ffd922063448a249dbdd9e84a74e0dac_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

ffd922063448a249dbdd9e84a74e0dac_JaffaCakes118
Size

145KB
MD5

ffd922063448a249dbdd9e84a74e0dac
SHA1

f5197ae4ee4864ec799ad9949a60b3ffad24ab41
SHA256

d0fb87145016304ab9c28bdabc18cc4afd8e5b65cb480e2df23cf691702e258d
SHA512

e42312575cc6ddf29876eb808a81e8fdb8a7091075f64a6b186257313d4192074ebacde227596a7a9784000fdd856244013d628e515e1a62291fc6352265903a
SSDEEP

3072:AjI+p22RMzdw5/RkRVQ1fsqLI4DpfnjiewDxdVrRyd5R+BvRfUl:1L2mlRCFhjiewnWf+BJfUl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ffd922063448a249dbdd9e84a74e0dac_JaffaCakes118

Files

ffd922063448a249dbdd9e84a74e0dac_JaffaCakes118
.exe windows:5 windows x86 arch:x86

d693973263ace22c9b766a1c176dd3f2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

L:\bhfGpRaXx\umZwuGsTtZQci\xlqfButJLUHw\XHyToMwz\CGpeqXefeh.pdb

Imports

shlwapi

StrToIntW

msvcrt

memset
strtol
swprintf
mktime
floor
setvbuf
isspace
fputc
strncpy
fflush
_controlfp
iswalpha
mbtowc
__set_app_type
strspn
__p__fmode
gets
strcspn
putc
wcscat
ftell
malloc
wcstoul
calloc
__p__commode
_amsg_exit
iswspace
srand
putchar
_initterm
_ismbblead
setlocale
wcspbrk
_XcptFilter
iswdigit
isdigit
_exit
strstr
fgetc
_cexit
wcsncmp
wcscpy
__setusermatherr
strtok
__getmainargs
clock
printf
strrchr

user32

CharLowerW
SetParent
MonitorFromRect
GetScrollInfo
GetMenuStringW
GetMessageW
GetSysColor
GetCursorPos
GetSysColorBrush
GetIconInfo
IsWindow
WaitMessage
InsertMenuW
GetWindowModuleFileNameW
IsWindowEnabled
ReplyMessage
CreateWindowExA
GetDoubleClickTime
LoadMenuA
GetClientRect
GetCaretBlinkTime
TranslateAcceleratorA
GetSubMenu
GetTopWindow
LockWindowUpdate
CloseDesktop
FillRect
InsertMenuItemW
SendMessageTimeoutA
AdjustWindowRectEx
ClipCursor
GetClassInfoW
GetDlgItemTextW
SwitchToThisWindow
DialogBoxParamA
WindowFromPoint
InvalidateRect
GetMenuItemCount
SetSysColors
SendDlgItemMessageW
DispatchMessageW
GetMenuItemRect
GrayStringW
ScrollWindowEx
GetDialogBaseUnits
CreateDialogParamA
CharToOemBuffA
DestroyCaret
ToUnicodeEx
GetMessageExtraInfo
GetFocus
ShowOwnedPopups
GetMenuState
CopyRect
IsWindowUnicode
PostThreadMessageW
IsZoomed
GetDCEx
UnloadKeyboardLayout
IsDialogMessageA
CharUpperW
ValidateRect
BringWindowToTop
CreateIconIndirect
InSendMessage
IsWindowVisible
GetUserObjectInformationW
GetMenuItemID
DestroyIcon
SendMessageTimeoutW
SetScrollRange
RegisterClassExA
ScrollWindow
DestroyCursor
FindWindowW
GetClassLongA
InvalidateRgn
CallWindowProcW
GetUpdateRgn
RegisterHotKey
GetWindowRect
DrawFrameControl
GetSystemMenu
MapVirtualKeyExW
GetGUIThreadInfo
DragObject
DestroyAcceleratorTable
wsprintfA
OpenInputDesktop
SetRect
SetMenuItemBitmaps
wsprintfW
GetForegroundWindow
GetKeyboardLayout
SetWindowTextW
ArrangeIconicWindows
KillTimer
RegisterClassA
GetWindow
GetClipCursor
TabbedTextOutW
SetMenu
GetClassInfoA
ExitWindowsEx
SetWindowPlacement
CreateMenu
LoadBitmapA
EndPaint
DrawIconEx
CreateDialogParamW
IsChild
SetMenuItemInfoW
GetKeyState
DrawStateA
FindWindowA
SetWindowLongA
GetSystemMetrics
IsDialogMessageW
SystemParametersInfoW
ChildWindowFromPoint
InflateRect
GetWindowTextW
DefDlgProcA
SetLastErrorEx

kernel32

GetLocaleInfoW
LockFile
RemoveDirectoryW
CreateNamedPipeW
CreateThread
GetTempPathA
lstrlenW
SetEndOfFile
HeapFree
IsValidLocale
SetCurrentDirectoryA
CopyFileW
GlobalGetAtomNameW
SetupComm
ExitThread
GetCurrentThreadId
TerminateThread
FindNextFileA
DeleteAtom
GlobalMemoryStatusEx
CreateFileA
GetThreadTimes
lstrcmpiA
GetCommConfig
SetFileAttributesW
GetModuleFileNameA
SetSystemTime
SetThreadPriority
GetAtomNameA
PulseEvent
CreateEventA
OpenFileMappingW
GetSystemDefaultLangID
ReleaseSemaphore
SetThreadAffinityMask
UnmapViewOfFile
FileTimeToSystemTime
FindNextFileW
GetTempFileNameA
GetCommTimeouts
lstrcatW
VerSetConditionMask
MoveFileA
CreateSemaphoreW
lstrcmpW
GlobalFree
CancelWaitableTimer
GlobalReAlloc
HeapAlloc
UnlockFile
GetWindowsDirectoryW
CreateFileW
GlobalMemoryStatus
GetProcessHeap
lstrcpynW
MoveFileExW
HeapReAlloc
GetFileAttributesW
GetExitCodeThread

Exports

Exports

?GenericOutputInfoYSUh@@YGK_KHE[D

Sections

.text
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 145KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 113KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d693973263ace22c9b766a1c176dd3f2

Headers

File Characteristics

PDB Paths

Imports

shlwapi

msvcrt

user32

kernel32

Exports

Exports

Sections

.text Size: 8KB - Virtual size: 8KB

.data Size: 21KB - Virtual size: 145KB

.rsrc Size: 113KB - Virtual size: 112KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 8KB - Virtual size: 8KB

.data
Size: 21KB - Virtual size: 145KB

.rsrc
Size: 113KB - Virtual size: 112KB

.reloc
Size: 2KB - Virtual size: 1KB