49b58bd86c434ef98777498ac8654447_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

49b58bd86c434ef98777498ac8654447_JaffaCakes118
Size

185KB
MD5

49b58bd86c434ef98777498ac8654447
SHA1

675579ae60ebd66fbd5329158ade0fbcc91ef294
SHA256

c4f0e960e038d243a4e13bb439dd75258b70aa01daebafafc2f7f723c498b87b
SHA512

a068432bf743e6de9b06e05300daaef5370bdd3ed15fbd22fcd725289c3cd3d89baf5a3d604775d8792a1a82ed78fc97cd635ac95d5053a9458d1ea44825d793
SSDEEP

3072:KlxGfCZG5E5JYma4CKF/BmJcQxqzKt4SoBycmru50cYtolczmHmmsr9MlnULbi:C05gJa4CKqYKtHWyczmcKBMY9eUL2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
49b58bd86c434ef98777498ac8654447_JaffaCakes118

Files

49b58bd86c434ef98777498ac8654447_JaffaCakes118
.exe windows:5 windows x86 arch:x86

07c234111abe4c89708cf6aeac32809b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

O:\tshypxjuqku\bacSdnCWkopM\fknJYzjajr\xwTiHNzoCada.pdb

Imports

comctl32

ImageList_SetIconSize
ImageList_GetImageCount
ImageList_Remove
ImageList_ReplaceIcon
PropertySheetW
CreateStatusWindowW
ImageList_Create
ImageList_GetIconSize
CreatePropertySheetPageW

msvcrt

setvbuf
vswprintf
wcsncmp
localtime
_controlfp
gets
__set_app_type
atoi
strncmp
vsprintf
getenv
fgetc
__p__fmode
fgets
towlower
iswspace
iswctype
iswdigit
__p__commode
swscanf
_amsg_exit
wcscoll
isxdigit
realloc
putc
wcstombs
_initterm
bsearch
sprintf
printf
towupper
isdigit
perror
mbtowc
_ismbblead
strtoul
ftell
_XcptFilter
wcschr
isprint
wcstod
iswxdigit
fwrite
isspace
fflush
_exit
_cexit
strtol
wcsncpy
malloc
wcstol
toupper
wcsstr
wcscat
__setusermatherr
clearerr
atol
wcstok
rand
__getmainargs

comdlg32

GetOpenFileNameW
FindTextW
GetSaveFileNameW
GetSaveFileNameA
ChooseColorW

user32

ShowCursor
RegisterClassW
InternalGetWindowText
MessageBoxA
SetWindowPlacement
IsWindowUnicode
LoadIconW
CreateDialogParamW
UpdateWindow
wvsprintfA
IsWindowVisible
SetDlgItemTextW
OemToCharBuffA
GetScrollInfo
SetWindowLongW
ChildWindowFromPointEx
GetMenuItemInfoW
InsertMenuW
IsCharAlphaW
ScrollWindow
DrawTextExW
IsCharUpperA
GetKeyboardLayout
OpenIcon
EnableMenuItem
LockWindowUpdate
CharPrevA
RemoveMenu
SetLastErrorEx
GetDlgItemTextA
ActivateKeyboardLayout
LoadBitmapW
SendMessageA
FindWindowW
DefDlgProcW
GetKeyboardType
SetWindowTextW
EnumChildWindows
CharToOemW
SetRect
DefDlgProcA
DeferWindowPos
wsprintfA
SetFocus
OemToCharA
mouse_event
GetMenuItemRect
IsZoomed
IsDlgButtonChecked
FindWindowA
PostMessageW
MapWindowPoints
GetKeyboardLayoutNameW
SendDlgItemMessageA
GrayStringW
CallWindowProcA
DrawMenuBar
ShowOwnedPopups
EnableScrollBar
GetScrollPos
IsDialogMessageA
SetPropW
GetDlgItemInt
ShowScrollBar
CharUpperA
GetScrollRange
GetActiveWindow
CharLowerW
LoadStringA
CharNextW
DestroyMenu
TrackPopupMenu
GetWindowPlacement
SwapMouseButton
AdjustWindowRect
DrawTextA
DrawEdge
ScreenToClient
IsWindow
LoadStringW
keybd_event
ReleaseDC
wsprintfW
UnionRect
InflateRect
GetDesktopWindow
SendDlgItemMessageW
CreateWindowExW
GetClassInfoA
IsCharAlphaA
AttachThreadInput
GetDlgItemTextW
MoveWindow
CreateDialogIndirectParamW
GetPropW
FillRect
InvalidateRect
ValidateRect
CreatePopupMenu
EndDialog
MapDialogRect
GetIconInfo
TranslateAcceleratorW
ShowWindow
ClientToScreen
SetDlgItemTextA
CascadeWindows
GetClassInfoW
GetMenuStringA
GetWindowDC
MessageBoxW
MapVirtualKeyA
GetMessageA
GetKeyboardLayoutList
GetSubMenu
CheckDlgButton
DestroyWindow
SetWindowTextA
RemovePropW
BeginPaint
IsChild
SendMessageTimeoutW
SetUserObjectInformationW
GetDialogBaseUnits
WaitMessage
GetDC
CreateWindowExA
LoadBitmapA
DrawIcon
LoadAcceleratorsW
PostThreadMessageA
MonitorFromRect
DrawFrameControl
LoadIconA
LoadCursorW
CreateIconIndirect
IsWindowEnabled
GetWindowTextLengthW
GetClipCursor
FindWindowExA
GetMenuCheckMarkDimensions
SetScrollInfo
GetDCEx
DrawFocusRect
LoadCursorA
EndPaint
GetClassLongA
SystemParametersInfoW
AppendMenuW
TranslateAcceleratorA
OpenDesktopW
GetCaretPos
SetForegroundWindow
IsIconic
PtInRect
ArrangeIconicWindows
GetUserObjectInformationA
HiliteMenuItem
FindWindowExW
VkKeyScanW
DrawStateW
UnloadKeyboardLayout

