5fa13f714e014d1c8fdf5b91d69279e9_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

5fa13f714e014d1c8fdf5b91d69279e9_JaffaCakes118
Size

150KB
MD5

5fa13f714e014d1c8fdf5b91d69279e9
SHA1

913d639832dfd2dd3e4969f6f5e96e1fa9dfd5aa
SHA256

34e920bb55cf8b67cc3c7ee96e3c14a75f1bded3609250eadaa9122329765ad6
SHA512

1415659f321f2540e525e15afafdba469396e918eaa39f017bd2c22fcd27111d329a5bf981ba8fc8abcc08340f5c7f1f83b0ac1d33d036bffe83d1d0686393a7
SSDEEP

3072:hes5/cwpEH5TTJtDWVqJcegOSKNl32RMvhr10TUn2WlC9j9ue7gfd:heQ+PJtD4qmeCKNd2mvB10TU2WlCd9Fg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5fa13f714e014d1c8fdf5b91d69279e9_JaffaCakes118

Files

5fa13f714e014d1c8fdf5b91d69279e9_JaffaCakes118
.exe windows:5 windows x86 arch:x86

758e52675ccec0de40f90491611c0ec4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

H:\vRbScjr\qpdTnVyyreaG\kaoWrYHggVvfpo\GsyQtzOwv\atpkXPRkfmF.pdb

Imports

comctl32

ImageList_GetImageCount
DestroyPropertySheetPage
ImageList_GetIcon
ImageList_LoadImageW
CreateToolbarEx
PropertySheetA

msvcrt

floor
printf
_controlfp
iswalpha
isdigit
atoi
gmtime
iswctype
wcsncpy
strtol
__set_app_type
fputc
strncmp
__p__fmode
fclose
swscanf
iswspace
setlocale
__p__commode
strcpy
getenv
vswprintf
fwrite
iswprint
_amsg_exit
strtoul
realloc
isxdigit
islower
wcscpy
_initterm
_ismbblead
wcstol
mbtowc
atol
memset
sscanf
_XcptFilter
free
_exit
wcscat
wcscoll
_cexit
__setusermatherr
__getmainargs
isupper
getc
gets

shlwapi

StrToIntW

kernel32

GlobalAddAtomW
SetWaitableTimer
FindNextFileA
LCMapStringA
GetTempFileNameA
ExitThread
GetCurrentThreadId
FlushFileBuffers
GetStartupInfoA
FlushViewOfFile
HeapReAlloc
EnterCriticalSection
SetEvent
GlobalSize
GetProcessHeap
GetCurrentThread
FormatMessageW
GetComputerNameW
DefineDosDeviceW
GlobalDeleteAtom
GetThreadTimes
PulseEvent
lstrcmpiW
WaitForMultipleObjects
DeleteAtom
OpenEventW
SystemTimeToFileTime
LocalReAlloc
GetModuleHandleA
WaitForSingleObject
WriteFile
AddAtomW
CancelWaitableTimer
OpenEventA
ClearCommError
GetCommProperties
QueryDosDeviceW
GetFileAttributesExW
TryEnterCriticalSection
GetTempFileNameW
GetThreadLocale
GetFileAttributesW
GetTimeFormatA
SetUnhandledExceptionFilter
GetTimeZoneInformation
CreateRemoteThread
SetSystemTime
HeapFree
FileTimeToLocalFileTime
HeapAlloc
VerifyVersionInfoW
lstrcpyW
CreateFileA
SetThreadLocale
OpenSemaphoreW
GetAtomNameA
GetTickCount
OpenFile
GlobalCompact

user32

GetParent
LoadIconW
GetDialogBaseUnits
wvsprintfW
InvalidateRgn
ShowWindow
LoadImageW
IsWindowVisible
SendMessageA
SetClassLongW
CallWindowProcA
DestroyCursor
LoadCursorA
LoadBitmapW
DrawStateW
GetSysColor
GetPropW
GetSystemMenu
EnumChildWindows
SetLastErrorEx
GetWindowLongA
DefWindowProcA
DrawFrameControl
SetMenuItemBitmaps
CreateAcceleratorTableW
RegisterWindowMessageA
DrawIcon
DialogBoxIndirectParamA
AdjustWindowRectEx
SetFocus
InSendMessage
MapVirtualKeyA
SetUserObjectInformationW
InflateRect
SetWindowPos
GetKeyboardLayout
SetScrollInfo
DefFrameProcW
LockWindowUpdate
GetGUIThreadInfo
ScreenToClient
OemToCharA
GetWindowLongW
CharLowerW
IsCharAlphaW
GetActiveWindow
EndPaint
DialogBoxParamA
FindWindowA
CharToOemA
GetMonitorInfoW
MessageBoxExA
SwitchToThisWindow
DestroyWindow
EnableMenuItem
GetClassInfoW
GetUpdateRgn
GetKeyboardLayoutList
ExitWindowsEx
SetPropW
GetClassInfoExW
GetKeyNameTextW
DrawAnimatedRects
wsprintfW
ClipCursor
OpenIcon
PostThreadMessageA
GetMessageExtraInfo
VkKeyScanW
GetWindowDC
FillRect
CharPrevW
GetSystemMetrics
IsZoomed
SendNotifyMessageW
AttachThreadInput
SendMessageW
SystemParametersInfoW
CopyRect
GetClipCursor
IntersectRect
GetFocus
EqualRect
CharToOemW
UnloadKeyboardLayout
LoadImageA
ScrollWindowEx
SetWindowPlacement
GetMenuCheckMarkDimensions
CascadeWindows
CreateWindowExA
DestroyCaret
SetActiveWindow
MapVirtualKeyExW
LoadAcceleratorsA
DestroyIcon
LoadAcceleratorsW
GetWindow
MoveWindow
GetDoubleClickTime
SetMenu
GetUserObjectInformationA
IsWindow
DestroyAcceleratorTable
GetWindowTextLengthW
EnumWindows
IsCharLowerA
DispatchMessageA
MonitorFromPoint
EnumThreadWindows
ArrangeIconicWindows
DrawFocusRect
GetDlgItemTextW
BeginDeferWindowPos
SetDlgItemTextW
EndDialog
wvsprintfA
CheckMenuRadioItem
GetNextDlgTabItem
GetWindowModuleFileNameW
GetCaretBlinkTime
GetScrollRange
InsertMenuW

Exports

Exports

?GenericOutputInfoYSUh@@YGK_KHE[D

Sections

.text
Size: 66KB - Virtual size: 65KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 66KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

758e52675ccec0de40f90491611c0ec4

Headers

File Characteristics

PDB Paths

Imports

comctl32

msvcrt

shlwapi

kernel32

user32

Exports

Exports

Sections

.text Size: 66KB - Virtual size: 65KB

.data Size: 15KB - Virtual size: 81KB

.rsrc Size: 66KB - Virtual size: 65KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 66KB - Virtual size: 65KB

.data
Size: 15KB - Virtual size: 81KB

.rsrc
Size: 66KB - Virtual size: 65KB

.reloc
Size: 2KB - Virtual size: 1KB