5f18398f596dff53e7d1af4dda679bb4_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

5f18398f596dff53e7d1af4dda679bb4_JaffaCakes118
Size

104KB
MD5

5f18398f596dff53e7d1af4dda679bb4
SHA1

26245eb79304a487e7850e3538bd6e01a1fd7661
SHA256

cc878558749cd6f14578b245de0f3baea5a105f403a9ed6e29aeed9c54946541
SHA512

743924782907ebf99268b9be351fb8ec1ee3fa34884824e536dc3880f7e290a7c686c41a3d382bc64f8c1515fe654e209b0aa1efe1285066f59ef07f646b9df9
SSDEEP

3072:oTSZOZrgYjNnrpGmjObNg8Lghp9Q6DXIl9nrTG:oThpjlwmCbKLJjDe9nW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5f18398f596dff53e7d1af4dda679bb4_JaffaCakes118

Files

5f18398f596dff53e7d1af4dda679bb4_JaffaCakes118
.exe windows:5 windows x86 arch:x86

4a7bbec57e71460f0669805d6887c413

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

X:\oghdyYJAMfik\ZmoalRyxo\stixeazeb.pdb

Imports

shlwapi

ChrCmpIA

msvcrt

fprintf
putchar
clearerr
_controlfp
iswalpha
strcoll
strncmp
fgets
towupper
memset
towlower
__set_app_type
wcsncpy
qsort
strtok
isupper
isxdigit
__p__fmode
setlocale
fread
remove
__p__commode
wcscspn
mbstowcs
strerror
wcspbrk
isprint
calloc
vsprintf
clock
setvbuf
wcscoll
putc
_amsg_exit
floor
sprintf
wcscpy
printf
wcstol
mbtowc
getc
islower
fwrite
srand
puts
_initterm
perror
free
_ismbblead
malloc
_XcptFilter
_exit
fputc
vswprintf
isalpha
ftell
_cexit
__setusermatherr
wcscmp
atoi
__getmainargs

gdi32

CreatePen
CombineRgn
SetAbortProc
SetTextAlign
TextOutA
CreateDiscardableBitmap
PathToRegion
ResizePalette
ExtTextOutW
GetBitmapBits
PatBlt
CreateDIBitmap
SetLayout
GetCurrentObject
DeleteObject
CreateBitmapIndirect
TextOutW
Escape
GetPaletteEntries
StretchBlt
CreateHatchBrush
StretchDIBits
GetCharWidth32W
CreateRectRgn
SetDIBColorTable
RealizePalette
LineDDA
CreateEllipticRgnIndirect
CreateRectRgnIndirect
SaveDC
StartDocW
CreateBitmap
SetROP2
Ellipse
CreateCompatibleBitmap
SetStretchBltMode
CreatePolygonRgn
GetTextAlign
GetFontData
WidenPath
EndDoc
SetPixel
RestoreDC
GetTextCharsetInfo
GetNearestPaletteIndex
CreatePenIndirect
SetViewportExtEx
CreatePatternBrush
CreateCompatibleDC
ExtTextOutA
GetTextMetricsW
EndPath
ScaleWindowExtEx
GetROP2
TranslateCharsetInfo
CreateICW
GetDeviceCaps
GetTextMetricsA
CreateDIBSection
RectVisible
RoundRect
SetWindowOrgEx
BitBlt
EnumFontsW
GetRgnBox
GetDIBits
UnrealizeObject
CreateBrushIndirect
PolyBezier
LPtoDP

