fdf09f3fa0f3a986e561187195bbe684_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

fdf09f3fa0f3a986e561187195bbe684_JaffaCakes118
Size

95KB
MD5

fdf09f3fa0f3a986e561187195bbe684
SHA1

aabdd98311bd8ffdb60647e5bfdf064b9035246a
SHA256

16c9230e249c2af3c23dd7f69aa4cd712345bdf87b692161d5a4c7a8af51e3f9
SHA512

5d72475646c5371f0a6538b3a759ef910cec473705e3320ceb1b00385c19d29483a268e881b0d60155250e0b24813d0708cb49ee0a375246c38104a519dd8b4f
SSDEEP

1536:vJKhnwGuDLYhlJCw45ImFjRXTpMbsuyktCtik6R3Zyd6wuq4zB5IOOVRqqfxuL:vJQ7u759HIyktCQkE3sd6y4/aOzL

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fdf09f3fa0f3a986e561187195bbe684_JaffaCakes118

Files

fdf09f3fa0f3a986e561187195bbe684_JaffaCakes118
.dll windows:5 windows x86 arch:x86

f8ef2cc15b80794913002845663520a9

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

PDB Paths

Q:\yCCVgZoiBJp\gnefBniDtv\LLnbivnpaIjpP\xjlzaXyammxdy\rpGYvUnFiLadh.pdb

Imports

gdi32

PtVisible
ScaleWindowExtEx
SelectPalette
TextOutW
GetStockObject
GetTextExtentPointA
SetLayout
GetDeviceCaps
OffsetRgn
CreateFontW
RemoveFontResourceW
CreateRoundRectRgn
GetMapMode
CreatePalette
SetMapMode
GetTextExtentExPointW
GetTextExtentPointW
Rectangle
SetBitmapBits
FillRgn
LineDDA
CreatePen
PatBlt
SetAbortProc
DeleteDC
SetWindowExtEx
GetTextFaceW
GetFontData
CreateDIBSection
GetTextExtentPoint32A
CombineRgn
SetDIBitsToDevice
GetSystemPaletteEntries
EndPath
CreatePolygonRgn
BitBlt
CreateRectRgn
EndDoc
CreateBitmapIndirect
GetRgnBox
CreatePenIndirect
GetTextMetricsA
Ellipse
MoveToEx
GetTextAlign
BeginPath
GetSystemPaletteUse
WidenPath
EnumFontFamiliesExW
SetRectRgn
CreateFontA

kernel32

GetModuleFileNameW
FormatMessageW
GetStartupInfoA
CreateDirectoryA
GetCommModemStatus
WaitForMultipleObjects
Sleep
GetCurrentThread
GetBinaryTypeW
GetCurrentDirectoryW
ResumeThread
GetACP
GetAtomNameA
GetComputerNameA
SetLastError
TryEnterCriticalSection
ExitThread
SetCommBreak
GetLocaleInfoA
OpenFile
CreateEventW
VirtualQuery
ClearCommBreak
SetSystemTime
GetFileAttributesExA
MoveFileA
WriteFile
SetThreadAffinityMask
FileTimeToLocalFileTime
MoveFileExW
IsBadCodePtr
GlobalSize
SetTimerQueueTimer
CancelIo
FindNextChangeNotification
GlobalDeleteAtom
LoadLibraryW
CreateWaitableTimerA
EnumSystemLocalesA
SuspendThread
UnmapViewOfFile
VerSetConditionMask
HeapLock
GetCurrentThreadId
LockResource
GetVersionExA
SetNamedPipeHandleState
CreateFileMappingW
GetThreadPriority
GetBinaryTypeA
SetCurrentDirectoryA
SetWaitableTimer
GetTempPathW
GetThreadContext
ReleaseSemaphore

