: 3KB - Virtual size: 2KB

.div Size: 2KB - Virtual size: 2KB

.idat Size: 512B - Virtual size: 408B

.imul Size: 512B - Virtual size: 211B

.plus Size: 512B - Virtual size: 425B

.minus Size: 512B - Virtual size: 140B

.rsrc Size: 32KB - Virtual size: 32KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 169KB - Virtual size: 168KB

.diag_x
Size: 512B - Virtual size: 28B

.diag_y
Size: 512B - Virtual size: 88B

.data
Size: 3KB - Virtual size: 2KB

.div
Size: 2KB - Virtual size: 2KB

.idat
Size: 512B - Virtual size: 408B

.imul
Size: 512B - Virtual size: 211B

.plus
Size: 512B - Virtual size: 425B

.minus
Size: 512B - Virtual size: 140B

.rsrc
Size: 32KB - Virtual size: 32KB

.reloc
Size: 2KB - Virtual size: 1KB