81c889741b0aeee644495da9e89b0198_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

81c889741b0aeee644495da9e89b0198_JaffaCakes118
Size

151KB
MD5

81c889741b0aeee644495da9e89b0198
SHA1

ab1d6baff6b2252406b7ca9065d3e0417de90bea
SHA256

7fefe0ffc332900a888aeb763e845bb5d9198c5756d812f27d45aa43e6013477
SHA512

7d752f09558fc20482dc38a26f7bf7e031a20bff2664f4d443bc039f89068c1253365d9b02703573bdadce8a1a09c6876379a362318526d44c501a47c7efafbe
SSDEEP

3072:WPXkW9G8ZTK/a9LhuctP81VlnYV1+vnDKMG/Ygxdf80AeRcL5:WPXkW9pF59l1JwDFvnD2Xf80AnF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
81c889741b0aeee644495da9e89b0198_JaffaCakes118

Files

81c889741b0aeee644495da9e89b0198_JaffaCakes118
.exe windows:5 windows x86 arch:x86

ead23bf207c6e043382eec8d3c43a87f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

O:\tiyyKwyqxeX\uzspvga\sxwwQqqut\iXfsjpPoqrXnY\JlogislSuky.pdb

Imports

ole32

CoBuildVersion

user32

CascadeWindows
FindWindowW
CharLowerA
SystemParametersInfoA
OffsetRect
CreateCaret
DrawIconEx
IsChild
CopyAcceleratorTableW
SetLastErrorEx
SetDlgItemInt
InsertMenuItemW
CopyImage
GetFocus
ShowWindow
SetCursorPos
DeleteMenu
CreateWindowExA
SetMenuDefaultItem
InvalidateRect
ValidateRect
DrawEdge
SendMessageA
GetMenuCheckMarkDimensions
GetSubMenu
InSendMessage
IsIconic
IsWindow
GetSystemMetrics
LookupIconIdFromDirectory
GetMenuItemCount
GetKeyNameTextW
ChildWindowFromPoint
SetScrollRange
GetMenuStringW
CopyRect
CharUpperW
SetActiveWindow
EqualRect
DialogBoxParamA
CharUpperA
ClientToScreen
InsertMenuW
GetWindowTextA
SetScrollInfo
CharPrevA
GetWindow
ReleaseDC
DestroyWindow
CreateWindowExW
RegisterClassW
IsWindowVisible
DefWindowProcW
UnloadKeyboardLayout
GetClipCursor
GetSysColorBrush
SwitchToThisWindow
RemoveMenu
GetKeyState
ModifyMenuW
GetMessageW
AppendMenuW
ToUnicodeEx
TabbedTextOutW
SetWindowLongW
SetFocus
AppendMenuA
GetNextDlgGroupItem
ClipCursor
GetUserObjectInformationW
SetDlgItemTextW
RegisterClassExW
GetMenuItemRect
SetCursor
RegisterWindowMessageW
FindWindowA
SystemParametersInfoW
CheckDlgButton
CheckRadioButton
DefDlgProcW
IsRectEmpty
BeginPaint
GetDlgItemTextW
GetMessageA
GetPropW
InternalGetWindowText
CharToOemW
GetMenu
CreateCursor
SetUserObjectInformationW
RegisterClassA
CharUpperBuffW
CloseDesktop
mouse_event
LoadIconA
DialogBoxIndirectParamW
wsprintfW
HideCaret
IsWindowUnicode
IsDialogMessageW
DestroyCursor
FindWindowExW
SendInput
PostQuitMessage
DrawStateA
MessageBoxW
CreateMenu
SetClassLongW
SetWindowPlacement
GetWindowLongA
SetRect
GetKeyboardType
LoadAcceleratorsW
DrawFocusRect
LoadCursorW
GetClassInfoA

msvcrt

calloc
_controlfp
__set_app_type
gmtime
ungetc
fprintf
sscanf
strtol
wcscmp
putc
__p__fmode
wcspbrk
wcstol
wcsstr
__p__commode
fputs
isxdigit
strchr
_amsg_exit
iswxdigit
isspace
_initterm
_acmdln
free
remove
wcslen
strcspn
isprint
exit
wcstoul
getenv
strcoll
_ismbblead
fclose
strtoul
bsearch
fgets
wcstok
strncpy
puts
_XcptFilter
_exit
isalpha
iswdigit
_cexit
__setusermatherr
floor
putchar
__getmainargs
fputc

