68f269c9b5951db86305e4103eb8e98e_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

68f269c9b5951db86305e4103eb8e98e_JaffaCakes118
Size

68KB
MD5

68f269c9b5951db86305e4103eb8e98e
SHA1

5b59bdf92ac48d1e402e0033715e427b899f9975
SHA256

b8d5f1d364f83222776cd7cb5698cd612013d84ac7059aa9968307aa83016c57
SHA512

2a20990575da02f99f0f4b9817db1af4c871a75ba4180b0ca098536c1849b43cdbda56129242fe18f5554d38e994dc1ea2f4bff0adc743dec726e9036af09acc
SSDEEP

768:o/cCvEb9P5Ks38IM+qA5hZD4xXat6LBopI2O7bSESQ:JN/K+8IM+J5hZD4xXat6LBo/Oi9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
68f269c9b5951db86305e4103eb8e98e_JaffaCakes118

Files

68f269c9b5951db86305e4103eb8e98e_JaffaCakes118
.exe windows:5 windows x86 arch:x86

dee19842874e33d328db79f7b9e163d6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\QtSDK\Examples\4.7\widgets\calculator-build-desktop-Qt_4_8_1_for_Desktop_-_MSVC2008__Qt_SDK__Debug\debug\calculator.pdb

Imports

qtguid4

?changeEvent@QLineEdit@@MAEXPAVQEvent@@@Z
?inputMethodEvent@QLineEdit@@MAEXPAVQInputMethodEvent@@@Z
?inputMethodQuery@QLineEdit@@UBE?AVQVariant@@W4InputMethodQuery@Qt@@@Z
?metaObject@QGridLayout@@UBEPBUQMetaObject@@XZ
?qt_metacast@QGridLayout@@UAEPAXPBD@Z
?qt_metacall@QGridLayout@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?childEvent@QLayout@@MAEXPAVQChildEvent@@@Z
?addItem@QGridLayout@@MAEXPAVQLayoutItem@@@Z
?itemAt@QGridLayout@@UBEPAVQLayoutItem@@H@Z
?takeAt@QGridLayout@@UAEPAVQLayoutItem@@H@Z
?indexOf@QLayout@@UBEHPAVQWidget@@@Z
?count@QGridLayout@@UBEHXZ
?sizeHint@QGridLayout@@UBE?AVQSize@@XZ
?minimumSize@QGridLayout@@UBE?AVQSize@@XZ
?maximumSize@QGridLayout@@UBE?AVQSize@@XZ
?expandingDirections@QGridLayout@@UBE?AV?$QFlags@W4Orientation@Qt@@@@XZ
?setGeometry@QGridLayout@@UAEXABVQRect@@@Z
?geometry@QLayout@@UBE?AVQRect@@XZ
?isEmpty@QLayout@@UBE_NXZ
?hasHeightForWidth@QGridLayout@@UBE_NXZ
?heightForWidth@QGridLayout@@UBEHH@Z
??1QFont@@QAE@XZ
?invalidate@QGridLayout@@UAEXXZ
?widget@QLayoutItem@@UAEPAVQWidget@@XZ
?layout@QLayout@@UAEPAV1@XZ
?spacerItem@QLayoutItem@@UAEPAVQSpacerItem@@XZ
??1QLineEdit@@UAE@XZ
??1QGridLayout@@UAE@XZ
?setText@QLineEdit@@QAEXABVQString@@@Z
?clear@QLineEdit@@QAEXXZ
?text@QLineEdit@@QBE?AVQString@@XZ
?text@QAbstractButton@@QBE?AVQString@@XZ
??1QApplication@@UAE@XZ
?exec@QApplication@@SAHXZ
?show@QWidget@@QAEXXZ
??0QApplication@@QAE@AAHPAPADH@Z
?qt_metacast@QToolButton@@UAEPAXPBD@Z
?qt_metacall@QToolButton@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?staticMetaObject@QToolButton@@2UQMetaObject@@B
