a91c9f86a5ac58c9dca635fb5e461211_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a91c9f86a5ac58c9dca635fb5e461211_JaffaCakes118
Size

24KB
MD5

a91c9f86a5ac58c9dca635fb5e461211
SHA1

0e3d4ae0d0e1e64663384a014b0dc820e99b27d5
SHA256

290b828ac92c515be6b05e44d9227aed160baa444798f5b3efbb1cc6033dd940
SHA512

283d1329859c0e11055afe8403426c490e20ce12b9a40d30cbdac4f92feb4286fb2bdfd48b3e59e20f755c24567a3190327cf57f29b6dae486fe89d7dcc8b1d3
SSDEEP

384:nAihhbAVf8KnZl7afDj4OVKZvYQYD2h24nuWCFLHkON/VTSbSL3:rhbAVfxn7W4OiKenuWC9EONtTSbSL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a91c9f86a5ac58c9dca635fb5e461211_JaffaCakes118

Files

a91c9f86a5ac58c9dca635fb5e461211_JaffaCakes118
.exe windows:5 windows x86 arch:x86

8548217d5a0189d0529501ac034e1bb0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

qtgui4

?qt_metacall@QPushButton@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?event@QPushButton@@MAE_NPAVQEvent@@@Z
?timerEvent@QAbstractButton@@MAEXPAVQTimerEvent@@@Z
?sizeHint@QPushButton@@UBE?AVQSize@@XZ
?minimumSizeHint@QPushButton@@UBE?AVQSize@@XZ
?mousePressEvent@QAbstractButton@@MAEXPAVQMouseEvent@@@Z
?mouseReleaseEvent@QAbstractButton@@MAEXPAVQMouseEvent@@@Z
?mouseMoveEvent@QAbstractButton@@MAEXPAVQMouseEvent@@@Z
?keyPressEvent@QPushButton@@MAEXPAVQKeyEvent@@@Z
?keyReleaseEvent@QAbstractButton@@MAEXPAVQKeyEvent@@@Z
?qt_metacast@QPushButton@@UAEPAXPBD@Z
?focusOutEvent@QPushButton@@MAEXPAVQFocusEvent@@@Z
?paintEvent@QPushButton@@MAEXPAVQPaintEvent@@@Z
?changeEvent@QAbstractButton@@MAEXPAVQEvent@@@Z
?hitButton@QAbstractButton@@MBE_NABVQPoint@@@Z
?checkStateSet@QAbstractButton@@MAEXXZ
?nextCheckState@QAbstractButton@@MAEXXZ
??1QPushButton@@UAE@XZ
?qt_metacast@QWidget@@UAEPAXPBD@Z
?qt_metacall@QWidget@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?staticMetaObject@QWidget@@2UQMetaObject@@B
?metaObject@QPushButton@@UBEPBUQMetaObject@@XZ
?metric@QWidget@@MBEHW4PaintDeviceMetric@QPaintDevice@@@Z
?releaseDC@QWidget@@UBEXPAUHDC__@@@Z
?getDC@QWidget@@UBEPAUHDC__@@XZ
?paintEngine@QWidget@@UBEPAVQPaintEngine@@XZ
?devType@QWidget@@UBEHXZ
?languageChange@QWidget@@MAEXXZ
?windowActivationChange@QWidget@@MAEX_N@Z
?fontChange@QWidget@@MAEXABVQFont@@@Z
?paletteChange@QWidget@@MAEXABVQPalette@@@Z
?enabledChange@QWidget@@MAEX_N@Z
?styleChange@QWidget@@MAEXAAVQStyle@@@Z
?focusNextPrevChild@QWidget@@MAE_N_N@Z
?inputMethodQuery@QWidget@@UBE?AVQVariant@@W4InputMethodQuery@Qt@@@Z
?inputMethodEvent@QWidget@@MAEXPAVQInputMethodEvent@@@Z
?changeEvent@QWidget@@MAEXPAVQEvent@@@Z
?winEvent@QWidget@@MAE_NPAUtagMSG@@PAJ@Z
