105d851f03d5a6d206c99f3d697993d4_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

105d851f03d5a6d206c99f3d697993d4_JaffaCakes118
Size

149KB
MD5

105d851f03d5a6d206c99f3d697993d4
SHA1

0e0a2f19776121485a7128fa8a95393f61d1a505
SHA256

d6ca34ddca4511dac75469fd480859fe87185ee5ef9c2f4b54856b913e199057
SHA512

f21c64e17d6d5f4e99279dc2dcbe8df429ce561ad973bde1255604c99fe1f268f0028749d31edf2f52483e6bb1fe4d314c10ec4b10680aff0d2e8003c796f3e0
SSDEEP

3072:r/uFJ5/k6HaB+Odn2iVk3cmwFZ4mH4L2RMnj11gZPnahUBM3:UM6HG+kS3kH4xL2mnjoZ2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
105d851f03d5a6d206c99f3d697993d4_JaffaCakes118

Files

105d851f03d5a6d206c99f3d697993d4_JaffaCakes118
.exe windows:5 windows x86 arch:x86

124a57fd7a75cce4a5b945f48c45eb7c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

H:\AmsycSl\rgmduya\PHibrQbNx\IxvMsjgKzvksN.pdb

Imports

shlwapi

StrToIntW

comdlg32

ReplaceTextW
GetFileTitleW
GetOpenFileNameW
PrintDlgW
ChooseColorW
FindTextW

msvcrt

_controlfp
iswspace
__set_app_type
getc
bsearch
ungetc
memset
islower
__p__fmode
gmtime
__p__commode
_amsg_exit
malloc
_initterm
sscanf
iswalpha
wcspbrk
wcstombs
sprintf
_ismbblead
puts
strerror
putchar
isxdigit
_XcptFilter
iswctype
isalnum
wcsrchr
_exit
strncpy
setlocale
atoi
_cexit
wcscpy
swscanf
__setusermatherr
gets
floor
realloc
strstr
remove
__getmainargs
wcstol
ftell
fgets
wcsncpy
mbtowc
free

user32

GetWindowTextW
MapVirtualKeyW
SendNotifyMessageW
IsRectEmpty
IsCharAlphaNumericW
MonitorFromRect
DestroyMenu
ArrangeIconicWindows
GetUserObjectInformationA
SetForegroundWindow
wsprintfW
LoadStringW
GetShellWindow
SendMessageW
SendMessageTimeoutA
SetPropW
InvertRect
InSendMessage
AdjustWindowRectEx
SetCursorPos
GetPropW
GetMenuCheckMarkDimensions
GetWindowModuleFileNameW
DrawMenuBar
ShowCursor
AttachThreadInput
MonitorFromPoint
CharUpperA
SystemParametersInfoA
wvsprintfA
InflateRect
CheckRadioButton
ReleaseDC
SetCaretPos
OpenDesktopW
ShowOwnedPopups
ShowWindowAsync
GetCaretBlinkTime
VkKeyScanW
LoadCursorA
CreateWindowExA
PostQuitMessage
GetDlgItemTextW
LoadIconW
DialogBoxIndirectParamA
DrawAnimatedRects
DragObject
MapVirtualKeyExW
GetWindowLongW
SetWindowTextA
WindowFromPoint
DispatchMessageA
PostMessageA
LoadIconA
GetUpdateRect
GetFocus
IsDlgButtonChecked
GetMenuStringW
DefDlgProcA
SendMessageA
IsZoomed
CharLowerW
FindWindowW
GetClassInfoExW
SetMenuDefaultItem
DeferWindowPos
DrawStateA
InsertMenuW
InSendMessageEx
SetWindowLongA
DeleteMenu
SendDlgItemMessageA
RegisterClassExA
LockWindowUpdate
FindWindowExA
SetUserObjectInformationW
SwitchToThisWindow
SetWindowLongW
SetDlgItemInt
CascadeWindows
DefFrameProcW
CopyRect
EndPaint
BeginDeferWindowPos
CharNextA
DefDlgProcW
MessageBoxExA
GetMenuItemInfoW
GetDlgItem
DrawEdge
AllowSetForegroundWindow
GetWindow
ShowCaret
IsWindowEnabled
GetKeyboardLayoutList
SetScrollInfo
GetCursorPos
InvalidateRgn
IsCharUpperA
OemToCharBuffA
MoveWindow
CreateDialogIndirectParamW
GetMessageW
SetTimer
GetMessageA
GetGUIThreadInfo
GetNextDlgGroupItem
KillTimer
OpenInputDesktop
CreateAcceleratorTableW
SetFocus
GetCaretPos
MessageBoxA
BringWindowToTop
EndDialog
GetSystemMetrics
IsWindowVisible
GetMenuItemID
SetClassLongW
RemoveMenu
TranslateAcceleratorW
AdjustWindowRect
GetClassLongA
GetKeyboardType
MessageBoxExW
ShowWindow
GetClipCursor
GetDlgItemTextA

kernel32

FlushViewOfFile
LocalFree
GetProcessHeap
IsBadCodePtr
SetTimerQueueTimer
SetEvent
FileTimeToSystemTime
GlobalSize
CreateFileW
LocalUnlock
CreatePipe
VerSetConditionMask
AddAtomA
GetBinaryTypeA
FoldStringW
MapViewOfFile
SearchPathW
GetWindowsDirectoryA
HeapFree
GetCurrentThreadId
FileTimeToLocalFileTime
GetTempFileNameA
PulseEvent
HeapAlloc
GetNumberFormatA
LoadLibraryExA
GetStartupInfoA
CancelWaitableTimer
GetDateFormatA
GetModuleHandleA
SetCurrentDirectoryA
HeapValidate
GetStringTypeExW
GetFileSize
DeleteCriticalSection
GlobalMemoryStatus
lstrcpyW
MulDiv
GlobalAddAtomA
GlobalLock
GetUserDefaultLCID
GetFileTime
CreateMailslotW
QueryPerformanceCounter
VerifyVersionInfoW
GetSystemDirectoryW
SetFileApisToOEM
EnumResourceNamesW
GetCurrentThread
GetModuleFileNameW
GetCommandLineA
GetThreadPriority
GlobalCompact
SetLocalTime
GetVersionExW
TlsFree

Exports

Exports

?GenericOutputInfoYSUh@@YGK_KHE[D

Sections

.text
Size: 65KB - Virtual size: 64KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 66KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

124a57fd7a75cce4a5b945f48c45eb7c

Headers

File Characteristics

PDB Paths

Imports

shlwapi

comdlg32

msvcrt

user32

kernel32

Exports

Exports

Sections

.text Size: 65KB - Virtual size: 64KB

.data Size: 15KB - Virtual size: 82KB

.rsrc Size: 66KB - Virtual size: 66KB

.reloc Size: 2KB - Virtual size: 1KB

.text
Size: 65KB - Virtual size: 64KB

.data
Size: 15KB - Virtual size: 82KB

.rsrc
Size: 66KB - Virtual size: 66KB

.reloc
Size: 2KB - Virtual size: 1KB