?qt_metacast@QWidget@@UAEPAXPBD@Z
?qt_metacall@QWidget@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?staticMetaObject@QWidget@@2UQMetaObject@@B
?dragLeaveEvent@QLineEdit@@MAEXPAVQDragLeaveEvent@@@Z
?dragMoveEvent@QLineEdit@@MAEXPAVQDragMoveEvent@@@Z
?dragEnterEvent@QLineEdit@@MAEXPAVQDragEnterEvent@@@Z
?contextMenuEvent@QLineEdit@@MAEXPAVQContextMenuEvent@@@Z
?paintEvent@QLineEdit@@MAEXPAVQPaintEvent@@@Z
?setWindowTitle@QWidget@@QAEXABVQString@@@Z
?focusOutEvent@QLineEdit@@MAEXPAVQFocusEvent@@@Z
?focusInEvent@QLineEdit@@MAEXPAVQFocusEvent@@@Z
?keyPressEvent@QLineEdit@@MAEXPAVQKeyEvent@@@Z
?mouseMoveEvent@QLineEdit@@MAEXPAVQMouseEvent@@@Z
?mouseDoubleClickEvent@QLineEdit@@MAEXPAVQMouseEvent@@@Z
?mouseReleaseEvent@QLineEdit@@MAEXPAVQMouseEvent@@@Z
?mousePressEvent@QLineEdit@@MAEXPAVQMouseEvent@@@Z
?minimumSizeHint@QLineEdit@@UBE?AVQSize@@XZ
?sizeHint@QLineEdit@@UBE?AVQSize@@XZ
?event@QLineEdit@@UAE_NPAVQEvent@@@Z
?qt_metacall@QLineEdit@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?qt_metacast@QLineEdit@@UAEPAXPBD@Z
?metaObject@QLineEdit@@UBEPBUQMetaObject@@XZ
?changeEvent@QWidget@@MAEXPAVQEvent@@@Z
?actionEvent@QWidget@@MAEXPAVQActionEvent@@@Z
?paintEvent@QWidget@@MAEXPAVQPaintEvent@@@Z
?leaveEvent@QWidget@@MAEXPAVQEvent@@@Z
?enterEvent@QWidget@@MAEXPAVQEvent@@@Z
?focusOutEvent@QWidget@@MAEXPAVQFocusEvent@@@Z
?focusInEvent@QWidget@@MAEXPAVQFocusEvent@@@Z
?keyReleaseEvent@QWidget@@MAEXPAVQKeyEvent@@@Z
?keyPressEvent@QWidget@@MAEXPAVQKeyEvent@@@Z
?mouseMoveEvent@QWidget@@MAEXPAVQMouseEvent@@@Z
?mouseReleaseEvent@QWidget@@MAEXPAVQMouseEvent@@@Z
?mousePressEvent@QWidget@@MAEXPAVQMouseEvent@@@Z
?minimumSizeHint@QWidget@@UBE?AVQSize@@XZ
?sizeHint@QWidget@@UBE?AVQSize@@XZ
?event@QWidget@@MAE_NPAVQEvent@@@Z
??0QWidget@@QAE@PAV0@V?$QFlags@W4WindowType@Qt@@@@@Z
??0QLineEdit@@QAE@ABVQString@@PAVQWidget@@@Z
?setReadOnly@QLineEdit@@QAEX_N@Z
??1QWidget@@UAE@XZ
?sizeHint@QToolButton@@UBE?AVQSize@@XZ
?metric@QWidget@@MBEHW4PaintDeviceMetric@QPaintDevice@@@Z
?releaseDC@QWidget@@UBEXPAUHDC__@@@Z
?getDC@QWidget@@UBEPAUHDC__@@XZ
?paintEngine@QWidget@@UBEPAVQPaintEngine@@XZ
?devType@QWidget@@UBEHXZ
?nextCheckState@QToolButton@@MAEXXZ
?checkStateSet@QAbstractButton@@MAEXXZ
?hitButton@QToolButton@@MBE_NABVQPoint@@@Z
?languageChange@QWidget@@MAEXXZ
?windowActivationChange@QWidget@@MAEX_N@Z
?fontChange@QWidget@@MAEXABVQFont@@@Z
?paletteChange@QWidget@@MAEXABVQPalette@@@Z