?hideEvent@QWidget@@MAEXPAVQHideEvent@@@Z
?showEvent@QWidget@@MAEXPAVQShowEvent@@@Z
?dropEvent@QWidget@@MAEXPAVQDropEvent@@@Z
?dragLeaveEvent@QWidget@@MAEXPAVQDragLeaveEvent@@@Z
?dragMoveEvent@QWidget@@MAEXPAVQDragMoveEvent@@@Z
?dragEnterEvent@QWidget@@MAEXPAVQDragEnterEvent@@@Z
?actionEvent@QWidget@@MAEXPAVQActionEvent@@@Z
?tabletEvent@QWidget@@MAEXPAVQTabletEvent@@@Z
?contextMenuEvent@QWidget@@MAEXPAVQContextMenuEvent@@@Z
?closeEvent@QWidget@@MAEXPAVQCloseEvent@@@Z
?resizeEvent@QWidget@@MAEXPAVQResizeEvent@@@Z
?moveEvent@QWidget@@MAEXPAVQMoveEvent@@@Z
?paintEvent@QWidget@@MAEXPAVQPaintEvent@@@Z
?leaveEvent@QWidget@@MAEXPAVQEvent@@@Z
?enterEvent@QWidget@@MAEXPAVQEvent@@@Z
?focusOutEvent@QWidget@@MAEXPAVQFocusEvent@@@Z
?focusInEvent@QWidget@@MAEXPAVQFocusEvent@@@Z
?keyReleaseEvent@QWidget@@MAEXPAVQKeyEvent@@@Z
?keyPressEvent@QWidget@@MAEXPAVQKeyEvent@@@Z
?wheelEvent@QWidget@@MAEXPAVQWheelEvent@@@Z
?mouseMoveEvent@QWidget@@MAEXPAVQMouseEvent@@@Z
?mouseDoubleClickEvent@QWidget@@MAEXPAVQMouseEvent@@@Z
?mouseReleaseEvent@QWidget@@MAEXPAVQMouseEvent@@@Z
?mousePressEvent@QWidget@@MAEXPAVQMouseEvent@@@Z
?heightForWidth@QWidget@@UBEHH@Z
?minimumSizeHint@QWidget@@UBE?AVQSize@@XZ
?sizeHint@QWidget@@UBE?AVQSize@@XZ
?setVisible@QWidget@@UAEX_N@Z
?event@QWidget@@MAE_NPAVQEvent@@@Z
??0QWidget@@QAE@PAV0@V?$QFlags@W4WindowType@Qt@@@@@Z
??0QPushButton@@QAE@ABVQString@@PAVQWidget@@@Z
?addWidget@QLayout@@QAEXPAVQWidget@@@Z
?setLayout@QWidget@@QAEXPAVQLayout@@@Z
?setWindowTitle@QWidget@@QAEXABVQString@@@Z
??0QApplication@@QAE@AAHPAPADH@Z
?show@QWidget@@QAEXXZ
?exec@QApplication@@SAHXZ
??1QApplication@@UAE@XZ
??1QWidget@@UAE@XZ
?setGeometry@QLayout@@UAEXABVQRect@@@Z
?getContentsMargins@QLayout@@QBEXPAH000@Z
?layoutSpacing@QStyle@@QBEHW4ControlType@QSizePolicy@@0W4Orientation@Qt@@PBVQStyleOption@@PBVQWidget@@@Z
?margin@QLayout@@QBEHXZ
??0QLayout@@QAE@XZ
?spacerItem@QLayoutItem@@UAEPAVQSpacerItem@@XZ
?layout@QLayout@@UAEPAV1@XZ
?widget@QLayoutItem@@UAEPAVQWidget@@XZ
?invalidate@QLayout@@UAEXXZ
?minimumHeightForWidth@QLayoutItem@@UBEHH@Z
?isEmpty@QLayout@@UBE_NXZ
?geometry@QLayout@@UBE?AVQRect@@XZ
?maximumSize@QLayout@@UBE?AVQSize@@XZ
?indexOf@QLayout@@UBEHPAVQWidget@@@Z
?childEvent@QLayout@@MAEXPAVQChildEvent@@@Z
?qt_metacall@QLayout@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?qt_metacast@QLayout@@UAEPAXPBD@Z
?metaObject@QLayout@@UBEPBUQMetaObject@@XZ
?setContentsMargins@QLayout@@QAEXHHHH@Z
??1QLayout@@UAE@XZ
?style@QWidget@@QBEPAVQStyle@@XZ
?focusInEvent@QPushButton@@MAEXPAVQFocusEvent@@@Z
?spacing@QLayout@@QBEHXZ

