94cdd5ed1ef16874adb86190e3646c3f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

94cdd5ed1ef16874adb86190e3646c3f_JaffaCakes118
Size

156KB
MD5

94cdd5ed1ef16874adb86190e3646c3f
SHA1

b546e1dc3a7fd7071d3ed4ac6fc24f8dfe02d6e2
SHA256

29dfb74d826ab04cec790971156283f99b2c7cde7e0d0fd831635376bc5a38a7
SHA512

11a4ad7cdcf1611806eab7c2b67e7fa4366dbe522e5f738d8ba56ad78e5f82b867e32e096adb3b0cb58a366729e354e96efacbeb0477094ce4f5f2c8677ca967
SSDEEP

3072:LU7cmAMVybfBqixoiQizIizLtNzRkWuyyw6TqX857EotoXFDm1IZZaCUSvA1ZRPc:LU7ckABXo7YIYLtUWuyO+cOd7USSRPFm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
94cdd5ed1ef16874adb86190e3646c3f_JaffaCakes118

Files

94cdd5ed1ef16874adb86190e3646c3f_JaffaCakes118
.exe windows:5 windows x86 arch:x86

9345325dbc8109f09c088788e485e7fe

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

I:\VJCvoxrmfkN\PfysyjyZkEr\yisolneGap\aMauudvmmw.pdb

Imports

msvcrt

clock
getenv
_controlfp
isupper
strcpy
__set_app_type
localtime
tolower
sscanf
__p__fmode
isprint
__p__commode
ungetc
clearerr
wcscoll
fwrite
_amsg_exit
gmtime
putc
fread
rand
wcscmp
strstr
atol
_initterm
fflush
wcspbrk
_ismbblead
_XcptFilter
fprintf
free
wcsncmp
setvbuf
fgetc
ftell
islower
remove
wcscat
towlower
fgets
mktime
fputs
_exit
_cexit
wcsstr
__setusermatherr
fclose
floor
bsearch
calloc
__getmainargs

user32

ScrollWindowEx
LoadImageW
GetMenuItemInfoW
ReleaseDC
PostMessageA
GetClientRect
ShowOwnedPopups
InvalidateRgn
GetMessageW
GetUserObjectInformationA
PtInRect
TileWindows
SetMenuItemInfoW
LoadMenuA
CharUpperA
CharToOemBuffA
ShowCursor
DrawTextExW
DrawIconEx
MapVirtualKeyW
DefWindowProcW
SendDlgItemMessageW
LockWindowUpdate
ChildWindowFromPoint
LoadAcceleratorsW
ShowWindowAsync
GetMessagePos
GetDesktopWindow
CreateWindowExA
DeleteMenu
GetTopWindow
SetScrollPos
BringWindowToTop
DrawMenuBar
InvertRect
CreateDialogIndirectParamW
SendMessageW
DrawStateW
DrawIcon
GetActiveWindow
ScreenToClient
DefDlgProcA
IsWindow
GetNextDlgGroupItem
SetRectEmpty
BeginDeferWindowPos
IsDialogMessageA
CharLowerW
GetMenuCheckMarkDimensions
GetParent
LoadMenuW
InvalidateRect
IsDlgButtonChecked
GetSysColorBrush
DialogBoxIndirectParamW
DrawTextA
CharNextA
DefDlgProcW
RegisterWindowMessageA
GetClassInfoExW
SendMessageTimeoutA
HiliteMenuItem
GetWindowRect
GetKeyboardType
GetDoubleClickTime
GetScrollInfo
GetCaretPos
LoadStringA
EnableMenuItem
SetWindowTextA
MoveWindow
LoadIconA
UpdateWindow
DestroyAcceleratorTable
MapWindowPoints
GetMenuItemID
AllowSetForegroundWindow
GetScrollPos
GetWindow
SendDlgItemMessageA
ClipCursor
GetShellWindow
InflateRect
CharNextW
MonitorFromRect
UnloadKeyboardLayout
CloseDesktop
GetClassNameW
GetWindowLongA
VkKeyScanA
CreateIconFromResource
SetWindowLongA
SetCaretPos
SetSysColors
MessageBoxExA
MessageBoxExW
GetWindowTextA
SetCursorPos
InSendMessage
GetMessageExtraInfo
IsChild
PostQuitMessage
GetUpdateRect
GetDCEx
DestroyCaret
GetWindowPlacement
ClientToScreen
CharToOemA
RegisterClassA
GetDlgItemTextA
ShowCaret
CharUpperW
OemKeyScan
CreateDialogParamA
LoadCursorA
IsCharUpperA
MapVirtualKeyA
UnionRect
CopyImage
MessageBoxA
WindowFromPoint
KillTimer
GetMenuItemRect
EnumWindows
ActivateKeyboardLayout
IsRectEmpty
SetScrollRange
LoadAcceleratorsA
CharToOemW
IsMenu
DefFrameProcW
SetClassLongW
ExitWindowsEx
CascadeWindows
CreatePopupMenu
GetMonitorInfoW

