8705492b4eef28d5528eff35f37999f2_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

8705492b4eef28d5528eff35f37999f2_JaffaCakes118
Size

216KB
MD5

8705492b4eef28d5528eff35f37999f2
SHA1

aa15f1e8f9b98fd56bb8969709bb2c49ad030cfa
SHA256

4f8a92aeb466f50ce2e8034f3b8ab21c586bf90c2f5c7b9a702b169296730043
SHA512

08e2686c623dcd6cd56a1d7d9505dd03101f068c748bcf52802a932b1cdc6e44f33756f7cc469f1f29498ab483678fda0cdb5480f4865d2e355fde1e4f2ca649
SSDEEP

6144:UYgtRUfseV92B2HAvYPIvhpY3+urp+RwT/M:1Aeb2oaYPIppKnswg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8705492b4eef28d5528eff35f37999f2_JaffaCakes118

Files

8705492b4eef28d5528eff35f37999f2_JaffaCakes118
.exe windows:5 windows x86 arch:x86

46120459b6c596748da98e2ac4889f9b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

E:\sedAbgDvd\mrWdmtTlrb\oRzubbgGd\weBhepynfm\KBjhozybzik.pdb

Imports

msvcrt

remove
gets
towupper
fclose
atoi
fseek
ungetc
_controlfp
system
wcstod
islower
wcscspn
mktime
fputc
__set_app_type
__p__fmode
gmtime
__p__commode
_amsg_exit
_initterm
wcsncpy
strtol
_ismbblead
sprintf
_XcptFilter
_exit
free
malloc
bsearch
wcschr
putchar
wcslen
realloc
isprint
putc
_cexit
printf
fgets
iswctype
__setusermatherr
__getmainargs
calloc
strncmp
strncpy

kernel32

TlsSetValue
GetProcAddress
CreateEventW
FileTimeToLocalFileTime
DeleteFileW
GetOverlappedResult
CreateDirectoryW
GetAtomNameW
GetSystemTimeAdjustment
GlobalAddAtomA
GetCommState
GlobalGetAtomNameW
LocalReAlloc
WaitForSingleObjectEx
GetCommandLineA
TlsFree
GetModuleFileNameW
VirtualFree
SetSystemTime
SetFileAttributesW
WaitCommEvent
DefineDosDeviceW
SetCommBreak
QueryPerformanceCounter
OpenFileMappingW
SuspendThread
SetThreadPriority
FlushFileBuffers
ExitThread
OpenFileMappingA
lstrlenW
SetCommState
GetSystemDirectoryA
FileTimeToSystemTime
GlobalAddAtomW
EnumResourceNamesW
ClearCommError
GetCommTimeouts
GetUserDefaultLangID
TryEnterCriticalSection
RaiseException
FlushViewOfFile
HeapUnlock
CreateNamedPipeW
IsDBCSLeadByte
SetThreadExecutionState
lstrcmpA
SetThreadAffinityMask
GetLocaleInfoW
FindResourceA

user32

GetScrollRange
CascadeWindows
IsDialogMessageA
FillRect
RegisterClassW
SetCaretPos
MonitorFromPoint
ArrangeIconicWindows
PeekMessageA
OpenInputDesktop
MessageBoxW
IsRectEmpty
EndDialog
GetMessagePos
GetSubMenu
LoadImageW
OemToCharA
DrawIconEx
ChildWindowFromPointEx
RegisterClassExW
IsZoomed
GetClassInfoA
SetWindowLongW
InsertMenuW
SwitchToThisWindow
CallWindowProcW
InternalGetWindowText
DestroyWindow
SystemParametersInfoW
SetLastErrorEx
GetWindow
PostMessageA
InsertMenuA
GetMenuItemRect
GetForegroundWindow
AdjustWindowRectEx
ShowScrollBar
SetRectEmpty
RegisterClassA
IsIconic
SetForegroundWindow
IsDialogMessageW
SetDlgItemInt
DestroyMenu
GetLastActivePopup
mouse_event
DefDlgProcW
PostMessageW
LoadIconW
IsWindow
VkKeyScanW
DialogBoxIndirectParamW
GetClassLongA
MapDialogRect
CreateDialogIndirectParamW
PtInRect
CreateCaret
SetParent
CreateWindowExW
SendMessageW
DialogBoxIndirectParamA
EnumChildWindows
FindWindowExW
CharLowerBuffW
GetKeyboardLayoutNameW
IsWindowUnicode
InvertRect
GetNextDlgTabItem
DefDlgProcA
wvsprintfA
PostQuitMessage
LoadAcceleratorsA
CheckMenuItem
SendNotifyMessageW
GetDCEx
CreateWindowExA
BeginPaint
OffsetRect
CharToOemA
LoadAcceleratorsW
GetDlgItemTextW
SendDlgItemMessageW
AppendMenuW
EnableScrollBar
DrawAnimatedRects
DeleteMenu
CheckDlgButton
LoadMenuW
CharToOemBuffA
GetClassInfoExW
GetWindowTextLengthW
LookupIconIdFromDirectory
GetIconInfo
LoadIconA
CopyRect
SetCursor
BringWindowToTop
ChangeMenuW
HideCaret
GetCursorPos
SetFocus
GetDlgItemInt
GetMenuItemID
CharToOemW
GetMenuState
LoadCursorA
OpenIcon
MessageBoxA
ShowCaret
GetSystemMenu
MoveWindow
DestroyIcon

gdi32

CreateRoundRectRgn
IntersectClipRect
CreateFontA
UnrealizeObject
ExtFloodFill
SetPixel
RectVisible
GetTextColor
PathToRegion
CreateBrushIndirect
GetPixel
GetTextCharsetInfo
CreateHalftonePalette
GetWindowOrgEx
SetDIBits
GetRgnBox
SetTextAlign
Escape
CreateCompatibleBitmap
SetWindowOrgEx
TranslateCharsetInfo
SetDIBColorTable
GetCharWidth32W
CreateICW
Polyline
SetBkColor
BeginPath
CreateDIBitmap
SelectClipRgn
EnumFontFamiliesW
CreateRectRgnIndirect
StretchBlt
SelectObject
SetPaletteEntries
GetNearestPaletteIndex
MoveToEx
CreatePenIndirect
TextOutA
RealizePalette
ScaleViewportExtEx
CreateFontIndirectA
TextOutW
GetROP2
CreateBitmap
GetObjectA
GetStockObject
GetTextFaceW

Exports

Exports

?ShowTaskOriginal@@YGPADHEPAH[W

Sections

.text
Size: 190KB - Virtual size: 190KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

46120459b6c596748da98e2ac4889f9b

Headers

File Characteristics

PDB Paths

Imports

msvcrt

kernel32

user32

gdi32

Exports

Exports

Sections

.text Size: 190KB - Virtual size: 190KB

.data Size: 22KB - Virtual size: 21KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 190KB - Virtual size: 190KB

.data
Size: 22KB - Virtual size: 21KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 2KB - Virtual size: 1KB