a22add31de955830ecb5bf93cf43d3a8_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

a22add31de955830ecb5bf93cf43d3a8_JaffaCakes118
Size

137KB
MD5

a22add31de955830ecb5bf93cf43d3a8
SHA1

f9628f7845733f8b128902f4f876ef59e663811e
SHA256

6d3dd1d7334aee5c5e39144b6fbe25fc2abdc80350c64ae1eed7572128a66a15
SHA512

ccb189c6b5cfcd95d50c2b4c5c1012730529d882c6456e688e5be1788b827ce27e5006e5d7c447dbd307d16b366ef050d37ee942743fca3decef1473733139f8
SSDEEP

3072:c77l8ANweLqxFJWGWCI/fVvFWsN/kRdqNkxn:QT1eJWKI6RUNkx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a22add31de955830ecb5bf93cf43d3a8_JaffaCakes118

Files

a22add31de955830ecb5bf93cf43d3a8_JaffaCakes118
.exe windows:5 windows x86 arch:x86

6d236e2cbf794026e0786c136031cb10

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

M:\qriElPrjpQkXkY\kIxyzccM\zjjARnr\iSkNngowCbi.pdb

Imports

advapi32

OpenBackupEventLogW

msvcrt

_controlfp
wcstoul
clearerr
wcstok
__set_app_type
__p__fmode
isalpha
__p__commode
_amsg_exit
fputc
wcsstr
_initterm
_acmdln
realloc
mktime
ftell
vswprintf
exit
_ismbblead
_XcptFilter
free
_exit
strcpy
_cexit
__setusermatherr
__getmainargs
calloc

user32

GetClassLongW
CallWindowProcA
GetKeyState
SetMenu
BeginDeferWindowPos
RegisterClassExA
mouse_event
wsprintfA
BringWindowToTop
SendMessageW
EnableMenuItem
EnumThreadWindows
EnumChildWindows
DrawMenuBar
IsDialogMessageW
GetSubMenu
ArrangeIconicWindows
MonitorFromRect
CreatePopupMenu
AdjustWindowRectEx
LoadAcceleratorsW
TranslateAcceleratorW
FindWindowA
SendDlgItemMessageW
TranslateMessage
SendMessageTimeoutW
IsDlgButtonChecked
IntersectRect
GetUserObjectInformationA
OpenInputDesktop
GetClassInfoExW
IsWindowEnabled
SetParent
CreateAcceleratorTableW
AdjustWindowRect
InsertMenuItemW
TrackPopupMenu
EnableWindow
LoadCursorA
GetDlgItemTextA
DragObject
RegisterWindowMessageW
CallWindowProcW
IsMenu

comdlg32

PageSetupDlgW
FindTextW

shlwapi

StrStrIA
ord157
ord29

gdi32

GetLayout
CreateHatchBrush
GetCharWidth32W
GetBkMode
PolyBezier
GetMapMode
EnumFontFamiliesExW
Polyline
TextOutW
GetNearestPaletteIndex
LPtoDP
StartPage
GetTextMetricsA
SetBkColor
SelectPalette
PtInRegion
CreateHalftonePalette
GetTextMetricsW

kernel32

RemoveDirectoryW
SetTimerQueueTimer
GlobalCompact
LockResource
LCMapStringW
LCMapStringA
GetTimeFormatA
IsValidLanguageGroup
GetModuleHandleW
FindResourceW
LoadLibraryW
lstrlenW
LocalFree
FindResourceExW
GetTickCount
GetFileType
GlobalSize
GlobalFlags
SetCommMask
CreateFileW
HeapSize
GetModuleFileNameA
CreateMailslotW

Exports

Exports

?CrtHeaderOriginal@@YGGPAEPAMPAK*Z
?CrtNameExA@@YGEF*Z
?IsNotProfileExW@@YGPAH_NPAI*Z
?EnumEventNew@@YGPAGPAHNGPAG*Z
?DecrementAppNameEx@@YGKMMED*Z
?OnAppName@@YGNHPAGPAKI*Z
?AnchorW@@YGK_NIN*Z

Sections

.text
Size: 111KB - Virtual size: 110KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.itext
Size: 512B - Virtual size: 500B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.etdir
Size: 512B - Virtual size: 348B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.itdir
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.vtdir
Size: 512B - Virtual size: 140B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ptdir
Size: 512B - Virtual size: 140B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.stdir
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6d236e2cbf794026e0786c136031cb10

Headers

File Characteristics

PDB Paths

Imports

advapi32

msvcrt

user32

comdlg32

shlwapi

gdi32

kernel32

Exports

Exports

Sections

.text Size: 111KB - Virtual size: 110KB

.itext Size: 512B - Virtual size: 500B

.etdir Size: 512B - Virtual size: 348B

.itdir Size: 3KB - Virtual size: 2KB

.data Size: 2KB - Virtual size: 20KB

.vtdir Size: 512B - Virtual size: 140B

.ptdir Size: 512B - Virtual size: 140B

.stdir Size: 13KB - Virtual size: 13KB

.rsrc Size: 3KB - Virtual size: 3KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 111KB - Virtual size: 110KB

.itext
Size: 512B - Virtual size: 500B

.etdir
Size: 512B - Virtual size: 348B

.itdir
Size: 3KB - Virtual size: 2KB

.data
Size: 2KB - Virtual size: 20KB

.vtdir
Size: 512B - Virtual size: 140B

.ptdir
Size: 512B - Virtual size: 140B

.stdir
Size: 13KB - Virtual size: 13KB

.rsrc
Size: 3KB - Virtual size: 3KB

.reloc
Size: 1KB - Virtual size: 1KB