user32

GetClassLongW
GetShellWindow
GetMessageExtraInfo
GetDlgCtrlID
CharNextW
ScreenToClient
DrawFocusRect
WindowFromPoint
FillRect
SetWindowTextW
InSendMessage
ReplyMessage
SendDlgItemMessageA
LoadIconA
GetMenuCheckMarkDimensions
FindWindowW
GetWindowLongA
GetWindowRect
EndPaint
ShowScrollBar
RemovePropW
DeleteMenu
GetNextDlgTabItem
GetCaretPos
CharUpperBuffW
ChildWindowFromPoint
SetCursorPos
LoadStringA
DialogBoxIndirectParamW
CreateIconIndirect
LookupIconIdFromDirectory
PtInRect
ScrollWindowEx
DialogBoxParamA
ArrangeIconicWindows
SetFocus
TranslateAcceleratorW
CharNextA
GetDesktopWindow
SendInput
MapWindowPoints
GetMenuStringW
SetTimer
SetScrollRange
SetMenu
TileWindows
RegisterClassW
TranslateMessage
GetMenuItemCount
ClipCursor
LoadAcceleratorsA
MonitorFromPoint
SwapMouseButton
MapVirtualKeyW
MonitorFromRect
SetMenuItemBitmaps
CreateDialogParamA
GetMenuStringA
SendMessageW
CreateCaret
wsprintfW
SetCaretPos
CharPrevA
DrawStateA
GetMenuState
IsDialogMessageW
InsertMenuA
DestroyAcceleratorTable
SetDlgItemTextW
GetKeyNameTextW
RegisterHotKey
LoadAcceleratorsW
ShowWindow
ChangeMenuW
GetKeyboardType
SystemParametersInfoW
AppendMenuA
SetWindowLongA
SendMessageTimeoutW
LoadMenuW
DrawIconEx
InflateRect
CheckDlgButton
LoadCursorA
InsertMenuW
GetWindowTextLengthW
TrackPopupMenuEx
MessageBoxExW
IsWindow
CreateDialogParamW
ScrollWindow
FindWindowExW
wvsprintfW
ModifyMenuW
GetClassNameW
GetMenuItemInfoW
DefDlgProcW
IntersectRect
DispatchMessageW
CheckRadioButton
CharNextExA
LoadBitmapA
ExitWindowsEx
IsCharLowerA
InternalGetWindowText
DrawStateW
GetMessageTime
GetActiveWindow
InvalidateRgn
RegisterWindowMessageA
DrawEdge
ActivateKeyboardLayout
ShowOwnedPopups
GetFocus
SetWindowPlacement
GetAsyncKeyState
MessageBoxW
CreateWindowExW
CharPrevW
DefWindowProcW
GetDialogBaseUnits
CharUpperA
SetDlgItemInt
TrackPopupMenu
OemToCharA
GetSubMenu
GetClassInfoExA
UpdateWindow
InSendMessageEx
SetLastErrorEx
TranslateAcceleratorA
SendMessageA
CreateAcceleratorTableW
EndDialog
SetCursor
GetSysColorBrush
GetWindow
IsZoomed
BringWindowToTop
RegisterClassExW
SwitchToThisWindow
GetWindowLongW
CharToOemA
AttachThreadInput
CreateMenu
GetMenuItemRect
IsMenu
LoadMenuA
GetDlgItemInt
ChildWindowFromPointEx
GetClipCursor
CharToOemBuffA
CallWindowProcW
GetParent
IsDlgButtonChecked
CharUpperW
DefDlgProcA
RegisterClassA
SetWindowPos
SetActiveWindow
IsWindowEnabled
IsCharAlphaW
CascadeWindows
PostThreadMessageA
GetCaretBlinkTime
GetNextDlgGroupItem
GetIconInfo

kernel32

SleepEx
CallNamedPipeW
IsDBCSLeadByteEx
HeapSize
ReleaseSemaphore
GetAtomNameA
GetTickCount
GlobalFindAtomW
DeleteFileA
GetProcAddress
FreeResource
DuplicateHandle
MultiByteToWideChar
EnumResourceLanguagesA
DisconnectNamedPipe
SetFileAttributesA
ClearCommBreak
LocalSize
GetUserDefaultUILanguage
RemoveDirectoryW
ResumeThread
SetCommState
CreateSemaphoreW
GetFileSize
CreateFileW
CreateWaitableTimerA
WideCharToMultiByte
SetEndOfFile
SuspendThread
CreateMutexW
EscapeCommFunction
OpenFile
TlsSetValue
GetCurrentThread
GetModuleFileNameA
GetTimeZoneInformation
RaiseException
GetTempPathA
SystemTimeToFileTime
FindResourceW
SetThreadAffinityMask
GetTimeFormatW
GetLocalTime
CreateMailslotW
IsBadCodePtr
GetFileTime
SizeofResource
LoadLibraryExW
LCMapStringA
LocalUnlock
DeleteCriticalSection
FileTimeToLocalFileTime
OpenFileMappingW
GetOEMCP
CloseHandle
GetSystemDirectoryA
MulDiv
ConnectNamedPipe
HeapValidate
GetFileAttributesA
OpenSemaphoreW
SearchPathA
SetFileAttributesW
GetExitCodeThread
GetCommTimeouts
MoveFileExA
IsBadReadPtr
GetThreadLocale
lstrcmpA
GetPriorityClass
GetModuleHandleA
GetSystemTime
CreateMutexA
UnlockFile
EnumResourceNamesW
GetCommConfig

Exports

Exports

?IsValidPenEx@@IJMHF@X

Sections

.text
Size: 53KB - Virtual size: 53KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.code
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 134KB - Virtual size: 133KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4a7bbec57e71460f0669805d6887c413

Headers

File Characteristics

PDB Paths

Imports

shlwapi

msvcrt

gdi32

user32

kernel32

Exports

Exports

Sections

.text Size: 53KB - Virtual size: 53KB

.code Size: 12KB - Virtual size: 12KB

.data Size: 12KB - Virtual size: 84KB

.rsrc Size: 134KB - Virtual size: 133KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 53KB - Virtual size: 53KB

.code
Size: 12KB - Virtual size: 12KB

.data
Size: 12KB - Virtual size: 84KB

.rsrc
Size: 134KB - Virtual size: 133KB

.reloc
Size: 2KB - Virtual size: 1KB