4b19ca00479e1c3f7dd5ca36ccaac382_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

4b19ca00479e1c3f7dd5ca36ccaac382_JaffaCakes118
Size

74KB
MD5

4b19ca00479e1c3f7dd5ca36ccaac382
SHA1

f7a376d89f0f2cf0c6217b1fd7a0175c440b0efc
SHA256

e0e6515775a0276181dc6c4488f133b5c724cd0f1e97b219d2b9be39aea8d20b
SHA512

c5ddfd0897309bb219c2db6c46a5c9980dace996f48a597b89329e66f4f7a3db63d34dc58b646d93261389df797a461046b87794505b462262b65e310881e2f1
SSDEEP

1536:piNS5hi7yQpbQ73HjupUNuQ16MbGdtqATcH1U1NWe8ih1:UNMi7yss7TuKRbGuo+1QNUm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4b19ca00479e1c3f7dd5ca36ccaac382_JaffaCakes118

Files

4b19ca00479e1c3f7dd5ca36ccaac382_JaffaCakes118
.exe windows:5 windows x86 arch:x86

c53ae60164b43f1f7acfc9e9087145fa

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

X:\LcmiftnO\StoCQiwSve\ehfQastaLv\LnnbLyovHripxs.pdb

Imports

comctl32

ImageList_Write
ImageList_Remove
ImageList_GetIconSize
DestroyPropertySheetPage
ImageList_Draw
ImageList_Create

shlwapi

StrChrIA

msvcrt

toupper
qsort
strncpy
wcsncmp
_controlfp
__set_app_type
__p__fmode
localtime
strstr
iswdigit
wcschr
sprintf
fwrite
clock
fprintf
isalpha
getc
wcscoll
ungetc
__p__commode
bsearch
realloc
wcscmp
swprintf
getenv
_amsg_exit
iswxdigit
atoi
fgets
_initterm
_acmdln
fflush
isalnum
iswalpha
fread
wcstoul
strerror
free
exit
mktime
_ismbblead
_XcptFilter
_exit
_cexit
wcsstr
puts
__setusermatherr
mbstowcs
__getmainargs

kernel32

SetCommMask
GetCurrentThreadId
lstrcpyA
CloseHandle
GetPriorityClass
GetFullPathNameA
GetSystemDirectoryA
CreateFileA
GetUserDefaultLangID
GetWindowsDirectoryA
GetCommState
TryEnterCriticalSection
CompareFileTime
WaitCommEvent
TlsSetValue
GetModuleHandleA
GetModuleFileNameW
LocalAlloc
GetTempPathA
SetNamedPipeHandleState
GlobalSize
GetSystemTimeAdjustment
ReadFile
GetFileAttributesExW
FlushFileBuffers
DisconnectNamedPipe
GetTimeFormatA
GetProcAddress
GetFileSize
LoadLibraryA
IsBadCodePtr
FindFirstFileA
CreateFileW
SizeofResource
CreateFileMappingW
SetTimerQueueTimer
TlsFree
CreateEventW
GetACP
CreateSemaphoreW
FindResourceA
FileTimeToSystemTime
FormatMessageA
CompareStringA
lstrlenA
GlobalReAlloc
GetCommandLineA
FileTimeToDosDateTime
GetBinaryTypeW
WaitForSingleObjectEx
LocalUnlock
Sleep
SetEndOfFile
GetSystemDirectoryW
LockFile
GetNumberFormatA

gdi32

LineTo
DeleteDC
RoundRect
PolyBezier
SetBkColor
SetBkMode
CreateBitmapIndirect
SetPaletteEntries
GetDeviceCaps
CreateBrushIndirect
StretchBlt
DeleteObject
EnumFontFamiliesExW
GetDIBColorTable
CreateFontW
TranslateCharsetInfo
CreatePalette
Rectangle
SetWindowOrgEx
GetBitmapBits
EnumFontFamiliesW
UnrealizeObject
SetRectRgn
GetTextMetricsA
SaveDC
GetTextExtentPoint32W
EndPath
GetSystemPaletteEntries
RestoreDC
GetClipBox
EnumFontsW
GetBkMode
GetPixel
CreateCompatibleBitmap
ExtTextOutA
GetFontData
GetTextExtentPoint32A
CreatePenIndirect
SetROP2
GetPaletteEntries
WidenPath
StartDocW
CreateBitmap
CreateDiscardableBitmap
CreatePatternBrush
SetDIBColorTable
PathToRegion
SetMapMode
CreateEllipticRgnIndirect
LineDDA
SetDIBitsToDevice

