a5754c5ee679c0363f1fc65999ae2c9a_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

a5754c5ee679c0363f1fc65999ae2c9a_JaffaCakes118
Size

211KB
MD5

a5754c5ee679c0363f1fc65999ae2c9a
SHA1

df421e2ff7a26e530c849df4aa901af16e5f8eff
SHA256

123cfb15baec70faf6d8c17aa407401e5e07b009b49a7ec95d04fb31b63d8bb5
SHA512

a8fcbf39910268ad608d418a22c935aebcc4feb741451860aa4dca9ae5e404ad759b8d755286729c86e64bb821674a7fadabd3e40198e06e53a4051ff5da1acf
SSDEEP

6144:qZfE7XJJ1Q5WLJDDB1RXilu0DSJuXYa0w3mRKoC:Kf2dLLSYESJEWw2jC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a5754c5ee679c0363f1fc65999ae2c9a_JaffaCakes118

Files

a5754c5ee679c0363f1fc65999ae2c9a_JaffaCakes118
.exe windows:5 windows x86 arch:x86

26e0f020eb5cde6dc0367a2676afa561

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

J:\Wbukomp\anyncwusbb\tolyWVnrl\dhftbePor\pyNVVqkrc.pdb

Imports

shlwapi

StrStrA

gdi32

SetWindowExtEx
CreateRectRgn
EnumFontFamiliesW
GetBitmapBits
GetROP2
SelectObject
GetBkMode
SetBkColor
WidenPath
RectVisible
EnumFontsW
GetDIBColorTable
StartDocW
CreateRectRgnIndirect
RemoveFontResourceW
SetTextColor
SetAbortProc
SetViewportOrgEx
CreateDIBitmap
SetTextAlign
DPtoLP
LineTo
DeleteDC
OffsetRgn
CreateCompatibleBitmap
CreateBrushIndirect
GetNearestPaletteIndex
GetTextAlign
CreateDCW
CreateRoundRectRgn
CreatePen
Escape
CreateFontW
SelectClipRgn
PtInRegion
CreateICW
CreateBitmap
MoveToEx
StretchDIBits
SetDIBits
GetTextCharsetInfo
GetSystemPaletteUse
PathToRegion
SetDIBitsToDevice
GetViewportOrgEx
SetBitmapBits
GetPixel
FillRgn
SetStretchBltMode
GetDIBits
SetPaletteEntries
GetTextExtentPoint32W
ExcludeClipRect
GetObjectW
AddFontResourceW
CreateFontIndirectA
SelectPalette
CreatePalette
ExtTextOutW
GetTextExtentPointW
GetObjectA
ExtFloodFill
GetNearestColor
GetMapMode
Polyline

comctl32

CreateStatusWindowW
ImageList_AddMasked
ImageList_Read
PropertySheetW
ImageList_GetImageCount
InitCommonControlsEx
ImageList_SetIconSize
DestroyPropertySheetPage
CreateToolbarEx

user32

SwapMouseButton
MonitorFromRect
LoadBitmapW
MoveWindow
LoadMenuA
CharNextA
SetParent
DragObject
DispatchMessageW
GetUpdateRgn
GetDlgItemTextA
GetScrollInfo
DrawIconEx
CheckMenuItem
FindWindowA
ShowWindow
CharPrevA
keybd_event
GetWindowTextA
GetAsyncKeyState
FillRect
GetDCEx
GetMenu
ScrollWindow
SetMenu
LoadCursorW
InvalidateRect
GetNextDlgGroupItem
IntersectRect
LoadImageW
GetWindowTextW
UnionRect
LoadImageA
MapWindowPoints
DrawTextExW
CallWindowProcA
DestroyMenu
ActivateKeyboardLayout
CreatePopupMenu
CopyImage
PostQuitMessage
RegisterClassExW
EnableMenuItem
SetCursorPos
MessageBoxW
GetClassInfoExA
GrayStringW
ScrollWindowEx
GetCaretPos
GetMonitorInfoW
IsMenu
GetMenuItemInfoW
DefWindowProcA
GetUpdateRect
RegisterHotKey
DrawEdge
GetMessagePos
GetKeyboardLayoutNameW
GetDlgCtrlID
SetFocus
MessageBoxExW
RegisterWindowMessageW
SetUserObjectInformationW
InSendMessageEx
PostThreadMessageW
GetMenuState
AdjustWindowRect
GetLastActivePopup
GetCaretBlinkTime
GetTopWindow
InsertMenuA
GetMenuItemRect
SetWindowTextW
GetParent
IsDialogMessageA
ExitWindowsEx
GetClassInfoA
DrawMenuBar
DrawTextW
SwitchToThisWindow
GetForegroundWindow
CharToOemBuffA
IsZoomed
OpenDesktopW
CreateAcceleratorTableW
CharToOemW
LoadAcceleratorsW
AppendMenuW
GetWindowTextLengthW
OemToCharA
FindWindowExA
InSendMessage
GetSubMenu
SetCaretPos
WindowFromPoint
EndPaint
SetScrollRange
LoadBitmapA
IsWindowUnicode
IsWindowVisible
SendDlgItemMessageA
CreateDialogParamW
GetClassLongA
ShowOwnedPopups
GetSysColorBrush
SetWindowTextA
DrawFocusRect
RegisterClassA
SetWindowLongA
CreateCursor
SetWindowPlacement
GetDlgItemTextW
OpenIcon
IsIconic
DispatchMessageA
CreateIconIndirect
SendDlgItemMessageW
DialogBoxIndirectParamW
DefDlgProcA
PostMessageA
GetClientRect
EqualRect
ScreenToClient
SetMenuDefaultItem
WaitMessage
CreateDialogIndirectParamW
BeginDeferWindowPos
CharToOemA
GetClassLongW
SetWindowPos
CopyAcceleratorTableW
GetKeyNameTextW
DestroyWindow
SetPropW
OpenInputDesktop
DestroyCaret
DialogBoxParamA
DialogBoxParamW
EnableScrollBar
ChildWindowFromPointEx
CharUpperA
DestroyAcceleratorTable
DestroyIcon
AdjustWindowRectEx
InflateRect
PtInRect
GetSystemMenu
GetScrollPos
GetDlgItemInt
FindWindowExW
CheckMenuRadioItem
GetMessageA
KillTimer
GetWindowRect
DestroyCursor
InvertRect
CreateWindowExA
OemToCharBuffA
LoadStringW
ShowCaret
TranslateAcceleratorW
RegisterClassW

