70e58d213df35fc646838139e7ee924e_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

70e58d213df35fc646838139e7ee924e_JaffaCakes118
Size

744KB
MD5

70e58d213df35fc646838139e7ee924e
SHA1

1bcc30ce5a84893373bbd2c0f82f73395eb88464
SHA256

c633d160a77db1c584b6308be3edb0bdd4b589de047c5d3b477090e01bd6864e
SHA512

3b367b923a394fe5a09c21356f733b0e219b99ce39d61ed24365a2e4f3737fbccb11077eb9328677766caff1beb2b6d5c8abbd0ae7e578513723e267ad212744
SSDEEP

12288:PsRNs03wdwfpGhjXbdvzgQbOS4x1Vk//F9z+MZYtu2jEZuD8NKaWLpdN030+CO:2n3uGp6rJvzgiOfGFAiU8NipdN+1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
70e58d213df35fc646838139e7ee924e_JaffaCakes118

Files

70e58d213df35fc646838139e7ee924e_JaffaCakes118
.dll windows:5 windows x86 arch:x86

feb0c314d581469f36b40b093fb7ffb1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

P:\xnzpkcmHc\nryispptvdmc\QrtKdxfxM\uuswiRyXdtos.pdb

Imports

shlwapi

StrChrIA

kernel32

SystemTimeToFileTime
ConnectNamedPipe
VirtualAlloc
GetUserDefaultLCID
GetCommConfig
GlobalFree
GetModuleHandleA
FindResourceA
OpenSemaphoreW
HeapLock
GetModuleFileNameW
DeleteFileW
FindFirstFileW
HeapAlloc
FileTimeToSystemTime
CreateSemaphoreW
GetShortPathNameA
CreateWaitableTimerW
SetFileApisToOEM
IsBadStringPtrW
SleepEx
GetFileTime
VerSetConditionMask
EnumResourceNamesA
CreateEventW
GetFileSize
SetThreadLocale
GetStringTypeExW
UnmapViewOfFile
WinExec
LockResource
FindResourceExW
lstrcpyA
GetSystemWindowsDirectoryW
LocalAlloc
TlsFree
GetFileType
GetSystemDefaultLangID
VerifyVersionInfoW
GetSystemDirectoryA
GlobalMemoryStatusEx
GetCurrentThreadId
DeleteCriticalSection
GlobalAddAtomA
GetCommState
GetVersionExW
GetOverlappedResult
GetACP
GetComputerNameExA
GetThreadTimes
lstrcpynA
EnumResourceLanguagesA
ClearCommError
GetWindowsDirectoryW
SizeofResource
LoadLibraryA
SetEvent

comdlg32

PrintDlgExW
FindTextW
PageSetupDlgW
CommDlgExtendedError
GetSaveFileNameW

msvcrt

_controlfp
towlower
strerror
wcstombs
__set_app_type
__p__fmode
wcstol
wcsncmp
strpbrk
free
swprintf
wcsstr
isupper
mbtowc
putchar
atol
calloc
fclose
wcspbrk
__p__commode
_amsg_exit
ungetc
_initterm
srand
vsprintf
wcstok
isprint
towupper
_acmdln
exit
wcscat
strchr
strcpy
isalpha
islower
_ismbblead
wcsrchr
_XcptFilter
strspn
_exit
clock
_cexit
gmtime
__setusermatherr
__getmainargs
remove
strcspn
gets
putc

