8dd0c46d00bf94d0b2c7ce5d647456b5_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

8dd0c46d00bf94d0b2c7ce5d647456b5_JaffaCakes118
Size

207KB
MD5

8dd0c46d00bf94d0b2c7ce5d647456b5
SHA1

f3f8b7dbadcb24d694d300d14d1200a58d0c688d
SHA256

d200865c82ec635c69abd2252d395c41a681d8a5833c08bfaa6878c3263cf483
SHA512

97aab850a76014f06d60cb41df28c07f4b67d55d7bc09fd0fd0fbc532e80aabf9311e72a2d8309a564980240b880c4c8123f9919cff21f0bfdd873a5b3d31bb3
SSDEEP

6144:xPnw2AVjEmYM52LhVBiUcOnN6UJ/rCdvp/Yp6NdLrsgo1zz:xowjHFviUcON6UJTC1p/U6NdLgz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8dd0c46d00bf94d0b2c7ce5d647456b5_JaffaCakes118

Files

8dd0c46d00bf94d0b2c7ce5d647456b5_JaffaCakes118
.exe windows:5 windows x86 arch:x86

a45bc046d89ff678b614a1f97a33efa6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

X:\FeHFstbbp\awyMpdm\usFhMoczqio.pdb

Imports

comdlg32

FindTextW
PrintDlgW
PageSetupDlgW
ReplaceTextW
GetOpenFileNameW

msvcrt

swprintf
gmtime
isupper
isxdigit
wcstoul
_controlfp
getc
system
toupper
ungetc
__set_app_type
__p__fmode
__p__commode
memset
printf
setlocale
_amsg_exit
strspn
_initterm
strncpy
_acmdln
fclose
exit
strtoul
_ismbblead
_XcptFilter
iswctype
rand
iswspace
wcscmp
malloc
getenv
isalpha
strtol
_exit
wcstombs
_cexit
wcsncpy
fgetc
setvbuf
fputc
strcpy
strcspn
towlower
fputs
free
vsprintf
strtok
__setusermatherr
__getmainargs
localtime
strstr

kernel32

IsValidLanguageGroup
PulseEvent
GetModuleHandleA
GetModuleFileNameA
GetHandleInformation
SetNamedPipeHandleState
ConnectNamedPipe
VirtualAlloc
GetLocaleInfoA
GetStringTypeExW
CloseHandle
GetCommTimeouts
SetFileTime
SetThreadContext
FlushViewOfFile
CompareStringW
GetTempFileNameA
DeleteAtom
GetOEMCP
EnumSystemLocalesA
LoadLibraryExA
FindResourceExA
GetTempFileNameW
SetLocalTime
SetThreadPriority
GetUserDefaultUILanguage
GetSystemTimeAdjustment
GetCompressedFileSizeW
SearchPathA
CreateWaitableTimerW
GetDateFormatW
LocalFree
GetSystemWindowsDirectoryA
CreateEventA
GetSystemTimeAsFileTime
OpenFileMappingW
FindNextFileW
GlobalAddAtomA
AreFileApisANSI
GetFullPathNameW
GetSystemDirectoryA
MultiByteToWideChar
SearchPathW
lstrcatW
DeleteFileW
GetDateFormatA
GetLastError
LocalSize
HeapSize
IsDBCSLeadByteEx
SetWaitableTimer
GlobalUnlock
TlsSetValue
InitializeCriticalSection
SetUnhandledExceptionFilter
HeapUnlock
GetTempPathA
RemoveDirectoryA

gdi32

ExtTextOutA
SetPixel
SetBitmapDimensionEx
TextOutW
Escape
RectVisible
WidenPath
ScaleWindowExtEx
CreatePatternBrush
StretchDIBits
GetTextCharsetInfo
SetBkColor
CreateFontW
TextOutA
CreateRectRgn
SetWindowExtEx
GetPixel
GetBitmapBits
LPtoDP
GetROP2
GetMapMode
GetObjectW
SetDIBitsToDevice
CreateSolidBrush
CreateDCW
SetMapMode
GetPaletteEntries
GetDeviceCaps
CreateDIBSection
DeleteObject
CreateFontIndirectA
GetNearestColor
CreatePen
GetTextFaceW
GetTextMetricsW
GetNearestPaletteIndex
CreateBitmapIndirect
SetBkMode
GetRgnBox
Polyline
GetTextExtentPointW
DeleteDC
SetDIBits
GetBkMode
OffsetViewportOrgEx
EndPath
RectInRegion
CreateBitmap
PathToRegion
SelectClipRgn
SetPaletteEntries
RoundRect
ExtTextOutW

