b398ce0ea2d6a6a80e6a174ced49db90_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b398ce0ea2d6a6a80e6a174ced49db90_JaffaCakes118
Size

220KB
MD5

b398ce0ea2d6a6a80e6a174ced49db90
SHA1

35ea219fc87a1a6bb43fd78e7c90a27d856d5d50
SHA256

6a1039251869ad531590b52b492a015f4ad4d89d8aa0bd47c85fccdc51ba652e
SHA512

5f59d56c837a053e9204053d0908d881fbc95cb3a0de36d25eba625cd3d3e6e21b13f334d52bcdfef3ba0c9c159b5e67525e072bee34f0a1e27ff0d1b5fbdadf
SSDEEP

3072:rM1xUdTJAMFaETsSylxLsD2vC4LGsDzvDKwz+ZNJvDKwvyPn6N0LjIzrpnIqF0hM:YngdsSylxhFLRvmwz+ZNJvDHyqkSIvM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b398ce0ea2d6a6a80e6a174ced49db90_JaffaCakes118

Files

b398ce0ea2d6a6a80e6a174ced49db90_JaffaCakes118
.exe windows:5 windows x86 arch:x86

772b2183cc572537946c93a626aff381

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

T:\ftjVzdwDbW\ekzrmxypO\lccqvbumpLerWD\Zidydhe\BNuJkwQRnqsx.pdb

Imports

user32

GetWindowRect
BeginDeferWindowPos
FrameRect
WaitForInputIdle
LoadIconA
SetMenu
GetMenuItemRect
EqualRect
TrackPopupMenu
ShowScrollBar
GetDC
IsRectEmpty
IsCharAlphaNumericW
ChildWindowFromPointEx
ModifyMenuW
PeekMessageW
IntersectRect
LoadAcceleratorsW
GetSystemMetrics
CheckRadioButton
TranslateMessage
CharToOemW
MapWindowPoints
ScrollWindowEx
ClientToScreen
SystemParametersInfoW
SetForegroundWindow
SendMessageTimeoutA
GetClassInfoA
ReleaseDC
DrawMenuBar
GetWindowDC
CheckDlgButton
SetClassLongW
CallWindowProcW
LoadAcceleratorsA
GetMenuState
GetMessageA
UnloadKeyboardLayout
CascadeWindows
AdjustWindowRectEx
LoadStringA
DestroyIcon
RegisterHotKey
SetMenuItemBitmaps
GetKeyState
GetClientRect
EndPaint
SetSysColors
GetSystemMenu
DestroyWindow
DefWindowProcW
ShowWindowAsync
GetDlgItemTextW
DeleteMenu
CheckMenuItem
DrawTextExW
GetClassInfoExA
BeginPaint
CharLowerW
UnionRect
IsCharLowerA
ArrangeIconicWindows
CharPrevW
SetScrollRange
wvsprintfA
SetWindowPos
LockWindowUpdate
SetParent
IsZoomed
BringWindowToTop
SetUserObjectInformationW
SetFocus
ReplyMessage
SetWindowLongW
GetNextDlgTabItem
SetRectEmpty
InflateRect
RegisterWindowMessageA
SendMessageTimeoutW
TileWindows
FindWindowA
InsertMenuA
RegisterClassW
TranslateAcceleratorW
SetRect
GetSubMenu
mouse_event
CloseDesktop
SetDlgItemTextA
CreateWindowExA
CopyImage
IsWindow
GetWindowPlacement
SwitchToThisWindow
SendDlgItemMessageW
InvertRect
GetFocus
GetTopWindow
ExitWindowsEx
OpenDesktopW
EndTask
MapDialogRect
InvalidateRgn
SetPropW
DrawIcon
InSendMessageEx
LoadStringW
wsprintfA
GetSysColor

msvcrt

wcscoll
clock
wcscmp
wcschr
wcsstr
bsearch
toupper
strspn
tolower
_controlfp
wcscat
wcstol
isalpha
iswdigit
atol
__set_app_type
strcspn
putc
fclose
__p__fmode
strncpy
strrchr
__p__commode
isprint
_amsg_exit
_initterm
_ismbblead
vsprintf
_XcptFilter
time
wcsrchr
setvbuf
wcstok
iswxdigit
ftell
_exit
wcscspn
_cexit
__setusermatherr
fputs
__getmainargs
fgets
strtol
putchar

comdlg32

GetOpenFileNameA
ChooseFontW
GetSaveFileNameA
CommDlgExtendedError
GetFileTitleW
FindTextW

kernel32

lstrcmpiW
GetAtomNameA
CreateNamedPipeA
SystemTimeToFileTime
CompareStringW
GetModuleFileNameA
LocalAlloc
LocalLock
GlobalGetAtomNameW
CreateFileMappingA
GetSystemTimeAdjustment
GlobalFindAtomW
GetSystemTime
SetLastError
FindResourceA
GetCommProperties
CreateNamedPipeW
GetCompressedFileSizeW
GetStringTypeExW
MapViewOfFile
AddAtomA
GetFileSize
CreateFileMappingW
GetFileTime
WideCharToMultiByte
GetVersionExA
CloseHandle
ReleaseMutex
GetSystemDirectoryA
SetThreadPriority
DuplicateHandle
GetCommandLineW
GetStartupInfoW
GetShortPathNameA
GetFileAttributesW
WaitForSingleObject
FindFirstChangeNotificationW
LoadLibraryA
RegisterWaitForSingleObject
InitializeCriticalSection
GetThreadContext
SetCurrentDirectoryA
FindNextChangeNotification
CreateFileA
CreateRemoteThread
GetHandleInformation
GetSystemWindowsDirectoryA
ReleaseSemaphore
TlsGetValue
QueryDosDeviceW
TryEnterCriticalSection

comctl32

ImageList_Destroy
ImageList_AddMasked
ImageList_Read
CreateStatusWindowW
CreatePropertySheetPageW
CreateToolbarEx

gdi32

SetBkMode
GetTextMetricsA
CreateDIBSection
LineTo
GetTextCharsetInfo
StretchDIBits
ExtTextOutA
MoveToEx
ScaleViewportExtEx
SelectObject
GetPixel
SetBrushOrgEx
Ellipse
CreateBrushIndirect
SetTextColor
CreateCompatibleDC
DeleteObject
GetViewportOrgEx
CreateSolidBrush
SetDIBits
GetROP2
SetMapMode
DPtoLP
SetPixel
CreateBitmapIndirect
Rectangle
SetPaletteEntries
SetDIBitsToDevice
GetTextAlign
PtInRegion
GetClipBox
ExtTextOutW
GetMapMode
CreateFontW
AddFontResourceW
SetWindowExtEx
StartDocW
SelectClipRgn
OffsetRgn
EndDoc
BeginPath
SetViewportExtEx
CreateFontIndirectA
RectInRegion
GetTextExtentExPointW
PtVisible

Exports

Exports

?CopySizeExA@@YGPAXFK[W

Sections

.text
Size: 177KB - Virtual size: 177KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

772b2183cc572537946c93a626aff381

Headers

File Characteristics

PDB Paths

Imports

user32

msvcrt

comdlg32

kernel32

comctl32

gdi32

Exports

Exports

Sections

.text Size: 177KB - Virtual size: 177KB

.data Size: 39KB - Virtual size: 39KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 177KB - Virtual size: 177KB

.data
Size: 39KB - Virtual size: 39KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 2KB - Virtual size: 1KB