user32

AdjustWindowRectEx
OpenInputDesktop
LoadCursorA
GetMenuItemInfoW
UpdateWindow
WaitForInputIdle
CharUpperA
SendDlgItemMessageA
DrawFrameControl
GetDlgCtrlID
LoadImageW
PostThreadMessageW
RegisterWindowMessageW
CloseDesktop
AppendMenuA
SendMessageTimeoutA
CreateWindowExA
AppendMenuW
DestroyIcon
DeleteMenu
BringWindowToTop
GetLastActivePopup
GetUserObjectInformationW
PostMessageA
SetTimer
LoadIconA
CharLowerW
DefDlgProcA
EnumChildWindows
MonitorFromRect
DefFrameProcA
IsCharUpperA
keybd_event
GetSysColor
ChildWindowFromPoint
ReplyMessage
CharNextW
DestroyMenu
TranslateAcceleratorW
CharNextExA
EnumThreadWindows
UnionRect
DefWindowProcW
FindWindowExW
SystemParametersInfoW
SetMenuDefaultItem
ShowCursor
LoadStringA
IsWindowVisible
DragObject
GetWindowDC
GetAsyncKeyState
CheckMenuItem
MapVirtualKeyW
CheckRadioButton
MapVirtualKeyA
ModifyMenuW
DrawMenuBar
GetMenuCheckMarkDimensions
GetKeyboardLayoutList
ClientToScreen
wsprintfA
SendInput
OpenIcon
GetDCEx
SetWindowTextA
GetWindowTextA
SetScrollPos
GetScrollPos
IsWindowUnicode
GetDialogBaseUnits
MoveWindow
GetNextDlgGroupItem
GetIconInfo
GetFocus
IsDialogMessageW
SetParent
GetDlgItemTextW
CharUpperW
GetClassNameW
SetCursorPos
FrameRect
TrackPopupMenuEx
RemoveMenu
ExitWindowsEx
SetWindowLongA
GetSystemMenu
GrayStringW
SendMessageA
FindWindowExA
SetWindowLongW
IsRectEmpty
MapDialogRect
ReleaseDC
DrawTextExW
InvertRect
PostThreadMessageA
DrawTextA
SetRectEmpty
IsChild
BeginPaint
DialogBoxParamW
GetMenuStringA
ToUnicodeEx
DeferWindowPos
GetWindowLongW
GetTopWindow
InflateRect
GetClassLongA
SetDlgItemTextA
GetWindowRect
MapWindowPoints
EnableMenuItem
SetClassLongW
ScrollWindow
DestroyAcceleratorTable
GetForegroundWindow
GetMenuStringW

Exports

Exports

?PutSectionExW%%DFK_NM~U
?InvalidateRectOld%%DFDPANPAG~U
?FormatScreenExW%%DFPAII~U
?CallTimeW%%DFPAJGEM~U
?CallCharOld%%DFPAEEFHK~U
?LoadValue%%DFEPA_NJNF~U
?ModifyWidthExA%%DF_NPAK~U
?IsValidTimeEx%%DFXHKI~U
?OnStateW%%DFIENJJ~U
?InsertFilePathOriginal%%DFPAEJ~U
?RemoveThreadOriginal%%DFFM~U
?CrtPointEx%%DFKPAHMPAJ~U
?IsNotMutantNew%%DFGK~U
?IconManageCtrlOijduW@@YGKGHE@Z
?IncrementComponentNew%%DFPAJJPAJ~U
?OnKeyboardExA%%DFPAHDFK~U
?CloseSemaphore%%DFXEKK~U
?SendMediaTypeW%%DFXEPA_NE~U
?KillScreenOriginal%%DFJEDMPAF~U
?InstallThreadNew%%DFNI~U
?SendWindowInfoOld%%DFPAJK~U
?IncrementStringNew%%DFHHEPANH~U
?InvalidateWindowEx%%DFPAMJGD~U
?FreeMemoryExA%%DFPAXKI~U
?GetSemaphoreOriginal%%DFPAEPADFPAJM~U
?SendArgumentOld%%DFPAMH~U
?SendSemaphoreNew%%DFPAXJPAHPAHF~U
?GenerateProcess%%DFPAXKPAH~U
?DecrementDeviceA%%DFPAFDEPAEG~U
?MonitorExW%%DFNM_N~U
?GetMemoryEx%%DFFG~U
?OnKeyboardW%%DFPADKH~U
?InsertSizeNew%%DFPAXH~U
?InvalidateHeightOld%%DFPAFGJ~U
?KillThreadW%%DFKPAE~U
?EnumPointEx%%DFGE~U

Sections

.text
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ticx
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c53ae60164b43f1f7acfc9e9087145fa

Headers

File Characteristics

PDB Paths

Imports

comctl32

shlwapi

msvcrt

kernel32

gdi32

user32

Exports

Exports

Sections

.text Size: 22KB - Virtual size: 22KB

.ticx Size: 6KB - Virtual size: 5KB

.data Size: 4KB - Virtual size: 46KB

.rsrc Size: 39KB - Virtual size: 39KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 22KB - Virtual size: 22KB

.ticx
Size: 6KB - Virtual size: 5KB

.data
Size: 4KB - Virtual size: 46KB

.rsrc
Size: 39KB - Virtual size: 39KB

.reloc
Size: 1KB - Virtual size: 1KB