de23b480510b61406196670808ae2e04_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

de23b480510b61406196670808ae2e04_JaffaCakes118
Size

285KB
MD5

de23b480510b61406196670808ae2e04
SHA1

1dddd386692778fc3527dd01c2ed772f9c422f7b
SHA256

f98f71143ff3184e9c9059e9ce6e3389ef5186d0b61b53991a3bca8901b6a699
SHA512

4b39ab3c6c3383f8efa1372a4fd9c09a51c551ef7b0e89cdeff1faeb7e474bb74c6d784a59e9709de5a6913236fe77cc1fad7983d9dad5e1f8b053a4560f8abf
SSDEEP

6144:Sk1j09sk5mJbuepob04df2W1hJWFilk6mel:fosk5mO04x2W1nce

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
de23b480510b61406196670808ae2e04_JaffaCakes118

Files

de23b480510b61406196670808ae2e04_JaffaCakes118
.dll windows:5 windows x86 arch:x86

816ce4bceb19798dd69c2b6dc27093be

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

C:\kunOnoQeluluFj\wnkuPnsIhArsD\eYiraisxangv.pdb

Imports

user32

ValidateRect
SetMenuItemBitmaps
CreatePopupMenu
GetUpdateRgn
GetMenuItemRect
UnionRect
DrawTextExW
SetDlgItemTextW
GetClassLongA
BeginPaint
ShowCaret
AdjustWindowRectEx
TabbedTextOutW
GetScrollPos
GetMenuStringA
LockWindowUpdate
GetDialogBaseUnits
WaitMessage
CharUpperBuffW
CreateIconIndirect
ScrollWindow
DrawTextA
GetMessageA
RegisterClassA
TranslateMessage
DrawMenuBar
GetWindowPlacement
SetParent
ShowWindow
ArrangeIconicWindows
InflateRect
GetWindowTextLengthW
GetClassInfoExW
GetNextDlgGroupItem
GetWindow
SetWindowTextW
RegisterClassExA
PtInRect
ShowScrollBar
GetWindowTextW
ToUnicodeEx
EndPaint
GetWindowLongA
SetCursorPos
LoadStringW
SendInput
LoadCursorA
GetFocus
ModifyMenuW
SetActiveWindow
ReplyMessage
CopyAcceleratorTableW
IsCharLowerA
PeekMessageA
SetRectEmpty
IsWindowUnicode
GetParent
DestroyAcceleratorTable
mouse_event
ShowWindowAsync
SetUserObjectInformationW
GetDoubleClickTime
ScrollWindowEx
EndTask
InvalidateRect
InternalGetWindowText
ClientToScreen
DefWindowProcW
LoadBitmapA
LoadMenuW
SendMessageTimeoutW
WindowFromPoint
FindWindowA
SendMessageTimeoutA
PostThreadMessageA
MapVirtualKeyW
IsCharUpperA
DestroyIcon
SetCursor
FindWindowW
EnableScrollBar
keybd_event
DestroyWindow
GetWindowDC
CheckRadioButton
SetFocus
OemToCharBuffA
RegisterClassExW
IsDialogMessageW
EnumChildWindows
ActivateKeyboardLayout
GetClassInfoW
CopyImage
CharPrevW
LoadMenuA
SetMenuDefaultItem
InvalidateRgn
DrawIconEx
AppendMenuW
SetSysColors
GetMessageExtraInfo
MoveWindow
GetMenuItemCount
EnableMenuItem
GetClipCursor
GetDlgItemTextW
OemToCharA
GetMessageW
MessageBoxExW

comctl32

CreatePropertySheetPageW
ImageList_GetIcon
PropertySheetW
ImageList_GetIconSize
ImageList_Remove
CreateStatusWindowW

msvcrt

_controlfp
swscanf
wcsrchr
fputs
fseek
__set_app_type
__p__fmode
__p__commode
_amsg_exit
bsearch
malloc
wcscspn
setlocale
remove
iswxdigit
_initterm
_acmdln
wcsncpy
isalpha
strcpy
towlower
iswdigit
exit
isxdigit
_ismbblead
putchar
_XcptFilter
perror
vsprintf
fread
_exit
sprintf
_cexit
gmtime
wcscmp
__setusermatherr
strcoll
mbtowc
wcslen
iswprint
wcstoul
puts
atol
rand
strtok
__getmainargs

