5c985e569ac589ef3a2e2246f4e4bcba_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

5c985e569ac589ef3a2e2246f4e4bcba_JaffaCakes118
Size

147KB
MD5

5c985e569ac589ef3a2e2246f4e4bcba
SHA1

11c365d09dc654dc1fe1d5f1e615e741637afb50
SHA256

2a5db695bf5ed263ab5d17b66caba6187e8fe268a21d6e954e60063ab632b899
SHA512

4eaf6b92451ec7e18fad6d2831010c9f585e3a7fcf5afd9784806ba76109f2f96bddd61c89a87cad8f1d35b25d90dda8087dc7d0b068f01177632ec6fdcb961d
SSDEEP

3072:nw/ke/6a40+QDoam1HtLCY0HSE5TtqYLMsClPyJ27E7bbddsh:ne6THNCY0yACsCC27+r

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5c985e569ac589ef3a2e2246f4e4bcba_JaffaCakes118

Files

5c985e569ac589ef3a2e2246f4e4bcba_JaffaCakes118
.exe windows:5 windows x86 arch:x86

91b94050c58e34445c124253d7164684

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

N:\poYhqGqwlhSzu\CwxzjmkkpuDR\YvFkohvkcddL\rbkmopmkz\ifHqmMb.pdb

Imports

gdi32

GetNearestColor
GetROP2
GetBitmapBits
GetCharWidth32W
GetTextColor
GetTextExtentPoint32W
EnumFontFamiliesExW
TranslateCharsetInfo
CreateFontIndirectW
GetPixel
RealizePalette
PolyBezier
SetBrushOrgEx
GetSystemPaletteEntries
CombineRgn
SetMapMode
CreateRoundRectRgn
ScaleWindowExtEx
CreateBitmapIndirect

user32

InSendMessage
CopyAcceleratorTableW
DeferWindowPos
IsRectEmpty
FindWindowExA
GetMenuStringW
SetRectEmpty
AdjustWindowRect
LoadBitmapW
OpenDesktopW
InvertRect
EnumChildWindows
GetClassLongA
GetShellWindow
GetMenuItemCount
PeekMessageA
FillRect
CharLowerW
GetKeyState
SetCursorPos
DialogBoxIndirectParamA
CascadeWindows
CharUpperW
ModifyMenuW
GetMessageTime
FindWindowA
SetDlgItemTextA
RegisterClassA
IsMenu
CharToOemW
AttachThreadInput
SetScrollPos
CheckRadioButton
EnableMenuItem
CreateMenu
GetCaretPos
ChangeMenuW
ValidateRect
CreateAcceleratorTableW
LoadCursorA
RemoveMenu
ClientToScreen
BeginPaint
CheckMenuItem
IsCharAlphaNumericA
OpenIcon

msvcrt

_controlfp
__set_app_type
tolower
strpbrk
__p__fmode
wcsncmp
__p__commode
_amsg_exit
_initterm
iswctype
_acmdln
puts
strcoll
mbstowcs
vswprintf
exit
_ismbblead
fputs
_XcptFilter
_exit
_cexit
__setusermatherr
sprintf
perror
iswdigit
setvbuf
__getmainargs

shlwapi

StrNCatW

kernel32

GetCommState
EscapeCommFunction
VirtualProtect
LoadLibraryA
FileTimeToDosDateTime
GetCurrentDirectoryW
GlobalGetAtomNameW
ClearCommBreak
GlobalFlags
CreateFileMappingA
TlsSetValue
WaitForSingleObject
GetThreadTimes
SetWaitableTimer
GetVersionExA
ReleaseSemaphore
QueryDosDeviceW
GetAtomNameA
ReleaseMutex
lstrcatW
lstrlenA
GlobalAlloc

Exports

Exports

?IsDirectoryW@@YG_NPAKE*Z
?ModifyStateOriginal@@YGPAJHH*Z
?DeleteData@@YGPAFFD*Z
?GetScreenA@@YGPAMPAEEH*Z
?CopySectionOriginal@@YGFPAEE*Z
?IsNotArgumentExW@@YGPAKHIHPAG*Z
?FormatStringEx@@YGDPAMJPAGM*Z
?EnumProfileEx@@YGPADEPAEPAGD*Z
?GetDateTimeNew@@YGPAMPAHGE*Z
?OnValueOriginal@@YGPAXKEPAG*Z

Sections

.text
Size: 118KB - Virtual size: 117KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 512B - Virtual size: 480B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idir
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edir
Size: 512B - Virtual size: 464B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vdir
Size: 512B - Virtual size: 140B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pdir
Size: 512B - Virtual size: 140B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 177KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sdir
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

91b94050c58e34445c124253d7164684

Headers

File Characteristics

PDB Paths

Imports

gdi32

user32

msvcrt

shlwapi

kernel32

Exports

Exports

Sections

.text Size: 118KB - Virtual size: 117KB

.itext Size: 512B - Virtual size: 480B

.idir Size: 2KB - Virtual size: 2KB

.edir Size: 512B - Virtual size: 464B

.vdir Size: 512B - Virtual size: 140B

.pdir Size: 512B - Virtual size: 140B

.data Size: 2KB - Virtual size: 177KB

.sdir Size: 13KB - Virtual size: 13KB

.rsrc Size: 7KB - Virtual size: 6KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 118KB - Virtual size: 117KB

.itext
Size: 512B - Virtual size: 480B

.idir
Size: 2KB - Virtual size: 2KB

.edir
Size: 512B - Virtual size: 464B

.vdir
Size: 512B - Virtual size: 140B

.pdir
Size: 512B - Virtual size: 140B

.data
Size: 2KB - Virtual size: 177KB

.sdir
Size: 13KB - Virtual size: 13KB

.rsrc
Size: 7KB - Virtual size: 6KB

.reloc
Size: 1KB - Virtual size: 1KB