6a3ece6a1568be73cf1f91074c992b2c_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

6a3ece6a1568be73cf1f91074c992b2c_JaffaCakes118
Size

148KB
MD5

6a3ece6a1568be73cf1f91074c992b2c
SHA1

2d762e1ad6f764c9b4a26491e05ceceb2dcc1bd9
SHA256

bb1edf4824b4a58546fb8e269146cfaaeb93d7d389e7326a005a43f27cc92ae0
SHA512

a13630f259efc0b370cb0d5983b74b554acddb4fa656c516a7540e4393d2aa6cba5b12ac17fa59a8046e1cb619a02a1909fab118600af66d101c6200cc81faef
SSDEEP

3072:uMi7ysskwi1OXdeYZc6oiTmZsYNRrW4T5gT/MIvZO:RsskEXdHZpmZ7TT5g7I

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6a3ece6a1568be73cf1f91074c992b2c_JaffaCakes118

Files

6a3ece6a1568be73cf1f91074c992b2c_JaffaCakes118
.exe windows:5 windows x86 arch:x86

b3d8be0c009196a4627bc0b568aca4b4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

E:\LXBqAqFMvQiu\ejdQmMbD\xuAhurkhcoz.pdb

Imports

comctl32

ImageList_AddMasked
ImageList_GetIconSize
CreatePropertySheetPageW
ImageList_Write
ImageList_GetImageCount
PropertySheetA

shlwapi

StrChrIA

gdi32

GetObjectA
RectVisible
StretchDIBits
ExtTextOutA
SetDIBits
UnrealizeObject
DPtoLP
SetViewportExtEx
Polyline
GetBitmapBits
GetROP2
BeginPath
CreateBrushIndirect
SetBkMode
SelectClipRgn
SetBkColor
StartDocW
CreateDiscardableBitmap
CreatePolygonRgn
TranslateCharsetInfo
PatBlt
LPtoDP
GetTextFaceW
CreateRoundRectRgn
CreateICW
RoundRect
CreateDIBSection
CreateFontIndirectW
TextOutA
MoveToEx
PolyBezier
GetTextExtentPoint32A
GetTextMetricsW
SetDIBitsToDevice
EndPage
IntersectClipRect
SetDIBColorTable
SetPaletteEntries
CreateRectRgn
GetCharWidth32W
CombineRgn
Ellipse
WidenPath
RestoreDC
SaveDC
PtVisible
SetAbortProc
CreateCompatibleBitmap

kernel32

GetDateFormatA
GetStdHandle
IsValidLanguageGroup
ClearCommBreak
GlobalCompact
LoadLibraryA
lstrcpyA
UnhandledExceptionFilter
GlobalMemoryStatus
lstrlenA
GetLocalTime
LockResource
ResetEvent
GlobalLock
RaiseException
FormatMessageA
SetFilePointer
HeapAlloc
EscapeCommFunction
GetOEMCP
CreateFileA
SetCommBreak
AddAtomA
GlobalGetAtomNameW
GetWindowsDirectoryA
EnumSystemLocalesA
FindFirstFileW
GetFileAttributesExA
GetCommModemStatus
GetSystemDirectoryW
FoldStringW
FileTimeToSystemTime
lstrcpyW
GetSystemDirectoryA
GetModuleHandleA
LoadLibraryW
CreateEventW
SearchPathA
DeviceIoControl
GetSystemTimeAsFileTime
GlobalSize
RegisterWaitForSingleObject
FindResourceExW
VerifyVersionInfoW
GetLocaleInfoW
GetFileSize
GetModuleFileNameW
GlobalFindAtomW
lstrcmpA
UnlockFile
GetFullPathNameA
SetSystemTime
GetFileType

