c23fc4cf9ab4bd51cc1caabccf82c296_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

c23fc4cf9ab4bd51cc1caabccf82c296_JaffaCakes118
Size

195KB
MD5

c23fc4cf9ab4bd51cc1caabccf82c296
SHA1

fae05f9da5850cc549b21f4ef14afa9a0a210862
SHA256

9754829bb3434bb96178f42726160eb6f9cda7fbed5238bc4ebbd0c763e90198
SHA512

06e8f8b3e1c6ddafd2c9337fcb5498a93043fee32be35966613bf6a1482f5b9bfb32e681b3e9c199e0a8270f597405769e65292da7af1cf50a8e32d9c7dd10fa
SSDEEP

3072:4QvqkdzY1uEjNg1t8T55YtXhGBg2AF5eln2+Zadv9JHeI5fQf:TTw88T56tRGBgrF5e529dv7Hxa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c23fc4cf9ab4bd51cc1caabccf82c296_JaffaCakes118

Files

c23fc4cf9ab4bd51cc1caabccf82c296_JaffaCakes118
.exe windows:5 windows x86 arch:x86

1b15863af2a710adf902bbf2ec9d70f2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

M:\RSaIFXru\nrvdxaa\ndWscyvqjq.pdb

Imports

comdlg32

GetOpenFileNameW
GetSaveFileNameW
GetOpenFileNameA
PageSetupDlgW
ChooseColorW

gdi32

SelectObject
SetBitmapBits
CreateHalftonePalette
GetNearestColor
GetTextExtentPoint32W
GetTextFaceW
SelectPalette
GetBkMode
PatBlt
RestoreDC
GetDIBits
CreateDiscardableBitmap
SetBitmapDimensionEx
GetTextCharsetInfo
Polyline
SetDIBColorTable
SetBkMode
GetClipBox
StartDocW
GetRgnBox
CreateCompatibleBitmap
CreateFontA
CreateHatchBrush
SetBkColor
TranslateCharsetInfo
LPtoDP
CombineRgn
GetPixel
CreateICW
SetROP2
CreateCompatibleDC
IntersectClipRect
ResizePalette
GetObjectA
GetCharWidth32W
OffsetViewportOrgEx
TextOutW
SelectClipRgn
ScaleViewportExtEx
CreateFontIndirectA
AddFontResourceW
GetMapMode
GetObjectW
RealizePalette
StartPage
ScaleWindowExtEx
PathToRegion
CreatePenIndirect
Polygon
CreateBitmap
CreateEllipticRgnIndirect

user32

IsIconic
CharNextExA
GetWindowTextLengthW
SetScrollInfo
LookupIconIdFromDirectory
WaitMessage
RegisterClassExW
WindowFromPoint
GetMenuStringA
CreateIconIndirect
OpenIcon
GetCursorPos
LoadIconW
GetNextDlgTabItem
InsertMenuW
ModifyMenuW
GetClassLongW
ShowWindow
EqualRect
GetUserObjectInformationW
GetClipCursor
GetKeyboardType
IsDialogMessageW
DestroyAcceleratorTable
ScrollWindow
SetPropW
SendInput
InvalidateRgn
AppendMenuA
AppendMenuW
WaitForInputIdle
LoadCursorA
FindWindowExA
CreateDialogParamA
CallWindowProcW
DefDlgProcA
SetWindowTextA
SendNotifyMessageW
MapVirtualKeyW
wvsprintfW
ScreenToClient
SendMessageA
DispatchMessageA
DrawIconEx
SetDlgItemTextW
GetDialogBaseUnits
CloseDesktop
SystemParametersInfoA
DefDlgProcW
LoadStringA
GetSystemMetrics
CheckDlgButton
DrawAnimatedRects
IsDlgButtonChecked
CharUpperBuffA
AdjustWindowRect
SetCaretPos
CheckMenuRadioItem
EnumWindows
GetDlgCtrlID
LoadImageA
UpdateWindow
InflateRect
DrawTextExW
IsWindowVisible
GetIconInfo
EndPaint
GetWindowDC
GetDCEx
SetWindowPos
wvsprintfA
OpenDesktopW
UnionRect
SendDlgItemMessageW
GetMenuItemCount
BeginPaint
MessageBoxExA
ReplyMessage
CallWindowProcA
LockWindowUpdate
DefWindowProcW
GetMonitorInfoW
SetRect
GetSystemMenu
ChildWindowFromPoint
ScrollWindowEx
GetKeyboardLayoutList
GetClassLongA
IsCharAlphaW
CharToOemW
ShowOwnedPopups
TranslateAcceleratorA
RegisterHotKey
BeginDeferWindowPos
DefFrameProcW
wsprintfW
GetAltTabInfoW
FindWindowA
TabbedTextOutW
DestroyCursor
AllowSetForegroundWindow
GetWindowRect
GetDlgItemTextA
RedrawWindow
GetWindowLongA
MonitorFromPoint
SetUserObjectInformationW
ReleaseDC
TrackPopupMenuEx
RegisterClassA
ShowWindowAsync
GetMenuItemRect
SendMessageTimeoutA
GetMenuStringW
GetClassInfoExW
CreateCaret
GetClassInfoW
LoadBitmapA
FrameRect
CascadeWindows
SetMenuItemInfoW

