81ef55d524788b32ccfb43d037b396da_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

81ef55d524788b32ccfb43d037b396da_JaffaCakes118
Size

216KB
MD5

81ef55d524788b32ccfb43d037b396da
SHA1

6a870bd7444a4328a042c8dd7752bb2407b9d8fe
SHA256

8c6b64c245833c1e9de0e2d5bcc6f0be7741d3c7f3a3ec0c8c8c1988c77829e2
SHA512

758564735884bc2a33708d6737457e71a11d340d8dbefb1c5d51aae8eb432b0d7ce164534e4940b8f88c77925ad40bce31724cc1b37e720bbb4ddcf97c558cd3
SSDEEP

3072:3BcFimmNmBCKBjLYX2UG6uNx6m6TdXaTe+QKAshU+qtDnxgZlDLPKQBW:RcgPNm4KBIXFI3udXapi+qg1L

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
81ef55d524788b32ccfb43d037b396da_JaffaCakes118

Files

81ef55d524788b32ccfb43d037b396da_JaffaCakes118
.exe windows:5 windows x86 arch:x86

2062e79d7edeb8a2017c06a5f72e0ca9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

P:\tWoOKizAdnr\zseGbhD\boocuxhrbrl\wqcyweffW\xytdYkiaAVtrd.pdb

Imports

user32

PostThreadMessageA
LoadCursorA
AppendMenuA
GetMenuItemInfoW
IsChild
IsWindow
SetDlgItemTextA
DrawIcon
CreateDialogParamW
SetRect
ClipCursor
EnableMenuItem
IsWindowEnabled
CheckMenuRadioItem
GetClassLongW
GetMessageA
ChildWindowFromPoint
wvsprintfW
DefDlgProcW
CharToOemW
ShowScrollBar
GetClassInfoW
InsertMenuA
GetKeyboardLayout
LoadCursorW
ScrollWindowEx
keybd_event
InsertMenuItemW
PostMessageA
LoadBitmapW
EndPaint
SystemParametersInfoW
CharNextExA
ShowOwnedPopups
ClientToScreen
DialogBoxIndirectParamW
PostQuitMessage
CopyRect
RegisterClassExA
GetMessagePos
CharToOemBuffA
GetMenuState
GetMenuItemRect
RegisterClassW
CharPrevA
GetDC
SetWindowLongW
SetLastErrorEx
LoadStringA
DrawStateA
GetClassInfoExW
SendMessageA
wvsprintfA
SetScrollInfo
WindowFromPoint
CharLowerW
GetScrollPos
SetScrollRange
SetSysColors
SetForegroundWindow
MapDialogRect
OemToCharA
mouse_event
ChangeMenuW
IsRectEmpty
AppendMenuW
SendMessageTimeoutA
HiliteMenuItem
ScreenToClient
EndDialog
InSendMessageEx
CreateWindowExA
FindWindowExW
DefFrameProcA
TranslateAcceleratorA
GetDCEx
GetForegroundWindow
CallWindowProcW
GetFocus
GetWindowTextA
DestroyCaret
GetWindowDC
RegisterHotKey
OpenInputDesktop
FillRect
MapVirtualKeyExW
GrayStringW
UnloadKeyboardLayout
IsCharAlphaW
DestroyAcceleratorTable
ActivateKeyboardLayout
LoadMenuW
PostMessageW
OpenIcon
GetKeyNameTextW
IsCharAlphaNumericW
GetDoubleClickTime
EnumThreadWindows
CreateDialogParamA
CheckDlgButton
WaitMessage
ShowCursor
OffsetRect
TileWindows
ChildWindowFromPointEx
LoadAcceleratorsA
VkKeyScanW
SendInput
GetCaretPos
GetClassInfoExA
FindWindowW
TranslateMessage
SetWindowPos
SetMenuDefaultItem
SetTimer
KillTimer
SetWindowTextA
GetAsyncKeyState
RegisterClassA
DrawTextExW
DestroyMenu
InvertRect
GetWindowLongW
MessageBoxA
GetDesktopWindow
IsCharLowerA
ExitWindowsEx
BringWindowToTop
DialogBoxIndirectParamA
ValidateRect
GetWindowTextW
ReleaseDC
CreateMenu
MessageBoxExW
PeekMessageA
PtInRect
GetMenuStringW
ShowWindow
SetCursorPos
GetParent
DefDlgProcA
LookupIconIdFromDirectory
GetKeyboardLayoutList
GetSysColorBrush
SetCaretPos
MapWindowPoints
GetSystemMenu
SendDlgItemMessageW
GetClientRect
GetMessageW
EqualRect
TabbedTextOutW
ModifyMenuW
GetWindowPlacement
DrawStateW
PostThreadMessageW
SendMessageTimeoutW
GetTopWindow
GetUserObjectInformationW
CheckMenuItem
GetMenuCheckMarkDimensions
SetWindowRgn
AllowSetForegroundWindow