kernel32

FormatMessageA
TlsSetValue
GetTimeFormatA
GetCommConfig
FindNextFileW
GetTempFileNameA
SizeofResource
OpenFile
SetFileApisToOEM
GlobalAddAtomW
GetModuleFileNameA
GetComputerNameExW
LCMapStringA
GetDateFormatA
GetFullPathNameA
CallNamedPipeW
SetHandleInformation
GetLastError
GetAtomNameA
GetDateFormatW
ResumeThread
CreateSemaphoreA
DisconnectNamedPipe
GetCurrentThread
TlsGetValue
GetVersionExW
DeleteCriticalSection
LeaveCriticalSection
GetStartupInfoA
HeapAlloc
CreateMutexW
DeleteFileA
CancelWaitableTimer
RegisterWaitForSingleObject
QueryPerformanceCounter
FlushFileBuffers
SetThreadContext
GetStdHandle
GetFileAttributesExW
GetTempPathA
GetOverlappedResult
VerSetConditionMask
GetCurrentDirectoryW
HeapFree
SuspendThread
FindResourceExW
GetTempPathW
lstrlenW
GetCompressedFileSizeW
EnumResourceTypesA
MapViewOfFile
CreateRemoteThread
SetNamedPipeHandleState
SetThreadExecutionState
GetOEMCP
WaitCommEvent
GetThreadPriority
CopyFileA
LocalAlloc
GetModuleHandleA
GetSystemTimeAsFileTime
GlobalReAlloc
SetupComm
SetWaitableTimer
GetACP
AddAtomW
CompareStringA
InitializeCriticalSection
GetModuleHandleW
ExitThread
GetBinaryTypeA
VirtualAlloc
WriteFile
IsDBCSLeadByte
GlobalCompact

gdi32

PtVisible
CreateEllipticRgnIndirect
SetViewportExtEx
AddFontResourceW
StartDocW
GetDeviceCaps
ResizePalette
GetPaletteEntries
SetLayout
GetStockObject
TextOutW
GetTextExtentPoint32A
GetBitmapBits
OffsetViewportOrgEx
GetWindowOrgEx
GetDIBColorTable
CreateCompatibleDC
CreateCompatibleBitmap
CreateHatchBrush
DeleteObject
PolyBezier
CreateHalftonePalette
SetROP2
CreateFontIndirectW
GetBkMode
SetBkMode
SetBitmapDimensionEx
IntersectClipRect
CreateBitmapIndirect
LPtoDP
Polygon
SetAbortProc
EnumFontFamiliesW
CreateFontIndirectA
SetDIBColorTable
TranslateCharsetInfo
SetDIBitsToDevice
TextOutA
SetStretchBltMode
ExtTextOutW
ExcludeClipRect
GetTextMetricsW
FillRgn
GetDIBits
GetROP2
GetCurrentObject
GetSystemPaletteUse
RemoveFontResourceW
GetViewportOrgEx
SetBkColor
ExtTextOutA
GetTextExtentPointW
ExtFloodFill
SelectObject
GetRgnBox
GetLayout
GetTextExtentPoint32W
SetTextAlign
LineTo
CreateDCW
StartPage
SetViewportOrgEx
PatBlt
GetCharWidth32W
CreateDIBSection

Exports

Exports

?InvalidateValueW@@IJIDPADPAJ@X

Sections

.text
Size: 117KB - Virtual size: 117KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.iat
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 104B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.virt
Size: - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 54KB - Virtual size: 53KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

07c234111abe4c89708cf6aeac32809b

Headers

File Characteristics

PDB Paths

Imports

comctl32

msvcrt

comdlg32

user32

kernel32

gdi32

Exports

Exports

Sections

.text Size: 117KB - Virtual size: 117KB

.iat Size: 2KB - Virtual size: 1KB

.edata Size: 512B - Virtual size: 104B

.data Size: 10KB - Virtual size: 9KB

.virt Size: - Virtual size: 15KB

.rsrc Size: 54KB - Virtual size: 53KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 117KB - Virtual size: 117KB

.iat
Size: 2KB - Virtual size: 1KB

.edata
Size: 512B - Virtual size: 104B

.data
Size: 10KB - Virtual size: 9KB

.virt
Size: - Virtual size: 15KB

.rsrc
Size: 54KB - Virtual size: 53KB

.reloc
Size: 2KB - Virtual size: 2KB