d11cc9c7f19128f1356b7d9d6ded7223_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

d11cc9c7f19128f1356b7d9d6ded7223_JaffaCakes118
Size

204KB
MD5

d11cc9c7f19128f1356b7d9d6ded7223
SHA1

e06c8a053504726792b578d49050dac47d75ad86
SHA256

6b5bf27e777b12e42200effed44a0a073bf3db8736d8927c8c1ef1fed507c667
SHA512

a451eafc75b566b8d8b0f44bf7cbb9c2d96385c583db92244876c023296fcc187d8dcc458e1a6829937ff92bbdceeab720a498bb3dbc74a1fb3fa5db57bb3ce8
SSDEEP

3072:uXbfPsN2YwG0je2kBDFXIKVu2oNQ8zL+bBxksuTZCS3TkKdhNMDokpd:urFnje5FXIfAbBaZfTz+8ad

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d11cc9c7f19128f1356b7d9d6ded7223_JaffaCakes118

Files

d11cc9c7f19128f1356b7d9d6ded7223_JaffaCakes118
.exe windows:5 windows x86 arch:x86

2dd8b7d19ce12dad8935a069ebb6f1e3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

G:\phhjJjpr\cTvszkvzzeu\zKlsiuobgjo\MxchXfXbyw\oqzqhlFpQjqqf.pdb

Imports

user32

DefWindowProcA
LoadImageA
SwitchToThisWindow
CreateMenu
SetForegroundWindow
OffsetRect
GetMenuState
SetUserObjectInformationW
OemToCharBuffA
CreateCursor
CharUpperBuffW
AppendMenuW
CopyAcceleratorTableW
SetWindowPlacement
SendMessageTimeoutW
TabbedTextOutW
GetWindowLongA
ClientToScreen
DrawFrameControl
EndDialog
OemToCharA
SetWindowPos
ShowWindowAsync
CreateIconFromResource
WindowFromPoint
MonitorFromRect
CreateDialogIndirectParamW
SetFocus
InvalidateRect
CheckMenuRadioItem
InflateRect
GetLastActivePopup
DeferWindowPos
SetScrollInfo
CopyRect
EnumWindows
LoadCursorA
GetDoubleClickTime
SetClassLongW
IsDlgButtonChecked
GetMessageTime
GetDC
PeekMessageA
RegisterHotKey
CharNextExA
UpdateWindow
MapDialogRect
GetSysColorBrush
DispatchMessageA
GetWindowTextA
IsChild
IsCharAlphaNumericW
GetWindowTextW
CloseDesktop
SystemParametersInfoA
LoadIconA
CharLowerBuffW
GetClientRect
MapVirtualKeyW
RemoveMenu
GetDlgItemTextA
GetClassLongA
EndPaint
GetWindowLongW
EnableWindow
IsCharLowerA
GetMenuItemID
DrawStateW
ActivateKeyboardLayout
SetRect
FindWindowExA
CopyImage
GetMessagePos
SendDlgItemMessageW
ValidateRect
GetMenuStringW
DestroyIcon
GetClassInfoA
RedrawWindow
mouse_event
DefFrameProcA
LoadAcceleratorsW
SetRectEmpty
DrawIcon
SetScrollPos
PostMessageW
CharToOemBuffA
CreateCaret
DefWindowProcW
GetDCEx
SetWindowTextA
DrawIconEx
DispatchMessageW
FindWindowExW
AllowSetForegroundWindow
MonitorFromPoint
SetWindowLongA
wvsprintfA
GetWindowTextLengthW
SetCaretPos
DefFrameProcW
ReleaseDC
keybd_event
GetMenuItemInfoW
SetMenu
ShowWindow
LockWindowUpdate
CharNextA
LoadAcceleratorsA
DefDlgProcW
GetKeyboardType
DestroyCaret
ShowCursor
MoveWindow
TranslateMessage
GetDlgItem
GetClassInfoW
LoadImageW
TranslateAcceleratorA
ModifyMenuW

msvcrt

_controlfp
strtol
fflush
isprint
strncpy
time
__set_app_type
__p__fmode
fputs
toupper
__p__commode
iswdigit
_amsg_exit
gets
isdigit
_initterm
wcstombs
towupper
_ismbblead
strcspn
setvbuf
clearerr
calloc
exit
fseek
fprintf
wcstol
wcscoll
sscanf
rand
wcscspn
wcsncmp
wcscat
getc
iswalpha
wcstoul
_XcptFilter
_exit
strncmp
system
_cexit
__setusermatherr
wcstod
towlower
__getmainargs
strtoul
setlocale

shlwapi

StrToIntW

kernel32

GetLongPathNameW
UnmapViewOfFile
lstrcmpiW
SetFilePointer
SetFileAttributesW
GetStdHandle
GetAtomNameA
LocalFree
CreateFileW
GetAtomNameW
GetCommandLineA
GetCommProperties
CreateEventW
FindFirstFileA
GetFileInformationByHandle
LoadLibraryA
LocalReAlloc
SystemTimeToFileTime
RemoveDirectoryW
TerminateThread
OutputDebugStringA
SearchPathA
ResumeThread
FormatMessageW
GetShortPathNameW
SetCommTimeouts
GetFileAttributesExW
LoadLibraryExW
IsBadReadPtr
CompareFileTime
CreateDirectoryA
lstrcatA
GlobalFindAtomW
FormatMessageA
RemoveDirectoryA
GetComputerNameExW
FileTimeToDosDateTime
GetUserDefaultUILanguage
GetCompressedFileSizeW
GlobalReAlloc
GetCommModemStatus
SuspendThread
WinExec
VerSetConditionMask
FlushFileBuffers
DisconnectNamedPipe
OpenEventW
MoveFileW
GetFileAttributesA
SetPriorityClass
SetCommMask
SetWaitableTimer
GetTempPathW
GetThreadContext
GetComputerNameExA
ClearCommBreak

Exports

Exports

?RedirectOutput@@YGK_KHE:O

Sections

.text
Size: 20KB - Virtual size: 19KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.itab
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.etab
Size: 512B - Virtual size: 85B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.input
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 187KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 172KB - Virtual size: 171KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2dd8b7d19ce12dad8935a069ebb6f1e3

Headers

File Characteristics

PDB Paths

Imports

user32

msvcrt

shlwapi

kernel32

Exports

Exports

Sections

.text Size: 20KB - Virtual size: 19KB

.itab Size: 6KB - Virtual size: 5KB

.etab Size: 512B - Virtual size: 85B

.input Size: 1KB - Virtual size: 1KB

.data Size: 2KB - Virtual size: 187KB

.rsrc Size: 172KB - Virtual size: 171KB

.reloc Size: 1KB - Virtual size: 1KB

.text
Size: 20KB - Virtual size: 19KB

.itab
Size: 6KB - Virtual size: 5KB

.etab
Size: 512B - Virtual size: 85B

.input
Size: 1KB - Virtual size: 1KB

.data
Size: 2KB - Virtual size: 187KB

.rsrc
Size: 172KB - Virtual size: 171KB

.reloc
Size: 1KB - Virtual size: 1KB