8613419d45962b7ef95de54c497402d1_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

8613419d45962b7ef95de54c497402d1_JaffaCakes118
Size

208KB
MD5

8613419d45962b7ef95de54c497402d1
SHA1

82aaccbc8224cd089ca904aa4b361e967c74564a
SHA256

6aa9374c2d72cdb494082fe690f028bdbe76cdb8c7bd5cc3b08394f75245c819
SHA512

770921019e0cbb0afb29efcc380b0c16d4954f732f9f4baa4f99d557aee346052cb215fbc1245013e64c09e342a97a41a8a2039ac827f593247803757809324e
SSDEEP

3072:u47guUJy+9DLKW9dK1oJPFL2ahg0IKct50LglF6a4UBJeMeYz/pA4u8M5:b3uya/oWJPolVt5e+6a4GJeH0pApH5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8613419d45962b7ef95de54c497402d1_JaffaCakes118

Files

8613419d45962b7ef95de54c497402d1_JaffaCakes118
.exe windows:5 windows x86 arch:x86

34a0fd376a73cd2b05259aa805807873

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\LhHjwBaoeRra\UyoEuNg\bwrjtvyMwtkhx\Zodfwttkzpflf.pdb

Imports

user32

keybd_event
PeekMessageA
ChildWindowFromPointEx
PtInRect
LoadCursorW
GetClassInfoExA
MapWindowPoints
AllowSetForegroundWindow
IsCharAlphaNumericW
SetForegroundWindow
FindWindowW
GetSysColor
SetDlgItemInt
GetSystemMenu
GetClassLongW
GetMenuItemCount
SwapMouseButton
GetDlgItemTextW
WindowFromPoint
GetMonitorInfoW
EnumThreadWindows
ModifyMenuW
UpdateWindow
AttachThreadInput
SetDlgItemTextA
IsIconic
EndTask
RegisterClassW
GetClassLongA
DrawFrameControl
GetDlgCtrlID
ShowWindowAsync
OpenIcon
IsMenu
WaitForInputIdle
UnloadKeyboardLayout
IsDlgButtonChecked
CharLowerW
UnionRect
EndDialog
SendDlgItemMessageW
GetUpdateRgn
IsCharAlphaW
BeginPaint
GetSystemMetrics
FindWindowExA
IsDialogMessageW
SystemParametersInfoA
GrayStringW
CheckDlgButton
GetPropW
LoadMenuA
OffsetRect
ShowWindow
ScrollWindowEx
CharNextA
InvalidateRgn
GetShellWindow
GetFocus
GetWindowPlacement
EnumChildWindows
DrawTextExW
SendMessageTimeoutA
SetWindowPos
PostMessageA
GetDoubleClickTime
DestroyAcceleratorTable
BringWindowToTop
CreateDialogParamW
AdjustWindowRect
PostThreadMessageW
CallWindowProcA
GetSubMenu
SetCursor
DragObject
GetClassInfoA
TileWindows
MapDialogRect
GetMenu
CharToOemA
MoveWindow
GetKeyboardLayoutList
SwitchToThisWindow
InsertMenuItemW
CharUpperA
MessageBoxW
SetCaretPos
GetMessageA
ArrangeIconicWindows
MapVirtualKeyA
OemToCharBuffA
GetWindowTextLengthW
InSendMessage
SendMessageW
SetClassLongW
FrameRect
EnableScrollBar
ActivateKeyboardLayout
LookupIconIdFromDirectory
GetNextDlgGroupItem
GetMenuState
TrackPopupMenu
ScrollWindow
InsertMenuA
IsWindowEnabled
SetLastErrorEx
CharUpperBuffA
GetClipCursor
DefWindowProcW
AdjustWindowRectEx
DialogBoxParamW
SetMenuDefaultItem
SetRect
FindWindowA
DestroyWindow
LoadStringA
LoadStringW
ShowOwnedPopups
SendMessageA
SendMessageTimeoutW
MonitorFromPoint
ChangeMenuW
DefFrameProcW
GetDialogBaseUnits
GetMessagePos
CharNextExA
DialogBoxIndirectParamA

msvcrt

puts
strtok
iswprint
wcsrchr
wcslen
wcspbrk
system
fgets
_controlfp
__set_app_type
putc
sscanf
wcscat
getenv
sprintf
__p__fmode
setvbuf
__p__commode
ftell
_amsg_exit
_initterm
getc
rand
memset
qsort
strpbrk
_acmdln
bsearch
remove
strcspn
toupper
fflush
exit
perror
_ismbblead
time
_XcptFilter
putchar
wcscpy
swscanf
fseek
_exit
wcstod
swprintf
fwrite
_cexit
__setusermatherr
__getmainargs
fprintf
strstr

