67be07c2566b1d45a5f21a76b03b0a3f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

67be07c2566b1d45a5f21a76b03b0a3f_JaffaCakes118
Size

142KB
MD5

67be07c2566b1d45a5f21a76b03b0a3f
SHA1

a5350edc124cb5fdea13057716affd2fd99f4df3
SHA256

d3e99cd940602100d36dc196cb46ec7370ff6fb6d711542f18b9e66579ec4c58
SHA512

55bd7e007d0e61be2ff0af09c863a2fb15c392ea0204952f92709d47d4217b37dd24834525f26eb46dfdcb9cc515acf93be31f677a0f58cceedb18071d6c98f5
SSDEEP

3072:DW+TKpQOPeKUgeMoCRUEU480c9mL7NXAwCJmO0SymLIk3xp:D/cMmoYUhzWRXAwCJmOckh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
67be07c2566b1d45a5f21a76b03b0a3f_JaffaCakes118

Files

67be07c2566b1d45a5f21a76b03b0a3f_JaffaCakes118
.exe windows:5 windows x86 arch:x86

21ac3397651a910ee492dc1a15a20816

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

H:\qffcyxbjuAc\NmoNxJXcpsRn\cNYqmkcUTt\DoyvahFyVAD.pdb

Imports

user32

GrayStringW
DefFrameProcA
CreateMenu
GetSubMenu
DialogBoxParamA
GetClassLongW
CreateCaret
DeleteMenu
GetDlgItemTextA
MonitorFromRect
SetWindowPlacement
EnumThreadWindows
ModifyMenuW
InsertMenuA
CreateAcceleratorTableW
GetUserObjectInformationW
ReleaseDC
CreateWindowExW
GetMenuState
LoadIconA
WaitForInputIdle
FindWindowA
GetDialogBaseUnits
InternalGetWindowText
SetWindowPos
GetForegroundWindow
IsCharAlphaW
CreateDialogParamA
CharUpperBuffW
GetScrollPos
IsCharAlphaA
GetWindowDC
IsIconic
GetDlgItemTextW
DrawMenuBar
SetScrollPos
TrackPopupMenu
CharUpperW
IsWindow
GetWindowTextW
ActivateKeyboardLayout
DispatchMessageA
GetMenuStringW
LoadImageA
ShowWindow
TranslateMessage
IsZoomed
GetWindowRect
IsDialogMessageA
CallWindowProcW
DialogBoxParamW
LookupIconIdFromDirectory
TrackPopupMenuEx
IntersectRect
GetWindow
SetMenuItemBitmaps
SetWindowTextA
CharToOemBuffA
MessageBoxW
CopyAcceleratorTableW
OpenDesktopW
PostMessageA
DefDlgProcA
DrawStateA
GetWindowLongW
ToUnicodeEx
GetMessageA
CharNextW
IsWindowEnabled
wsprintfA
SetMenu
MapVirtualKeyExW
CreateIconFromResource
SetWindowTextW
GetKeyboardLayout
wsprintfW
DrawAnimatedRects
CreatePopupMenu
DestroyCaret
GetDlgItem
FindWindowExW
DefFrameProcW
GetClientRect
DrawTextW
TranslateAcceleratorA
SendMessageTimeoutW
ShowWindowAsync
SetCursor
MoveWindow
GetWindowLongA
ExitWindowsEx
GetMessagePos
CheckRadioButton
GetClassInfoA
DeferWindowPos
SendMessageA
IsDialogMessageW
SetCaretPos
VkKeyScanW
GetMenu
MapDialogRect
GetMenuItemCount
SendInput
MessageBoxA
GetMenuCheckMarkDimensions
MapWindowPoints
GetKeyboardType
PostThreadMessageW
GetParent
CharLowerA
GetScrollRange
IsRectEmpty
InSendMessage
LoadStringW
CloseDesktop
BeginDeferWindowPos
SystemParametersInfoW
SetDlgItemTextA
GetDlgCtrlID
OemToCharBuffA
GetActiveWindow
GetSysColorBrush
GetDC

shlwapi

UrlGetPartW

msvcrt

strtoul
_controlfp
wcslen
wcschr
wcscmp
toupper
getc
wcstod
remove
strrchr
wcstol
strspn
mbtowc
_vsnwprintf
setlocale
gets
puts
free
strerror
fwrite
sprintf
mbstowcs
__set_app_type
__p__fmode
__p__commode
putc
tolower
swscanf
rand
_amsg_exit
sscanf
setvbuf
_initterm
islower
_ismbblead
isalnum
_XcptFilter
perror
_exit
_cexit
strchr
__setusermatherr
wcscoll
realloc
fputc
__getmainargs
wcscspn
fputs

comdlg32

GetOpenFileNameA
GetSaveFileNameW
ChooseColorW
FindTextW
GetOpenFileNameW

kernel32

GetFullPathNameW
GetFileAttributesW
SetMailslotInfo
VirtualQuery
lstrcmpiA
CreateWaitableTimerA
CompareStringA
UnmapViewOfFile
PulseEvent
WaitCommEvent
DefineDosDeviceW
SetSystemTimeAdjustment
GetTickCount
DuplicateHandle
GetAtomNameA
InitializeCriticalSection
GetSystemDefaultLangID
GetModuleFileNameA
IsValidLanguageGroup
lstrlenW
GetThreadLocale
EnterCriticalSection
IsBadWritePtr
GetShortPathNameA
GetModuleHandleW
GetFileInformationByHandle
EnumResourceNamesA
CreateFileA
CreateMailslotW
GetCommModemStatus
GetStringTypeExW
GlobalMemoryStatus
GetWindowsDirectoryA
GetSystemWindowsDirectoryW
SetThreadAffinityMask
SetFileApisToOEM
GetCommConfig
CancelWaitableTimer
GetCurrentThread
CompareStringW
ResetEvent
GetModuleHandleA
OpenSemaphoreW
ClearCommError
GlobalFree
FindNextFileW
lstrcatW
EnumResourceNamesW
SetFileAttributesW
GetVersionExA
DeviceIoControl
FindClose
FindResourceW
GetSystemDefaultUILanguage
MoveFileW
SetFilePointer
GetFileTime

Exports

Exports

?CreatDlgItemList@@YGKPBDDPAX:O

Sections

.text
Size: 23KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.exp
Size: 512B - Virtual size: 121B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.edit
Size: 1KB - Virtual size: 122KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ixport
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sims
Size: 1024B - Virtual size: 584B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ndat
Size: 1024B - Virtual size: 704B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 105KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

21ac3397651a910ee492dc1a15a20816

Headers

File Characteristics

PDB Paths

Imports

user32

shlwapi

msvcrt

comdlg32

kernel32

Exports

Exports

Sections

.text Size: 23KB - Virtual size: 22KB

.exp Size: 512B - Virtual size: 121B

.edit Size: 1KB - Virtual size: 122KB

.data Size: 2KB - Virtual size: 2KB

.ixport Size: 6KB - Virtual size: 6KB

.sims Size: 1024B - Virtual size: 584B

.ndat Size: 1024B - Virtual size: 704B

.rsrc Size: 105KB - Virtual size: 105KB

.text
Size: 23KB - Virtual size: 22KB

.exp
Size: 512B - Virtual size: 121B

.edit
Size: 1KB - Virtual size: 122KB

.data
Size: 2KB - Virtual size: 2KB

.ixport
Size: 6KB - Virtual size: 6KB

.sims
Size: 1024B - Virtual size: 584B

.ndat
Size: 1024B - Virtual size: 704B

.rsrc
Size: 105KB - Virtual size: 105KB