64247d637e69e8e4b09dc3494c23e85b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

64247d637e69e8e4b09dc3494c23e85b_JaffaCakes118
Size

212KB
MD5

64247d637e69e8e4b09dc3494c23e85b
SHA1

cb16cb9d7982b027dded3819ee5f8938bb1d3fce
SHA256

92c07a3d99e2738782983634dfe1c94178429422c9022b9fc44608a2a3d251d3
SHA512

e5be1efd37b761afd59953af68de481fcde2391a2a67370c3e75428ad3269b9a12c955ec15e6799016dd7a3fb013c894632c113222ced7eed7056f934e40d2c6
SSDEEP

6144:ePKXmFP98tFXZR62XV0z9ZkZvlgkI9gmd0W:eSWFP9SNMKgkI98

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
64247d637e69e8e4b09dc3494c23e85b_JaffaCakes118

Files

64247d637e69e8e4b09dc3494c23e85b_JaffaCakes118
.exe windows:5 windows x86 arch:x86

8f326a180beee6f357a1297621b5cdaa

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

N:\agkQMCrQt\QovcufAefzVm\ldvfkyoL\dQRnUhJggujkmb.pdb

Imports

user32

GetNextDlgTabItem
CreateWindowExW
GetMenuItemID
CharNextW
SetMenuItemBitmaps
InSendMessage
LoadCursorW
GetMessageExtraInfo
GetClassInfoExW
CharToOemW
OpenDesktopW
TranslateAcceleratorA
ShowWindow
PostMessageA
DeleteMenu
VkKeyScanW
CreateDialogParamW
DialogBoxParamW
RegisterClassA
EndDialog
EnumChildWindows
InsertMenuA
GetUserObjectInformationW
SwitchToThisWindow
RemovePropW
CharLowerA
DrawFrameControl
TrackPopupMenuEx
TabbedTextOutW
EqualRect
ChildWindowFromPointEx
MoveWindow
GetSystemMenu
ClipCursor
OemToCharA
ScreenToClient
ValidateRect
PeekMessageA
GetScrollRange
IsDialogMessageA
GetShellWindow
SetParent
EnableScrollBar
GetMenuItemRect
GetDlgItemInt
PostThreadMessageA
SendMessageTimeoutW
GetWindowTextA
GetClassInfoExA
CloseDesktop
ArrangeIconicWindows
GetForegroundWindow
KillTimer
DefWindowProcA
GetParent
EndTask
LoadBitmapW
DestroyMenu
OemToCharBuffA
DefDlgProcA
GetDCEx
EndPaint
IsDlgButtonChecked
SetWindowPlacement
SetWindowRgn
ModifyMenuW
DrawIconEx
GetClassLongW
wsprintfA
CharNextA
CharUpperBuffA
SendMessageW
InsertMenuItemW
GetMenuStringA
LoadMenuA
GetScrollPos
InvertRect
SendInput
CreateCaret
SetMenuDefaultItem
TranslateAcceleratorW
MapWindowPoints
GetCursorPos
ShowCursor
CharPrevA
WaitForInputIdle

msvcrt

strtok
printf
iswdigit
_controlfp
fwrite
puts
gmtime
iswxdigit
iswalpha
gets
__set_app_type
__p__fmode
wcsncmp
wcscspn
wcslen
mktime
__p__commode
srand
remove
_amsg_exit
towupper
_initterm
_acmdln
exit
perror
_ismbblead
clock
_XcptFilter
_exit
strspn
fprintf
_cexit
fputs
wcscmp
wcscpy
atoi
__setusermatherr
rand
__getmainargs
isdigit

comctl32

ImageList_Remove
ImageList_ReplaceIcon
ImageList_GetIconSize
PropertySheetA
ImageList_Create

kernel32

lstrcpynW
GetLocalTime
GetSystemWindowsDirectoryA
SetUnhandledExceptionFilter
UnlockFile
EnumResourceNamesW
GetHandleInformation
TlsFree
GetWindowsDirectoryA
CompareStringW
GetStartupInfoW
OpenEventA
GlobalAddAtomW
GetFileAttributesExW
GlobalFlags
SearchPathA
GetNumberFormatW
VirtualProtect
CreateDirectoryA
GetUserDefaultLangID
HeapWalk
GetCompressedFileSizeW
CancelIo
BuildCommDCBAndTimeoutsW
CreateThread
MoveFileExA
GlobalCompact
HeapSize
CreateFileA
GlobalHandle
GetUserDefaultLCID
SetCurrentDirectoryA
lstrcmpiW
GetComputerNameExA
GetLastError
ClearCommError
VerSetConditionMask
UnmapViewOfFile
lstrcatW
GetCurrentThreadId

gdi32

GetTextCharsetInfo
SetPixel
Polyline
CreateSolidBrush
CreateDCW
GetDIBColorTable
StretchBlt
GetWindowOrgEx
GetRgnBox
EndPage
Ellipse
SetDIBitsToDevice
SetAbortProc
EnumFontsW
RestoreDC
CreateICW
RectInRegion
BitBlt
ExtTextOutW
ExcludeClipRect
CreateHatchBrush
GetTextExtentPoint32A
CreateRectRgnIndirect
GetPixel
GetBitmapBits
GetTextColor
SetLayout
GetNearestColor
GetCurrentObject
StretchDIBits
MoveToEx
EnumFontFamiliesW
GetTextFaceW
CreateDIBSection
GetDeviceCaps

Exports

Exports

?WaitForMultipleObjectsIUIUDSiuld@@YGKEPA_WG@Z
?WaitForMultipleObjectsJUDiuDLIJU@@YGKEPA_WG@Z
?WaitForMultipleObjectsUYDyudkjh@@YGKEPA_WG@Z
?WaitForSingleObjectYDEyuhgDU6d@@YGKEPA_WG@Z

Sections

.text
Size: 71KB - Virtual size: 70KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 118KB - Virtual size: 117KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8f326a180beee6f357a1297621b5cdaa

Headers

File Characteristics

PDB Paths

Imports

user32

msvcrt

comctl32

kernel32

gdi32

Exports

Exports

Sections

.text Size: 71KB - Virtual size: 70KB

.data Size: 18KB - Virtual size: 17KB

.rdata Size: 2KB - Virtual size: 69KB

.rsrc Size: 118KB - Virtual size: 117KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 71KB - Virtual size: 70KB

.data
Size: 18KB - Virtual size: 17KB

.rdata
Size: 2KB - Virtual size: 69KB

.rsrc
Size: 118KB - Virtual size: 117KB

.reloc
Size: 2KB - Virtual size: 1KB