kernel32

GetTempFileNameW
QueryPerformanceCounter
GlobalFlags
RemoveDirectoryW
GlobalFindAtomW
GlobalDeleteAtom
RegisterWaitForSingleObject
CreateFileMappingA
GetCommConfig
FindResourceExW
GetStringTypeExW
GetOverlappedResult
SetFileAttributesW
GetComputerNameExW
GetSystemWindowsDirectoryW
SearchPathW
SetThreadLocale
DeleteCriticalSection
DuplicateHandle
WaitForSingleObject
MoveFileA
HeapUnlock
SetCommTimeouts
CancelWaitableTimer
GetFileAttributesA
HeapLock
FindFirstFileW
FindFirstFileA
GetThreadPriority
FlushViewOfFile
GetFileTime
GetSystemDirectoryA
ConnectNamedPipe
GetComputerNameExA
GlobalUnlock
GetTempPathW
TryEnterCriticalSection
IsBadStringPtrW
GetTickCount
GetSystemTimeAsFileTime
GetNumberFormatA
AddAtomW
SetCommState
LocalUnlock
IsValidLocale
ExitThread
lstrcpyA
GetACP
SetFilePointer
SetWaitableTimer
GetCommandLineW
GetPriorityClass
GetComputerNameA
OpenFile
FindNextChangeNotification
SearchPathA
GetModuleFileNameW
LocalReAlloc
IsBadReadPtr
GetThreadTimes
GetModuleHandleA
GetModuleFileNameA
IsBadCodePtr
WideCharToMultiByte
GetTimeZoneInformation
MultiByteToWideChar
TransactNamedPipe
GetShortPathNameA
FreeResource
GetTempPathA
GetCurrentDirectoryW
OpenFileMappingA
SetHandleInformation
FreeLibrary
lstrcmpA
CreateFileW

msvcrt

isalpha
strncmp
iswprint
getc
wcstombs
localtime
_controlfp
rand
setvbuf
wcstol
setlocale
exit
isalnum
wcspbrk
ungetc
fprintf
__set_app_type
__p__fmode
__p__commode
free
strchr
time
vsprintf
_amsg_exit
strrchr
mktime
memset
wcsstr
toupper
strspn
putc
strcoll
wcscoll
wcstok
_initterm
iswdigit
fseek
_ismbblead
perror
gets
wcstoul
remove
strtok
strstr
_XcptFilter
strerror
_exit
wcscpy
bsearch
iswspace
_cexit
fgetc
strncpy
clock
strpbrk
iswalpha
__setusermatherr
wcsncpy
malloc
wcschr
__getmainargs

Exports

Exports

?EnumExpressionW@@IJMJPAHJ@X

Sections

.text
Size: 58KB - Virtual size: 57KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.code
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 130KB - Virtual size: 129KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

26e0f020eb5cde6dc0367a2676afa561

Headers

File Characteristics

PDB Paths

Imports

shlwapi

gdi32

comctl32

user32

kernel32

msvcrt

Exports

Exports

Sections

.text Size: 58KB - Virtual size: 57KB

.code Size: 12KB - Virtual size: 12KB

.data Size: 12KB - Virtual size: 79KB

.rsrc Size: 130KB - Virtual size: 129KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 58KB - Virtual size: 57KB

.code
Size: 12KB - Virtual size: 12KB

.data
Size: 12KB - Virtual size: 79KB

.rsrc
Size: 130KB - Virtual size: 129KB

.reloc
Size: 2KB - Virtual size: 1KB