kernel32

GetCurrentThread
GetShortPathNameW
GetStdHandle
TerminateThread
GetModuleFileNameW
lstrcmpW
RemoveDirectoryA
GetFullPathNameA
ClearCommBreak
FindClose
ReadFile
PulseEvent
IsBadStringPtrW
IsBadCodePtr
lstrcpyW
GetVersionExW
ReleaseSemaphore
ResumeThread
GetOverlappedResult
OpenSemaphoreW
lstrcatA
WaitForMultipleObjects
SetupComm
CreateDirectoryW
SetSystemTimeAdjustment
GetVersion
GetProcAddress
GlobalMemoryStatusEx
SetThreadAffinityMask
IsBadReadPtr
GlobalAddAtomA
VerSetConditionMask
LoadLibraryW
GetModuleHandleA
GetTempPathA
SetLastError
GetUserDefaultLangID
FileTimeToSystemTime
CreateMutexA
GetSystemDefaultLangID
TlsGetValue
HeapCreate
FoldStringW
GlobalFlags
LoadLibraryExA
GetComputerNameW
Sleep
GetCommProperties
SetCommState
OpenFile
VirtualProtect
SetHandleCount
ReleaseMutex
GetTempFileNameW
GetComputerNameExA
EnumResourceTypesA

msvcrt

_controlfp
strncmp
wcstok
floor
wcscat
tolower
__set_app_type
isupper
__p__fmode
toupper
clock
__p__commode
fputs
_amsg_exit
mbtowc
vsprintf
ftell
_initterm
_acmdln
qsort
system
fwrite
mbstowcs
gets
isalnum
exit
isprint
_ismbblead
strcspn
fputc
fseek
wcscmp
_XcptFilter
_exit
wcstod
time
_cexit
putc
__setusermatherr
wcsncmp
strtol
mktime
isdigit
strtok
__getmainargs
atoi
vswprintf
iswalpha
strncpy

Exports

Exports

?ShowListExA@@YGPAGJGPAJD]A
?GetObjectNew@@YGJPAIPAHF]A
?BitCounterArrayIdeDunAs@@YGKGE@Z

Sections

.text
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 189KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 167KB - Virtual size: 167KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1b15863af2a710adf902bbf2ec9d70f2

Headers

File Characteristics

PDB Paths

Imports

comdlg32

gdi32

user32

kernel32

msvcrt

Exports

Exports

Sections

.text Size: 20KB - Virtual size: 20KB

.data Size: 4KB - Virtual size: 189KB

.rsrc Size: 167KB - Virtual size: 167KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 20KB - Virtual size: 20KB

.data
Size: 4KB - Virtual size: 189KB

.rsrc
Size: 167KB - Virtual size: 167KB

.reloc
Size: 1KB - Virtual size: 1KB