5e45cb426bfc54522530cfebb1cd9e73_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

5e45cb426bfc54522530cfebb1cd9e73_JaffaCakes118
Size

220KB
MD5

5e45cb426bfc54522530cfebb1cd9e73
SHA1

48ca46d41d5a74c1e923034af24e0ebffb1b9061
SHA256

b8f78a3652d6c09b8590e1ab26dc63162a8d65946c20aa251bbdab90ed1ebb9d
SHA512

42df54452c027b248f15567358bac48007cb27f42e5de2c2676f600407598f613bc8634a1e05e6d09e3f5dab49e028e14ebe8a619ab3f7c72e79df735f0e3a3e
SSDEEP

6144:jFNMWvp9QuozH4OP/FeXHGlWNOWawhR5YiwN7SGg:jkAQD0AcXHPOZQ1wNGGg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5e45cb426bfc54522530cfebb1cd9e73_JaffaCakes118

Files

5e45cb426bfc54522530cfebb1cd9e73_JaffaCakes118
.exe windows:5 windows x86 arch:x86

d016165733b61a513e4895b5c6569144

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

Y:\bpDSjrfiet\fvnpeBDx\dyevvvqkifjw\siVwfhMcgCse.pdb

Imports

comdlg32

PrintDlgW
GetSaveFileNameA
PageSetupDlgW
GetOpenFileNameW
CommDlgExtendedError
GetSaveFileNameW

kernel32

LoadResource
GetCompressedFileSizeW
FindResourceW
lstrcatW
GetProcessHeap
SetPriorityClass
lstrcpyA
FindNextChangeNotification
TlsGetValue
OpenFileMappingW
lstrlenW
RegisterWaitForSingleObject
GlobalGetAtomNameA
HeapAlloc
MoveFileExW
GetLocalTime
GetThreadLocale
GetSystemDefaultLangID
IsValidLocale
UnhandledExceptionFilter
HeapFree
CancelIo
SetUnhandledExceptionFilter
MoveFileExA
GetCurrentThreadId
AddAtomA
FileTimeToSystemTime
GetFileSize
FindResourceA
GlobalFlags
SetWaitableTimer
GetCommConfig
GetFileType
FreeLibrary
LocalSize
UnmapViewOfFile
GetComputerNameA
CreateFileA
FreeResource
GetCurrentDirectoryW
lstrcatA
DeleteFileW
FoldStringW
WaitCommEvent
AddAtomW
GetCommProperties
VerifyVersionInfoW
MultiByteToWideChar
WideCharToMultiByte
CopyFileW
ConvertDefaultLocale
GetTimeFormatW
IsValidLanguageGroup
TerminateThread
GetPriorityClass
TlsSetValue

gdi32

SetDIBits
ScaleViewportExtEx
CreateEllipticRgnIndirect
StartPage
GetTextFaceW
CreateBrushIndirect
GetSystemPaletteEntries
CreateFontW
GetObjectA
CreatePenIndirect
GetTextColor
CreateCompatibleDC
SetLayout
SetBrushOrgEx
CreateBitmap
GetTextExtentPoint32W
EnumFontFamiliesW
OffsetRgn
GetStockObject
EnumFontFamiliesExW
PtInRegion
EnumFontsW
SetPixel
SetMapMode
SelectObject
SetWindowExtEx
TranslateCharsetInfo
SetROP2
Polyline
SetBitmapBits
StretchDIBits
CreateRectRgn
SelectPalette
ExtFloodFill
CreateHatchBrush
GetBitmapBits
ExtTextOutW
GetTextExtentPointA
GetTextCharsetInfo
GetSystemPaletteUse
GetRgnBox
GetROP2
SetRectRgn
RectVisible

msvcrt

_controlfp
wcsrchr
wcspbrk
swprintf
tolower
__set_app_type
isupper
__p__fmode
iswalpha
wcstol
isalnum
__p__commode
clearerr
_amsg_exit
_initterm
fgetc
wcscspn
strtol
wcslen
_acmdln
exit
_ismbblead
realloc
_XcptFilter
strstr
iswspace
_exit
gets
fprintf
_cexit
iswdigit
fseek
mbstowcs
__setusermatherr
free
wcstoul
gmtime
strpbrk
__getmainargs
isxdigit
localtime
fread
getenv
ungetc
system
isdigit

comctl32

ImageList_Remove
PropertySheetA
InitCommonControlsEx
ImageList_LoadImageW
ImageList_SetIconSize
ImageList_GetImageCount

