0d8498006c843c1e95ee3894a2e52f28_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0d8498006c843c1e95ee3894a2e52f28_JaffaCakes118
Size

128KB
MD5

0d8498006c843c1e95ee3894a2e52f28
SHA1

5824b1370c11d4c48251e9ca844695d1211e753b
SHA256

eda3f707dabf75860ccbcc08a5a15b448bd62cfa80cc6f61caf1eec661277be7
SHA512

7d652ec31aa8c2d8e291e75ff094c1ca9c5371e231379eb3eaba6388eece4f7e72d8a9491d07d35488f62686fa82682007965bd68121c00a1d8e39beec349b04
SSDEEP

3072:1r4ImeQvwQqmPezOwFdkkw/4cwno0qvdZneqeb5NUSOc:VNmeKomMdkL/4iBPeVUSO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0d8498006c843c1e95ee3894a2e52f28_JaffaCakes118

Files

0d8498006c843c1e95ee3894a2e52f28_JaffaCakes118
.exe windows:5 windows x86 arch:x86

59fa9c5f0cfdb88023f5e94d1f90ed1d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

Q:\jvhtrsnPVC\gzTpgrwaFrcqe\CGvwLGycWJfs\rqkBxcfvVt\vDfVkeOmdrA.pdb

Imports

user32

GetIconInfo
CallWindowProcW
GetDlgItem
CharToOemBuffA
RegisterClassExA
CreateCursor
DestroyCaret
ShowCursor
mouse_event
CharLowerA
InsertMenuItemW
SetWindowPlacement
CheckMenuItem
VkKeyScanA
ArrangeIconicWindows
FindWindowExW
GetScrollInfo
DrawMenuBar
SetScrollRange
EnumThreadWindows
DrawAnimatedRects
GetWindow
SetCaretPos
GetDlgItemTextA
CreateDialogIndirectParamW
GetSystemMenu
GetKeyNameTextW
GrayStringW
GetUpdateRgn
SendDlgItemMessageW
CreateAcceleratorTableW
MessageBoxW
SetDlgItemInt
SendMessageTimeoutA
LoadImageW
SendDlgItemMessageA
SetMenuDefaultItem
GetFocus
GetScrollPos
MessageBoxA
TranslateAcceleratorA
IsCharUpperA
IsWindowVisible
WaitMessage
SystemParametersInfoA
GetForegroundWindow
CloseDesktop
SetWindowRgn
SetDlgItemTextA
EnableWindow
CharUpperW
EnumChildWindows
DestroyCursor
SetWindowLongW
GetUpdateRect
DefWindowProcW
DefDlgProcW
InvalidateRect
RegisterHotKey
GetWindowPlacement
SetWindowLongA
TrackPopupMenu
MonitorFromPoint
GetMenuCheckMarkDimensions
GetDlgItemTextW
GetMessageExtraInfo
CharNextA
CascadeWindows
CharNextExA
DrawFrameControl
SetRect
DefWindowProcA
IsDlgButtonChecked
PostThreadMessageA
HiliteMenuItem
CreateCaret
DefFrameProcA
CreateWindowExW
OemToCharBuffA
GetNextDlgGroupItem
CheckRadioButton
DefDlgProcA
EqualRect
GetClipCursor
BeginPaint
ScrollWindowEx
DispatchMessageA
GetMenuStringA
SetUserObjectInformationW
IsWindow
UpdateWindow
FindWindowW
EnableScrollBar
DialogBoxIndirectParamA
GetWindowRect
CharPrevA
DeferWindowPos
DefFrameProcW
SetParent
IsCharAlphaA
AllowSetForegroundWindow
GetMenuItemInfoW
LoadCursorW
ShowWindowAsync
RegisterClassA
IsIconic
ToUnicodeEx
TrackPopupMenuEx
TabbedTextOutW
keybd_event
GetWindowLongA
GetMenuItemRect
GetMenuItemID
GetDlgItemInt
CopyAcceleratorTableW
PostMessageW
SetTimer
GetActiveWindow
InvalidateRgn
SetFocus
GetKeyboardLayout
IsMenu
EnableMenuItem
SetMenuItemInfoW

