bca0e9e62129e074047eb3a9385deff7_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

bca0e9e62129e074047eb3a9385deff7_JaffaCakes118
Size

146KB
MD5

bca0e9e62129e074047eb3a9385deff7
SHA1

7f34b88a5c93d2ebaf1868cd3e25372bc9959fb2
SHA256

c579eaac52bbd9c79592b9032e945fd1992c50282fbf7ca2cec70fe2e0655304
SHA512

662691716f4c21c074526198c51e3ef508f135e363343d930eb264745e66e612f6332fa5a0cecdfdabbdad93550541ad919fe8873103ebeb7b5b2b71395a39da
SSDEEP

3072:V+pi7yssNKeLO+Exa4hCtDGCqX1095wcMgzaOQhh8EdRuhsY1gCU6:OssNlivx0YCqmMgaPhpdRkx1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bca0e9e62129e074047eb3a9385deff7_JaffaCakes118

Files

bca0e9e62129e074047eb3a9385deff7_JaffaCakes118
.exe windows:5 windows x86 arch:x86

d5681b1adb27c60f28315f4d49d88684

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

H:\yJHbbRqgypvOj\pikuiffvAydt\pwiwwjlocTH\SpaGJgmplu.pdb

Imports

comdlg32

FindTextW
PageSetupDlgW
PrintDlgExW
GetOpenFileNameA

gdi32

CombineRgn
CreateRoundRectRgn
CreateDIBSection
DeleteDC
OffsetViewportOrgEx
EndDoc
GetClipBox
WidenPath
CreateBrushIndirect
ScaleWindowExtEx
TextOutA
GetNearestColor
CreateDiscardableBitmap
GetFontData
CreateFontA
EndPath
GetStockObject
SetWindowExtEx
SetMapMode
MoveToEx
StartDocW
PtInRegion
GetSystemPaletteUse
CreateEllipticRgnIndirect
GetTextExtentPointW
RestoreDC
EnumFontFamiliesW
GetTextColor
SetBkColor
LineDDA
BeginPath
SetBitmapDimensionEx
UnrealizeObject
GetBkMode
Rectangle
SetViewportExtEx
PatBlt
SetBkMode
GetPixel
SetBitmapBits
CreateSolidBrush
ScaleViewportExtEx
CreateICW
GetROP2
GetDeviceCaps
CreateHalftonePalette
GetMapMode
CreatePenIndirect
CreateFontIndirectA
GetCharWidth32W
GetPaletteEntries

kernel32

SetErrorMode
GetShortPathNameW
LocalAlloc
lstrlenW
IsValidLanguageGroup
QueryPerformanceCounter
CreateRemoteThread
GetVersionExA
GlobalMemoryStatusEx
HeapReAlloc
SetLocalTime
EnumSystemLocalesA
lstrcatA
GetModuleFileNameW
GetStartupInfoA
GetShortPathNameA
FindFirstFileA
CreateDirectoryW
GetProcAddress
CancelIo
LoadLibraryExA
CopyFileA
SetThreadAffinityMask
SetSystemTimeAdjustment
FormatMessageA
GlobalAddAtomA
SetNamedPipeHandleState
EnumResourceNamesW
HeapCreate
GetExitCodeThread
SetThreadExecutionState
SetThreadContext
CreatePipe
SetThreadPriority
LocalUnlock
IsValidLocale
CloseHandle
GetModuleHandleA
CreateDirectoryA
GetSystemWindowsDirectoryA
CreateThread
GlobalUnlock
TlsSetValue
MulDiv
HeapLock
GetFileAttributesExW
FindFirstChangeNotificationW
GetUserDefaultLCID
LoadLibraryA
FindCloseChangeNotification
GetCommandLineW
CreateWaitableTimerW
WaitForSingleObject
HeapUnlock
FindNextFileW
CreateMailslotW
FoldStringW

shlwapi

StrChrIA

msvcrt

sscanf
ftell
atol
_controlfp
isdigit
wcscat
wcscoll
wcscmp
fflush
strrchr
__set_app_type
strspn
putchar
towupper
__p__fmode
towlower
strstr
__p__commode
_amsg_exit
_initterm
mbstowcs
_acmdln
strncpy
isalpha
wcsncpy
clock
rand
exit
qsort
_ismbblead
remove
iswxdigit
_XcptFilter
isxdigit
gets
wcstombs
strpbrk
isprint
wcstoul
wcstol
toupper
_exit
strchr
islower
setvbuf
tolower
_cexit
__setusermatherr
__getmainargs

