5cb238ea74655aaa075d3adc83dd1f68_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

5cb238ea74655aaa075d3adc83dd1f68_JaffaCakes118
Size

180KB
MD5

5cb238ea74655aaa075d3adc83dd1f68
SHA1

4e343573c6003254bda0f5673601fd5f0c8d89b2
SHA256

b74d7970c57d55fb2e3a83d36ebbdd153b169a5dd7bcc0ff9d4147c1665072e1
SHA512

cc35e51a435fc6cd954188e0bb72445d7638cb4abec5cbaf79dd82e5567028275154327ba31998b9a42b911f07375f2a37a5ea28bb500875c7adc83168d18a1b
SSDEEP

3072:eGwL5/k8X729aspIpYB2A2cKm3g3EU3n7Yz0t8KjmANVLWxM/ULJw1RV5Yz/a9E5:vy5/k8CE0x2A2crg3V3n7YAbNVLW8UWU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5cb238ea74655aaa075d3adc83dd1f68_JaffaCakes118

Files

5cb238ea74655aaa075d3adc83dd1f68_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d451805fba0759c64000f694f5cc4fc8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

libgimpui-2.0-0

gimp_ui_init
gimp_window_set_transient

libcairo-2

cairo_arc
cairo_clip
cairo_close_path
cairo_destroy
cairo_fill
cairo_line_to
cairo_move_to
cairo_rectangle
cairo_restore
cairo_save
cairo_set_dash
cairo_set_line_width
cairo_set_source_rgb
cairo_stroke

libgdk-win32-2.0-0

gdk_cairo_create
gdk_cairo_region
gdk_cairo_set_source_color
gdk_colormap_alloc_color
gdk_cursor_new_for_display
gdk_cursor_unref
gdk_drawable_get_colormap
gdk_window_set_cursor

libgdk_pixbuf-2.0-0

gdk_pixbuf_new_from_inline

libglib-2.0-0

g_ascii_strcasecmp
g_ascii_strncasecmp
g_ascii_strtod
g_error_free
g_file_test_utf8
g_filename_display_basename
g_fopen
g_free
g_get_real_name_utf8
g_get_user_name_utf8
g_list_append
g_list_find
g_list_find_custom
g_list_first
g_list_free
g_list_free_full
g_list_index
g_list_insert
g_list_insert_before
g_list_last
g_list_length
g_list_nth
g_list_prepend
g_list_remove
g_list_remove_link
g_log
g_malloc
g_malloc0
g_malloc_n
g_markup_escape_text
g_path_get_basename
g_slist_append
g_slist_insert_sorted
g_snprintf
g_source_remove
g_strconcat
g_strdup
g_strdup_printf
g_strndup
g_timeout_add
g_utf8_validate

libgobject-2.0-0

g_object_get_data
g_object_new
g_object_set
g_object_set_data
g_object_unref
g_signal_connect_data
g_signal_handlers_disconnect_matched
g_signal_stop_emission_by_name
g_type_check_instance_cast

