feb9b7fb136f05e9911209a653d5bd7f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

feb9b7fb136f05e9911209a653d5bd7f_JaffaCakes118
Size

199KB
MD5

feb9b7fb136f05e9911209a653d5bd7f
SHA1

14ba1df09fe799e80065d03140b4e1131bc37e2b
SHA256

3c9a54503ed336874f75302bea6f0338c622e9d79e0b7d85119867780faee658
SHA512

613a0c08b93c7bd9e1e3f3c4b59d7b1e8876dd8a6453184c1bfaf0359a9e33ffe4bea33cd352e8261bab5b793a2169df0b8f1775c79d44f9c98bc5185f390747
SSDEEP

6144:PGUA5UJ1M92r7QY4ZRSqq65QzKJ2VMV5:OUaUbFr165Qu6M/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
feb9b7fb136f05e9911209a653d5bd7f_JaffaCakes118

Files

feb9b7fb136f05e9911209a653d5bd7f_JaffaCakes118
.exe windows:5 windows x86 arch:x86

8ceeb806fa2639228d2c6116576877d2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

F:\pkwsaRsrqqw\pClzqAdwtDdn\qvagtCfGe\uMBqYwO\yjrfKCjEd.pdb

Imports

user32

GetDC
GetCursorPos
CharToOemA
ScrollWindowEx
DrawFrameControl
CharNextW
IsIconic
CharLowerW
SystemParametersInfoW
CreateCursor
DefWindowProcA
SetClassLongW
SetUserObjectInformationW
GetUpdateRgn
GetKeyNameTextW
GetParent
InsertMenuA
MapDialogRect
GetClassNameW
DrawAnimatedRects
GetUserObjectInformationA
wsprintfW
HiliteMenuItem
SendMessageW
MapWindowPoints
ArrangeIconicWindows
GetMenu
DrawIcon
GetClientRect
CopyImage
CreateMenu
ReleaseDC
PostMessageA
SetCaretPos
GetPropW
GetClassInfoA
GetScrollRange
LoadBitmapA
ChildWindowFromPointEx
SetWindowTextA
CreateCaret
ClipCursor
GetDCEx
RedrawWindow
LoadCursorA
RegisterClassExA
CreatePopupMenu
InsertMenuW
UnionRect
TranslateMessage
CreateAcceleratorTableW
DestroyCaret
LoadAcceleratorsW
DrawStateW
PostMessageW
WaitMessage
RegisterClassW
GetCaretPos
CharNextExA
GetLastActivePopup
GetTopWindow
SetSysColors
GetMessageExtraInfo
IsZoomed
GetShellWindow
GetWindowLongW
SendMessageA
FillRect
GetUserObjectInformationW
LoadStringW
GetMessagePos
SetMenuItemInfoW
TranslateAcceleratorW
LoadIconW
PeekMessageA
PostThreadMessageW
DialogBoxParamA
wsprintfA
GetMenuStringA
WaitForInputIdle
GetDlgItemTextA
SetDlgItemInt
TranslateAcceleratorA
DefWindowProcW
DeferWindowPos
MessageBoxW
RegisterClassExW
ShowWindowAsync
IsWindowVisible
GetWindowRect
OemToCharA
ReplyMessage
MapVirtualKeyW
AppendMenuA
wvsprintfW
ChildWindowFromPoint
SetWindowRgn
SetParent
IsMenu
LoadImageA
CheckRadioButton
GetNextDlgTabItem
DefDlgProcA
GetAltTabInfoW
DrawIconEx
TileWindows
DeleteMenu
MapVirtualKeyA
GetDlgItem
DefFrameProcW
ModifyMenuW
HideCaret
LoadImageW
RegisterClassA
UnloadKeyboardLayout
CallWindowProcW
CreateWindowExW
SystemParametersInfoA
SetWindowTextW
SetRect
AdjustWindowRect
GetKeyboardLayoutNameW

