e25838b5745de466c1196aaf6e36a2bc_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

e25838b5745de466c1196aaf6e36a2bc_JaffaCakes118
Size

171KB
MD5

e25838b5745de466c1196aaf6e36a2bc
SHA1

7b422de7828c428c3a9760313e2de18f7ae8c111
SHA256

575109308f4144cfe43e507c17318611f69bf1322be3b34199d9280fce2653d6
SHA512

025e9e20f588fc01f0d7b5938e2645eeeac46f5aff2250dfc46ba3045e220c8d5104a8c42d1b9dd79147d57ddd307d9a55085ca7b3de5d7b20a70a132dc9b538
SSDEEP

3072:TdQAl/QUBbWrF6Fo3RExl8np3u2v1juF01ylYrC/bXDXZhRVE3E2nh1fCJXj:Tdl/QUBbQFi8np+2jU+rOTfPE3Bnh1f6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e25838b5745de466c1196aaf6e36a2bc_JaffaCakes118

Files

e25838b5745de466c1196aaf6e36a2bc_JaffaCakes118
.exe windows:5 windows x86 arch:x86

fc239a6039044bbd02d9d510b7c0c66e

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

Q:\oQxUvrcVuaV\omHGhxQDlvq\jpxallHg\jJrbTmRbGmPcFw\pjIEfUlEMuwvI.pdb

Imports

msvcrt

_controlfp
system
isprint
atol
strcspn
mbstowcs
strcoll
printf
towlower
time
fgetc
__set_app_type
__p__fmode
isalnum
strtok
wcscat
mbtowc
__p__commode
sscanf
_amsg_exit
_initterm
putchar
localtime
fclose
ungetc
wcsncpy
rand
_ismbblead
swscanf
iswxdigit
wcsncmp
isupper
_XcptFilter
_exit
vswprintf
_cexit
bsearch
strcpy
__setusermatherr
__getmainargs
clearerr
wcscpy
strtoul
perror

kernel32

SetUnhandledExceptionFilter
GetFileAttributesExA
FindFirstChangeNotificationW
CallNamedPipeW
IsValidLocale
FindNextChangeNotification
SetThreadExecutionState
GetPriorityClass
FindNextFileW
WaitForMultipleObjectsEx
SetNamedPipeHandleState
GetLastError
GlobalFree
GetModuleHandleA
ReadFile
GetCPInfo
SetMailslotInfo
GetLocaleInfoA
LoadLibraryExA
GetTimeFormatA
GetLocaleInfoW
lstrcatW
GetFullPathNameA
OpenFileMappingW
IsBadStringPtrW
CreateEventA
UnlockFile
EnterCriticalSection
TlsGetValue
HeapCreate
Sleep
FoldStringW
VerSetConditionMask
WinExec
CreateThread
CreateFileMappingW
CompareStringW
DefineDosDeviceW
CreateSemaphoreA
SearchPathW
CancelIo
LeaveCriticalSection
GetStartupInfoW
IsValidLanguageGroup
SetCommTimeouts
SystemTimeToFileTime
MoveFileExA
lstrcmpiA
GetStringTypeExW
CreateMutexA

gdi32

GetROP2
DPtoLP
SetDIBits
EnumFontFamiliesW
CreateICW
GetSystemPaletteEntries
CreateRectRgn
GetMapMode
CreateHalftonePalette
SetPaletteEntries
CreateDiscardableBitmap
ExtTextOutW
TextOutW
GetFontData
GetDIBColorTable
Polyline
GetTextFaceW
GetTextAlign
CreateBrushIndirect
GetBkMode
GetLayout
CreateSolidBrush
EnumFontFamiliesExW
CreateBitmapIndirect
CreateBitmap
CreatePen
CreateDIBSection
CombineRgn
GetNearestPaletteIndex
Ellipse
GetTextMetricsA
RealizePalette
UnrealizeObject
SetTextColor
EndDoc
GetSystemPaletteUse
SetDIBitsToDevice
SetDIBColorTable
SetAbortProc
ResizePalette
WidenPath
ExcludeClipRect
CreateEllipticRgnIndirect
RemoveFontResourceW
CreateDCW
CreatePolygonRgn
GetViewportOrgEx

user32

DestroyCaret
DrawFocusRect
LoadImageW
WaitMessage
DestroyMenu
DrawAnimatedRects
DefDlgProcW
ActivateKeyboardLayout
SetTimer
GetWindowTextA
SendInput
LockWindowUpdate
WaitForInputIdle
SetMenu
GetMenu
RegisterWindowMessageW
GetScrollPos
MessageBoxExA
IsChild
GetUpdateRgn
LoadMenuA
AppendMenuW
CreateIconIndirect
GetWindowLongA
GetWindowTextLengthW
CheckRadioButton
InflateRect
TrackPopupMenu
ReleaseDC
SendMessageW
MoveWindow
DrawFrameControl
LoadCursorA
SetUserObjectInformationW
CreatePopupMenu
SetClassLongW
CreateWindowExW
IsIconic
InsertMenuItemW
OffsetRect
LoadCursorW
AdjustWindowRectEx
GetWindowTextW
GetDlgCtrlID
WindowFromPoint
InsertMenuA
SystemParametersInfoW
GetMenuItemCount
VkKeyScanW
RegisterClassExA
EndDialog
CloseDesktop
IsDialogMessageW
OpenDesktopW
ScrollWindowEx
IsWindow
CharToOemW
SetCaretPos
GetKeyboardType
PeekMessageW
GetWindow
CreateDialogParamW
SetWindowTextW
DestroyAcceleratorTable
GetClassInfoExA
GetWindowLongW
EqualRect
SetScrollPos
IsWindowUnicode
KillTimer
InSendMessageEx
CreateIconFromResource
CopyAcceleratorTableW
DefWindowProcA
keybd_event
EnumWindows
GetDoubleClickTime
DestroyWindow
CharPrevA
SendMessageA
DefFrameProcA
RegisterHotKey
SetCursor
GetWindowDC
SetDlgItemInt
CascadeWindows
GetMenuItemID
DialogBoxParamA
SwitchToThisWindow
CheckMenuRadioItem
MapDialogRect
PtInRect
IsDlgButtonChecked
wsprintfA
GetSystemMenu
RegisterClassExW
CreateMenu
GetClassLongA
GetMenuItemInfoW
LoadMenuW
GetTopWindow
GetPropW
SetCursorPos
MapVirtualKeyExW
ShowCaret
RegisterClassW
LoadIconA
GetCaretPos
ShowCursor
GetSubMenu
LookupIconIdFromDirectory

shell32

ord524

Exports

Exports

?HidePointerOriginal@@YGFKPAIPAD<V

Sections

.text
Size: 111KB - Virtual size: 111KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 56KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fc239a6039044bbd02d9d510b7c0c66e

Headers

File Characteristics

PDB Paths

Imports

msvcrt

kernel32

gdi32

user32

shell32

Exports

Exports

Sections

.text Size: 111KB - Virtual size: 111KB

.data Size: 56KB - Virtual size: 76KB

.rsrc Size: 512B - Virtual size: 16B

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 111KB - Virtual size: 111KB

.data
Size: 56KB - Virtual size: 76KB

.rsrc
Size: 512B - Virtual size: 16B

.reloc
Size: 2KB - Virtual size: 1KB