67349d197720bd6848ff40ceab3908ce_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

67349d197720bd6848ff40ceab3908ce_JaffaCakes118
Size

137KB
MD5

67349d197720bd6848ff40ceab3908ce
SHA1

7fc51d10b9fbe8f08d68b663b559834b47eae382
SHA256

d6d5e43f6b01ccbff856b42651288543104636795e56357cbdd09ae35273c6d3
SHA512

5a9a04495114d937d6ecf7a4fc66ba78bdb7ab91d068c4753ad32c58ef88a2bbfad732dc302a83b53c9bd3cbb0d8af1a30aedc41a53d7f6c5e9805a95b786c3a
SSDEEP

3072:5iL851ME2b1tgxHg/TDXbpyWLTVqT+X2YWjhIPt+pt3IlKSsUjnb:5p5eb1sHgLT0WfVY+mYp8t3ZSsu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
67349d197720bd6848ff40ceab3908ce_JaffaCakes118

Files

67349d197720bd6848ff40ceab3908ce_JaffaCakes118
.exe windows:5 windows x86 arch:x86

a96fe064186e66a0fcc4e69dc3b4d399

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

I:\HFdeCasvlviba\sXnpgJusltiuUj\pvcvirK.pdb

Imports

shlwapi

StrToIntW

user32

DialogBoxParamA
GetWindowRect
wvsprintfA
BeginPaint
IsDialogMessageA
MapVirtualKeyExW
CheckMenuRadioItem
GetSysColor
LoadBitmapA
SetTimer
SetWindowPos
KillTimer
PostThreadMessageA
ChangeMenuW
SetWindowLongA
EnumWindows
CreateDialogParamA
InvertRect
MessageBoxW
GetMonitorInfoW
GetShellWindow
GetWindowLongA
GetKeyboardLayoutList
GetClassLongA
GetUserObjectInformationW
GetForegroundWindow
SendNotifyMessageW
SetCursorPos
IsWindowVisible
MapVirtualKeyW
CharUpperBuffA
IsDialogMessageW
DestroyAcceleratorTable
CloseDesktop
IsRectEmpty
RegisterWindowMessageA
DialogBoxParamW
GetNextDlgTabItem
LoadImageW
GetCursorPos
CharToOemW
DestroyCursor
GetClassInfoExA
MessageBoxExA
DrawAnimatedRects
LoadStringW
LoadStringA
DrawIcon
DispatchMessageW
LoadMenuA
IsCharUpperA
AdjustWindowRect
InvalidateRect
DrawFocusRect
SetCursor
GetNextDlgGroupItem
InflateRect
ShowCursor
LoadMenuW
ClipCursor
GetUpdateRect
CheckDlgButton
CreateIconFromResource
GetMenuItemRect
SetScrollPos
AttachThreadInput
PostQuitMessage
GetDlgItemTextW
ScrollWindow
CharNextW
GetMessageW
GetClientRect
wsprintfW
FindWindowExW
IsMenu
SetWindowTextW
EnableScrollBar
GetUserObjectInformationA
InvalidateRgn
GetSystemMenu
IsCharAlphaNumericW
GetMenuItemID
GetDC
ReleaseDC
CharLowerW
CopyAcceleratorTableW
GetSubMenu
GetKeyboardLayout
SetDlgItemTextW
OpenDesktopW
DispatchMessageA
SendDlgItemMessageA
LockWindowUpdate
CharToOemBuffA
EnumThreadWindows
SetMenuDefaultItem
EnableWindow
LoadAcceleratorsW
GetParent
ChildWindowFromPoint
DrawTextExW
DialogBoxIndirectParamW
InsertMenuA
PostMessageW
GetDlgCtrlID
GetWindowTextLengthW
SetMenu
InsertMenuW
TabbedTextOutW
WaitForInputIdle
IsWindowUnicode
GetClassInfoW
RegisterClassExW
ShowOwnedPopups
TranslateAcceleratorW
MonitorFromPoint
GetCaretPos
TrackPopupMenuEx
LoadImageA
GetMessagePos

comdlg32

ChooseFontW
PageSetupDlgW
FindTextW
ChooseColorW

msvcrt

getenv
isdigit
strspn
_controlfp
__set_app_type
wcscpy
__p__fmode
__p__commode
sscanf
rand
_amsg_exit
_initterm
wcstombs
_ismbblead
_XcptFilter
fseek
iswdigit
floor
strrchr
wcstol
gmtime
wcslen
wcschr
strpbrk
iswctype
_exit
srand
clock
localtime
fprintf
strcoll
sprintf
atol
swscanf
_cexit
free
wcsncmp
printf
wcscspn
towupper
__setusermatherr
strtol
__getmainargs
toupper
setlocale
wcstod
mbstowcs

kernel32

TlsGetValue
FileTimeToSystemTime
GetCommTimeouts
SetPriorityClass
lstrcpyW
SizeofResource
ResetEvent
HeapWalk
GetTempFileNameA
LocalSize
IsDBCSLeadByteEx
SetSystemTime
IsValidLanguageGroup
IsDBCSLeadByte
WaitForSingleObjectEx
HeapCreate
lstrcpyA
GetAtomNameW
GetLocaleInfoW
GlobalFree
LCMapStringA
lstrcmpA
GlobalGetAtomNameW
GetComputerNameW
FindCloseChangeNotification
GetFileAttributesExA
SetFileApisToOEM
CreateWaitableTimerW
GetModuleFileNameA
GetAtomNameA
GlobalAlloc
GetTimeZoneInformation
WinExec
SetMailslotInfo
UnmapViewOfFile
GetSystemTimeAsFileTime
GlobalAddAtomA
lstrlenA
GetDateFormatW
GetFullPathNameW
CreateFileMappingW
LocalReAlloc
FlushViewOfFile
GetFileType
UnhandledExceptionFilter
GlobalAddAtomW
SetCommState
SetUnhandledExceptionFilter
lstrcatW
CopyFileW
GetShortPathNameA
GetFileAttributesA
PulseEvent
GetSystemTimeAdjustment
LoadLibraryA
GlobalCompact

Exports

Exports

?GetShiftAltInfo@@YGK_KHE:O

Sections

.text
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bit
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.insec
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.inmin
Size: 512B - Virtual size: 86B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.wall
Size: 512B - Virtual size: 126KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.zdata
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 104KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a96fe064186e66a0fcc4e69dc3b4d399

Headers

File Characteristics

PDB Paths

Imports

shlwapi

user32

comdlg32

msvcrt

kernel32

Exports

Exports

Sections

.text Size: 7KB - Virtual size: 7KB

.bit Size: 1KB - Virtual size: 1KB

.insec Size: 6KB - Virtual size: 5KB

.inmin Size: 512B - Virtual size: 86B

.wall Size: 512B - Virtual size: 126KB

.zdata Size: 13KB - Virtual size: 12KB

.data Size: 1KB - Virtual size: 1KB

.rsrc Size: 104KB - Virtual size: 104KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 7KB - Virtual size: 7KB

.bit
Size: 1KB - Virtual size: 1KB

.insec
Size: 6KB - Virtual size: 5KB

.inmin
Size: 512B - Virtual size: 86B

.wall
Size: 512B - Virtual size: 126KB

.zdata
Size: 13KB - Virtual size: 12KB

.data
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 104KB - Virtual size: 104KB

.reloc
Size: 1KB - Virtual size: 1KB