8b05f6c31e843b0f09bed82d1dff1de0_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

8b05f6c31e843b0f09bed82d1dff1de0_JaffaCakes118
Size

214KB
MD5

8b05f6c31e843b0f09bed82d1dff1de0
SHA1

f90bad2606f4011eb51edb3fd2c892013c35d35e
SHA256

5844a00f968fa6ae17d7e7d468329571c3533bff3e8474af5f2e736f4e3c4aa0
SHA512

a679cb66e98e71add15a0c6ddd3457189b53141f0f476c23bf79c7302f2a83eb3f0240cfd787285546bf75373f1481aef871b290abae499db6dfda006988f470
SSDEEP

3072:DxmNT8YwWmwlCpGup4Y1uSeZBklj6Hm03Z7n9phpwhLB3I06BTwe38vAY:Dxm58e6pff1uU67Zh4LBV2Tw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8b05f6c31e843b0f09bed82d1dff1de0_JaffaCakes118

Files

8b05f6c31e843b0f09bed82d1dff1de0_JaffaCakes118
.exe windows:5 windows x86 arch:x86

099d556a0b837920b82c32d0abdd4df7

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

Q:\ysoRevoPs\yfrpEVPdQhiaVt\ZmLyrrctYpoC.pdb

Imports

comctl32

PropertySheetA
CreateToolbarEx
ImageList_GetIcon
ImageList_AddMasked
ImageList_GetImageCount

msvcrt

fputs
_controlfp
__set_app_type
setlocale
__p__fmode
clock
__p__commode
_amsg_exit
_initterm
strcoll
wcschr
_acmdln
free
wcscspn
isalpha
exit
iswalpha
isalnum
_ismbblead
_XcptFilter
iswdigit
_exit
_cexit
localtime
strerror
iswctype
__setusermatherr
wcstol
getenv
swprintf
fread
remove
gmtime
__getmainargs
fprintf
isupper
ftell
putchar
fclose

gdi32

GetLayout
GetObjectW
MoveToEx
GetTextAlign
GetViewportOrgEx
PtVisible
RectVisible
SetWindowOrgEx
GetROP2
GetCharWidth32W
SetLayout
GetBkMode
RemoveFontResourceW
CreateDIBSection
RestoreDC
CombineRgn
SetBkColor
TranslateCharsetInfo
SetWindowExtEx
EnumFontsW
WidenPath
CreateDiscardableBitmap
Polyline
GetTextFaceW
SetViewportExtEx
GetCurrentObject
TextOutA
SaveDC
ExcludeClipRect
RectInRegion
PtInRegion
SetStretchBltMode
CreateFontW
SelectClipRgn
GetPixel

comdlg32

PrintDlgW
GetFileTitleW
FindTextW

kernel32

GetOEMCP
OpenEventW
GetCPInfo
GetComputerNameExW
GetProcAddress
GetTempPathW
lstrcmpA
SetCurrentDirectoryA
GetSystemInfo
TryEnterCriticalSection
CreateMutexW
UnhandledExceptionFilter
CreateDirectoryA
LoadLibraryA
GetCommState
IsValidLocale
GetStringTypeExW
ClearCommError
GetAtomNameA
QueryDosDeviceW
TlsFree
GetSystemTimeAdjustment
OpenEventA
CreateEventA
SearchPathW
IsValidLanguageGroup
OpenSemaphoreW
HeapValidate
SetTimerQueueTimer
LeaveCriticalSection
lstrlenW
BuildCommDCBAndTimeoutsW
GetSystemDefaultLangID
LocalUnlock
GetAtomNameW
SetCommState
GetFileSize
lstrcpyA
LocalReAlloc
FindFirstChangeNotificationW
SystemTimeToFileTime
GetTickCount

user32

TileWindows
SendMessageTimeoutW
GetClassInfoA
CreateCaret
SetMenuItemBitmaps
SendDlgItemMessageW
SetDlgItemTextA
LoadCursorW
EndDialog
DestroyIcon
DefFrameProcW
ReleaseDC
PtInRect
GetUpdateRgn
IsDialogMessageW
TrackPopupMenuEx
SendNotifyMessageW
SetTimer
LoadImageA
EnumThreadWindows
DestroyCaret
CharUpperA
RegisterWindowMessageA
OemToCharBuffA
RegisterHotKey
DeferWindowPos
DispatchMessageA
GetMenuItemRect
SendMessageW
OpenInputDesktop
GetClientRect
IsWindowVisible
mouse_event
ClipCursor
wsprintfW
GetWindowTextW
SetSysColors
GetClassInfoExW
SetRectEmpty
CopyRect
ValidateRect
CascadeWindows
RemoveMenu
FindWindowW
GetDlgItemInt
GetDlgItem
CharLowerA
EndTask
ReplyMessage
DrawStateA
DestroyWindow
SetMenu
LoadStringA
PostQuitMessage
CharUpperBuffA
CharLowerW
SetWindowPlacement
GetSubMenu
CreateIconIndirect
BeginPaint
FindWindowA
SetFocus
InSendMessageEx
IsDialogMessageA
GetClassLongW
SetWindowTextW
InsertMenuW
ShowCaret
SendMessageA
IsRectEmpty
MessageBoxExA
DragObject
RegisterWindowMessageW
SetScrollRange
CopyAcceleratorTableW
DialogBoxParamW
SystemParametersInfoW
ScrollWindow
GetDlgItemTextW
PostMessageA
VkKeyScanW
GetDoubleClickTime
GetSysColorBrush
CharToOemBuffA
IsCharAlphaNumericW
GetMenuItemID
GetDlgItemTextA
LookupIconIdFromDirectory
CharPrevW

Exports

Exports

?SleepAhHJDud@@YGKEPA_WG@Z
?SleepUDSUDlkdlsds@@YGKEPA_WG@Z
?SleepUDudjkUD@@YGKEPA_WG@Z
?SleepYDyjDuUI@@YGKEPA_WG@Z

Sections

.text
Size: 82KB - Virtual size: 82KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1024B - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 108KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

099d556a0b837920b82c32d0abdd4df7

Headers

File Characteristics

PDB Paths

Imports

comctl32

msvcrt

gdi32

comdlg32

kernel32

user32

Exports

Exports

Sections

.text Size: 82KB - Virtual size: 82KB

.data Size: 19KB - Virtual size: 18KB

.rdata Size: 1024B - Virtual size: 56KB

.rsrc Size: 108KB - Virtual size: 108KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 82KB - Virtual size: 82KB

.data
Size: 19KB - Virtual size: 18KB

.rdata
Size: 1024B - Virtual size: 56KB

.rsrc
Size: 108KB - Virtual size: 108KB

.reloc
Size: 2KB - Virtual size: 1KB