f9b2a8bfa5868417bb99e6e7534ef442_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f9b2a8bfa5868417bb99e6e7534ef442_JaffaCakes118
Size

209KB
MD5

f9b2a8bfa5868417bb99e6e7534ef442
SHA1

35c0abc031f879022b5a6da24611ca6cd0d0b374
SHA256

0100b770b36450d47646b976f93bf5f8c58cc95a58bba330a9c59bd6bc07a2e8
SHA512

4a0ec17f84ed5bbd974aa86d1955c4c6a0b4559f1a5a1422b9185ca8a3e55d22c98f10b2edddec054e015275e6703442c6287aee0766db1289e7494d01ac7116
SSDEEP

6144:Xtg+KulfSyj4Oh7KzcpGGewiSNRZ54Pw3hnNj9DMn:9g+ZljlDBNRZaPw3NVc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f9b2a8bfa5868417bb99e6e7534ef442_JaffaCakes118

Files

f9b2a8bfa5868417bb99e6e7534ef442_JaffaCakes118
.dll windows:5 windows x86 arch:x86

d8462b6e30afaeac3b15e40b2f8f4e11

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

U:\ugjlivgqpN\cprQrHmOnyKgMt\vzmrhviaPu\shEYQBkSvbnha\SuKzDjAooR.pdb

Imports

gdi32

GetTextFaceW
GetSystemPaletteEntries
SetBitmapDimensionEx
GetStockObject
SetPixel
GetTextAlign
RectInRegion
SetBkColor
Polyline
SaveDC
DeleteObject
BitBlt
GetTextMetricsW
DPtoLP
GetTextExtentExPointW
Polygon
GetTextExtentPointW
CreatePen
CombineRgn
RemoveFontResourceW
GetDIBits
CreateBitmap
CreateFontW
GetBitmapBits
SelectClipRgn
GetLayout
CreateBitmapIndirect
CreateDIBitmap
GetMapMode
ResizePalette
AddFontResourceW
GetObjectW
EndDoc
EnumFontFamiliesExW
CreateEllipticRgnIndirect
SetPaletteEntries
Escape
GetWindowOrgEx
SetDIBColorTable
CreatePolygonRgn
EnumFontsW
GetPaletteEntries
SetViewportExtEx
DeleteDC
GetTextExtentPoint32W
CreateICW
EndPage
GetDIBColorTable
GetViewportOrgEx
CreatePalette
SetBitmapBits
UnrealizeObject
ScaleViewportExtEx
SetMapMode

user32

DrawTextA
InvalidateRgn
CharToOemW
BeginPaint
SetParent
CreateDialogParamW
GetMenuItemID
GetUpdateRect
InternalGetWindowText
ShowWindowAsync
IsCharLowerA
GetClassInfoA
RemovePropW
SetRect
EndPaint
SetWindowPlacement
MonitorFromPoint
GetSubMenu
CharPrevA
MapVirtualKeyA
GetCursorPos
LoadMenuW
SetRectEmpty
SetForegroundWindow
ScrollWindowEx
EndDialog
SetScrollInfo
GetNextDlgTabItem
CopyRect
HideCaret
EnumChildWindows
WaitForInputIdle
DefDlgProcW
IsIconic
ScrollWindow
GetKeyboardType
DrawFrameControl
MapDialogRect
GetDialogBaseUnits
ShowCursor
GetClassLongW
LoadAcceleratorsA
GetMessageW
PeekMessageW
SetWindowLongA
SetSysColors
PostMessageW
LoadIconW
TileWindows
RegisterClassW
ShowScrollBar
SendMessageTimeoutW
GetWindowTextW
IsWindowUnicode
IsChild
DestroyCaret
InvalidateRect
IsDialogMessageA
GetClassInfoW
EnableMenuItem
CreateCaret
EnableScrollBar
GetSysColorBrush
CharLowerBuffW
GetSysColor
DialogBoxParamA
DestroyIcon
SystemParametersInfoA
CharPrevW
DrawStateW
GetClassInfoExW
UnionRect
CopyAcceleratorTableW
CheckRadioButton
GetSystemMenu
DrawTextW
LoadIconA
DefWindowProcW
GetWindow
InSendMessage
GetLastActivePopup
DefWindowProcA
DispatchMessageW
CheckMenuItem
DrawMenuBar
InsertMenuW
DrawIcon
DestroyWindow
DispatchMessageA
GetMenuItemCount
ToUnicodeEx
OemToCharBuffA
OpenDesktopW
GetTopWindow
wsprintfW
TrackPopupMenuEx
GetKeyState
WindowFromPoint
MapVirtualKeyW
SetMenuDefaultItem
GetDlgItem
SetWindowTextW
DrawEdge
ChangeMenuW
GetScrollPos
ClipCursor
CreatePopupMenu
CallWindowProcA
GetMessageExtraInfo
GetWindowPlacement
RegisterClassA
LoadImageW
GetKeyboardLayoutNameW
PtInRect
ShowOwnedPopups
SystemParametersInfoW
SetClassLongW
LoadStringA
DrawIconEx
CharLowerA
GetIconInfo
GetMessageTime
DefFrameProcW
GetMenuCheckMarkDimensions
CreateDialogIndirectParamW
LoadImageA
GetClientRect
DragObject
MessageBoxExA
SetWindowRgn
FillRect
PostThreadMessageA

