8ba33bd99eea70d631cd5f6c9f54b5a8_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

8ba33bd99eea70d631cd5f6c9f54b5a8_JaffaCakes118
Size

78KB
MD5

8ba33bd99eea70d631cd5f6c9f54b5a8
SHA1

058364f293f07cbf5fe6874dda284f7add6b0739
SHA256

7b4f80911b3bafafe270b0ef5b8bc60448a26859f684290b48bc82b268819d76
SHA512

586d2855b357b7f875519e1435e97db1c030e977464085ef6bf64f5be15291a4b9a214cc5efd99921446249d1440ebeacb83d4e1c79eec6e83ba9fd2dccbca05
SSDEEP

1536:uykioc4BkvZLBh0uEq2PvPygbATIBaqaqZRR5Mgh:u2B4mhLBCpagb+qDjjh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8ba33bd99eea70d631cd5f6c9f54b5a8_JaffaCakes118

Files

8ba33bd99eea70d631cd5f6c9f54b5a8_JaffaCakes118
.exe windows:5 windows x86 arch:x86

20e13c3b5c0c698fdd9243c28c3bb702

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

K:\aNRJyfdwrndNP\XCukqxorqo\wiqtBhxWi\sxxekmtugcKHM.pdb

Imports

user32

FindWindowA
GetClassInfoA
DestroyCaret
GetUpdateRect
GetDlgItem
ScrollWindowEx
IntersectRect
OpenDesktopW
DefDlgProcA
ClipCursor
ShowCaret
RegisterWindowMessageW
IsCharAlphaW
SetScrollRange
LoadStringW
GetClassInfoExW
GetMenuState
GetClassInfoW
EnumWindows
ValidateRect
InsertMenuItemW
SetForegroundWindow
DialogBoxParamA
MapVirtualKeyExW
CheckRadioButton
LoadImageW
GetMessageA
DrawAnimatedRects
GetWindowPlacement
SendMessageW
DeferWindowPos
DispatchMessageW
PostMessageA
GetLastActivePopup
GetPropW
AllowSetForegroundWindow
GetWindowDC
ShowScrollBar
GetWindowTextLengthW
DrawTextW
GetMessageW
SetFocus
wsprintfA
ArrangeIconicWindows
GetTopWindow
CharUpperA
EnumChildWindows
SetMenuItemBitmaps
TrackPopupMenu
CharToOemW
DrawIcon
PostMessageW
GetSysColor
GetMessagePos
CreateDialogParamA
GetKeyboardLayoutList
SetMenuDefaultItem
InsertMenuA
CreateWindowExW
MessageBoxA
DrawStateA
wvsprintfW
FindWindowW
PostThreadMessageA
DefWindowProcW
LoadMenuW
CopyRect
RegisterClassExA
SendNotifyMessageW
RemoveMenu
SetUserObjectInformationW
GetMenuItemID
SetMenuItemInfoW
SendMessageTimeoutA
GetNextDlgGroupItem
WindowFromPoint
CharPrevW
SetCursor
CharNextW
LoadMenuA
IsDialogMessageA
CascadeWindows
SetDlgItemInt
BeginDeferWindowPos
LoadAcceleratorsA
IsZoomed
SystemParametersInfoA
SendDlgItemMessageW
LoadImageA
IsWindowUnicode
TranslateAcceleratorA
CreateCaret
SetScrollInfo
EnableMenuItem
GetKeyNameTextW
DestroyMenu
MonitorFromRect
LoadCursorW
CreateAcceleratorTableW
GetKeyboardType
PeekMessageA
GetClassNameW
SetRect
CreateDialogIndirectParamW
VkKeyScanW
SetWindowPos
SetDlgItemTextW
FillRect
GetMenuItemInfoW
wsprintfW
SetTimer
SetLastErrorEx
AttachThreadInput
LoadIconW
ExitWindowsEx
UnloadKeyboardLayout
EndDialog
HiliteMenuItem

kernel32

GlobalMemoryStatus
ConnectNamedPipe
GetLocaleInfoW
GetWindowsDirectoryA
GetCurrentThreadId
FileTimeToDosDateTime
MulDiv
GetComputerNameExA
HeapUnlock
SetFileApisToOEM
SetNamedPipeHandleState
SetUnhandledExceptionFilter
DeviceIoControl
FindResourceExA
GetProcAddress
FindResourceW
CreateFileMappingA
WaitForMultipleObjects
GetSystemDefaultUILanguage
FindNextChangeNotification
OpenFileMappingA
FindFirstFileW
TryEnterCriticalSection
GetCommandLineA
TlsGetValue
GetFileInformationByHandle
CancelWaitableTimer
MapViewOfFile
LeaveCriticalSection
GetPriorityClass
GlobalLock
WaitForSingleObjectEx
HeapValidate
lstrlenW
GlobalUnlock
GlobalFindAtomW
GetTickCount
CreateWaitableTimerA
GetCommConfig
HeapSize
EscapeCommFunction
SetLocalTime
lstrcmpA
GetThreadContext
GetShortPathNameA
DeleteFileW
CreateNamedPipeA
SetEndOfFile
GetCommProperties
GetSystemTimeAdjustment
MoveFileExW
lstrcatA
QueryPerformanceCounter
EnumResourceTypesA
SuspendThread

msvcrt

_controlfp
exit
strcoll
wcsstr
gmtime
__set_app_type
strncmp
wcscoll
tolower
wcscspn
towlower
wcstol
isalnum
strtok
perror
wcschr
remove
fgets
__p__fmode
fputs
strncpy
__p__commode
wcstod
wcspbrk
_amsg_exit
strpbrk
ungetc
clock
isupper
_initterm
bsearch
puts
wcslen
mbtowc
calloc
memset
strcspn
_ismbblead
_XcptFilter
setvbuf
_exit
atoi
_cexit
__setusermatherr
strtoul
__getmainargs
fputc
vswprintf

comctl32

ImageList_Read
PropertySheetW
ImageList_AddMasked
ImageList_Draw
CreateToolbarEx
InitCommonControlsEx

Exports

Exports

?ReadInfoFile@@YGK_KHE:O

Sections

.text
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.init
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.erts
Size: 512B - Virtual size: 83B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.wall
Size: 512B - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.info
Size: 512B - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.udata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

20e13c3b5c0c698fdd9243c28c3bb702

Headers

File Characteristics

PDB Paths

Imports

user32

kernel32

msvcrt

comctl32

Exports

Exports

Sections

.text Size: 22KB - Virtual size: 21KB

.init Size: 6KB - Virtual size: 5KB

.erts Size: 512B - Virtual size: 83B

.wall Size: 512B - Virtual size: 39KB

.info Size: 512B - Virtual size: 192B

.data Size: 3KB - Virtual size: 2KB

.udata Size: 11KB - Virtual size: 10KB

.rsrc Size: 32KB - Virtual size: 31KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 22KB - Virtual size: 21KB

.init
Size: 6KB - Virtual size: 5KB

.erts
Size: 512B - Virtual size: 83B

.wall
Size: 512B - Virtual size: 39KB

.info
Size: 512B - Virtual size: 192B

.data
Size: 3KB - Virtual size: 2KB

.udata
Size: 11KB - Virtual size: 10KB

.rsrc
Size: 32KB - Virtual size: 31KB

.reloc
Size: 2KB - Virtual size: 1KB