82999b8e0cfd219d760c79930e3f1000_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

82999b8e0cfd219d760c79930e3f1000_JaffaCakes118
Size

213KB
MD5

82999b8e0cfd219d760c79930e3f1000
SHA1

742ed3b067f6c3f8c702ada45fbce794b355bf5e
SHA256

d6e09dc2739204e711ab5652fd606dc05d62b311890017d0a545f4ae39d3095a
SHA512

c4d22b79d1bf2691832f7f4a44d57b7111c6a1f2cecd54db0db24c97118ff4fe793b46d264bdb049031c980a0a807530e1ee3127bb95ac3ee568c426dc30e8b8
SSDEEP

6144:seNaptfYE4mFER8MX616sf8CGfehvJwRz5xXdHQcNLQ9:paNYEfFEFCGfOg5xmn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
82999b8e0cfd219d760c79930e3f1000_JaffaCakes118

Files

82999b8e0cfd219d760c79930e3f1000_JaffaCakes118
.exe windows:5 windows x86 arch:x86

07bbb400f0e26ac087d23d4b3c54fdb7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

K:\ysusnbmaN\syfDavyvcy\WqynexDedd.pdb

Imports

gdi32

ExcludeClipRect
SetWindowExtEx
ResizePalette
CreateSolidBrush
SetROP2
GetClipBox
SetTextColor
CreateCompatibleDC
SetDIBits
SetBrushOrgEx
SetRectRgn
CreateBrushIndirect
SelectPalette
CreateHatchBrush
GetTextFaceW
CreateFontIndirectW
Polygon
SelectClipRgn
RectInRegion
CreatePolygonRgn
GetViewportOrgEx
CreateHalftonePalette
ScaleViewportExtEx
CreatePatternBrush
GetTextMetricsA
GetTextExtentPoint32A
GetCharWidth32W
RemoveFontResourceW
GetDeviceCaps
GetDIBColorTable
SetStretchBltMode
LPtoDP
PtInRegion
SetViewportExtEx
EndPath
RectVisible
GetTextExtentPointA

user32

GetClipCursor
DefWindowProcA
GetClassInfoExA
GetWindowTextLengthW
DrawFrameControl
PostMessageW
CreateWindowExA
GetShellWindow
IsDialogMessageW
GetUserObjectInformationW
EqualRect
GetParent
DialogBoxParamA
GetScrollRange
ClipCursor
IsDialogMessageA
DrawStateA
CharPrevW
SetMenuItemInfoW
LoadCursorW
RemovePropW
IsWindowUnicode
TileWindows
GetClassNameW
PostThreadMessageA
OpenDesktopW
InsertMenuItemW
InternalGetWindowText
CheckRadioButton
GetKeyNameTextW
MessageBoxExA
RegisterClassW
DestroyCursor
LoadImageA
MonitorFromPoint
ToUnicodeEx
OpenIcon
ShowWindow
MessageBoxW
IsRectEmpty
FindWindowW
LoadBitmapW
CreateAcceleratorTableW
CreateCursor
FindWindowA
GetMessageA
CharUpperW
GetNextDlgGroupItem
ReplyMessage
AdjustWindowRectEx
PtInRect
TabbedTextOutW
GetMenuStringA
SetWindowPlacement
FrameRect
SetCursorPos
UnloadKeyboardLayout
wsprintfA
DeleteMenu
GetDialogBaseUnits
GetScrollPos
PostMessageA
CharToOemA
AppendMenuW
TranslateAcceleratorA
SetWindowTextA
CreateIconFromResource
CharLowerW
InflateRect
InsertMenuW
GetActiveWindow
EnumWindows
UnionRect
MapVirtualKeyW
GetTopWindow
IsCharAlphaW
MapDialogRect
SetDlgItemTextA
AdjustWindowRect
GetSystemMenu
FindWindowExA
SetForegroundWindow
TrackPopupMenu
wsprintfW
SystemParametersInfoA
LoadAcceleratorsA
TranslateAcceleratorW
OemToCharBuffA
GetKeyboardLayout
SetRect

msvcrt

setvbuf
wcsstr
_controlfp
time
setlocale
__set_app_type
__p__fmode
__p__commode
_amsg_exit
_initterm
iswalpha
fread
localtime
fseek
perror
wcstok
_acmdln
mbstowcs
strchr
malloc
getenv
exit
putchar
_ismbblead
isupper
strerror
isxdigit
_XcptFilter
strtol
_exit
strcpy
_cexit
iswctype
wcscspn
strspn
remove
calloc
toupper
__setusermatherr
__getmainargs

kernel32

UnhandledExceptionFilter
OpenEventW
GetSystemWindowsDirectoryW
FileTimeToLocalFileTime
CreateNamedPipeA
SetSystemTime
LocalReAlloc
CloseHandle
BuildCommDCBAndTimeoutsW
FlushViewOfFile
GetThreadContext
EnumSystemLocalesA
RtlUnwind
GetCommConfig
GetBinaryTypeW
HeapFree
lstrcmpA
GetFileType
LocalSize
FindResourceExW
GetDateFormatA
FindResourceW
WaitForMultipleObjectsEx
RaiseException
GlobalMemoryStatus
CreateMutexW
WaitForSingleObjectEx
IsValidLanguageGroup
AreFileApisANSI
FindFirstChangeNotificationW
QueryPerformanceCounter
CreateEventA
VirtualQuery
MapViewOfFile
GlobalGetAtomNameA
SetCommBreak
WaitCommEvent
SetHandleCount
GetSystemTimeAdjustment
GetComputerNameA
lstrcpyA

Exports

Exports

?WaitForMultipleObjectsIUIUDSiuld@@YGKEPA_WG@Z
?WaitForMultipleObjectsJUDiuDLIJU@@YGKEPA_WG@Z
?WaitForMultipleObjectsUYDyudkjh@@YGKEPA_WG@Z
?WaitForSingleObjectYDEyuhgDU6d@@YGKEPA_WG@Z

Sections

.text
Size: 80KB - Virtual size: 79KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 18KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 2KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 109KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

07bbb400f0e26ac087d23d4b3c54fdb7

Headers

File Characteristics

PDB Paths

Imports

gdi32

user32

msvcrt

kernel32

Exports

Exports

Sections

.text Size: 80KB - Virtual size: 79KB

.data Size: 18KB - Virtual size: 17KB

.rdata Size: 2KB - Virtual size: 60KB

.rsrc Size: 109KB - Virtual size: 109KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 80KB - Virtual size: 79KB

.data
Size: 18KB - Virtual size: 17KB

.rdata
Size: 2KB - Virtual size: 60KB

.rsrc
Size: 109KB - Virtual size: 109KB

.reloc
Size: 2KB - Virtual size: 1KB