user32

InsertMenuItemW
SetUserObjectInformationW
MapVirtualKeyA
SetDlgItemTextA
MoveWindow
GetKeyNameTextW
SetPropW
InSendMessage
LoadBitmapW
ScrollWindowEx
LoadImageA
GetSysColorBrush
InSendMessageEx
OpenDesktopW
CreateDialogParamW
MessageBoxA
IsZoomed
IsIconic
SetWindowPos
GetWindow
GetClassInfoW
GetMenuItemInfoW
DrawStateW
MapDialogRect
ModifyMenuW
CascadeWindows
DestroyIcon
EnumWindows
DispatchMessageW
InvertRect
AppendMenuW
LoadIconW
IsChild
SendNotifyMessageW
LoadIconA
CreateCursor
GetUserObjectInformationA
TranslateMessage
SetScrollRange
IsCharLowerA
GetDlgItemTextA
AllowSetForegroundWindow
LoadBitmapA
AppendMenuA
GetWindowPlacement
DrawFocusRect
SetCaretPos
GetDoubleClickTime
SendDlgItemMessageA
SetMenuItemBitmaps
LoadStringW
GetMessageExtraInfo
ClipCursor
IsWindowUnicode
LoadMenuW
MessageBoxExA
VkKeyScanW
CharPrevA
BeginPaint
CreateCaret
SetDlgItemTextW
GetAsyncKeyState
CreateAcceleratorTableW
CharToOemA
RegisterClassW
EndPaint
InflateRect
OemToCharA
DrawIcon
AdjustWindowRect
OpenInputDesktop
IsDialogMessageA
CopyAcceleratorTableW
ShowWindowAsync
IsWindow
DragObject
IsDlgButtonChecked
ChildWindowFromPointEx
SendDlgItemMessageW
ChildWindowFromPoint
EqualRect
ValidateRect
EnumThreadWindows
GetFocus
CopyRect
GetMenuItemID
InsertMenuA
DrawTextA
ChangeMenuW
EndDialog
CharUpperBuffA
wvsprintfA
GetMessageA
GetMenuCheckMarkDimensions
LoadImageW
WaitMessage
GetCursorPos
DialogBoxIndirectParamA
CloseDesktop
PostMessageW
ScrollWindow
SetMenuDefaultItem
DeferWindowPos
GetKeyboardLayoutNameW
FillRect
UnionRect
GetMonitorInfoW
ShowCursor
OffsetRect
InvalidateRgn
LoadCursorA
SetRectEmpty
GetClassLongW
CallWindowProcW
MessageBoxExW
GetClipCursor
OemToCharBuffA
DestroyMenu
AttachThreadInput
RegisterClassExW

Exports

Exports

?AddDialogA%%DFEPAHPAIK~U
?OnListItem%%DFIPAMPAK~U
?CopyDialogOriginal%%DFGIKM~U
?LoadFullNameA%%DFGD~U
?PutDialogA%%DFPAEG~U
?SetScreenOriginal%%DFJPAFPAIEJ~U
?IncrementTextW%%DFPAXN~U
?CrtFolderA%%DFPAKE~U
?IncrementVersionExW%%DFPAGKM~U
?CopyPoint%%DFPAJJ~U
?CloseData%%DFPANKPAHPAMM~U
?SetProfileNew%%DFPAMPADGEG~U
?CloseAppNameExA%%DFXGG~U
?IconManageCtrlOijduW@@YGKGHE@Z
?IsValidClassEx%%DFPAMJIHPAJ~U
?AddPointerOriginal%%DFGPAFPAK~U
?InsertFolderPathOld%%DFIIJ~U
?ShowAppNameEx%%DFPAMNG~U
?IsNotCharNew%%DFGPAIIPA_NK~U
?FreeMutantA%%DFPAX_NPAG~U
?FreePointer%%DFND~U
?CloseFolderPath%%DFNPAM_NHPAE~U
?InstallTaskOld%%DFEKHPAKG~U
?InsertFilePathW%%DFJDK~U
?SystemExA%%DFXPAKPADI~U
?OnTimerOld%%DFPAMK~U
?OnModuleOld%%DFPADPAF~U
?RemoveNameW%%DFFND~U
?IsNotDeviceOriginal%%DFHNKPAIPAE~U
?GenerateListEx%%DFPAJM~U
?CloseHeaderOld%%DFPAHK~U
?AddAnchorOld%%DFKI~U
?CallPath%%DFPAMPAK~U
?IsValidModule%%DFPADJPAEJM~U

Sections

.text
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ticx
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 127KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 111KB - Virtual size: 111KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d5681b1adb27c60f28315f4d49d88684

Headers

File Characteristics

PDB Paths

Imports

comdlg32

gdi32

kernel32

shlwapi

msvcrt

user32

Exports

Exports

Sections

.text Size: 22KB - Virtual size: 22KB

.ticx Size: 6KB - Virtual size: 5KB

.data Size: 4KB - Virtual size: 127KB

.rsrc Size: 111KB - Virtual size: 111KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 22KB - Virtual size: 22KB

.ticx
Size: 6KB - Virtual size: 5KB

.data
Size: 4KB - Virtual size: 127KB

.rsrc
Size: 111KB - Virtual size: 111KB

.reloc
Size: 2KB - Virtual size: 1KB