gdi32

EnumFontFamiliesW
GetPaletteEntries
CombineRgn
SetTextAlign
CreateRoundRectRgn
SetBrushOrgEx
Escape
EndDoc
TranslateCharsetInfo
SetStretchBltMode
SetROP2
GetTextCharsetInfo
CreatePalette
SetLayout
GetLayout
SetBitmapBits
SetPaletteEntries
RectInRegion
Polygon
StretchDIBits
GetWindowOrgEx
ExtFloodFill
MoveToEx
BeginPath
DPtoLP
GetStockObject
SetViewportExtEx
GetTextExtentPoint32A
SetMapMode
GetObjectW
GetCurrentObject
ScaleWindowExtEx
EndPath
PolyBezier
GetTextExtentPointA
CreateDIBitmap
AddFontResourceW
CreatePatternBrush
GetCharWidth32W
CreateFontIndirectW
SetDIBColorTable
GetTextExtentPoint32W
PtInRegion
ExcludeClipRect
GetSystemPaletteUse
PatBlt
SetViewportOrgEx
GetTextMetricsA
ScaleViewportExtEx

kernel32

GetFileInformationByHandle
GetCurrentDirectoryW
RaiseException
GetSystemDirectoryA
CreateDirectoryW
CancelWaitableTimer
GetSystemTime
GetWindowsDirectoryA
SetFileTime
GetStringTypeExW
HeapAlloc
SetLocalTime
SetEndOfFile
GetHandleInformation
GetTempPathW
GetLocaleInfoW
GetTempPathA
GetTickCount
LocalReAlloc
CancelIo
GetCommTimeouts
FormatMessageW
SetThreadLocale
HeapLock
GetThreadTimes
IsDBCSLeadByte
SetCommBreak
GetCPInfo
IsBadReadPtr
GlobalHandle
DuplicateHandle
GetSystemTimeAsFileTime
LoadLibraryW
GetLocalTime
QueryPerformanceCounter
HeapFree
GetLocaleInfoA
GlobalMemoryStatusEx
FindFirstFileW
VirtualFree
CreateThread
GlobalReAlloc
lstrcpyA
lstrlenA
CreateSemaphoreW
DeleteFileA
MoveFileExW
GetCommandLineA
FormatMessageA
IsDBCSLeadByteEx
GetUserDefaultUILanguage
MoveFileW
AddAtomA
lstrcatA

Exports

Exports

?InvertRectIUIDUdL@@YGKPA_WK@Z
?InvertRectJDkjlDUFO@@YGKPA_WK@Z
?InvertRectUDuiDIOIUD@@YGKPA_WK@Z
?InvertRectUDuiJHDKhjkHDI@@YGKPA_WK@Z
?InvertRectUKUDIiudILO@@YGKPA_WK@Z

Sections

.text
Size: 87KB - Virtual size: 86KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.edata
Size: 512B - Virtual size: 363B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.strs
Size: 4KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 11KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bts2
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bts1
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bts0
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ead23bf207c6e043382eec8d3c43a87f

Headers

File Characteristics

PDB Paths

Imports

ole32

user32

msvcrt

gdi32

kernel32

Exports

Exports

Sections

.text Size: 87KB - Virtual size: 86KB

.edata Size: 512B - Virtual size: 363B

.strs Size: 4KB - Virtual size: 8KB

.rdata Size: 19KB - Virtual size: 19KB

.data Size: 11KB - Virtual size: 69KB

.bts2 Size: 4KB - Virtual size: 4KB

.bts1 Size: 4KB - Virtual size: 4KB

.bts0 Size: 5KB - Virtual size: 4KB

.rsrc Size: 11KB - Virtual size: 10KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 87KB - Virtual size: 86KB

.edata
Size: 512B - Virtual size: 363B

.strs
Size: 4KB - Virtual size: 8KB

.rdata
Size: 19KB - Virtual size: 19KB

.data
Size: 11KB - Virtual size: 69KB

.bts2
Size: 4KB - Virtual size: 4KB

.bts1
Size: 4KB - Virtual size: 4KB

.bts0
Size: 5KB - Virtual size: 4KB

.rsrc
Size: 11KB - Virtual size: 10KB

.reloc
Size: 2KB - Virtual size: 1KB