libgtk-win32-2.0-0

gtk_about_dialog_get_type
gtk_accel_group_new
gtk_action_group_add_actions
gtk_action_group_add_radio_actions
gtk_action_group_add_toggle_actions
gtk_action_group_new
gtk_action_group_set_translation_domain
gtk_adjustment_get_page_size
gtk_adjustment_get_type
gtk_adjustment_get_upper
gtk_adjustment_get_value
gtk_adjustment_new
gtk_arrow_new
gtk_box_get_type
gtk_box_pack_end
gtk_box_pack_start
gtk_button_new
gtk_button_new_with_mnemonic
gtk_cell_renderer_pixbuf_new
gtk_cell_renderer_text_new
gtk_check_button_new_with_mnemonic
gtk_container_add
gtk_container_get_type
gtk_container_set_border_width
gtk_dialog_add_button
gtk_dialog_get_content_area
gtk_dialog_get_type
gtk_dialog_run
gtk_dialog_set_alternative_button_order
gtk_dialog_set_default_response
gtk_dialog_set_response_sensitive
gtk_drag_dest_set
gtk_drag_finish
gtk_editable_get_type
gtk_editable_set_editable
gtk_entry_get_text
gtk_entry_get_type
gtk_entry_new
gtk_entry_set_text
gtk_file_chooser_dialog_new
gtk_file_chooser_get_filename_utf8
gtk_file_chooser_get_type
gtk_file_chooser_set_current_name
gtk_file_chooser_set_do_overwrite_confirmation
gtk_frame_get_type
gtk_frame_new
gtk_frame_set_shadow_type
gtk_handle_box_new
gtk_icon_factory_add
gtk_icon_factory_add_default
gtk_icon_factory_new
gtk_icon_set_add_source
gtk_icon_set_new
gtk_icon_set_unref
gtk_icon_source_free
gtk_icon_source_new
gtk_icon_source_set_pixbuf
gtk_icon_source_set_size
gtk_icon_source_set_size_wildcarded
gtk_image_menu_item_new_with_mnemonic
gtk_image_new_from_stock
gtk_label_get_type
gtk_label_new
gtk_label_new_with_mnemonic
gtk_label_set_mnemonic_widget
gtk_label_set_text
gtk_list_store_append
gtk_list_store_clear
gtk_list_store_get_type
gtk_list_store_insert
gtk_list_store_new
gtk_list_store_remove
gtk_list_store_set
gtk_main
gtk_main_quit
gtk_menu_get_type
gtk_menu_popup
gtk_menu_shell_get_type
gtk_menu_shell_insert
gtk_message_dialog_format_secondary_text
gtk_message_dialog_get_type
gtk_message_dialog_new
gtk_message_dialog_new_with_markup
gtk_misc_get_type
gtk_misc_set_alignment
gtk_notebook_append_page
gtk_notebook_get_type
gtk_notebook_new
gtk_notebook_set_current_page
gtk_orientable_get_type
gtk_orientable_set_orientation
gtk_radio_action_get_current_value
gtk_radio_button_get_group
gtk_radio_button_get_type
gtk_radio_button_new_with_mnemonic
gtk_radio_button_new_with_mnemonic_from_widget
gtk_scrolled_window_add_with_viewport
gtk_scrolled_window_get_hadjustment
gtk_scrolled_window_get_type
gtk_scrolled_window_get_vadjustment
gtk_scrolled_window_new
gtk_scrolled_window_set_policy
gtk_scrolled_window_set_shadow_type
gtk_selection_data_get_data
gtk_selection_data_get_format
gtk_selection_data_get_length
gtk_spin_button_get_type
gtk_spin_button_get_value_as_int
gtk_spin_button_new
gtk_spin_button_set_numeric
gtk_spin_button_set_value
gtk_statusbar_get_context_id
gtk_statusbar_get_type
gtk_statusbar_new
gtk_statusbar_push
gtk_statusbar_remove
gtk_stock_add_static
gtk_table_attach
gtk_table_attach_defaults
gtk_table_get_type
gtk_table_new
gtk_table_set_col_spacings
gtk_table_set_row_spacings
gtk_text_buffer_get_bounds
gtk_text_buffer_get_end_iter
gtk_text_buffer_get_text
gtk_text_buffer_insert
gtk_text_buffer_new
gtk_text_buffer_set_text
gtk_text_view_get_type
gtk_text_view_new_with_buffer
gtk_text_view_set_editable
gtk_toggle_action_get_type
gtk_toggle_action_set_active
gtk_toggle_button_get_active
gtk_toggle_button_get_type
gtk_toggle_button_set_active
gtk_toolbar_get_type
gtk_toolbar_set_style
gtk_tree_model_get
gtk_tree_model_get_iter
gtk_tree_model_get_iter_first
gtk_tree_model_get_path
gtk_tree_model_get_type
gtk_tree_model_iter_n_children
gtk_tree_model_iter_next
gtk_tree_model_iter_nth_child
gtk_tree_model_row_changed
gtk_tree_path_free
gtk_tree_selection_get_selected
gtk_tree_selection_get_selected_rows
gtk_tree_selection_select_iter
gtk_tree_selection_set_mode
gtk_tree_selection_unselect_iter
gtk_tree_view_append_column
gtk_tree_view_column_new
gtk_tree_view_column_new_with_attributes
gtk_tree_view_column_pack_start
gtk_tree_view_column_set_alignment
gtk_tree_view_column_set_cell_data_func
gtk_tree_view_column_set_min_width
gtk_tree_view_column_set_resizable
gtk_tree_view_column_set_sizing
gtk_tree_view_column_set_title
gtk_tree_view_get_model
gtk_tree_view_get_path_at_pos
gtk_tree_view_get_selection
gtk_tree_view_get_type
gtk_tree_view_new_with_model
gtk_tree_view_set_rules_hint
gtk_ui_manager_add_ui_from_string
gtk_ui_manager_get_accel_group
gtk_ui_manager_get_action
gtk_ui_manager_get_widget
gtk_ui_manager_insert_action_group
gtk_ui_manager_new
gtk_widget_add_accelerator
gtk_widget_destroy
gtk_widget_destroyed
gtk_widget_get_display
gtk_widget_get_state
gtk_widget_get_toplevel
gtk_widget_get_type
gtk_widget_get_window
gtk_widget_grab_focus
gtk_widget_hide
gtk_widget_queue_draw
gtk_widget_queue_resize
gtk_widget_set_can_focus
gtk_widget_set_events
gtk_widget_set_sensitive
gtk_widget_set_size_request
gtk_widget_set_visible
gtk_widget_show
gtk_window_add_accel_group
gtk_window_get_type
gtk_window_new
gtk_window_present
gtk_window_set_position
gtk_window_set_resizable
gtk_window_set_title

