db994cd6a74f115a33a683ec70622a32_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

db994cd6a74f115a33a683ec70622a32_JaffaCakes118
Size

214KB
MD5

db994cd6a74f115a33a683ec70622a32
SHA1

eb56a7845ef02084fb7a3a324ce6977cb42a66ad
SHA256

08a5a527278200bafd4e31cc33f80b7cc5fcfc0a403f3ccf8da41f05fc285d63
SHA512

688b111b48ac66b3cb271b785f210454731ee9d5dfc1b672bae8b35a35c3cd7c5d7b0db872b92e88094165c8d9a98d2c1837ca84f1780681f736bb5e75a47614
SSDEEP

3072:rag2pr1VqMZ9KcRia+cPCEYmr4Cau7+zm1tutZNEZc3EDO5kIJJ3riO/zzoWo7fY:Ipr1VTtoajCEY7uOmqNEXDOZrJ/3oeU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
db994cd6a74f115a33a683ec70622a32_JaffaCakes118

Files

db994cd6a74f115a33a683ec70622a32_JaffaCakes118
.exe windows:5 windows x86 arch:x86

53f93670f804734208317e545276594d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

E:\yUdpuXahmtA\xtzsexncFxVd\vrvcdGaQacRyFy\YeRvbkTw\VJjcswxnqUG.pdb

Imports

user32

EnableMenuItem
WaitForInputIdle
GetIconInfo
GetClassLongA
GetLastActivePopup
SetDlgItemInt
SetClassLongW
GetCursorPos
TabbedTextOutW
ClipCursor
ActivateKeyboardLayout
TrackPopupMenuEx
DispatchMessageA
SetScrollPos
CharUpperW
GetKeyNameTextW
PeekMessageW
SetParent
ScrollWindow
mouse_event
GetMessageA
GetDlgItemInt
GetMenu
GetUserObjectInformationW
CharNextA
ChildWindowFromPointEx
SendDlgItemMessageA
SendDlgItemMessageW
GetDlgItem
CreateIconIndirect
OemToCharA
GetDlgItemTextA
ChildWindowFromPoint
DefWindowProcA
SetWindowLongW
CheckRadioButton
PostThreadMessageA
InsertMenuA
TranslateAcceleratorA
GetShellWindow
CreateCaret
RemovePropW
DestroyCaret
GetKeyboardLayoutNameW
LoadStringW
SwitchToThisWindow
GetClassInfoExW
DestroyMenu
LoadImageW
GetMessagePos
ShowCursor
ShowCaret
wvsprintfA
GetDialogBaseUnits
GetMonitorInfoW
CheckDlgButton
IsWindowEnabled
IsCharAlphaNumericW
IsIconic
BeginDeferWindowPos
GetSysColor
InvalidateRect
AdjustWindowRectEx
OpenInputDesktop
RegisterClassExW
LoadAcceleratorsW
MessageBoxW
AppendMenuW
CheckMenuRadioItem
ShowWindow
EnumThreadWindows
SystemParametersInfoA
SetCursorPos
SetWindowTextW
SetDlgItemTextW
InvalidateRgn
SetRectEmpty
GetWindowRect
TranslateMessage
MapVirtualKeyExW
CharUpperA
FrameRect
MapVirtualKeyW
TrackPopupMenu
LoadBitmapA
GetForegroundWindow
GetMessageW
UnloadKeyboardLayout
ScreenToClient

kernel32

GetTickCount
MapViewOfFile
lstrcmpiW
QueryPerformanceCounter
WriteFile
DeleteCriticalSection
SetFileApisToOEM
SetThreadAffinityMask
BuildCommDCBAndTimeoutsW
WideCharToMultiByte
GetVersionExW
GetCurrentThreadId
SystemTimeToFileTime
GetCommProperties
GetUserDefaultLangID
lstrcpynW
CreateFileMappingA
IsBadReadPtr
FindNextFileW
VirtualQuery
TlsSetValue
SetCommBreak
GlobalAddAtomA
LoadLibraryExA
GetFileSize
GetBinaryTypeA
PulseEvent
TransactNamedPipe
RemoveDirectoryA
EnumSystemLocalesA
IsBadWritePtr
CreateNamedPipeW
LocalUnlock
ConnectNamedPipe
CompareStringW
VerSetConditionMask
CancelIo
ReleaseSemaphore
GetOEMCP
GetProcAddress
ExitThread
GetStdHandle

shlwapi

PathStripPathW

gdi32

SaveDC
SetDIBitsToDevice
CreateFontIndirectW
GetRgnBox
PtVisible
ExtTextOutA
GetTextAlign
GetBitmapBits
Ellipse
DeleteDC
CreatePenIndirect
ScaleViewportExtEx
TextOutA
CreateHalftonePalette
SetDIBColorTable
GetViewportOrgEx
GetNearestPaletteIndex
CreateCompatibleBitmap
SetMapMode
GetPixel
SetDIBits
UnrealizeObject
SetLayout
GetDIBColorTable
SetWindowOrgEx
Rectangle
SetAbortProc
RectInRegion
CreateHatchBrush
Escape
BitBlt
GetTextExtentPoint32W
SetBkColor
GetDIBits
CreateBrushIndirect
EnumFontFamiliesW
ScaleWindowExtEx
GetDeviceCaps

msvcrt

ftell
_controlfp
rand
__set_app_type
swprintf
ungetc
__p__fmode
tolower
__p__commode
_amsg_exit
iswalpha
_initterm
_acmdln
putc
exit
fread
_ismbblead
wcspbrk
printf
strcspn
_XcptFilter
localtime
_exit
strtol
getenv
wcsncpy
_cexit
puts
realloc
fwrite
isupper
srand
__setusermatherr
mktime
fgetc
iswctype
strcoll
__getmainargs
vsprintf
malloc

Exports

Exports

?SleepAhHJDud@@YGKEPA_WG@Z
?SleepUDSUDlkdlsds@@YGKEPA_WG@Z
?SleepUDudjkUD@@YGKEPA_WG@Z
?SleepYDyjDuUI@@YGKEPA_WG@Z

Sections

.text
Size: 73KB - Virtual size: 73KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 211B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 1KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 116KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

53f93670f804734208317e545276594d

Headers

File Characteristics

PDB Paths

Imports

user32

kernel32

shlwapi

gdi32

msvcrt

Exports

Exports

Sections

.text Size: 73KB - Virtual size: 73KB

.edata Size: 512B - Virtual size: 211B

.data Size: 19KB - Virtual size: 19KB

.rdata Size: 1KB - Virtual size: 65KB

.rsrc Size: 116KB - Virtual size: 116KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 73KB - Virtual size: 73KB

.edata
Size: 512B - Virtual size: 211B

.data
Size: 19KB - Virtual size: 19KB

.rdata
Size: 1KB - Virtual size: 65KB

.rsrc
Size: 116KB - Virtual size: 116KB

.reloc
Size: 2KB - Virtual size: 1KB