ad372f67fa10caf316835d2292bf26e2_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

ad372f67fa10caf316835d2292bf26e2_JaffaCakes118
Size

211KB
MD5

ad372f67fa10caf316835d2292bf26e2
SHA1

229e57fa730418bd1d01f0af6deaa5e3bdb2034a
SHA256

32f38e8e4360fc8cb4f5f5fb9ecc6253bcce8b29ff8f2ac1ff3b5104f8924335
SHA512

4b40fe88c3d05fe17044d42d8ed018e09972d5fc373d3bf287d6f4a2af8763cee03bd8dd20de702d508becb9e90117794e4c54acd73de7f6ac5f61124590322e
SSDEEP

3072:ANJQxpeCfzqdvuHqjwMvPozHBhapX5OUm2n50lWcJGyhtV3yJPR9X4sPbTNEd+:uGehuKjx4DXIc7pjTV3yJPfbREd+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ad372f67fa10caf316835d2292bf26e2_JaffaCakes118

Files

ad372f67fa10caf316835d2292bf26e2_JaffaCakes118
.exe windows:5 windows x86 arch:x86

f599278f39b912177069b81d6e3fb8d2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

J:\fVcVaAbjse\WgPxwBcwmaAl\tjgtzfzrt.pdb

Imports

user32

GetNextDlgTabItem
SetActiveWindow
CopyImage
PostThreadMessageA
GetKeyNameTextW
CreateIconIndirect
ShowWindowAsync
GetNextDlgGroupItem
SetMenuItemBitmaps
SetParent
SetForegroundWindow
GetClassInfoA
GetShellWindow
RemovePropW
wvsprintfA
SetDlgItemTextW
InsertMenuItemW
GetScrollPos
TranslateAcceleratorW
BringWindowToTop
FindWindowW
GetDialogBaseUnits
ScrollWindowEx
IsRectEmpty
WindowFromPoint
DispatchMessageW
DrawIcon
SetWindowLongW
SetCaretPos
EnumChildWindows
ShowCursor
GetUserObjectInformationW
GetScrollInfo
keybd_event
CopyRect

msvcrt

vsprintf
iswprint
_controlfp
strncpy
__set_app_type
wcslen
__p__fmode
system
__p__commode
_amsg_exit
bsearch
_initterm
_acmdln
setvbuf
exit
strrchr
_ismbblead
_XcptFilter
_exit
puts
_cexit
__setusermatherr
__getmainargs
strstr

advapi32

LookupPrivilegeDisplayNameA

gdi32

GetDIBits
CreateBrushIndirect
GetTextExtentPointW
GetTextCharsetInfo
SetPaletteEntries
OffsetViewportOrgEx
ScaleWindowExtEx
ScaleViewportExtEx
GetDIBColorTable
CreateRoundRectRgn
SetViewportOrgEx
GetTextColor
GetTextMetricsW
Polyline
SetDIBits

kernel32

VerSetConditionMask
FindNextFileA
GetCommandLineW
DeviceIoControl
GetModuleHandleA
GetThreadContext
GetOverlappedResult
GlobalFlags
ExitThread
ConnectNamedPipe
SetThreadAffinityMask
GetExitCodeThread
GetProcAddress
MoveFileW
GetCommProperties
lstrcatW
LoadLibraryExW

Exports

Exports

?TryEnterCriticalSectionJKDJHLJHKDljfjhl@@YGKEPA_WG@Z

Sections

.text
Size: 176KB - Virtual size: 175KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.iadt
Size: 512B - Virtual size: 388B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdit
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdgt
Size: 512B - Virtual size: 65B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.div
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.up
Size: 1024B - Virtual size: 819B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.down
Size: 512B - Virtual size: 140B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f599278f39b912177069b81d6e3fb8d2

Headers

File Characteristics

PDB Paths

Imports

user32

msvcrt

advapi32

gdi32

kernel32

Exports

Exports

Sections

.text Size: 176KB - Virtual size: 175KB

.iadt Size: 512B - Virtual size: 388B

.rdit Size: 512B - Virtual size: 28B

.rdgt Size: 512B - Virtual size: 65B

.div Size: 2KB - Virtual size: 2KB

.data Size: 2KB - Virtual size: 1KB

.up Size: 1024B - Virtual size: 819B

.down Size: 512B - Virtual size: 140B

.rsrc Size: 24KB - Virtual size: 24KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 176KB - Virtual size: 175KB

.iadt
Size: 512B - Virtual size: 388B

.rdit
Size: 512B - Virtual size: 28B

.rdgt
Size: 512B - Virtual size: 65B

.div
Size: 2KB - Virtual size: 2KB

.data
Size: 2KB - Virtual size: 1KB

.up
Size: 1024B - Virtual size: 819B

.down
Size: 512B - Virtual size: 140B

.rsrc
Size: 24KB - Virtual size: 24KB

.reloc
Size: 2KB - Virtual size: 2KB