libintl-8

libintl_bind_textdomain_codeset
libintl_bindtextdomain
libintl_fprintf
libintl_gettext
libintl_sprintf
libintl_textdomain
libintl_vfprintf
libintl_vsprintf

kernel32

DeleteCriticalSection
EnterCriticalSection
ExitProcess
GetLastError
GetModuleHandleA
GetProcAddress
InitializeCriticalSection
LeaveCriticalSection
SetUnhandledExceptionFilter
TlsGetValue
VirtualProtect
VirtualQuery

msvcrt

_isatty
__getmainargs
__p___argc
__p___argv
__p__environ
__p__fmode
__set_app_type
_cexit
_errno
_filbuf
_iob
_onexit
_setmode
abort
atexit
atoi
calloc
clearerr
exit
fclose
fgets
fprintf
fread
free
fwrite
malloc
printf
realloc
signal
sprintf
sqrt
strchr
strcmp
strstr
strtok
vfprintf
vsprintf

libgimp-2.0-0

gimp_drawable_detach
gimp_drawable_get
gimp_drawable_has_alpha
gimp_drawable_height
gimp_drawable_is_rgb
gimp_drawable_type
gimp_drawable_width
gimp_image_find_next_guide
gimp_image_get_colormap
gimp_image_get_guide_orientation
gimp_image_get_guide_position
gimp_image_get_name
gimp_image_height
gimp_image_width
gimp_install_procedure
gimp_item_get_image
gimp_main
gimp_pixel_rgn_get_row
gimp_pixel_rgn_init
gimp_plugin_menu_register

libgimpbase-2.0-0

gimp_filename_to_utf8
gimp_locale_directory
gimp_personal_rc_file

libgimpcolor-2.0-0

gimp_rgb_multiply
gimp_rgb_set

libgimpwidgets-2.0-0

gdk_event_triggers_context_menu
gimp_chain_button_get_active
gimp_chain_button_get_type
gimp_chain_button_new
gimp_color_button_get_color
gimp_color_button_get_type
gimp_color_button_new
gimp_color_button_set_color
gimp_color_button_set_update
gimp_dialog_new
gimp_frame_new
gimp_help_connect
gimp_hint_box_new
gimp_preview_area_draw
gimp_preview_area_get_type
gimp_preview_area_new
gimp_ruler_new
gimp_ruler_set_range
gimp_standard_help_func
gtk_box_new
gtk_scrollbar_new

Sections

.text
Size: 99KB - Virtual size: 98KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

/4
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 900B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d451805fba0759c64000f694f5cc4fc8

Headers

File Characteristics

Imports

libgimpui-2.0-0

libcairo-2

libgdk-win32-2.0-0

libgdk_pixbuf-2.0-0

libglib-2.0-0

libgobject-2.0-0

libgtk-win32-2.0-0

libintl-8

kernel32

msvcrt

libgimp-2.0-0

libgimpbase-2.0-0

libgimpcolor-2.0-0

libgimpwidgets-2.0-0

Sections

.text Size: 99KB - Virtual size: 98KB

.data Size: 1KB - Virtual size: 1KB

.rdata Size: 36KB - Virtual size: 35KB

/4 Size: 27KB - Virtual size: 27KB

.bss Size: - Virtual size: 900B

.idata Size: 14KB - Virtual size: 14KB

.CRT Size: 512B - Virtual size: 24B

.tls Size: 512B - Virtual size: 32B

.text
Size: 99KB - Virtual size: 98KB

.data
Size: 1KB - Virtual size: 1KB

.rdata
Size: 36KB - Virtual size: 35KB

/4
Size: 27KB - Virtual size: 27KB

.bss
Size: - Virtual size: 900B

.idata
Size: 14KB - Virtual size: 14KB

.CRT
Size: 512B - Virtual size: 24B

.tls
Size: 512B - Virtual size: 32B