user32

IsWindowVisible
IsDialogMessageW
DrawIconEx
SetRectEmpty
GetMessageA
IsDialogMessageA
GetMenuItemInfoW
UnloadKeyboardLayout
MonitorFromPoint
GetMenuItemCount
GetMessageTime
WaitForInputIdle
LoadBitmapA
CreateIconIndirect
ReleaseDC
OffsetRect
CheckRadioButton
mouse_event
ChangeMenuW
GetWindowTextW
SetUserObjectInformationW
TranslateMessage
SetClassLongW
SetParent
SetScrollPos
CreateDialogParamA
SendDlgItemMessageW
GetWindowDC
DrawFocusRect
SetTimer
GetDialogBaseUnits
MessageBoxA
LoadAcceleratorsA
BeginDeferWindowPos
MessageBoxW
TileWindows
SendMessageTimeoutA
TrackPopupMenuEx
EndPaint
LoadAcceleratorsW
IsCharLowerA
GetSysColorBrush
GetDlgItem
GetSysColor
EnableScrollBar
CharToOemA
CreateWindowExA
SetForegroundWindow
CharUpperA
DrawTextExW
IsCharUpperA
RegisterClassExW
ValidateRect
EnableWindow
DialogBoxIndirectParamW
PostQuitMessage
MessageBoxExA
AdjustWindowRect
GetClassNameW
SwitchToThisWindow
OpenDesktopW
DrawAnimatedRects
CharUpperBuffA
GetClassInfoW
LoadCursorW
SetCursor
DeferWindowPos
SetCaretPos
GetKeyboardLayoutList
CallWindowProcA
GetCursorPos
CharLowerW
DefWindowProcA
SendMessageW
GetScrollRange
CloseDesktop
AdjustWindowRectEx
GetMessageW
DrawEdge
IsChild
keybd_event
CheckMenuItem
DestroyMenu
GrayStringW
ToUnicodeEx
FrameRect
GetDlgItemTextA
TranslateAcceleratorA
CreateDialogParamW
GetDlgCtrlID
MapDialogRect
OemToCharA
GetWindow
ModifyMenuW
ShowWindowAsync
MessageBoxExW
DialogBoxParamA
GetDC
BringWindowToTop
ScrollWindowEx
RedrawWindow
DestroyIcon
SetScrollInfo
CallWindowProcW
IsCharAlphaW
GetScrollInfo
GetDCEx
GetWindowPlacement
DrawMenuBar
CreateDialogIndirectParamW
PeekMessageA
RegisterClassExA
EnumChildWindows
OpenInputDesktop
IsMenu
IsWindow
GetMenu
IsZoomed

msvcrt

wcstod
floor
strchr
_controlfp
__set_app_type
setlocale
fflush
wcstol
__p__fmode
__p__commode
bsearch
_amsg_exit
_initterm
sprintf
toupper
_acmdln
time
strspn
atol
wcscmp
exit
strpbrk
strncpy
strrchr
mktime
wcslen
_ismbblead
_XcptFilter
srand
_exit
strcpy
fread
strtok
wcsstr
isalpha
getenv
_cexit
ftell
vsprintf
mbstowcs
__setusermatherr
wcstok
gmtime
__getmainargs
puts
isalnum
swscanf
isupper
rand

comdlg32

GetFileTitleW
PrintDlgExW
ReplaceTextW
ChooseColorW
PageSetupDlgW

Exports

Exports

?GetTimerExW%%DFXPAJDPAHPA_N~U
?PutPointerA%%DFGPAKJJH~U
?ValidateMediaTypeExW%%DFDPAK~U
?SetTimeEx%%DFEMPAGN~U
?HideScreenExA%%DFIKFPAE~U
?SetListItem%%DFDPAK~U
?AddProcessOld%%DFPAXPAHDPAI~U
?FormatMonitorW%%DFH_NHII~U
?GenerateMutexEx%%DFNNPAMKPAG~U
?FindVersionOld%%DFDKMN~U
?ExecuteLoaderTrayXBwyGD@@YGKGHE@Z
?CallRect%%DFPAHPAK~U
?IncrementHeightA%%DFKNDMD~U
?GetHeaderExW%%DFXDF_NJ~U
?InsertKeyboardOriginal%%DFPAXIJPAMM~U
?GenerateTaskExW%%DFMPAK~U
?IsMediaTypeW%%DFXGF~U
?InstallMediaTypeW%%DFDPADPAK~U
?KeyNameEx%%DFPAGGJ~U
?CallProcessOriginal%%DFMPAGD~U
?CrtAnchorNew%%DFPAMFPAKPAE~U
?InstallWidthExA%%DFPA_NHPAFPA_N~U
?GenerateConfigNew%%DFMMPAK~U
?CallModuleOriginal%%DFJMPAJ~U
?SendWidthW%%DFFE~U
?IsValidTaskExA%%DFPADFPAIIK~U
?RemoveStringOld%%DFFIPAFKPAM~U
?GlobalAnchorEx%%DFPADPANPAK~U
?RtlDialogNew%%DFPAXM~U
?IncrementMutantW%%DFPAFEFEPAG~U
?InsertPointerExA%%DFIHMG~U
?CrtNameExA%%DFXINK~U
?SetAnchorNew%%DFGD~U
?GlobalOptionOriginal%%DFPAX_NPAJIE~U

Sections

.text
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ticx
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zdata
Size: 1024B - Virtual size: 756B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 126KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 112KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b3d8be0c009196a4627bc0b568aca4b4

Headers

File Characteristics

PDB Paths

Imports

comctl32

shlwapi

gdi32

kernel32

user32

msvcrt

comdlg32

Exports

Exports

Sections

.text Size: 21KB - Virtual size: 20KB

.ticx Size: 7KB - Virtual size: 7KB

.zdata Size: 1024B - Virtual size: 756B

.data Size: 3KB - Virtual size: 126KB

.rsrc Size: 112KB - Virtual size: 111KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 21KB - Virtual size: 20KB

.ticx
Size: 7KB - Virtual size: 7KB

.zdata
Size: 1024B - Virtual size: 756B

.data
Size: 3KB - Virtual size: 126KB

.rsrc
Size: 112KB - Virtual size: 111KB

.reloc
Size: 2KB - Virtual size: 1KB