user32

AttachThreadInput
ValidateRect
UpdateWindow
RegisterClassA
SetCursor
DefFrameProcA
RedrawWindow
GetMenuItemRect
DialogBoxIndirectParamA
DefDlgProcA
GetTopWindow
GetMessagePos
SetWindowTextA
ExitWindowsEx
MapVirtualKeyW
GetActiveWindow
LoadStringW
RegisterClassW
OemToCharA
IsRectEmpty
GetSystemMetrics
DestroyWindow
GetClassInfoExA
GetFocus
GetShellWindow
GetMessageExtraInfo
GetClassInfoExW
GetUpdateRgn
GetMessageA
GetClassInfoW
CharToOemW
SetTimer
UnionRect
EnableScrollBar
WindowFromPoint
GetKeyboardLayoutNameW
EnumWindows
DrawFocusRect
GetMenuStringW
OpenIcon
CheckMenuItem
IsCharLowerA
SetScrollRange
EnableMenuItem
CharUpperBuffW
GetCursorPos
SetLastErrorEx
GetWindowDC
CheckDlgButton
CreateCaret
ToUnicodeEx
DefFrameProcW
FindWindowExA
CascadeWindows
CharPrevA
LoadMenuA
CallWindowProcW
GetMonitorInfoW
GetKeyboardType
BeginPaint
LoadCursorA
SystemParametersInfoA
IsMenu
CreateWindowExW
DialogBoxParamA
GetAltTabInfoW
GetMenu
CheckMenuRadioItem
AllowSetForegroundWindow
TranslateMessage
DefWindowProcA
GetLastActivePopup
ModifyMenuW
DrawIconEx
GetParent
DispatchMessageW
DestroyMenu
TranslateAcceleratorW
InvalidateRect
GetMessageTime
GetMenuItemID
GetWindowTextA
GetKeyboardLayout
SetMenuDefaultItem
SetScrollInfo
PostQuitMessage
IsZoomed
GetKeyState
ClientToScreen
GetDlgItemInt
ShowCursor
CreateDialogIndirectParamW
LoadMenuW
GetClipCursor
GetClassLongA
ChildWindowFromPoint
SendMessageW
GetScrollPos
CheckRadioButton
MapVirtualKeyA
GetPropW
VkKeyScanW
IsWindowEnabled
BringWindowToTop
EqualRect
MapVirtualKeyExW
TileWindows
SetMenuItemBitmaps
IsCharAlphaW
LoadCursorW
UnloadKeyboardLayout
IsChild
MessageBoxExA
DeferWindowPos
EndDialog
ChildWindowFromPointEx
ReplyMessage
WaitForInputIdle
SendMessageTimeoutW
wvsprintfA
CreateDialogParamA
DrawIcon

msvcrt

islower
iswspace
_controlfp
wcstol
wcscpy
__set_app_type
rand
__p__fmode
toupper
__p__commode
puts
realloc
_amsg_exit
wcstoul
_initterm
_acmdln
wcschr
sscanf
wcsncpy
towupper
fgets
exit
iswctype
gmtime
vsprintf
strncmp
iswalpha
wcspbrk
_ismbblead
strcoll
qsort
mbtowc
srand
isalpha
clearerr
wcscmp
wcsrchr
wcscspn
strtol
_XcptFilter
iswxdigit
_exit
atoi
wcscat
_cexit
strtok
__setusermatherr
__getmainargs

comdlg32

ChooseColorW
PrintDlgW
FindTextW
GetSaveFileNameA

Exports

Exports

InstallU
PluginCommand
PluginMain
PluginName
PluginType
PluginVersion
WSPStartup
?BitCounterArrayIdeDunAs@@YGKGE@Z

Sections

.text
Size: 9KB - Virtual size: 85KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 66KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f8ef2cc15b80794913002845663520a9

Headers

File Characteristics

PDB Paths

Imports

gdi32

kernel32

user32

msvcrt

comdlg32

Exports

Exports

Sections

.text Size: 9KB - Virtual size: 85KB

.rsrc Size: 66KB - Virtual size: 65KB

.reloc Size: 19KB - Virtual size: 19KB

.text
Size: 9KB - Virtual size: 85KB

.rsrc
Size: 66KB - Virtual size: 65KB

.reloc
Size: 19KB - Virtual size: 19KB