b99384c9c6be4bea7ef54f00407c9355_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

b99384c9c6be4bea7ef54f00407c9355_JaffaCakes118
Size

159KB
MD5

b99384c9c6be4bea7ef54f00407c9355
SHA1

03da15531dd91c7dbcee557030265b1503241411
SHA256

3727c849498ea74662690dcbb378169792b4c84d2bf196deafe00f40ecd92b09
SHA512

454f6c1a4257308a93afcd1a09c002c0dbf91e7e7d1f5a320571598070c3562f65cad0b064d1687fbde2457831f948690f41f4fd5c0473ebbdfa9d008f5debc0
SSDEEP

3072:jW814hwev2BdSZV2LWMTy2uZQ16+Xj84izP1h75qy5yRjxFuf:K8GhweEikJyG16Ej8dVP5yRjxF4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b99384c9c6be4bea7ef54f00407c9355_JaffaCakes118

Files

b99384c9c6be4bea7ef54f00407c9355_JaffaCakes118
.exe windows:5 windows x86 arch:x86

ac103863fcdc5573a4e6ce9b262c475c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

T:\txoYTbivRB\yeebWjiWAfusc\bRdoLue.pdb

Imports

user32

RegisterClassExW
GetWindowPlacement
BringWindowToTop
MapVirtualKeyW
CharUpperW
CheckRadioButton
InsertMenuItemW
ShowCaret
DrawEdge
EnumThreadWindows
SetMenu
SetScrollRange
GetClassInfoExW
ChangeMenuW
SetForegroundWindow
InSendMessage
OpenInputDesktop
GetMenuItemRect
SetSysColors
InSendMessageEx
wsprintfA
GetWindowTextLengthW
MonitorFromRect
DrawStateA
GetMenuItemInfoW
CreateIconIndirect
CreateAcceleratorTableW
UpdateWindow
CreateDialogIndirectParamW
IsWindowUnicode
LoadImageA
FrameRect
CascadeWindows
DrawMenuBar
PostMessageA
EnumWindows
LoadImageW
GetDlgCtrlID
GetDlgItemInt
MessageBoxA
GetSystemMenu
SendMessageA
ScrollWindow
GetKeyState

kernel32

CreateSemaphoreW
CreateWaitableTimerW
lstrcatW
GetModuleFileNameW
CreateFileMappingA
WaitForMultipleObjectsEx
CreateFileMappingW
FindResourceA
FindFirstChangeNotificationW
LocalSize
MapViewOfFile
GetModuleHandleA
GetModuleHandleW
SetFileAttributesA
IsValidLocale
FindNextFileW
lstrcpynA
GetCommState
VirtualAlloc
OpenFileMappingA
LoadLibraryW
lstrlenA
GetThreadLocale

shlwapi

StrToIntExA
StrCatBuffA

msvcrt

_controlfp
wcstombs
__set_app_type
__p__fmode
wcschr
swscanf
__p__commode
fread
iswdigit
_amsg_exit
_initterm
remove
_acmdln
mbstowcs
exit
wcspbrk
strcpy
_ismbblead
fgets
_XcptFilter
tolower
_exit
_cexit
wcsrchr
__setusermatherr
__getmainargs
iswspace

gdi32

EnumFontFamiliesW
CreateDIBSection
SetDIBits
OffsetRgn
CreateCompatibleDC
CreateDIBitmap
CreateBrushIndirect
Rectangle
GetBitmapBits
EndPage
SetTextAlign
GetNearestColor
PolyBezier
ExcludeClipRect
GetLayout
GetSystemPaletteEntries
ScaleViewportExtEx
GetNearestPaletteIndex
SetAbortProc

Exports

Exports

?CancelVersionExW@@YGJNKJD~U
?IsExpressionA@@YGMI~U
?ExecuteLoaderTrayXBwyGD@@YGKGHE@Z
?CrtModuleOriginal@@YGPAHPAIPAM~U

Sections

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ticx
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.kip
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ticy
Size: 512B - Virtual size: 392B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zdata
Size: 512B - Virtual size: 208B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.heap
Size: - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 130KB - Virtual size: 130KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ac103863fcdc5573a4e6ce9b262c475c

Headers

File Characteristics

PDB Paths

Imports

user32

kernel32

shlwapi

msvcrt

gdi32

Exports

Exports

Sections

.text Size: 20KB - Virtual size: 20KB

.ticx Size: 2KB - Virtual size: 2KB

.kip Size: 512B - Virtual size: 512B

.ticy Size: 512B - Virtual size: 392B

.zdata Size: 512B - Virtual size: 208B

.data Size: 2KB - Virtual size: 2KB

.heap Size: - Virtual size: 60KB

.rsrc Size: 130KB - Virtual size: 130KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 20KB - Virtual size: 20KB

.ticx
Size: 2KB - Virtual size: 2KB

.kip
Size: 512B - Virtual size: 512B

.ticy
Size: 512B - Virtual size: 392B

.zdata
Size: 512B - Virtual size: 208B

.data
Size: 2KB - Virtual size: 2KB

.heap
Size: - Virtual size: 60KB

.rsrc
Size: 130KB - Virtual size: 130KB

.reloc
Size: 1KB - Virtual size: 1KB