kernel32

GetWindowsDirectoryW
GetThreadLocale
SetFilePointer
GetThreadContext
GetDateFormatW
lstrcatW
OpenFileMappingA
GetThreadTimes
FormatMessageW
WaitForMultipleObjects
GlobalFree
IsBadReadPtr
CreateFileA
HeapAlloc
CreateSemaphoreA
GlobalFindAtomW
AddAtomW
GetFullPathNameA
OpenFileMappingW
GetCPInfo
lstrcmpA
GetCommState
GetAtomNameA
CreateEventA
TlsGetValue
lstrcmpiW
VirtualAlloc
EnumResourceTypesA
GlobalDeleteAtom
HeapFree
GetVersion
GetSystemDirectoryW
lstrlenW
GetCompressedFileSizeW
GetSystemTimeAsFileTime
SizeofResource
LoadLibraryExW
SetTimerQueueTimer
AddAtomA
GetThreadPriority
GetBinaryTypeA
FreeResource
GetModuleHandleA
GetFileInformationByHandle
VirtualQuery
GlobalFlags
LeaveCriticalSection
CreatePipe
MulDiv
GetLongPathNameW
FileTimeToLocalFileTime

gdi32

StretchBlt
GetObjectA
WidenPath
AddFontResourceW
PtVisible
CreateFontW
CreateCompatibleBitmap
SetViewportExtEx
GetFontData
SetMapMode
SetBrushOrgEx
GetStockObject
LineTo
PatBlt
GetNearestColor
SelectObject
RestoreDC
Polygon
SetBitmapDimensionEx
CreateBitmapIndirect
EndDoc
CreateSolidBrush
RectInRegion
GetTextExtentPoint32W
GetClipBox
CombineRgn
CreateDIBitmap
Escape
UnrealizeObject
IntersectClipRect
GetPaletteEntries
OffsetRgn
CreateRoundRectRgn
GetDeviceCaps
GetLayout
TranslateCharsetInfo
SetLayout
EnumFontsW
CreateCompatibleDC
GetNearestPaletteIndex
RemoveFontResourceW
ScaleViewportExtEx
CreateDIBSection
CreateDiscardableBitmap

Exports

Exports

?DecrementComponentExA@@YGHDFPAHE@Z
?IsNameEx@@YGPAHPA_NG@Z
?FindDataExA@@YGKPAE@Z
?InvalidateArgumentExA@@YGDMPAJDI@Z
?RtlKeyNameExW@@YGMPAKI@Z
?IsNotPointOld@@YGDHM@Z
?DeleteDateTimeOriginal@@YGFFPA_NPAI@Z
?IsProvider@@YGDFMPAMG@Z
?GenerateProviderNew@@YGFPAKPANPAI@Z
?ModifyPointerA@@YGKMEIPAE@Z
?FreeScreenExW@@YGPAEKJPAGPAI@Z
?IsCharExW@@YGMG@Z
?FreeMemoryOriginal@@YGGPAHM@Z
?FreeWidthNew@@YGJIKN@Z
?SetEventNew@@YGIGKPAHPAH@Z
?EnumWindowEx@@YGGNFGK@Z
?GetFolderPathExW@@YGDPAFMI@Z
?HideObject@@YGFPAD_NPAE@Z
?IsValidDateTimeA@@YGPAJIN@Z
?FormatConfigExW@@YGDDE@Z
?AddClassExA@@YGMMKMJ@Z
?InvalidateDataA@@YGPAXPADG@Z
?ModifyNameExW@@YGPAHKIPAGPAI@Z
?GlobalExpressionExW@@YGXHDH@Z
?InvalidatePointNew@@YGXJG@Z
?KillPenEx@@YGPAMMPAJ@Z
?ModifyMediaTypeNew@@YGEMFM@Z
?SetCharNew@@YGNI@Z
?CloseKeyboardOld@@YGKM_N@Z
?DecrementData@@YGEE@Z
?LoadSizeOriginal@@YGDPAF_NGM@Z
?OnMutantExW@@YGMJPAH@Z

Sections

.text
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.dt_i
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.dt_e
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 69KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 123KB - Virtual size: 122KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

816ce4bceb19798dd69c2b6dc27093be

Headers

File Characteristics

PDB Paths

Imports

user32

comctl32

msvcrt

kernel32

gdi32

Exports

Exports

Sections

.text Size: 68KB - Virtual size: 68KB

.dt_i Size: 6KB - Virtual size: 6KB

.dt_e Size: 1KB - Virtual size: 1KB

.data Size: 13KB - Virtual size: 13KB

.rdata Size: 69KB - Virtual size: 69KB

.rsrc Size: 123KB - Virtual size: 122KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 68KB - Virtual size: 68KB

.dt_i
Size: 6KB - Virtual size: 6KB

.dt_e
Size: 1KB - Virtual size: 1KB

.data
Size: 13KB - Virtual size: 13KB

.rdata
Size: 69KB - Virtual size: 69KB

.rsrc
Size: 123KB - Virtual size: 122KB

.reloc
Size: 2KB - Virtual size: 1KB