7144cd37616f7f4e9f677f38f5fc62d3_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

7144cd37616f7f4e9f677f38f5fc62d3_JaffaCakes118
Size

220KB
MD5

7144cd37616f7f4e9f677f38f5fc62d3
SHA1

9c0b2617762f45bb5361c4ba51da64fbcb964547
SHA256

4ba8672b38c02a7102dbd4bd14c0bdbeea7a45872bbfcd796df7d577506270c0
SHA512

3b5daa7679b547d47bb51c4a36689f9b2dad478acc3482cc6247836c42be3dc4023669cac41724e732df109a15864831c99e1067cf9fa0721ffbd1a6252e6d7b
SSDEEP

6144:J4D9Yvy7DAM4CNjLldRPDqCcxGOD4FOKoJm:J4BdFHNXl7DXcxGO0FOK3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7144cd37616f7f4e9f677f38f5fc62d3_JaffaCakes118

Files

7144cd37616f7f4e9f677f38f5fc62d3_JaffaCakes118
.exe windows:5 windows x86 arch:x86

555611158ea6ef64717d002ea8877300

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

G:\GtumnRHSi\Nnedmtmj\dkthkGtmrZfvmC\Mlkupsl\LFlEaOaQuDd.pdb

Imports

psapi

GetProcessImageFileNameW

user32

CopyRect
SwitchToThisWindow
IsCharAlphaW
CreateCaret
EqualRect
DispatchMessageW
EnumThreadWindows
LoadMenuW
AdjustWindowRectEx
InvalidateRgn
DestroyWindow
GetClassLongW
GetMonitorInfoW
GetDC
CreateMenu
SetWindowTextW
CharLowerW
FindWindowExW
SetMenuItemInfoW
wsprintfW
MapVirtualKeyExW
GetKeyState
InsertMenuW
SetScrollPos
GetSystemMenu
SendMessageTimeoutA
GetMenuItemCount
ArrangeIconicWindows
SetSysColors
GetShellWindow
LockWindowUpdate
SetWindowRgn
BringWindowToTop
GetWindowRect
CallWindowProcA
InternalGetWindowText
CascadeWindows
GetMessagePos
GetKeyboardLayoutList
LoadIconW
SetActiveWindow
LoadAcceleratorsW
IsZoomed
wsprintfA
SetWindowPos
GetMenuStringA
CharToOemA
DrawStateA
GetCaretPos
FrameRect
RemovePropW
DrawIconEx
SetDlgItemTextA
RegisterClassExW
CreateAcceleratorTableW
LoadImageW
SetClassLongW
InSendMessage
GetWindowDC
IsChild
RegisterWindowMessageW
SetLastErrorEx
GetIconInfo
mouse_event
RegisterClassW
WaitForInputIdle
GetKeyNameTextW
PostQuitMessage
IsDlgButtonChecked
MapVirtualKeyW
IsWindowEnabled
GetWindowTextA
SendDlgItemMessageW
SetWindowLongW
LoadImageA
EndPaint
ClipCursor
LoadBitmapW
PostThreadMessageA
DefWindowProcW
UnloadKeyboardLayout
ToUnicodeEx
LoadStringW
SetCaretPos
IsWindow
TrackPopupMenuEx
GetDlgItemTextW
PeekMessageW
GetParent
DrawFrameControl
CreateIconIndirect
GetDialogBaseUnits
RegisterClassA
DestroyAcceleratorTable
DefFrameProcA
DefWindowProcA
IsWindowVisible
CharToOemW
DeleteMenu
GetDlgItem
GetMessageExtraInfo
LoadBitmapA
RegisterWindowMessageA
IsMenu
GetMenuState
DestroyCaret
SetScrollRange
VkKeyScanW
GetDlgItemTextA
GetNextDlgTabItem
SendDlgItemMessageA

kernel32

GlobalSize
ReleaseSemaphore
RemoveDirectoryA
FoldStringW
FormatMessageW
SystemTimeToFileTime
FlushViewOfFile
GetModuleHandleW
SizeofResource
QueryPerformanceCounter
GetCommTimeouts
SetSystemTime
FindResourceW
FindNextChangeNotification
GetSystemDirectoryW
CreateFileW
GetLastError
ResetEvent
GlobalAddAtomW
GetThreadPriority
HeapFree
EnumResourceLanguagesA
GetCommModemStatus
GetComputerNameExA
lstrlenW
EnterCriticalSection
FreeLibrary
AreFileApisANSI
GetComputerNameA
EnumSystemLocalesA
lstrcmpA
SetCurrentDirectoryW
GlobalLock
SetHandleInformation
lstrcpynA
GetNumberFormatA
ResumeThread
SetErrorMode
FreeResource
LoadResource
LockResource
SetNamedPipeHandleState
MapViewOfFile
GetProcAddress
GetProcessHeap
GetBinaryTypeW
DeleteCriticalSection
VerSetConditionMask
DuplicateHandle
HeapAlloc
ClearCommBreak
GetVersionExW
CreateWaitableTimerA
FindResourceA

gdi32

CreateFontA
ResizePalette
SetROP2
SelectClipRgn
SetBkColor
EndDoc
SetBitmapBits
CombineRgn
GetPixel
Polyline
CreateRectRgn
CreateHalftonePalette
ExtTextOutW
BitBlt
GetTextMetricsW
SetDIBitsToDevice
GetBitmapBits
StretchDIBits
EnumFontFamiliesExW
PtVisible
PtInRegion
UnrealizeObject
DeleteDC
GetMapMode
ExtFloodFill
SetBitmapDimensionEx
EndPath
GetClipBox
GetDIBColorTable
OffsetRgn
GetNearestColor
DPtoLP
GetNearestPaletteIndex
EndPage
GetBkMode
CreateBitmap
CreatePenIndirect
GetTextExtentPointA
CreateCompatibleBitmap
CreateSolidBrush
SetTextColor
TextOutA
GetTextMetricsA
GetWindowOrgEx
GetPaletteEntries
RectInRegion
CreatePatternBrush

msvcrt

_controlfp
strtok
atol
fputs
perror
setlocale
__set_app_type
strchr
fseek
ungetc
__p__fmode
tolower
wcscpy
__p__commode
wcscmp
fgets
strerror
wcschr
_amsg_exit
islower
calloc
wcscat
_initterm
toupper
wcstok
wcsncmp
mbtowc
fgetc
_ismbblead
iswprint
wcspbrk
strcspn
_XcptFilter
exit
_exit
iswxdigit
_cexit
__setusermatherr
sprintf
wcscspn
malloc
__getmainargs
iswctype
wcsrchr

Exports

Exports

?SetListExW@@YGPAHJ]A
?FormatEventExA@@YGXM]A

Sections

.text
Size: 193KB - Virtual size: 193KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.packed
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

555611158ea6ef64717d002ea8877300

Headers

File Characteristics

PDB Paths

Imports

psapi

user32

kernel32

gdi32

msvcrt

Exports

Exports

Sections

.text Size: 193KB - Virtual size: 193KB

.packed Size: 13KB - Virtual size: 13KB

.data Size: 9KB - Virtual size: 8KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 193KB - Virtual size: 193KB

.packed
Size: 13KB - Virtual size: 13KB

.data
Size: 9KB - Virtual size: 8KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 2KB - Virtual size: 2KB