user32

ChangeMenuW
IsWindowUnicode
SendInput
SwitchToThisWindow
GetMessageW
GetMenuItemRect
GetDialogBaseUnits
GetClassLongW
GetPropW
GetMessageA
GetScrollPos
HideCaret
OpenIcon
LoadCursorW
LoadIconA
CreateWindowExW
InvalidateRect
GetMonitorInfoW
SetWindowPlacement
ValidateRect
GetUpdateRgn
GetCursorPos
IsCharAlphaW
wsprintfA
ChildWindowFromPoint
AppendMenuA
ClipCursor
IsIconic
GetDlgItemTextA
SetActiveWindow
FindWindowA
wvsprintfW
DrawFrameControl
EnableScrollBar
GetKeyboardLayout
MessageBoxA
GetMenuCheckMarkDimensions
CharToOemW
DrawStateW
DrawIcon
WaitForInputIdle
TranslateMessage
SetMenuItemBitmaps
GetSysColorBrush
SendMessageTimeoutA
GetSystemMetrics
TabbedTextOutW
GetClipCursor
DrawIconEx
IsDlgButtonChecked
SendDlgItemMessageA
TrackPopupMenu
DrawMenuBar
GetTopWindow
IsDialogMessageW
ScreenToClient
CreateDialogIndirectParamW
SetParent
SendDlgItemMessageW
InSendMessage
GetAsyncKeyState
ShowWindowAsync
PtInRect
KillTimer
ArrangeIconicWindows
LockWindowUpdate
RemoveMenu
PostMessageW
ReleaseDC
SetDlgItemTextW
GetDlgCtrlID
GetWindow
FrameRect
OffsetRect
WindowFromPoint
GetMenuItemCount
SetWindowLongA
ToUnicodeEx
IsChild
CharUpperBuffW
CharUpperA
SystemParametersInfoA
CharLowerW
CreateDialogParamA
GetNextDlgGroupItem
ShowCaret
CharPrevA
SetCaretPos
DialogBoxParamW
ScrollWindowEx
SetUserObjectInformationW
CreateIconIndirect
InternalGetWindowText
GetMenu
MessageBoxExW
PostThreadMessageA
GetShellWindow
DrawStateA
GetDlgItemTextW
InsertMenuA
GetClientRect
PeekMessageW
SetRect
GetWindowTextLengthW
WaitMessage
CheckDlgButton
CreateMenu
SetFocus
SetScrollInfo
SetTimer
GetClassInfoExA
SetLastErrorEx
AllowSetForegroundWindow
MapDialogRect
EqualRect
MessageBoxW
SystemParametersInfoW
CascadeWindows
LookupIconIdFromDirectory
GetKeyNameTextW
CreateWindowExA
IsWindowVisible
TrackPopupMenuEx
DefWindowProcA
CharUpperBuffA
SetWindowTextA
GetForegroundWindow
SetPropW
LoadAcceleratorsW
DefDlgProcA

Exports

Exports

?FreeOptionExW@@IJHPAEJ@X
?ExpressionA@@IJPAIPAEPAFPAHPAI@X
?FindDirectoryNew@@IJIPAN@X

Sections

.text
Size: 122KB - Virtual size: 122KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.import
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.cfg1
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pcode
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.cfg2
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.cfg3
Size: 512B - Virtual size: 292B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 57KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a45bc046d89ff678b614a1f97a33efa6

Headers

File Characteristics

PDB Paths

Imports

comdlg32

msvcrt

kernel32

gdi32

user32

Exports

Exports

Sections

.text Size: 122KB - Virtual size: 122KB

.import Size: 1KB - Virtual size: 1KB

.rdata Size: 6KB - Virtual size: 6KB

.cfg1 Size: 512B - Virtual size: 44B

.pcode Size: 13KB - Virtual size: 12KB

.cfg2 Size: 512B - Virtual size: 44B

.cfg3 Size: 512B - Virtual size: 292B

.data Size: 2KB - Virtual size: 7KB

.rsrc Size: 57KB - Virtual size: 56KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 122KB - Virtual size: 122KB

.import
Size: 1KB - Virtual size: 1KB

.rdata
Size: 6KB - Virtual size: 6KB

.cfg1
Size: 512B - Virtual size: 44B

.pcode
Size: 13KB - Virtual size: 12KB

.cfg2
Size: 512B - Virtual size: 44B

.cfg3
Size: 512B - Virtual size: 292B

.data
Size: 2KB - Virtual size: 7KB

.rsrc
Size: 57KB - Virtual size: 56KB

.reloc
Size: 2KB - Virtual size: 2KB