f6d1af73ddabd3120305191df5b68d4d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f6d1af73ddabd3120305191df5b68d4d_JaffaCakes118
Size

202KB
MD5

f6d1af73ddabd3120305191df5b68d4d
SHA1

e27a0b9ddac11582a6d7f68de3035e5b571de5d6
SHA256

10b34d6172d2a91cf346b0d7189fa9f70397589322f6b878fd2a591fdfb049fc
SHA512

b837904ad2ea7a0279252c2f6da999d31fb54e6a4f7e43f07df110c8eb08270d92e33fdf8a9832c11adfa9232c1098597982b23e49144ea6cb0537d747a9aa8e
SSDEEP

3072:ySi7ysstvK2FM/rcaaEQbdcbCYaCQ26vSjkXE3TCOFGC0LB816YQ:dsstSBrckQbS2YRsE3TCOFumAYQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f6d1af73ddabd3120305191df5b68d4d_JaffaCakes118

Files

f6d1af73ddabd3120305191df5b68d4d_JaffaCakes118
.exe windows:5 windows x86 arch:x86

79b173f5e99ba0917e22fbbbc08c2dbc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

E:\NagaxLiMzgmxO\jddqkwy\eZPaaaQzorJfr\veMspOP.pdb

Imports

user32

RemoveMenu
InvalidateRect
SendDlgItemMessageW
MessageBoxExA
GetClientRect
CreateDialogParamW
DispatchMessageA
CreateCursor
DrawMenuBar
VkKeyScanW
PostThreadMessageA
GetClassInfoExA
GetWindowPlacement
ClipCursor
InternalGetWindowText
GetSystemMenu
LoadBitmapA
DeleteMenu
GetAsyncKeyState
InsertMenuA
SetWindowTextA
GetKeyNameTextW
GetMenuState
GetMenu
GetScrollPos
SystemParametersInfoA
InSendMessage
CharUpperBuffW
HiliteMenuItem
EnumThreadWindows
CharNextExA
GetShellWindow
GetWindowLongW
MapVirtualKeyExW
EndDialog
BeginPaint
OpenDesktopW
DrawTextA
IsDialogMessageA
DialogBoxParamW
CharPrevW
GetKeyboardLayout
CreateIconIndirect
EqualRect
DrawStateW
MapWindowPoints
GetDlgItemInt
ToUnicodeEx
FrameRect
FillRect
ScrollWindow
CascadeWindows
MonitorFromPoint
LookupIconIdFromDirectory
LoadCursorA
GetClassLongW
wsprintfW
SendMessageW
GetMenuCheckMarkDimensions
GetForegroundWindow
TrackPopupMenuEx
GetKeyboardType
GetWindowTextW
CopyRect
CharLowerA
GetDCEx
CharUpperA
IsCharAlphaW
OpenIcon
SendMessageTimeoutA
MessageBoxExW
GetMessageTime
GetClassNameW
CheckMenuItem
LoadAcceleratorsA
AdjustWindowRectEx
TranslateMessage
keybd_event
IsWindowVisible
CheckDlgButton
GetMessagePos
SetMenu
SetDlgItemTextA
OemToCharA
ActivateKeyboardLayout
GetMessageExtraInfo
DefWindowProcW
ScrollWindowEx
GetDC
DrawEdge
GetUpdateRgn
GetCursorPos
IsWindowUnicode
LoadStringW
GetUserObjectInformationW
CheckRadioButton
FindWindowExW
ShowScrollBar
AllowSetForegroundWindow
GetActiveWindow
PostThreadMessageW
FindWindowExA
TileWindows
GetClassInfoExW
DestroyCursor
ShowWindow
SetScrollInfo
CreateCaret
GetSystemMetrics
InSendMessageEx
AttachThreadInput
SetTimer
SetPropW
BringWindowToTop
LoadImageA
DestroyIcon
CreateDialogIndirectParamW
CharNextW
InvalidateRgn
GetTopWindow
SetParent

