4d56be8db6505ac2dff78fcb83556640_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

4d56be8db6505ac2dff78fcb83556640_JaffaCakes118
Size

224KB
MD5

4d56be8db6505ac2dff78fcb83556640
SHA1

406ce3bc1f5e01e276bbf73035bfc65b51ea354e
SHA256

78b0405b0ce580b7f5b06159a18526abcbce46e1b858c6f1779512d01eadf022
SHA512

b01665b5368a965838d2faba66ceaa4f9d2b4a7921766ff67a7dad4e87717bca4689f53c531d1be40ef70fefbe61cd64be0b0ab35656248928c76172e170f3cd
SSDEEP

3072:uCloXCVym4LwHrnmXv6MKM9V+9k31e8oIG2gWSqx7jZfocgFJvdVv13a:uVCosi/6PA+9BP2oojec6o

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4d56be8db6505ac2dff78fcb83556640_JaffaCakes118

Files

4d56be8db6505ac2dff78fcb83556640_JaffaCakes118
.exe windows:5 windows x86 arch:x86

63980ae875955676a045d65f7fe66db0

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

X:\mzyuuoGdiMqx\wwbNMAy\pKfRRTrhBht\ioFyappeenrvn\eYqdoYmcuq.pdb

Imports

comctl32

ImageList_GetImageCount
DestroyPropertySheetPage
InitCommonControlsEx
ImageList_GetIconSize
ImageList_ReplaceIcon

user32

GetKeyState
GetSystemMetrics
wsprintfW
SetRectEmpty
SetMenuItemInfoW
MapVirtualKeyA
SetLastErrorEx
InsertMenuItemW
LockWindowUpdate
CascadeWindows
DrawEdge
TabbedTextOutW
LoadIconA
LoadImageW
EnumWindows
UnregisterClassW
RegisterClassW
GetClipCursor
GetKeyboardLayoutNameW
OemToCharBuffA
SendMessageW
GetMonitorInfoW
TrackPopupMenuEx
SetWindowRgn
RemovePropW
CreateCaret
SystemParametersInfoA
EnumChildWindows
MapWindowPoints
RedrawWindow
ClipCursor
RegisterClassExA
GetKeyboardType
CharNextW
GetSysColorBrush
DrawTextExW
FillRect
ShowWindow
SetScrollInfo
CreateWindowExA
DefFrameProcW
InvalidateRgn
EndPaint
CopyAcceleratorTableW
CreateDialogParamA
GetSystemMenu
EnableScrollBar
GetSubMenu
SendDlgItemMessageW
GetKeyboardLayout
TrackPopupMenu
MoveWindow
mouse_event
MessageBoxW
CharLowerBuffW
InvalidateRect
DrawFrameControl
ReleaseDC
CharPrevA
DrawStateW
GetFocus
OffsetRect
IsCharUpperA
CharUpperW
DispatchMessageW
MessageBoxExA
SetDlgItemInt
DefFrameProcA
CharLowerW
CallWindowProcW
DefWindowProcA
IsWindowUnicode
SendMessageTimeoutA
ExitWindowsEx
ShowScrollBar
CopyRect
FindWindowA
GetDlgItemInt
OpenIcon
SetMenu
GetParent
SetMenuDefaultItem
DeleteMenu
CharUpperBuffW
GetClassNameW
ModifyMenuW
SendDlgItemMessageA

kernel32

RemoveDirectoryW
FreeResource
GetTimeFormatA
VirtualQuery
GetThreadTimes
GetNumberFormatA
DeleteAtom
GetTempFileNameA
lstrcpynW
GetSystemDirectoryA
SetFileAttributesW
CancelIo
BuildCommDCBAndTimeoutsW
LockResource
HeapSize
GetOverlappedResult
GetAtomNameW
GlobalAlloc
OpenEventW
SetCurrentDirectoryW
lstrcatW
TlsGetValue
WaitForMultipleObjectsEx
EscapeCommFunction
GetThreadContext
SetCommState
lstrlenW
SetSystemTimeAdjustment
CreateEventA
GetStartupInfoA
TlsSetValue
GetStdHandle
SetCommTimeouts
AddAtomA
UnmapViewOfFile
ResumeThread
RtlUnwind
LCMapStringW
Sleep
GetCommandLineW
EnumResourceTypesA
GetSystemDirectoryW

gdi32

ScaleViewportExtEx
GetTextCharsetInfo
GetFontData
GetPaletteEntries
EnumFontFamiliesExW
SaveDC
GetWindowOrgEx
CreateSolidBrush
GetViewportOrgEx
GetLayout
CreateRectRgnIndirect
Polygon
IntersectClipRect
GetTextExtentPointW
SetTextColor
CreatePalette
GetDeviceCaps
CreateBitmap
LPtoDP
CreateDCW
FlattenPath
DPtoLP
GetPixel
GetROP2
CreateFontIndirectA
CreateHatchBrush
SelectPalette
GetTextMetricsW
SetBitmapBits
StartDocW
GetMapMode
CreateDIBitmap
SetDIBitsToDevice
PolyBezier
GetTextExtentExPointW
PatBlt

msvcrt

strpbrk
_controlfp
wcschr
puts
strstr
wcspbrk
strerror
__set_app_type
__p__fmode
atoi
printf
__p__commode
wcstod
rand
wcstoul
strspn
sprintf
strrchr
wcsncmp
_amsg_exit
strncmp
wcscoll
wcslen
_initterm
wcstol
_acmdln
exit
strtok
malloc
_ismbblead
fseek
remove
_XcptFilter
iswdigit
_exit
fputs
wcscspn
_cexit
__setusermatherr
__getmainargs

Exports

Exports

?ResetEventHDJhjhFff@@YGKEPA_WG@Z
?ResetEventHDhjdDYUuYdf@@YGKEPA_WG@Z

Sections

.text
Size: 179KB - Virtual size: 179KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

63980ae875955676a045d65f7fe66db0

Headers

File Characteristics

PDB Paths

Imports

comctl32

user32

kernel32

gdi32

msvcrt

Exports

Exports

Sections

.text Size: 179KB - Virtual size: 179KB

.data Size: 28KB - Virtual size: 28KB

.rdata Size: 12KB - Virtual size: 11KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 179KB - Virtual size: 179KB

.data
Size: 28KB - Virtual size: 28KB

.rdata
Size: 12KB - Virtual size: 11KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 2KB - Virtual size: 2KB