qtcore4

?qBadAlloc@@YAXXZ
?allocate@QVectorData@@SAPAU1@HH@Z
?qMemSet@@YAPAXPAXHI@Z
?reallocate@QVectorData@@SAPAU1@PAU1@HHH@Z
?qWinMain@@YAXPAUHINSTANCE__@@0PADHAAHAAV?$QVector@PAD@@@Z
?detach@QByteArray@@QAEXXZ
?toLocal8Bit@QString@@QBE?AVQByteArray@@XZ
?free@QVectorData@@SAXPAU1@H@Z
?childEvent@QObject@@MAEXPAVQChildEvent@@@Z
?free@QString@@CAXPAUData@1@@Z
??1QString@@QAE@XZ
?tr@QMetaObject@@QBE?AVQString@@PBD0@Z
??0QRect@@QAE@ABVQPoint@@0@Z
?expandedTo@QSize@@QBE?AV1@ABV1@@Z
?remove@QListData@@QAEXH@Z
?append@QListData@@QAEPAPAXXZ
?disconnectNotify@QObject@@MAEXPBD@Z
?connectNotify@QObject@@MAEXPBD@Z
?customEvent@QObject@@MAEXPAVQEvent@@@Z
?timerEvent@QObject@@MAEXPAVQTimerEvent@@@Z
?eventFilter@QObject@@UAE_NPAV1@PAVQEvent@@@Z
?event@QObject@@UAE_NPAVQEvent@@@Z
?detach_grow@QListData@@QAEPAUData@1@PAHH@Z
?detach@QListData@@QAEPAUData@1@H@Z
?qFree@@YAXPAX@Z
?shared_null@QListData@@2UData@1@A
?parent@QObject@@QBEPAV1@XZ
?isWidgetType@QObject@@QBE_NXZ
?fromWCharArray@QString@@SA?AV1@PBGH@Z

msvcr100

_cexit
__getmainargs
_amsg_exit
??2@YAPAXI@Z
??3@YAXPAX@Z
__CxxFrameHandler3
_CxxThrowException
_exit
_controlfp_s
_invoke_watson
_except_handler4_common
_onexit
_lock
__dllonexit
_unlock
?_type_info_dtor_internal_method@type_info@@QAEXXZ
?terminate@@YAXXZ
_crt_debugger_hook
__set_app_type
_fmode
_commode
__setusermatherr
_configthreadlocale
_initterm_e
_initterm
_acmdln
exit
_ismbblead
_XcptFilter
memcpy

kernel32

GetCommandLineW
Sleep
InterlockedCompareExchange
HeapSetInformation
GetStartupInfoW
EncodePointer
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
QueryPerformanceCounter
DecodePointer
IsDebuggerPresent
SetUnhandledExceptionFilter
InterlockedExchange

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 708B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8548217d5a0189d0529501ac034e1bb0

Headers

DLL Characteristics

File Characteristics

Imports

qtgui4

qtcore4

msvcr100

kernel32

Sections

.text Size: 8KB - Virtual size: 8KB

.rdata Size: 11KB - Virtual size: 10KB

.data Size: 512B - Virtual size: 1KB

.rsrc Size: 1024B - Virtual size: 708B

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 8KB - Virtual size: 8KB

.rdata
Size: 11KB - Virtual size: 10KB

.data
Size: 512B - Virtual size: 1KB

.rsrc
Size: 1024B - Virtual size: 708B

.reloc
Size: 2KB - Virtual size: 1KB