msvcrt

isdigit
ungetc
wcstod
_controlfp
qsort
wcstok
__set_app_type
__p__fmode
fwrite
__p__commode
fgets
strtol
towupper
strpbrk
mbstowcs
remove
mktime
_amsg_exit
tolower
_initterm
_acmdln
wcschr
isalpha
exit
iswctype
getenv
_ismbblead
_XcptFilter
strtok
swscanf
_exit
fread
getc
wcslen
strcspn
iswprint
_cexit
fgetc
time
strrchr
wcscmp
malloc
islower
memset
ftell
fputc
__setusermatherr
__getmainargs
gmtime
strcoll
iswspace

kernel32

LeaveCriticalSection
IsBadStringPtrW
OpenSemaphoreW
SleepEx
FindResourceExW
lstrcpyW
GetWindowsDirectoryW
GetStdHandle
GetWindowsDirectoryA
GetSystemInfo
ExitThread
IsDBCSLeadByteEx
GlobalMemoryStatus
SetCommTimeouts
GetFileAttributesExW
FreeLibrary
SetCurrentDirectoryA
FindCloseChangeNotification
HeapWalk
ReleaseSemaphore
GetFileTime
GetTempFileNameA
SetLastError
CopyFileA
EnumSystemLocalesA
CreateRemoteThread
FreeResource
GetSystemDirectoryW
EnumResourceNamesW
GlobalDeleteAtom
GetModuleFileNameA
GetCommConfig
IsBadWritePtr
GlobalFlags
GetSystemWindowsDirectoryA
MoveFileExA
CreateMutexA
WaitForMultipleObjectsEx
SetHandleCount
HeapUnlock
GetPriorityClass
LCMapStringA
MulDiv
GetFileType
lstrcmpiA
GetExitCodeThread
FindResourceExA
IsBadCodePtr
InitializeCriticalSection
GetAtomNameA
SetErrorMode
GetCurrentThread
OpenEventW
GetModuleHandleA
lstrlenW
lstrcmpW
ReadFile
CreateSemaphoreA
SetHandleInformation
GlobalAlloc
GetLocaleInfoA

Exports

Exports

?RemoveValueW@@IJPAMKK@X
?RtlAnchorNew@@IJPA_NG@X
?AddPointer@@IJPAMIMD@X

Sections

.text
Size: 155KB - Virtual size: 155KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.import
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.cfg1
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.pcode
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.cfg2
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.cfg3
Size: 512B - Virtual size: 454B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d8462b6e30afaeac3b15e40b2f8f4e11

Headers

File Characteristics

PDB Paths

Imports

gdi32

user32

msvcrt

kernel32

Exports

Exports

Sections

.text Size: 155KB - Virtual size: 155KB

.import Size: 1KB - Virtual size: 1KB

.rdata Size: 6KB - Virtual size: 6KB

.cfg1 Size: 512B - Virtual size: 44B

.pcode Size: 13KB - Virtual size: 12KB

.cfg2 Size: 512B - Virtual size: 44B

.cfg3 Size: 512B - Virtual size: 454B

.data Size: 2KB - Virtual size: 1KB

.rsrc Size: 25KB - Virtual size: 25KB

.reloc Size: 2KB - Virtual size: 2KB

.text
Size: 155KB - Virtual size: 155KB

.import
Size: 1KB - Virtual size: 1KB

.rdata
Size: 6KB - Virtual size: 6KB

.cfg1
Size: 512B - Virtual size: 44B

.pcode
Size: 13KB - Virtual size: 12KB

.cfg2
Size: 512B - Virtual size: 44B

.cfg3
Size: 512B - Virtual size: 454B

.data
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 25KB - Virtual size: 25KB

.reloc
Size: 2KB - Virtual size: 2KB