msvcrt

_controlfp
strspn
strncmp
floor
strstr
iswprint
__set_app_type
__p__fmode
fseek
puts
atol
strtok
__p__commode
_amsg_exit
exit
wcstod
_initterm
atoi
system
wcstoul
iswalpha
mbtowc
isalnum
_ismbblead
malloc
towupper
towlower
_XcptFilter
ungetc
_exit
wcstok
_cexit
__setusermatherr
wcspbrk
wcslen
memset
fclose
remove
wcstol
fread
wcscspn
fflush
ftell
printf
isprint
strrchr
wcscpy
__getmainargs
strtol
strpbrk
realloc
fwrite
fprintf
wcscmp
strcpy
fputs
tolower
wcscat
putc
toupper
isupper

gdi32

EndPath
CreatePolygonRgn
CreatePenIndirect
GetBkMode
CreateDiscardableBitmap
GetDeviceCaps
SetBitmapDimensionEx
RectVisible
CreateRoundRectRgn
CreateBitmapIndirect
GetTextFaceW
EndDoc
TranslateCharsetInfo
CreateFontW
SelectClipRgn
MoveToEx
GetViewportOrgEx
CreateHatchBrush
GetNearestPaletteIndex
OffsetViewportOrgEx
GetNearestColor
GetCharWidth32W
GetTextCharsetInfo
ScaleViewportExtEx
EnumFontsW
Escape
RemoveFontResourceW
CombineRgn
ExtFloodFill
PolyBezier
ExcludeClipRect
SetPaletteEntries
CreateSolidBrush
SetWindowOrgEx
OffsetRgn
RealizePalette
SetBrushOrgEx
CreateICW
Polyline
CreateFontIndirectW
PatBlt
GetTextColor
SetBkMode
GetMapMode
GetBitmapBits
SaveDC
CreateFontIndirectA
LineTo
GetTextExtentPoint32A
DPtoLP
SetTextColor
RectInRegion
GetDIBColorTable
SetWindowExtEx
PtVisible
GetSystemPaletteUse
SetMapMode
EnumFontFamiliesExW
ExtTextOutA
GetTextExtentPointA
GetPaletteEntries
FillRgn
SetROP2
GetLayout
UnrealizeObject

comctl32

ImageList_SetIconSize
InitCommonControlsEx
CreatePropertySheetPageA
ImageList_Remove
CreateStatusWindowW
ImageList_Read
PropertySheetA
ImageList_Write
ImageList_Create

kernel32

GetSystemTimeAdjustment
SetCommMask
Sleep
SetEndOfFile
ClearCommBreak
GetTickCount
SetFilePointer
lstrlenA
GetLocaleInfoW
LocalReAlloc
FormatMessageA
EnumResourceLanguagesA
RegisterWaitForSingleObject
SizeofResource
SetCurrentDirectoryA
GetTimeZoneInformation
GetVersionExA
FileTimeToLocalFileTime
CreateMutexW
HeapLock
LoadLibraryExW
VerSetConditionMask
ConvertDefaultLocale
GlobalAddAtomW
FormatMessageW
SetThreadContext
GlobalSize
LocalAlloc
LocalSize
ReadFile
HeapWalk
lstrcpynA
SetupComm
CreateFileW
LockFile
GetSystemDefaultUILanguage
CopyFileW
SetMailslotInfo
QueryPerformanceCounter
SetFileTime
SetTimerQueueTimer
UnmapViewOfFile
GetUserDefaultUILanguage
MoveFileExW
WaitForSingleObject
GetSystemInfo
IsBadStringPtrW
IsBadWritePtr
OpenFileMappingA
GetCurrentThread
FindResourceExA
TryEnterCriticalSection
GetLocaleInfoA
FindResourceExW
AddAtomW
GetExitCodeThread
GetModuleFileNameA
OpenEventA
GetTimeFormatW
GetUserDefaultLangID
FindResourceW
GetModuleHandleA
GetCommandLineA
GlobalAddAtomA
CopyFileA
GetFileAttributesA
SetCommTimeouts
FindClose
WaitCommEvent
LocalFree
GetLocalTime
DeleteAtom
WriteFile
GetTempFileNameA
GetSystemWindowsDirectoryA

Exports

Exports

?FindSectionOld@@IJPAHM@X
?IsNotOptionExA@@IJF_N@X
?IsNotDialogOriginal@@IJPAMGJPAE@X

Sections

.text
Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.code
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 75KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 122KB - Virtual size: 121KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2062e79d7edeb8a2017c06a5f72e0ca9

Headers

File Characteristics

PDB Paths

Imports

user32

msvcrt

gdi32

comctl32

kernel32

Exports

Exports

Sections

.text Size: 66KB - Virtual size: 66KB

.code Size: 12KB - Virtual size: 12KB

.data Size: 12KB - Virtual size: 75KB

.rsrc Size: 122KB - Virtual size: 121KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 66KB - Virtual size: 66KB

.code
Size: 12KB - Virtual size: 12KB

.data
Size: 12KB - Virtual size: 75KB

.rsrc
Size: 122KB - Virtual size: 121KB

.reloc
Size: 2KB - Virtual size: 1KB