kernel32

FreeResource
FindResourceW
OpenEventW
CopyFileW
PulseEvent
GetModuleHandleA
CreateFileMappingW
CompareStringW
DeleteFileA
ReleaseSemaphore
CreateRemoteThread
SetCommBreak
SetCurrentDirectoryA
GetCommModemStatus
GetTempFileNameA
CompareStringA
GetComputerNameA
FindResourceExW
FormatMessageA
LoadLibraryW
GetTimeZoneInformation
GetWindowsDirectoryA
GetExitCodeThread
CreateNamedPipeW
CallNamedPipeW
VerSetConditionMask
ExitThread
SetFileTime
LocalReAlloc
GetModuleFileNameW
WaitForSingleObjectEx
GetOverlappedResult
lstrcatW
GetSystemDirectoryW
SleepEx
GetACP
GetFileAttributesExA
Sleep
TryEnterCriticalSection
GetFileSize
lstrcatA
CloseHandle
SetSystemTime
GetThreadTimes
GetComputerNameExA
GlobalLock
GetStringTypeExW
GlobalFindAtomW
CreateEventW
GetCommConfig
CreatePipe
UnlockFile
GetLocaleInfoW
MapViewOfFile
lstrlenA
SetThreadAffinityMask

gdi32

SelectPalette
SetBkColor
GetTextMetricsW
GetTextExtentPointW
Ellipse
CreateDiscardableBitmap
SetAbortProc
Rectangle
RoundRect
GetTextExtentPointA
LineTo
ExtTextOutA
LineDDA
GetViewportOrgEx
Polygon
SetWindowOrgEx
SelectObject
OffsetRgn
PathToRegion
GetNearestColor
SetDIBitsToDevice
EnumFontFamiliesExW
GetSystemPaletteEntries
CreateBrushIndirect
CreateFontA
GetObjectW
EndDoc
GetObjectA
GetCharWidth32W
CreateFontW
BitBlt
StartPage
CombineRgn
CreatePen
SetDIBits
StretchDIBits
DPtoLP
GetNearestPaletteIndex
CreatePolygonRgn
FillRgn
SetBitmapBits
WidenPath
ExtFloodFill
UnrealizeObject
CreateRoundRectRgn
CreatePenIndirect
GetROP2
GetStockObject
EnumFontsW
GetTextExtentPoint32W
OffsetViewportOrgEx

msvcrt

fclose
_controlfp
wcscoll
wcspbrk
ftell
__set_app_type
__p__fmode
__p__commode
getc
wcstok
localtime
isprint
swprintf
wcschr
_amsg_exit
calloc
wcsncpy
iswxdigit
strtok
setvbuf
swscanf
_initterm
qsort
_acmdln
puts
wcscpy
clearerr
fputs
mktime
wcstombs
tolower
exit
_ismbblead
_XcptFilter
_exit
_cexit
strncmp
atol
__setusermatherr
__getmainargs
strtol
isalnum
vsprintf
isspace
remove
ungetc
rand
wcslen
floor

Exports

Exports

?GenerateMediaTypeExW@@YGKPAEPAEPANI]A
?CloseDialogExW@@YGPAEIPA_NF]A
?BitCounterArrayIdeDunAs@@YGKGE@Z

Sections

.text
Size: 21KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 189KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 171KB - Virtual size: 170KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8ceeb806fa2639228d2c6116576877d2

Headers

File Characteristics

PDB Paths

Imports

user32

kernel32

gdi32

msvcrt

Exports

Exports

Sections

.text Size: 21KB - Virtual size: 20KB

.data Size: 4KB - Virtual size: 189KB

.rsrc Size: 171KB - Virtual size: 170KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 21KB - Virtual size: 20KB

.data
Size: 4KB - Virtual size: 189KB

.rsrc
Size: 171KB - Virtual size: 170KB

.reloc
Size: 2KB - Virtual size: 1KB