37a359ca04cfcbc8ee948b6fd7cd5082_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

37a359ca04cfcbc8ee948b6fd7cd5082_JaffaCakes118
Size

149KB
MD5

37a359ca04cfcbc8ee948b6fd7cd5082
SHA1

14baaad00abd79daede65b91ba9a729662587423
SHA256

148c78c18b5af52d65983e88873c5922111152df19ede7f1d12abc3a0659bc6a
SHA512

a071572a9d381944de8f042b18a876c0feae6102659ab287103e0d286c5d6e3391552742b5689c6c45f7b6ef986f228f43695ad4201d793a71b2baacf42e536b
SSDEEP

3072:GC2RMrT7e7a4e5/5IDmK/dkufDNBDKT0uyvKNLj2OTFaFPLiKk:Z2mrkaUdnfDN/ILSOINLiK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
37a359ca04cfcbc8ee948b6fd7cd5082_JaffaCakes118

Files

37a359ca04cfcbc8ee948b6fd7cd5082_JaffaCakes118
.exe windows:5 windows x86 arch:x86

efd00b65b924bdb65d1bc3d8b7a62a08

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

I:\mixejqctzdtfyg\trmvuiyjeQm\vhsfslameJdbE.pdb

Imports

shlwapi

StrToIntW

kernel32

FindResourceA
GlobalUnlock
SetLocalTime
GlobalCompact
LoadLibraryW
GetProcessHeap
WaitCommEvent
GetComputerNameA
InitializeCriticalSection
GetVersionExA
CallNamedPipeW
SleepEx
GetFileAttributesW
UnlockFile
CreateThread
GetCommTimeouts
DeleteFileA
GetNumberFormatA
LocalLock
GlobalMemoryStatusEx
ClearCommBreak
GetSystemDirectoryW
GetModuleFileNameA
FindFirstFileW
GetFullPathNameA
LocalAlloc
EscapeCommFunction
lstrcpyA
GetCurrentThreadId
GetTickCount
SystemTimeToFileTime
SetupComm
GlobalMemoryStatus
GetFileAttributesExW
GetCommState
IsBadReadPtr
DefineDosDeviceW
CreateFileMappingA
HeapAlloc
GetComputerNameExW
EnterCriticalSection
ClearCommError
EnumSystemLocalesA
GetShortPathNameW
HeapFree
SetFileAttributesW
GetSystemDefaultUILanguage
VirtualAlloc
ConnectNamedPipe
GetFileAttributesA
GetSystemWindowsDirectoryW
GetCommConfig
GetModuleHandleA
RegisterWaitForSingleObject
GetVersion
LocalFree
GetStringTypeExW
CreateWaitableTimerW
QueryDosDeviceW

comctl32

ImageList_Draw
ImageList_Remove
CreatePropertySheetPageA
InitCommonControlsEx
ImageList_AddMasked
ImageList_LoadImageW

msvcrt

strstr
swprintf
strtok
toupper
gmtime
_controlfp
strcoll
__set_app_type
__p__fmode
wcstod
__p__commode
strcpy
_amsg_exit
towupper
wcstol
putchar
_initterm
putc
atol
qsort
_ismbblead
iswctype
_XcptFilter
floor
iswxdigit
wcspbrk
sprintf
memset
malloc
_exit
fputs
fseek
wcstok
isspace
mbtowc
system
wcsncmp
tolower
wcstoul
srand
_cexit
strspn
isdigit
wcscspn
sscanf
__setusermatherr
strncmp
__getmainargs

user32

GetClipCursor
GetCursorPos
DrawEdge
LoadCursorW
CreateDialogParamW
DestroyAcceleratorTable
GetWindowTextW
IntersectRect
DrawIcon
GetWindowLongW
AppendMenuW
DragObject
GetClassInfoW
IsIconic
CharLowerA
LoadAcceleratorsW
CreateWindowExA
SetMenuItemBitmaps
SetDlgItemInt
SetCursorPos
GetWindowModuleFileNameW
SetCaretPos
EndPaint
GetScrollInfo
MoveWindow
GetWindowDC
CreatePopupMenu
CreateAcceleratorTableW
GetAsyncKeyState
AttachThreadInput
IsCharUpperA
LoadMenuA
GetDlgCtrlID
TranslateAcceleratorW
GetSystemMetrics
DrawFocusRect
GetTopWindow
SetWindowLongA
DestroyWindow
IsWindowUnicode
GetKeyboardLayoutList
CopyImage
CharToOemA
TranslateAcceleratorA
DrawTextA
InSendMessageEx
CheckRadioButton
TrackPopupMenu
ActivateKeyboardLayout
RegisterClassW
SetLastErrorEx
InternalGetWindowText
IsDialogMessageW
ShowWindow
MessageBoxA
RedrawWindow
LoadBitmapA
GetMenuCheckMarkDimensions
LoadCursorA
DrawMenuBar
GetDialogBaseUnits
GetCaretBlinkTime
LoadImageW
GetFocus
IsZoomed
GetMenuState
MessageBoxExW
SendNotifyMessageW
RegisterClassExA
ModifyMenuW
wsprintfA
GetShellWindow
InflateRect
LoadAcceleratorsA
OffsetRect
ShowCaret
GetSysColor
LoadImageA
CallWindowProcW
AdjustWindowRect
DrawTextExW
GetWindowLongA
GetLastActivePopup
UnloadKeyboardLayout
FrameRect
GetClassLongW
LoadBitmapW
EnumChildWindows
CharNextA
OpenInputDesktop
GetGUIThreadInfo
GetCaretPos
GetDoubleClickTime
PostThreadMessageA
LookupIconIdFromDirectory
SendMessageTimeoutW
SetScrollRange
ChangeMenuW
CreateMenu
SetParent
LoadIconW
GetClassInfoExW
SetRect
SystemParametersInfoA
CharToOemW
DestroyMenu
ScrollWindow
GetMonitorInfoW
EnumThreadWindows
EnableScrollBar
CloseDesktop
LoadStringW
GetDC
SetScrollPos
IsCharAlphaW
MonitorFromRect
UnionRect
CheckMenuItem
GetMenuItemCount
SendDlgItemMessageA
AdjustWindowRectEx
GetActiveWindow
SetScrollInfo

Exports

Exports

?GenericOutputInfoYSUh@@YGK_KHE[D

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 145KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 117KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

efd00b65b924bdb65d1bc3d8b7a62a08

Headers

File Characteristics

PDB Paths

Imports

shlwapi

kernel32

comctl32

msvcrt

user32

Exports

Exports

Sections

.text Size: 8KB - Virtual size: 8KB

.data Size: 21KB - Virtual size: 145KB

.rsrc Size: 117KB - Virtual size: 116KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 8KB - Virtual size: 8KB

.data
Size: 21KB - Virtual size: 145KB

.rsrc
Size: 117KB - Virtual size: 116KB

.reloc
Size: 2KB - Virtual size: 1KB