59e4ff727ed74ea831a4ddf99595e640_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

59e4ff727ed74ea831a4ddf99595e640_JaffaCakes118
Size

213KB
MD5

59e4ff727ed74ea831a4ddf99595e640
SHA1

89cc21511c89b69eab4ae85b74b3fa3f9e5dc498
SHA256

1c0ff1b0efc4b22f8326ad26481c608d2d0aa2eab22153891bdd5a7bb816b0a4
SHA512

56f4ff5814da198f18f3a843587e80e4233e6484b4d1b8f65b65b4383316ae31711dcf64a471939021b73afe9bfa9ce0353125038d76d902ee555ad4abc50b33
SSDEEP

3072:5ftFM6RJiPFzJd7g2YDumlj6wlAsLxKzkm/tnM2ImJWJW2jdlmk0nedw7D:5fI6RJs2EUVEz11n3WYQd+eds

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
59e4ff727ed74ea831a4ddf99595e640_JaffaCakes118

Files

59e4ff727ed74ea831a4ddf99595e640_JaffaCakes118
.exe windows:5 windows x86 arch:x86

230a55ed06ee0e563d3aa85dfc86ee25

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

U:\catprum\cbecFArTuKoyu\hixYucmhodu\qguiPqsnxX.pdb

Imports

comdlg32

ChooseFontW
GetSaveFileNameW
GetSaveFileNameA
PageSetupDlgW
GetOpenFileNameA

user32

LoadCursorW
GetKeyboardLayoutList
LoadBitmapW
CopyAcceleratorTableW
GetScrollInfo
RegisterWindowMessageA
CharLowerA
CharUpperW
MessageBoxExA
GetClassInfoExW
InSendMessage
RegisterClassW
MapVirtualKeyW
ScrollWindowEx
TrackPopupMenuEx
InvalidateRgn
GetScrollRange
wvsprintfW
ShowWindowAsync
SetPropW
GetNextDlgTabItem
GetMessageW
SetRectEmpty
DefFrameProcA
EnableScrollBar
GetKeyboardLayoutNameW
GetMenuItemCount
OpenDesktopW
GetUpdateRect
LoadImageA
CloseDesktop
ExitWindowsEx
DefWindowProcW
ShowScrollBar
SendMessageW
SendMessageTimeoutW
GetClassInfoW
CharToOemBuffA
GetWindowLongW
DrawStateW
MonitorFromRect
CreateWindowExW
SetParent
GetWindowTextA
EndDialog
mouse_event
BringWindowToTop
ValidateRect
GetKeyNameTextW
SendMessageTimeoutA
EndTask
GetMenuStringW
LoadMenuA
GetWindowLongA
CheckRadioButton
SetActiveWindow
DispatchMessageW
GetKeyboardLayout
GetTopWindow
SetCursorPos
GetActiveWindow
WaitForInputIdle
PostMessageA
GetPropW
LoadImageW
SetScrollInfo
PostThreadMessageW
ShowOwnedPopups
SetMenuDefaultItem
UnionRect
ClipCursor
ReleaseDC
GetSysColor
GetDlgItemInt
SetLastErrorEx
GetWindowDC
SetCursor
ScreenToClient
InternalGetWindowText
FindWindowExA
DrawTextW
IsDlgButtonChecked
ScrollWindow
TileWindows
GetUpdateRgn
GetDlgItemTextA
GetCursorPos
GetMenuItemInfoW
CreateCaret
IsCharLowerA

kernel32

CompareStringW
MoveFileExW
GetBinaryTypeW
SetSystemTimeAdjustment
LocalSize
CopyFileA
GetStartupInfoW
GetSystemTime
SuspendThread
GetModuleHandleA
lstrcpynA
ResumeThread
VirtualAlloc
GetStdHandle
GetTickCount
CreateEventA
HeapWalk
ConvertDefaultLocale
BuildCommDCBAndTimeoutsW
SetEndOfFile
IsBadCodePtr
VirtualFree
GetProcAddress
GetLocaleInfoA
GetUserDefaultLangID
HeapSize
FindNextFileW
GetFullPathNameW
GetCurrentThread
GetFileAttributesExW
GetVersion
FlushFileBuffers
CreateNamedPipeW
Sleep
GlobalDeleteAtom
FindFirstFileW
CreateSemaphoreW
SetMailslotInfo
SetPriorityClass
RemoveDirectoryA
FreeResource

msvcrt

time
strcspn
wcstombs
_controlfp
strstr
strrchr
iswprint
system
vswprintf
wcstol
isalpha
fgets
isspace
fclose
__set_app_type
wcsncpy
ftell
printf
__p__fmode
strtoul
__p__commode
_amsg_exit
strpbrk
_initterm
mbtowc
_acmdln
qsort
exit
rand
_ismbblead
localtime
remove
_XcptFilter
_exit
_cexit
strtol
__setusermatherr
strchr
__getmainargs

gdi32

GetDIBColorTable
GetTextCharsetInfo
PathToRegion
GetViewportOrgEx
GetWindowOrgEx
SetBkColor
IntersectClipRect
BeginPath
CreateHatchBrush
PolyBezier
SetWindowExtEx
GetPaletteEntries
OffsetRgn
GetTextExtentExPointW
CreateFontW
DeleteObject
GetFontData
Polygon
RestoreDC
RectVisible
SetDIBits
DeleteDC
GetObjectA
SetPaletteEntries
Escape
ExcludeClipRect
CreateSolidBrush
StretchDIBits
CreatePalette
LineDDA
SetViewportOrgEx
GetTextExtentPoint32A
SaveDC
CreateCompatibleDC
CreateRectRgn
EndPath
SetMapMode

Exports

Exports

?SleepAhHJDud@@YGKEPA_WG@Z
?SleepUDSUDlkdlsds@@YGKEPA_WG@Z
?SleepUDudjkUD@@YGKEPA_WG@Z
?SleepYDyjDuUI@@YGKEPA_WG@Z

Sections

.text
Size: 74KB - Virtual size: 74KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 116KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

230a55ed06ee0e563d3aa85dfc86ee25

Headers

File Characteristics

PDB Paths

Imports

comdlg32

user32

kernel32

msvcrt

gdi32

Exports

Exports

Sections

.text Size: 74KB - Virtual size: 74KB

.data Size: 19KB - Virtual size: 18KB

.rdata Size: 1KB - Virtual size: 64KB

.rsrc Size: 116KB - Virtual size: 115KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 74KB - Virtual size: 74KB

.data
Size: 19KB - Virtual size: 18KB

.rdata
Size: 1KB - Virtual size: 64KB

.rsrc
Size: 116KB - Virtual size: 115KB

.reloc
Size: 2KB - Virtual size: 2KB