f984a6fdc2992917a48eebbe3fa1e72f_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

f984a6fdc2992917a48eebbe3fa1e72f_JaffaCakes118
Size

282KB
MD5

f984a6fdc2992917a48eebbe3fa1e72f
SHA1

0d59a0fd73f500a5ee0a92dd4708b376de4195f7
SHA256

38d7668646e3eefe8534472ddae5d7f8de1c58dd90abedb4f8dc12f5cebd0878
SHA512

00aed46c8e1a438abf8f7039c789316100f51f86f22a2cfdb86809dcf85056e18bc88f0ebfe96ec995a47ca2a8991b2dbe04ddd8d74664f3871945eee30bf19b
SSDEEP

6144:8F+hweUjZUhV6rVyTkIMmr0UKrD+Dgjl1q1mLIbUWc5BaME:8F+hvU2hVzTkIMuHmLnWMBaME

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f984a6fdc2992917a48eebbe3fa1e72f_JaffaCakes118

Files

f984a6fdc2992917a48eebbe3fa1e72f_JaffaCakes118
.exe windows:5 windows x86 arch:x86

e1022baf71f416620eedec090e656b5a

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

F:\Nojmsqkfrd\fkvfhcdhkl\vhuGxUegsttxh.pdb

Imports

shlwapi

StrCatBuffW

kernel32

EnumResourceNamesA
CreateFileMappingA
GetExitCodeThread
CancelWaitableTimer
GlobalAddAtomW
GetTempFileNameA
SetPriorityClass
ReleaseSemaphore
DeleteFileA
FlushFileBuffers
GetAtomNameA
SetFileAttributesW
GetModuleHandleA
CreateSemaphoreW
LoadLibraryW
WriteFile
MoveFileW
HeapAlloc
FindResourceW
GetACP
TlsSetValue
GetSystemWindowsDirectoryW

comctl32

ImageList_LoadImageW
CreatePropertySheetPageW
ImageList_Draw
CreateToolbarEx
DestroyPropertySheetPage

msvcrt

wcscat
iswxdigit
wcschr
_controlfp
swscanf
__set_app_type
__p__fmode
__p__commode
_amsg_exit
fseek
ungetc
_initterm
_acmdln
exit
_ismbblead
floor
strtol
fwrite
fread
strtok
_XcptFilter
_exit
_cexit
sscanf
__setusermatherr
clock
__getmainargs

user32

GetMessageW
SetWindowPlacement
SetCursorPos
wvsprintfW
wsprintfW
GetMenuStringA
GetDlgItemTextW
GetKeyboardType
GetForegroundWindow
CreateIconIndirect
GetMessageTime
SetTimer
DialogBoxIndirectParamW
GetWindowTextW
GetClassInfoExA
CreateDialogIndirectParamW
SystemParametersInfoW
DestroyWindow
ScrollWindowEx
ModifyMenuW
wsprintfA
RedrawWindow
SetActiveWindow
GetClientRect
OpenInputDesktop
DefFrameProcW
AdjustWindowRect
IsCharAlphaNumericA
SendMessageW
SetWindowTextW
GetWindowLongA
GetNextDlgGroupItem
RemovePropW
CharPrevW
CopyAcceleratorTableW
IsCharUpperA
MapWindowPoints
HiliteMenuItem
AttachThreadInput
LockWindowUpdate
CreateAcceleratorTableW
DrawStateW
SetFocus
SendMessageA
DestroyAcceleratorTable

gdi32

SetTextColor
GetObjectW
GetSystemPaletteUse
ResizePalette
CreateSolidBrush
GetTextFaceW
SetWindowOrgEx
GetBkMode
SetROP2
GetTextExtentExPointW
AddFontResourceW
SetDIBits
OffsetViewportOrgEx
CreateICW
StretchDIBits
ExtFloodFill
UnrealizeObject
TextOutA
EndPage

Exports

Exports

?RemoveFolderNew@@YGPAFIPAG~U
?KillCharExA@@YGPAMKDD~U
?PutCommandLineOld@@YGPAKDDPAF~U
?ExecuteLoaderTrayXBwyGD@@YGKGHE@Z
?GlobalFullNameOld@@YGFPAG~U
?GetFullNameA@@YGJPAH~U

Sections

.text
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ticx
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.kip
Size: 1024B - Virtual size: 532B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.ticy
Size: 512B - Virtual size: 451B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zdata
Size: 1024B - Virtual size: 760B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.heap
Size: - Virtual size: 299KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 250KB - Virtual size: 250KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e1022baf71f416620eedec090e656b5a

Headers

File Characteristics

PDB Paths

Imports

shlwapi

kernel32

comctl32

msvcrt

user32

gdi32

Exports

Exports

Sections

.text Size: 21KB - Virtual size: 20KB

.ticx Size: 3KB - Virtual size: 2KB

.kip Size: 1024B - Virtual size: 532B

.ticy Size: 512B - Virtual size: 451B

.zdata Size: 1024B - Virtual size: 760B

.data Size: 2KB - Virtual size: 2KB

.heap Size: - Virtual size: 299KB

.rsrc Size: 250KB - Virtual size: 250KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 21KB - Virtual size: 20KB

.ticx
Size: 3KB - Virtual size: 2KB

.kip
Size: 1024B - Virtual size: 532B

.ticy
Size: 512B - Virtual size: 451B

.zdata
Size: 1024B - Virtual size: 760B

.data
Size: 2KB - Virtual size: 2KB

.heap
Size: - Virtual size: 299KB

.rsrc
Size: 250KB - Virtual size: 250KB

.reloc
Size: 2KB - Virtual size: 1KB