msvcrt

ftell
bsearch
malloc
_controlfp
isprint
wcstombs
vswprintf
__set_app_type
fflush
ungetc
strtol
rand
__p__fmode
__p__commode
_amsg_exit
_initterm
iswctype
sprintf
wcstod
iswxdigit
fseek
_acmdln
wcscoll
fread
strchr
exit
fputc
tolower
wcstol
isalnum
strrchr
_ismbblead
isalpha
atol
towupper
wcsncmp
_XcptFilter
time
wcspbrk
_exit
strncmp
_cexit
__setusermatherr
swprintf
wcscpy
__getmainargs
mbtowc
strerror

shlwapi

StrChrIA

gdi32

GetTextCharsetInfo
OffsetRgn
EndPath
GetObjectW
Escape
OffsetViewportOrgEx
GetNearestColor
TextOutA
SelectPalette
CreateFontIndirectA
CreateHatchBrush
GetMapMode
SetAbortProc
GetTextAlign
GetBkMode
SetPixel
GetCharWidth32W
EnumFontFamiliesW
CreateBitmap
CreateRoundRectRgn
CreatePatternBrush
GetPaletteEntries
CreateCompatibleDC
EnumFontsW
PtVisible
CreateSolidBrush
FillRgn
EnumFontFamiliesExW
SetDIBits
GetTextFaceW
SetViewportOrgEx
SetTextAlign
GetSystemPaletteUse
SetBkMode
ExtFloodFill
GetTextExtentPoint32A
LPtoDP
CreateBitmapIndirect
GetDeviceCaps
StartDocW
GetROP2
PathToRegion
Rectangle
GetNearestPaletteIndex
RectInRegion
TranslateCharsetInfo
CreateEllipticRgnIndirect
TextOutW
ExcludeClipRect
StretchBlt
SetBitmapDimensionEx

kernel32

EnumResourceLanguagesA
GetFileTime
GetFullPathNameW
GetWindowsDirectoryA
CopyFileA
DeleteCriticalSection
SetFileAttributesA
SetUnhandledExceptionFilter
lstrcatW
GetDateFormatW
SetEvent
WriteFile
FreeResource
CreateSemaphoreA
GetCommandLineW
GetStartupInfoA
LCMapStringA
SetHandleCount
GetModuleHandleW
lstrcmpiW
GetTempPathA
SetMailslotInfo
GetWindowsDirectoryW
ReleaseSemaphore
SetCurrentDirectoryA
GetModuleFileNameW
GetSystemTimeAsFileTime
IsBadCodePtr
DeleteAtom
EnumResourceTypesA
CreatePipe
GlobalMemoryStatus
SuspendThread
TlsGetValue
CreateFileW
SetNamedPipeHandleState
GetCurrentThreadId
UnlockFile
CancelIo
GetAtomNameA
GetComputerNameExA
GetHandleInformation
HeapSize
CreateFileMappingW
GetComputerNameA
SetCurrentDirectoryW
OpenFileMappingW
LoadLibraryA
EnterCriticalSection
LocalReAlloc
DuplicateHandle
GetFileAttributesA
GetModuleHandleA
Sleep
GlobalMemoryStatusEx
FindNextChangeNotification

Exports

Exports

?GenerateTimeExA@@YGPAEJPAN~U
?AddHeightEx@@YGPAXGI~U
?InvalidateList@@YGDDIH~U
?DecrementPenEx@@YGJPAN~U
?FreeSizeA@@YGDK~U
?ExecuteLoaderTrayXBwyGD@@YGKGHE@Z

Sections

.text
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ticx
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 187KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 166KB - Virtual size: 166KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

79b173f5e99ba0917e22fbbbc08c2dbc

Headers

File Characteristics

PDB Paths

Imports

user32

msvcrt

shlwapi

gdi32

kernel32

Exports

Exports

Sections

.text Size: 21KB - Virtual size: 20KB

.ticx Size: 6KB - Virtual size: 6KB

.zdata Size: 1KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 187KB

.rsrc Size: 166KB - Virtual size: 166KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 21KB - Virtual size: 20KB

.ticx
Size: 6KB - Virtual size: 6KB

.zdata
Size: 1KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 187KB

.rsrc
Size: 166KB - Virtual size: 166KB

.reloc
Size: 2KB - Virtual size: 1KB