user32

CharLowerBuffW
GetClassLongW
IsCharUpperA
DrawTextW
EnableWindow
PostThreadMessageW
CreateCursor
RegisterHotKey
CreateDialogParamA
GetShellWindow
SetClassLongW
CharToOemBuffA
SetWindowTextA
GetClassNameW
GetDlgItemTextA
CreateMenu
GetKeyboardLayout
AppendMenuA
ChangeMenuW
CallWindowProcA
GetWindowLongA
CreateCaret
DefWindowProcA
DefFrameProcA
DeferWindowPos
GetMessageA
GetMenuItemInfoW
InflateRect
CreateWindowExA
PtInRect
MapWindowPoints
CharUpperBuffW
GetMenuItemCount
GetUpdateRect
AppendMenuW
DialogBoxIndirectParamA
ShowWindow
GetTopWindow
GetIconInfo
DragObject
CascadeWindows
ChildWindowFromPoint
GetWindowPlacement
SystemParametersInfoA
GetMessageExtraInfo
GetClassInfoA
GetWindowTextA
DrawTextA
FindWindowW
GetWindowLongW
ModifyMenuW
DrawTextExW
FindWindowExW
LoadAcceleratorsW
UpdateWindow
SetSysColors
GetClientRect
CallWindowProcW
ShowWindowAsync
AdjustWindowRect
IsWindowEnabled
GetCaretPos
CreateIconFromResource
GetDlgItemTextW
GetClassInfoW
MapVirtualKeyExW
SetRect
ReplyMessage
SetParent
CreateIconIndirect
DestroyCursor
IsWindowVisible
SendMessageTimeoutA
CheckMenuItem
SetDlgItemTextA
LoadIconW
GetWindow
GetParent
OpenIcon
RedrawWindow
GetLastActivePopup
DispatchMessageA
CharLowerA
GetDialogBaseUnits
EnableMenuItem
EqualRect
GetScrollPos
PeekMessageW
SetCursorPos
CharNextExA
LoadIconA
GetNextDlgTabItem
SetCaretPos
LoadAcceleratorsA
GetKeyboardLayoutNameW
GetDoubleClickTime
GetWindowRect
SetWindowTextW
GetSystemMetrics
InsertMenuItemW
wvsprintfW
InvalidateRgn
SetRectEmpty
DefDlgProcA
GetPropW
DrawIconEx
wsprintfA
ShowCaret

Exports

Exports

?ModifyWindowExW@@YGPAXHNH]A
?ValidateTaskA@@YGPAI_NPAGM]A
?HidePointOriginal@@YGEPAKPAKF]A
?InsertKeyNameExA@@YGNPAFPAFM]A
?CrtVersionNew@@YGIPAMJ]A
?CrtWidthExW@@YGIPAFPAMI]A
?DecrementDirectoryNew@@YGFD]A
?HideFileNew@@YGHHMHPAE]A
?GenerateExpressionExA@@YGHPAF]A
?InvalidateObjectOld@@YGPAFPAKPAME]A
?ModifyExpressionExW@@YGMPAHPAMJ]A
?CancelEventOld@@YGF_NPAK]A
?DecrementDateTimeExW@@YGG_NPAE]A
?ProcessOriginal@@YGNGF]A
?ValidateProfile@@YGIGM]A
?CrtFolderW@@YGH_NG]A
?MutexW@@YGPAXPAIE]A
?AddOptionExA@@YGPAHE]A
?DeleteMonitorEx@@YGPAHPAJPAI]A
?SendFunctionA@@YGEPAGDD]A
?PutFilePathOld@@YGMFMD_N]A
?IsVersionA@@YGMFK]A
?GenerateCharOriginal@@YGXIJNF]A
?RemoveWindowInfoEx@@YGPAIMPAGK]A
?ShowHeightEx@@YGPAXNI]A
?AddFolderOriginal@@YGDHPAEGE]A
?AddDirectoryA@@YGPADFF]A
?GlobalStateW@@YGPAXJDM]A
?InvalidateSize@@YGEHF]A
?CopyAppName@@YGXMDE]A
?RtlFunctionExA@@YGIIMIH]A
?ListItemOriginal@@YGJPAN]A
?GetDateOriginal@@YGIIFE]A
?ShowPointerNew@@YGPAMPAM]A
?CancelStateEx@@YGFPANPAGJ]A

Sections

.text
Size: 193KB - Virtual size: 192KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d016165733b61a513e4895b5c6569144

Headers

File Characteristics

PDB Paths

Imports

comdlg32

kernel32

gdi32

msvcrt

comctl32

user32

Exports

Exports

Sections

.text Size: 193KB - Virtual size: 192KB

.data Size: 24KB - Virtual size: 23KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 193KB - Virtual size: 192KB

.data
Size: 24KB - Virtual size: 23KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 2KB - Virtual size: 1KB