kernel32

GlobalGetAtomNameW
GetExitCodeThread
OpenSemaphoreW
GetStringTypeExW
GetComputerNameW
GetCompressedFileSizeW
TlsGetValue
lstrcmpW
LocalReAlloc
WaitForSingleObjectEx
CreateSemaphoreW
GetVersionExW
GetFileType
ReleaseSemaphore
DeleteFileA
GetOverlappedResult
GetTempPathW
MultiByteToWideChar
EnumResourceTypesA
FindResourceExW
WideCharToMultiByte
SetMailslotInfo
GetFullPathNameA
FindFirstFileW
GetStartupInfoW
IsBadStringPtrW
GetLastError
SetNamedPipeHandleState
GetLocalTime
FileTimeToSystemTime
WaitForMultipleObjectsEx
IsDBCSLeadByteEx
OpenFileMappingA
TransactNamedPipe
GetTimeFormatW
GetSystemWindowsDirectoryW
GetNumberFormatW
CreateRemoteThread
FindFirstChangeNotificationW
LoadLibraryExW
GetFileInformationByHandle
GetFileTime
UnlockFile
GetSystemInfo
lstrlenW
SetWaitableTimer
SetTimerQueueTimer
GetComputerNameA
SizeofResource
GetSystemDefaultLangID
FlushFileBuffers
FindNextFileW
GetStdHandle
VirtualProtect
GetCurrentDirectoryW
LockFile
GetOEMCP
EnumResourceNamesW
SetEndOfFile
DuplicateHandle
lstrcpyW

gdi32

SetMapMode
PolyBezier
TextOutA
GetClipBox
StartPage
SetDIBitsToDevice
ScaleWindowExtEx
CreateHalftonePalette
BeginPath
GetFontData
SetTextAlign
PathToRegion
GetWindowOrgEx
WidenPath
SelectClipRgn
CreateSolidBrush
DeleteObject
GetTextFaceW
Escape
CreateFontA
EndPath
GetCurrentObject
StartDocW
CreateFontIndirectW
IntersectClipRect
RoundRect
CreateCompatibleBitmap
ScaleViewportExtEx
CreatePen
UnrealizeObject
GetDIBColorTable
ExtFloodFill
SetPaletteEntries
StretchDIBits
CreateRectRgn
PtInRegion
GetTextExtentPointW
EnumFontsW
GetTextColor
CreateDIBSection
GetTextCharsetInfo
GetPaletteEntries
LineDDA
EndDoc
RectVisible
GetBitmapBits
CombineRgn
RemoveFontResourceW
SelectObject
StretchBlt
PatBlt
Ellipse
FillRgn
GetObjectW
GetDIBits
SetRectRgn

advapi32

GetCurrentHwProfileW
AccessCheckByTypeResultList

Exports

Exports

?IsRectEmptyUDdJHLKJDUID@@YGKPA_WK@Z
?IsRectEmptyUDuDJHJHKDYUd@@YGKPA_WK@Z

Sections

.text
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 127KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 104KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9345325dbc8109f09c088788e485e7fe

Headers

File Characteristics

PDB Paths

Imports

msvcrt

user32

kernel32

gdi32

advapi32

Exports

Exports

Sections

.text Size: 27KB - Virtual size: 26KB

.data Size: 22KB - Virtual size: 127KB

.rsrc Size: 104KB - Virtual size: 104KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 27KB - Virtual size: 26KB

.data
Size: 22KB - Virtual size: 127KB

.rsrc
Size: 104KB - Virtual size: 104KB

.reloc
Size: 1KB - Virtual size: 1KB