kernel32

LoadResource
GetTempFileNameA
SetEvent
CreateNamedPipeA
CompareStringA
IsBadReadPtr
SetCurrentDirectoryA
UnlockFile
GetModuleHandleW
LockResource
GetTempFileNameW
GetShortPathNameA
IsBadCodePtr
DefineDosDeviceW
GetBinaryTypeA
GlobalReAlloc
CancelIo
GetStartupInfoW
LocalSize
CreatePipe
SetThreadPriority
CreateDirectoryW
SetMailslotInfo
CancelWaitableTimer
lstrlenA
GlobalMemoryStatusEx
TlsFree
GlobalFree
lstrcmpiW
CopyFileW
HeapWalk
SetUnhandledExceptionFilter
VirtualQuery
AddAtomA
ExitThread
GetLastError
TerminateThread
EnumResourceLanguagesA
DeleteFileW
GetCommState
GlobalUnlock
EnterCriticalSection
EscapeCommFunction
GetStdHandle
GetSystemDefaultUILanguage
HeapSize
DisconnectNamedPipe
lstrcpynA
LocalAlloc
GetModuleFileNameA
GetDateFormatW
OpenEventW
SetWaitableTimer
GetFullPathNameA
FoldStringW
CopyFileA
FindFirstChangeNotificationW

msvcrt

fgets
iswctype
_controlfp
iswdigit
setlocale
strtol
fread
getenv
wcschr
malloc
strstr
strcspn
floor
getc
iswprint
strncmp
__set_app_type
__p__fmode
strtoul
__p__commode
strspn
localtime
_amsg_exit
islower
vsprintf
_initterm
fflush
mbstowcs
_ismbblead
wcstol
memset
wcsstr
_XcptFilter
clock
strcoll
perror
putchar
wcscspn
fwrite
_exit
_cexit
wcscmp
isdigit
towupper
wcsncmp
__setusermatherr
__getmainargs
iswalpha

comdlg32

CommDlgExtendedError
GetSaveFileNameW
ReplaceTextW
ChooseColorW

Exports

Exports

?ForceTriangulateA@@YGKDDPAX:O

Sections

.text
Size: 21KB - Virtual size: 21KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.reat
Size: 512B - Virtual size: 121B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.uac
Size: 1KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.riat
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.byte
Size: 1024B - Virtual size: 607B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vdata
Size: 512B - Virtual size: 192B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 512B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

59fa9c5f0cfdb88023f5e94d1f90ed1d

Headers

File Characteristics

PDB Paths

Imports

user32

kernel32

msvcrt

comdlg32

Exports

Exports

Sections

.text Size: 21KB - Virtual size: 21KB

.reat Size: 512B - Virtual size: 121B

.uac Size: 1KB - Virtual size: 96KB

.riat Size: 6KB - Virtual size: 5KB

.byte Size: 1024B - Virtual size: 607B

.vdata Size: 512B - Virtual size: 192B

.data Size: 2KB - Virtual size: 1KB

.tls Size: 512B - Virtual size: 512B

.rsrc Size: 92KB - Virtual size: 91KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 21KB - Virtual size: 21KB

.reat
Size: 512B - Virtual size: 121B

.uac
Size: 1KB - Virtual size: 96KB

.riat
Size: 6KB - Virtual size: 5KB

.byte
Size: 1024B - Virtual size: 607B

.vdata
Size: 512B - Virtual size: 192B

.data
Size: 2KB - Virtual size: 1KB

.tls
Size: 512B - Virtual size: 512B

.rsrc
Size: 92KB - Virtual size: 91KB

.reloc
Size: 2KB - Virtual size: 1KB