?enabledChange@QWidget@@MAEX_N@Z
?styleChange@QWidget@@MAEXAAVQStyle@@@Z
?focusNextPrevChild@QWidget@@MAE_N_N@Z
?inputMethodQuery@QWidget@@UBE?AVQVariant@@W4InputMethodQuery@Qt@@@Z
?inputMethodEvent@QWidget@@MAEXPAVQInputMethodEvent@@@Z
?changeEvent@QToolButton@@MAEXPAVQEvent@@@Z
?winEvent@QWidget@@MAE_NPAUtagMSG@@PAJ@Z
?hideEvent@QWidget@@MAEXPAVQHideEvent@@@Z
?showEvent@QWidget@@MAEXPAVQShowEvent@@@Z
?dropEvent@QWidget@@MAEXPAVQDropEvent@@@Z
?dragLeaveEvent@QWidget@@MAEXPAVQDragLeaveEvent@@@Z
?dragMoveEvent@QWidget@@MAEXPAVQDragMoveEvent@@@Z
?dragEnterEvent@QWidget@@MAEXPAVQDragEnterEvent@@@Z
?actionEvent@QToolButton@@MAEXPAVQActionEvent@@@Z
?tabletEvent@QWidget@@MAEXPAVQTabletEvent@@@Z
?contextMenuEvent@QWidget@@MAEXPAVQContextMenuEvent@@@Z
?closeEvent@QWidget@@MAEXPAVQCloseEvent@@@Z
?resizeEvent@QWidget@@MAEXPAVQResizeEvent@@@Z
?moveEvent@QWidget@@MAEXPAVQMoveEvent@@@Z
?paintEvent@QToolButton@@MAEXPAVQPaintEvent@@@Z
?leaveEvent@QToolButton@@MAEXPAVQEvent@@@Z
?enterEvent@QToolButton@@MAEXPAVQEvent@@@Z
?focusOutEvent@QAbstractButton@@MAEXPAVQFocusEvent@@@Z
?focusInEvent@QAbstractButton@@MAEXPAVQFocusEvent@@@Z
?keyReleaseEvent@QAbstractButton@@MAEXPAVQKeyEvent@@@Z
?keyPressEvent@QAbstractButton@@MAEXPAVQKeyEvent@@@Z
?wheelEvent@QWidget@@MAEXPAVQWheelEvent@@@Z
?mouseMoveEvent@QAbstractButton@@MAEXPAVQMouseEvent@@@Z
?mouseDoubleClickEvent@QWidget@@MAEXPAVQMouseEvent@@@Z
?mouseReleaseEvent@QToolButton@@MAEXPAVQMouseEvent@@@Z
?mousePressEvent@QToolButton@@MAEXPAVQMouseEvent@@@Z
?heightForWidth@QWidget@@UBEHH@Z
?minimumSizeHint@QToolButton@@UBE?AVQSize@@XZ
?setVisible@QWidget@@UAEX_N@Z
?timerEvent@QToolButton@@MAEXPAVQTimerEvent@@@Z
?event@QToolButton@@MAE_NPAVQEvent@@@Z
??0QToolButton@@QAE@PAVQWidget@@@Z
?setSizePolicy@QWidget@@QAEXW4Policy@QSizePolicy@@0@Z
?setAlignment@QLineEdit@@QAEXV?$QFlags@W4AlignmentFlag@Qt@@@@@Z
?setMaxLength@QLineEdit@@QAEXH@Z
?font@QWidget@@QBEABVQFont@@XZ
??0QFont@@QAE@ABV0@@Z
?pointSize@QFont@@QBEHXZ
?setPointSize@QFont@@QAEXH@Z
?setFont@QWidget@@QAEXABVQFont@@@Z
??0QGridLayout@@QAE@XZ
?setSizeConstraint@QLayout@@QAEXW4SizeConstraint@1@@Z
?addWidget@QGridLayout@@QAEXPAVQWidget@@HHHHV?$QFlags@W4AlignmentFlag@Qt@@@@@Z
?addWidget@QGridLayout@@QAEXPAVQWidget@@HHV?$QFlags@W4AlignmentFlag@Qt@@@@@Z
?setLayout@QWidget@@QAEXPAVQLayout@@@Z
?dropEvent@QLineEdit@@MAEXPAVQDropEvent@@@Z
?setText@QAbstractButton@@QAEXABVQString@@@Z
?minimumHeightForWidth@QGridLayout@@UBEHH@Z
??1QToolButton@@UAE@XZ

