b422c7e9eaa33572621ed617e3ba9996_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b422c7e9eaa33572621ed617e3ba9996_JaffaCakes118
Size

143KB
MD5

b422c7e9eaa33572621ed617e3ba9996
SHA1

05f8dddadc4cffaba5e5193c65749c0f94a8d452
SHA256

33c6d0ed899f6c1c3d675b3ed276efd78702ef9d4aa257aecf8c31a60cc6cddc
SHA512

3ebdac3adc493f3a87ba8b1352782c9ced0b04a33a57ca49174ccf04bf45ae2d58842bf477a0c001f7ea7311d24983bb1f65cb1e2e3f75084bcace2ea26ea436
SSDEEP

3072:hrBgjrJgglCRnI224DF8LHV9RCgJg24b9OhcTfM4:hMrSrnI224De19XJg24b9cm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b422c7e9eaa33572621ed617e3ba9996_JaffaCakes118

Files

b422c7e9eaa33572621ed617e3ba9996_JaffaCakes118
.exe windows:5 windows x86 arch:x86

883f7596d913d9889bd3d2adf3fa4de4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

L:\Upmwiwf\OzzexPnP\WvfujtsjY\axugzBlqstq.pdb

Imports

user32

GetMessagePos
GetMenuStringW
AdjustWindowRectEx
wvsprintfA
LoadCursorW
DrawAnimatedRects
PostMessageA
GetMenuCheckMarkDimensions
TabbedTextOutW
InvalidateRect
CharNextW
GetUserObjectInformationA
wsprintfW
SetScrollInfo
GetUpdateRect
TileWindows
GrayStringW
SetLastErrorEx
RemovePropW
TrackPopupMenuEx
ShowWindow
SetWindowLongA
GetDCEx
GetClassInfoExW
IsZoomed
ClipCursor
CreatePopupMenu
SetDlgItemInt
GetWindowLongW
GetDoubleClickTime
SetWindowRgn
AttachThreadInput
IsWindowUnicode
HideCaret
LoadStringA
FindWindowA
GetKeyboardLayoutNameW
CharUpperBuffW
CharLowerA
IsMenu
GetMenu
InsertMenuItemW
HiliteMenuItem
BringWindowToTop
ToUnicodeEx
DestroyIcon
DialogBoxParamA
SwitchToThisWindow
DefFrameProcA
PostThreadMessageA
GetWindowTextW
wsprintfA
GetPropW
DrawStateA
InvertRect
GetMessageTime
GetSubMenu
GetAsyncKeyState
SystemParametersInfoA
GetAltTabInfoA
GetMonitorInfoW
UnloadKeyboardLayout
MessageBoxExA
CreateWindowExA
WaitMessage
FindWindowExW
SetWindowTextW
CharUpperA
GetClipCursor
CascadeWindows
ScrollWindow
RedrawWindow
GetClassNameW
DefDlgProcW
GetClientRect
SetWindowTextA
AllowSetForegroundWindow
RegisterHotKey
RegisterClassExW
SetForegroundWindow
BeginPaint
DialogBoxIndirectParamW
SetMenuItemBitmaps
EnumChildWindows
CreateIconFromResource
ArrangeIconicWindows
InsertMenuA
SetCursorPos
GetCaretPos
ActivateKeyboardLayout
SetParent
CharToOemBuffA
IsDlgButtonChecked
WaitForInputIdle
IsCharAlphaNumericW
ReplyMessage
DrawStateW
ShowCursor
GetDC
MoveWindow
GetSystemMenu
UnionRect
CharPrevW
GetMenuItemInfoW
MonitorFromPoint
RemoveMenu
InternalGetWindowText
DrawTextA
MapVirtualKeyA
GetSystemMetrics
DrawTextW
PostThreadMessageW
GetDlgItemTextW
GetWindowTextLengthW
GetKeyboardType
ShowCaret
LoadCursorA
DefWindowProcA
AdjustWindowRect
GetDlgCtrlID
ExitWindowsEx
FindWindowW
CharNextExA

msvcrt

memset
system
strtol
realloc
_controlfp
mbstowcs
clock
wcsncpy
__set_app_type
bsearch
strspn
mbtowc
strchr
strncmp
mktime
__p__fmode
__p__commode
tolower
iswspace
swprintf
wcscspn
_amsg_exit
isalnum
wcslen
iswdigit
_initterm
_ismbblead
getenv
_XcptFilter
_exit
wcstod
puts
wcschr
strcpy
_cexit
fwrite
islower
wcstol
setvbuf
toupper
__setusermatherr
__getmainargs
fputs
ftell
fflush
perror
rand
fgets

shlwapi

StrToIntA

kernel32

CreateWaitableTimerA
GetLongPathNameW
CreateFileMappingW
GetProcessHeap
ClearCommError
GetStdHandle
GetCommConfig
GetLocaleInfoA
CreateWaitableTimerW
VirtualProtect
TlsSetValue
CreateEventA
CopyFileA
GetTempPathA
lstrcpyA
CreateEventW
IsBadWritePtr
HeapFree
OpenEventA
ReleaseMutex
UnmapViewOfFile
GetComputerNameExA
HeapAlloc
InitializeCriticalSection
SetFileTime
GetCommTimeouts
ClearCommBreak
SetMailslotInfo
GetModuleHandleA
LoadLibraryA
SetCurrentDirectoryW
MoveFileExW
GetVersionExA
GlobalDeleteAtom
ConnectNamedPipe
GetModuleFileNameA
IsBadCodePtr
GetPriorityClass
GetCommState
DefineDosDeviceW
GetTempPathW
lstrlenA
GetTickCount
GetCommandLineA
MulDiv
LoadLibraryW
MoveFileA
GetSystemDirectoryW
lstrcpynW
CompareStringA
FindFirstFileA
SizeofResource
FlushFileBuffers
SetCurrentDirectoryA
CallNamedPipeW
EnumResourceNamesW
SystemTimeToFileTime

Exports

Exports

?SetDrawMaterialOOpsw@@YGK_KHE[D

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 145KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 114KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

883f7596d913d9889bd3d2adf3fa4de4

Headers

File Characteristics

PDB Paths

Imports

user32

msvcrt

shlwapi

kernel32

Exports

Exports

Sections

.text Size: 8KB - Virtual size: 8KB

.data Size: 20KB - Virtual size: 145KB

.rsrc Size: 114KB - Virtual size: 113KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 8KB - Virtual size: 8KB

.data
Size: 20KB - Virtual size: 145KB

.rsrc
Size: 114KB - Virtual size: 113KB

.reloc
Size: 1KB - Virtual size: 1KB