gdi32

CombineRgn
CreateRectRgn
CreateFontIndirectW
CreateFontW
GetTextExtentPoint32A
GetTextExtentPointA
SetStretchBltMode
Rectangle
CreateCompatibleDC
GetNearestPaletteIndex
OffsetViewportOrgEx
UnrealizeObject
SetWindowExtEx
CreateBitmap
GetPixel
GetObjectA
StretchDIBits
SetTextAlign
CreateDCW
CreateRectRgnIndirect
LPtoDP
SetBkColor
CreatePenIndirect
CreateDIBSection
SetDIBColorTable
IntersectClipRect
GetLayout
CreatePatternBrush
SaveDC
CreateRoundRectRgn
RealizePalette
GetNearestColor
PatBlt
CreateFontA
ExcludeClipRect
EndPath
GetSystemPaletteUse
CreateBitmapIndirect
SetMapMode
EnumFontFamiliesW
GetROP2
SelectPalette
GetTextMetricsW
RoundRect
SetPixel
ExtTextOutA
SetWindowOrgEx
PtInRegion
SetLayout
GetCharWidth32W
CreateCompatibleBitmap
TranslateCharsetInfo
GetMapMode

kernel32

MultiByteToWideChar
AddAtomA
SetWaitableTimer
CreateEventA
CompareStringA
ReadFile
ClearCommError
GetACP
SetCurrentDirectoryW
GetOEMCP
GlobalMemoryStatusEx
SuspendThread
GetCommConfig
GetWindowsDirectoryA
SetLastError
HeapFree
RegisterWaitForSingleObject
DeleteFileW
CreateMailslotW
HeapAlloc
SetFileTime
WaitForMultipleObjects
HeapReAlloc
SearchPathW
GetCommModemStatus
FileTimeToLocalFileTime
SetFileAttributesW
TransactNamedPipe
IsDBCSLeadByteEx
lstrcmpiW
VirtualQuery
EnumResourceNamesW
GetModuleHandleA
GetCommandLineW
TryEnterCriticalSection
CreateThread
LocalFree
SetCommMask
CloseHandle
UnhandledExceptionFilter
CancelIo
SetCommBreak
GetCurrentDirectoryW
GetFileAttributesA
GlobalMemoryStatus
CreatePipe
SetSystemTimeAdjustment
SizeofResource
GlobalFlags
GetFullPathNameA
LocalUnlock
MoveFileExA
GetModuleFileNameA
GetVersion
OpenSemaphoreW
RtlUnwind
GlobalGetAtomNameA
lstrcpyW

Exports

Exports

?IncrementTaskOriginal@@IJDJJIPAK@X
?IsNotPointNew@@IJFPANJF@X
?InsertWindowInfoExW@@IJPANGPAHPAMK@X
?IsNotTextW@@IJIFPAK@X

Sections

.text
Size: 134KB - Virtual size: 134KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.import
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.cfg1
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pcode
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.cfg2
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.cfg3
Size: 1024B - Virtual size: 683B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

34a0fd376a73cd2b05259aa805807873

Headers

File Characteristics

PDB Paths

Imports

user32

msvcrt

gdi32

kernel32

Exports

Exports

Sections

.text Size: 134KB - Virtual size: 134KB

.import Size: 1KB - Virtual size: 1KB

.rdata Size: 6KB - Virtual size: 5KB

.cfg1 Size: 512B - Virtual size: 44B

.pcode Size: 13KB - Virtual size: 12KB

.cfg2 Size: 512B - Virtual size: 44B

.cfg3 Size: 1024B - Virtual size: 683B

.data Size: 2KB - Virtual size: 1KB

.rsrc Size: 45KB - Virtual size: 45KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 134KB - Virtual size: 134KB

.import
Size: 1KB - Virtual size: 1KB

.rdata
Size: 6KB - Virtual size: 5KB

.cfg1
Size: 512B - Virtual size: 44B

.pcode
Size: 13KB - Virtual size: 12KB

.cfg2
Size: 512B - Virtual size: 44B

.cfg3
Size: 1024B - Virtual size: 683B

.data
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 45KB - Virtual size: 45KB

.reloc
Size: 2KB - Virtual size: 2KB