qtcored4

?rwidth@QSize@@QAEAAHXZ
?allocate@QVectorData@@SAPAU1@HH@Z
?qBadAlloc@@YAXXZ
?free@QVectorData@@SAXPAU1@H@Z
??4QBasicAtomicInt@@QAEAAV0@H@Z
?qMemSet@@YAPAXPAXHI@Z
??9QBasicAtomicInt@@QBE_NH@Z
?deref@QBasicAtomicInt@@QAE_NXZ
?fromWCharArray@QString@@SA?AV1@PBGH@Z
?toLocal8Bit@QString@@QBE?AVQByteArray@@XZ
?data@QByteArray@@QAEPADXZ
?qWinMain@@YAXPAUHINSTANCE__@@0PADHAAHAAV?$QVector@PAD@@@Z
??1QByteArray@@QAE@XZ
?qt_assert@@YAXPBD0H@Z
?cast@QMetaObject@@QBEPAVQObject@@PAV2@@Z
?connect@QObject@@SA_NPBV1@PBD01W4ConnectionType@Qt@@@Z
?chop@QString@@QAEXH@Z
??4QString@@QAEAAV0@PBD@Z
?prepend@QString@@QAEAAV1@ABV1@@Z
?remove@QString@@QAEAAV1@HH@Z
?contains@QString@@QBE?AVQBool@@ABV1@W4CaseSensitivity@Qt@@@Z
?isEmpty@QString@@QBE_NXZ
?clear@QString@@QAEXXZ
??4QString@@QAEAAV0@ABV0@@Z
?toDouble@QString@@QBENPA_N@Z
??8QString@@QBE_NABV0@@Z
?number@QString@@SA?AV1@NDH@Z
??0QString@@QAE@ABV0@@Z
??YQString@@QAEAAV0@ABV0@@Z
?sender@QObject@@IBEPAV1@XZ
?toInt@QString@@QBEHPA_NH@Z
??8QString@@QBE_NPBD@Z
?tr@QMetaObject@@QBE?AVQString@@PBD0@Z
?event@QObject@@UAE_NPAVQEvent@@@Z
?timerEvent@QObject@@MAEXPAVQTimerEvent@@@Z
??0QString@@QAE@XZ
??0QString@@QAE@PBD@Z
??1QString@@QAE@XZ
?qFlagLocation@@YAPBDPBD@Z
?number@QString@@SA?AV1@HH@Z
?rheight@QSize@@QAEAAHXZ
?height@QSize@@QBEHXZ
?width@QSize@@QBEHXZ
?disconnectNotify@QObject@@MAEXPBD@Z
?connectNotify@QObject@@MAEXPBD@Z
?customEvent@QObject@@MAEXPAVQEvent@@@Z
?childEvent@QObject@@MAEXPAVQChildEvent@@@Z
?eventFilter@QObject@@UAE_NPAV1@PAVQEvent@@@Z
?reallocate@QVectorData@@SAPAU1@PAU1@HHH@Z

msvcr90d

memcpy
_except_handler4_common
_decode_pointer
_onexit
_lock
__dllonexit
_unlock
_invoke_watson
_controlfp_s
?_type_info_dtor_internal_method@type_info@@QAEXXZ
?terminate@@YAXXZ
_crt_debugger_hook
_initterm_e
_initterm
_CrtDbgReportW
_CrtSetCheckCount
_acmdln
_ismbblead
exit
_cexit
_XcptFilter
_exit
__getmainargs
_amsg_exit
__set_app_type
_encode_pointer
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_configthreadlocale
strcmp
sqrt
pow
??2@YAPAXI@Z
??3@YAXPAX@Z
__CxxFrameHandler3
_CxxThrowException

kernel32

GetCommandLineW
Sleep
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
GetStartupInfoA
InterlockedCompareExchange
InterlockedExchange

Sections

.text
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 968B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

dee19842874e33d328db79f7b9e163d6

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

qtguid4

qtcored4

msvcr90d

kernel32

Sections

.text Size: 35KB - Virtual size: 35KB

.rdata Size: 13KB - Virtual size: 12KB

.data Size: 1024B - Virtual size: 1KB

.idata Size: 13KB - Virtual size: 13KB

.rsrc Size: 1024B - Virtual size: 968B

.reloc Size: 3KB - Virtual size: 3KB

.text
Size: 35KB - Virtual size: 35KB

.rdata
Size: 13KB - Virtual size: 12KB

.data
Size: 1024B - Virtual size: 1KB

.idata
Size: 13KB - Virtual size: 13KB

.rsrc
Size: 1024B - Virtual size: 968B

.reloc
Size: 3KB - Virtual size: 3KB