user32

CharToOemW
LoadBitmapA
CreateMenu
CreatePopupMenu
MessageBoxA
SetRect
GetKeyboardLayoutNameW
SetWindowRgn
SetWindowLongW
EnumThreadWindows
IsChild
VkKeyScanW
GetKeyboardType
CreateCaret
MapVirtualKeyExW
GetMenuStringW
GetMenuCheckMarkDimensions
GetUserObjectInformationA
DialogBoxParamW
DefDlgProcA
EqualRect
CheckMenuRadioItem
PostMessageA
AttachThreadInput
GetWindowTextW
IsZoomed
RemovePropW
KillTimer
OemToCharBuffA
BeginPaint
GetMenuItemID
SetDlgItemInt
ActivateKeyboardLayout
GetMessageTime
GetDlgItemTextA
CallWindowProcW
DrawEdge
RegisterHotKey
IntersectRect
IsMenu
MapWindowPoints
DialogBoxIndirectParamW
SetWindowTextW
MapVirtualKeyA
GetAsyncKeyState
GetClassInfoA
InsertMenuW
MoveWindow
FrameRect
SetActiveWindow
ShowCaret
GetForegroundWindow
SetForegroundWindow
GetCursorPos
CreateDialogParamW
IsWindow
wvsprintfA
TrackPopupMenuEx
GetDlgItemTextW
GetSystemMenu
FindWindowA
GetMessagePos
GetUpdateRgn
SetMenuDefaultItem
ClientToScreen
GetClassInfoExW
CopyImage
CreateWindowExW
MessageBoxExW
WaitForInputIdle
TrackPopupMenu
GetWindowRect
CreateAcceleratorTableW
CreateWindowExA
SetMenuItemBitmaps
CopyRect
TranslateMessage
GetTopWindow
CharToOemBuffA
GetLastActivePopup
GetClassLongW
GetMenu
ShowOwnedPopups
GetKeyboardLayout
SendMessageW
DeferWindowPos
SetScrollPos
CharNextExA
AppendMenuA
SetMenu
LoadCursorW
CharUpperBuffA
GetWindowPlacement
CreateIconFromResource
LoadCursorA
PeekMessageA
GetMenuState
GetWindowTextLengthW
DrawStateW
TileWindows
WindowFromPoint
GetDialogBaseUnits
ArrangeIconicWindows
InsertMenuItemW
SetSysColors
GetSubMenu
ReleaseDC
SendMessageTimeoutW
InflateRect
RedrawWindow
LockWindowUpdate
GetWindowTextA
SetDlgItemTextW
DestroyWindow
SetCursor
SetWindowPos
EnableScrollBar
CloseDesktop
SendDlgItemMessageA
GetFocus
DrawFrameControl

gdi32

SetBrushOrgEx
CreateDIBitmap
SetDIBColorTable
PtInRegion
IntersectClipRect
CombineRgn
RealizePalette
ExtFloodFill
Polyline
GetTextFaceW
FillRgn
CreatePalette
Escape
SetROP2
GetPixel
BeginPath
GetObjectW
GetTextCharsetInfo
GetNearestPaletteIndex
SetDIBitsToDevice
StartPage
SetTextColor
SetLayout
GetLayout
GetClipBox
EnumFontsW
SelectObject
SetWindowExtEx
StretchBlt
GetTextMetricsA
RoundRect
GetDIBits
GetObjectA
CreateBitmap
GetBitmapBits
SetRectRgn
CreatePolygonRgn
SetDIBits
PatBlt
SelectClipRgn
WidenPath
GetWindowOrgEx
GetStockObject
EndDoc
SetAbortProc
GetNearestColor
GetTextExtentExPointW
GetSystemPaletteUse
PtVisible
LPtoDP
ScaleViewportExtEx

Exports

Exports

showtitle
?ExecuteLoaderTrayXBwyGD@@YGKGHE@Z
?FindState@@YGXJ~U
?GlobalDeviceW@@YGHG~U
?InstallClassNew@@YGJPAJFH~U

Sections

.text
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ticx
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zdata
Size: 512B - Virtual size: 256B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 1.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 710KB - Virtual size: 709KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

feb0c314d581469f36b40b093fb7ffb1

Headers

File Characteristics

PDB Paths

Imports

shlwapi

kernel32

comdlg32

msvcrt

user32

gdi32

Exports

Exports

Sections

.text Size: 21KB - Virtual size: 20KB

.ticx Size: 6KB - Virtual size: 6KB

.zdata Size: 512B - Virtual size: 256B

.data Size: 3KB - Virtual size: 1.3MB

.rsrc Size: 710KB - Virtual size: 709KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 21KB - Virtual size: 20KB

.ticx
Size: 6KB - Virtual size: 6KB

.zdata
Size: 512B - Virtual size: 256B

.data
Size: 3KB - Virtual size: 1.3MB

.rsrc
Size: 710KB - Virtual size: 709KB

.reloc
Size: 2KB - Virtual size: 1KB