863123d359842ad81ff9392576d48268_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

863123d359842ad81ff9392576d48268_JaffaCakes118
Size

217KB
MD5

863123d359842ad81ff9392576d48268
SHA1

f38ca2b6e9be53bf7aadfd1900c9fca40457e12e
SHA256

ad8752d81e7b8395d54ae479878767a22dbf3544d744e5f00ef9c247306c03c3
SHA512

6049ac426760f6a451162b0259144da630ae6d39571243f535c33c2c686fb74720ad98e38f2463719b9ed9a81df674ceb94c82b973cb51387381a1d9de82511d
SSDEEP

3072:Ygb+ZOlLnUVyceWs+muYHlifSvDW4SxF2ztdO6eqfBkCQZ+C:/aZUwVgWs+muj6xqwPnlpLQZ+C

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
863123d359842ad81ff9392576d48268_JaffaCakes118

Files

863123d359842ad81ff9392576d48268_JaffaCakes118
.exe windows:5 windows x86 arch:x86

46120459b6c596748da98e2ac4889f9b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

L:\elPmhcobfwrud\pJgoEdzmk\cQtdkhojt\mnQzsgyxFNtkZi\Ozdypbimwvarf.pdb

Imports

msvcrt

remove
gets
towupper
fclose
atoi
fseek
ungetc
_controlfp
system
wcstod
islower
wcscspn
mktime
fputc
__set_app_type
__p__fmode
gmtime
__p__commode
_amsg_exit
_initterm
wcsncpy
strtol
_ismbblead
sprintf
_XcptFilter
_exit
free
malloc
bsearch
wcschr
putchar
wcslen
realloc
isprint
putc
_cexit
printf
fgets
iswctype
__setusermatherr
__getmainargs
calloc
strncmp
strncpy

kernel32

TlsSetValue
GetProcAddress
CreateEventW
FileTimeToLocalFileTime
DeleteFileW
GetOverlappedResult
CreateDirectoryW
GetAtomNameW
GetSystemTimeAdjustment
GlobalAddAtomA
GetCommState
GlobalGetAtomNameW
LocalReAlloc
WaitForSingleObjectEx
GetCommandLineA
TlsFree
GetModuleFileNameW
VirtualFree
SetSystemTime
SetFileAttributesW
WaitCommEvent
DefineDosDeviceW
SetCommBreak
QueryPerformanceCounter
OpenFileMappingW
SuspendThread
SetThreadPriority
FlushFileBuffers
ExitThread
OpenFileMappingA
lstrlenW
SetCommState
GetSystemDirectoryA
FileTimeToSystemTime
GlobalAddAtomW
EnumResourceNamesW
ClearCommError
GetCommTimeouts
GetUserDefaultLangID
TryEnterCriticalSection
RaiseException
FlushViewOfFile
HeapUnlock
CreateNamedPipeW
IsDBCSLeadByte
SetThreadExecutionState
lstrcmpA
SetThreadAffinityMask
GetLocaleInfoW
FindResourceA

user32

GetScrollRange
CascadeWindows
IsDialogMessageA
FillRect
RegisterClassW
SetCaretPos
MonitorFromPoint
ArrangeIconicWindows
PeekMessageA
OpenInputDesktop
MessageBoxW
IsRectEmpty
EndDialog
GetMessagePos
GetSubMenu
LoadImageW
OemToCharA
DrawIconEx
ChildWindowFromPointEx
RegisterClassExW
IsZoomed
GetClassInfoA
SetWindowLongW
InsertMenuW
SwitchToThisWindow
CallWindowProcW
InternalGetWindowText
DestroyWindow
SystemParametersInfoW
SetLastErrorEx
GetWindow
PostMessageA
InsertMenuA
GetMenuItemRect
GetForegroundWindow
AdjustWindowRectEx
ShowScrollBar
SetRectEmpty
RegisterClassA
IsIconic
SetForegroundWindow
IsDialogMessageW
SetDlgItemInt
DestroyMenu
GetLastActivePopup
mouse_event
DefDlgProcW
PostMessageW
LoadIconW
IsWindow
VkKeyScanW
DialogBoxIndirectParamW
GetClassLongA
MapDialogRect
CreateDialogIndirectParamW
PtInRect
CreateCaret
SetParent
CreateWindowExW
SendMessageW
DialogBoxIndirectParamA
EnumChildWindows
FindWindowExW
CharLowerBuffW
GetKeyboardLayoutNameW
IsWindowUnicode
InvertRect
GetNextDlgTabItem
DefDlgProcA
wvsprintfA
PostQuitMessage
LoadAcceleratorsA
CheckMenuItem
SendNotifyMessageW
GetDCEx
CreateWindowExA
BeginPaint
OffsetRect
CharToOemA
LoadAcceleratorsW
GetDlgItemTextW
SendDlgItemMessageW
AppendMenuW
EnableScrollBar
DrawAnimatedRects
DeleteMenu
CheckDlgButton
LoadMenuW
CharToOemBuffA
GetClassInfoExW
GetWindowTextLengthW
LookupIconIdFromDirectory
GetIconInfo
LoadIconA
CopyRect
SetCursor
BringWindowToTop
ChangeMenuW
HideCaret
GetCursorPos
SetFocus
GetDlgItemInt
GetMenuItemID
CharToOemW
GetMenuState
LoadCursorA
OpenIcon
MessageBoxA
ShowCaret
GetSystemMenu
MoveWindow
DestroyIcon

gdi32

CreateRoundRectRgn
IntersectClipRect
CreateFontA
UnrealizeObject
ExtFloodFill
SetPixel
RectVisible
GetTextColor
PathToRegion
CreateBrushIndirect
GetPixel
GetTextCharsetInfo
CreateHalftonePalette
GetWindowOrgEx
SetDIBits
GetRgnBox
SetTextAlign
Escape
CreateCompatibleBitmap
SetWindowOrgEx
TranslateCharsetInfo
SetDIBColorTable
GetCharWidth32W
CreateICW
Polyline
SetBkColor
BeginPath
CreateDIBitmap
SelectClipRgn
EnumFontFamiliesW
CreateRectRgnIndirect
StretchBlt
SelectObject
SetPaletteEntries
GetNearestPaletteIndex
MoveToEx
CreatePenIndirect
TextOutA
RealizePalette
ScaleViewportExtEx
CreateFontIndirectA
TextOutW
GetROP2
CreateBitmap
GetObjectA
GetStockObject
GetTextFaceW

Exports

Exports

?ShowTaskOriginal@@YGPADHEPAH[W

Sections

.text
Size: 191KB - Virtual size: 190KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

46120459b6c596748da98e2ac4889f9b

Headers

File Characteristics

PDB Paths

Imports

msvcrt

kernel32

user32

gdi32

Exports

Exports

Sections

.text Size: 191KB - Virtual size: 190KB

.data Size: 22KB - Virtual size: 22KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 191KB - Virtual size: 190KB

.data
Size: 22KB - Virtual size: 22KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 2KB - Virtual size: 1KB