4df8617bd8b915c9e7f65b6d776d6610_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

4df8617bd8b915c9e7f65b6d776d6610_JaffaCakes118
Size

132KB
MD5

4df8617bd8b915c9e7f65b6d776d6610
SHA1

3ebeb174f5b59d93df2463f52cf299c8d9e7a9c4
SHA256

4ad2144634cf108906c38651263b531f677d249bf60c37da94a443da8a11bd0a
SHA512

cd8430907cab6ee120de46a1436048c4aeef186dd7af3cb45c3a854b27ad57c21f11794c7efc063710f074fe9243f72c1981895964688b8161b4332d7ab219cf
SSDEEP

3072:Acx4R0G5NSucLyfo5OPpiqDp+u/dl0hzmzloC83VqgL:Ai4h5NcyfOOj8uVl0hzms3l

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4df8617bd8b915c9e7f65b6d776d6610_JaffaCakes118

Files

4df8617bd8b915c9e7f65b6d776d6610_JaffaCakes118
.exe windows:5 windows x86 arch:x86

aa365836ff333274c9cc99c372883dec

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

F:\anifhpelwQd\mbIfwmd\qwEvgLZeztzEz\dfNcjpErpfVmh\nSbHjvd.pdb

Imports

msvcrt

wcscmp
_controlfp
__set_app_type
__p__fmode
strncmp
wcstombs
__p__commode
strlen
_amsg_exit
_initterm
_acmdln
iswalpha
isxdigit
mktime
vswprintf
sscanf
exit
malloc
getc
realloc
wcscspn
toupper
_ismbblead
wcslen
_XcptFilter
wcspbrk
_exit
_cexit
strtok
__setusermatherr
strcpy
iswdigit
wcstol
isspace
wcstok
isdigit
setvbuf
iswspace
__getmainargs
gets

user32

SetMenuItemBitmaps
CharPrevW
IsCharAlphaNumericW
ExitWindowsEx
EndDialog
DrawMenuBar
RegisterHotKey
GetDlgItem
GetDlgItemTextW
IsWindow
GetActiveWindow
CharToOemBuffA
ScrollWindow
CreateIconFromResource
CharUpperBuffA
ScrollWindowEx
LoadMenuA
CreateWindowExW
InSendMessage
GetDlgCtrlID
ChildWindowFromPointEx
ShowScrollBar
LoadBitmapA
CharLowerW
InvalidateRect
SetFocus
OemToCharA
CopyAcceleratorTableW
SetForegroundWindow
LoadIconW
CreateIconIndirect
CharNextW
DefFrameProcW
CreateCaret
GetDoubleClickTime
EnumChildWindows
GetClassNameW
RegisterWindowMessageW
GetWindow
PeekMessageA
GetKeyNameTextW
LoadStringW
RedrawWindow
RegisterClassW
SetClassLongW
LoadImageA
GetUpdateRgn
OpenIcon
GetMenuStringA
DialogBoxIndirectParamA
MonitorFromRect
GetClassLongW
ScreenToClient
SetDlgItemTextW
InsertMenuA
GetDialogBaseUnits
MonitorFromPoint
BeginDeferWindowPos
GetScrollPos
DragObject
UpdateWindow
SetRectEmpty
DrawTextExW
SendNotifyMessageW
SetWindowTextA
LoadCursorW
IsCharLowerA
GetClipCursor
SendMessageTimeoutA
CharUpperA
SetMenuItemInfoW
EnableMenuItem
GetDC
DialogBoxIndirectParamW
AppendMenuW
GetMenuItemCount
CallMsgFilterA
DrawEdge
CascadeWindows
UnloadKeyboardLayout
WaitForInputIdle
GetSystemMetrics
CallWindowProcA
OpenDesktopW
SetScrollInfo
wsprintfW

shlwapi

PathAddExtensionA

kernel32

GetFileAttributesA
SetUnhandledExceptionFilter
SetFileTime
SetThreadExecutionState
GetUserDefaultUILanguage
GetBinaryTypeW
OpenEventA
RaiseException
GlobalGetAtomNameW
GetFileType
SetCurrentDirectoryA
EnumResourceNamesA
lstrlenA
CloseHandle
TransactNamedPipe
SetFileAttributesW
GetTempFileNameA
AddAtomW
SystemTimeToFileTime
GlobalUnlock
GlobalFindAtomW
GetFileSize
OpenSemaphoreW
SetHandleCount
CreateEventW
TryEnterCriticalSection
LocalFree
WaitForSingleObject
LoadLibraryExW
FindFirstChangeNotificationW
GetUserDefaultLangID
GetTempPathW
FindCloseChangeNotification
CompareStringW
GetVersionExW
DeleteAtom
DuplicateHandle
LocalSize

comdlg32

PrintDlgExW
CommDlgExtendedError
GetSaveFileNameA
GetOpenFileNameW
GetOpenFileNameA

gdi32

GetTextExtentExPointW
GetStockObject
StartPage
RoundRect
CreateDiscardableBitmap
StartDocW
ExcludeClipRect
CreatePatternBrush
RectVisible
FillRgn
LPtoDP
StretchDIBits
GetObjectW
GetRgnBox
OffsetViewportOrgEx
UnrealizeObject
Polygon
GetROP2
SetDIBits
TextOutA
CreateCompatibleDC
CreatePen
Polyline
EndPage
ResizePalette
CreatePenIndirect
GetDIBits
EnumFontsW
SelectClipRgn
CreateDIBSection
StretchBlt
GetPath
RectInRegion
GetTextMetricsW

comctl32

CreatePropertySheetPageA
CreateStatusWindowW
CreateToolbarEx
PropertySheetW
ImageList_Create

Exports

Exports

?CallMsgFilterFDHjfhjds@@YGKPA_WK@Z
?GetTickCountFkjhkfjdh@@YGKPA_WK@Z
?InsertMenuItemGDFhjkhfkjf@@YGKPA_WK@Z

Sections

.text
Size: 101KB - Virtual size: 101KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.post
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

aa365836ff333274c9cc99c372883dec

Headers

File Characteristics

PDB Paths

Imports

msvcrt

user32

shlwapi

kernel32

comdlg32

gdi32

comctl32

Exports

Exports

Sections

.text Size: 101KB - Virtual size: 101KB

.post Size: 14KB - Virtual size: 13KB

.data Size: 2KB - Virtual size: 34KB

.rdata Size: 5KB - Virtual size: 5KB

.rsrc Size: 5KB - Virtual size: 5KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 101KB - Virtual size: 101KB

.post
Size: 14KB - Virtual size: 13KB

.data
Size: 2KB - Virtual size: 34KB

.rdata
Size: 5KB - Virtual size: 5KB

.rsrc
Size: 5KB - Virtual size: 5KB

.reloc
Size: 2KB - Virtual size: 1KB