2a03853532e909fcd183220d3d9a0221_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

2a03853532e909fcd183220d3d9a0221_JaffaCakes118
Size

21KB
MD5

2a03853532e909fcd183220d3d9a0221
SHA1

50080c8edaee97d09dd55bc538cd50d7468f28c0
SHA256

2118de1959d8447e67b3992e9a0018eca7a393d8ddd9c96c284cbde3931b9eed
SHA512

ab6c340cb0e0b0e438737d3e8ba93ac6eee354a22a137a4bbac6e9d5190299e62831e1c5c6d8ea9060e5ecb7a6289bbfc86f80fc9869bb284cc635e6901c67f9
SSDEEP

384://A8DDtEd6rToInNxXL2sURU5wutge3ZC+MTJxOY6DSySgGuw://A8HtEdRI/2sURU5wutge7kHOtSySgG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2a03853532e909fcd183220d3d9a0221_JaffaCakes118

Files

2a03853532e909fcd183220d3d9a0221_JaffaCakes118
.exe windows:4 windows x86 arch:x86

715eef512ddb6fc85898661495425576

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

V:\B1.0.00.134.24.10_src\tools\toolsch\pkg\schexe\ntopt\schexe.pdb

Imports

scheditor

?staticMetaObject@SchEditorGUI@@2UQMetaObject@@B
?qt_metacall@SchEditorGUI@@UAEHW4Call@QMetaObject@@HPAPAX@Z
?qt_metacast@SchEditorGUI@@UAEPAXPBD@Z
??1SchEditorGUI@@UAE@XZ
?onProbing@SchEditorGUI@@UAEXPAVQWidget@@VQStringList@@@Z
?onAttached@SchEditorGUI@@UAEX_NPAVQWidget@@@Z
?onToolSwitched@SchEditorGUI@@UAEX_N@Z
?onDeactivated@SchEditorGUI@@UAEXXZ
?onActivated@SchEditorGUI@@UAEXXZ
?onSave@SchEditorGUI@@UAE_NXZ
?maybeSave@SchEditorGUI@@UAE_NXZ
?specialToolBarArea@SchEditorGUI@@UAE?AW4ToolBarArea@Qt@@XZ
?needSpecialToolBar@SchEditorGUI@@UAE_NXZ
?stdToolbarButtons@SchEditorGUI@@UAEPAVQStringList@@XZ
?myMenus@SchEditorGUI@@UAEPAV?$QList@PAVQMenu@@@@XZ
?myMenuItems@SchEditorGUI@@UAEPAV?$QList@PAVQAction@@@@W4StdMenu@@@Z
?stdMenuItems@SchEditorGUI@@UAEPAVQStringList@@W4StdMenu@@@Z
?activeConnections@SchEditorGUI@@UAEPAV?$QList@PAUConnection@@@@XZ
?isModified@SchEditorGUI@@UAE_NXZ
?getVirtualFileName@SchEditorGUI@@UAE?AVQString@@XZ
?fullFileName@SchEditorGUI@@UAE?AVQString@@XZ
?fileName@SchEditorGUI@@UAE?AVQString@@XZ
?toolGUIInfo@SchEditorGUI@@EAEXAAVQString@@0AAVQIcon@@@Z
?title@SchEditorGUI@@UAE?AVQString@@XZ
?fullTitle@SchEditorGUI@@UAE?AVQString@@XZ
?toolName@SchEditorGUI@@UAE?AVQString@@XZ
?initialize@SchEditorGUI@@UAE_NXZ
??0SchEditorGUI@@QAE@PAVQWidget@@_N@Z

basgui

?onHelpHelp@BasGUITool@@UAEXXZ
?onHelpAbout@BasGUITool@@UAEXXZ
?onSystemBusy@BasGUITool@@UAEX_N@Z
?onDBAvailable@BasGUITool@@UAEXVQStringList@@@Z
?onDataChanged@BasGUITool@@UAEXPAVQWidget@@HHVQStringList@@@Z
?onReleaseData@BasGUITool@@UAEXAAVQStringList@@0@Z
?onLockData@BasGUITool@@UAEXAAVQStringList@@@Z
?onFlowRunning@BasGUITool@@UAEXAAVQString@@@Z
?onSaveLayout@BasGUITool@@UAEXPAVQSettings@@@Z
?onLoadLayout@BasGUITool@@UAEXPAVQSettings@@@Z
?onDefLayout@BasGUITool@@UAEXXZ
?onClose@BasGUITool@@UAEX_N@Z
?getDockWidget@BasGUITool@@UAEPAV?$QList@PAVBaseDockWidget@@@@XZ
?addWidgetOnSpecialToolBar@BasGUITool@@UAEXPAVQWidget@@@Z
?addSeparatorOnSpecialToolBar@BasGUITool@@UAEXXZ
?addButtonOnSpecialToolBar@BasGUITool@@UAEXPAVQAction@@@Z
?isAttached@BasGUITool@@UAE_NXZ
?isStandalone@BasGUITool@@UAE_NXZ
?needToBeClosed@BasGUITool@@UAE_NHH@Z
?needWhichDBfile@BasGUITool@@UAE?AVQStringList@@XZ
?isCommonDataFile@BasGUITool@@UAE_NXZ
?createPopupMenu@BasGUITool@@UAEPAVQMenu@@XZ
?event@BasGUITool@@MAE_NPAVQEvent@@@Z

qtgui4

?opaqueArea@QGraphicsRectItem@@UBE?AVQPainterPath@@XZ
?paint@QGraphicsRectItem@@UAEXPAVQPainter@@PBVQStyleOptionGraphicsItem@@PAVQWidget@@@Z
?type@QGraphicsRectItem@@UBEHXZ
?sceneEventFilter@QGraphicsItem@@MAE_NPAV1@PAVQEvent@@@Z
?sceneEvent@QGraphicsItem@@MAE_NPAVQEvent@@@Z
?contextMenuEvent@QGraphicsItem@@MAEXPAVQGraphicsSceneContextMenuEvent@@@Z
?dragEnterEvent@QGraphicsItem@@MAEXPAVQGraphicsSceneDragDropEvent@@@Z
?dragLeaveEvent@QGraphicsItem@@MAEXPAVQGraphicsSceneDragDropEvent@@@Z
?dragMoveEvent@QGraphicsItem@@MAEXPAVQGraphicsSceneDragDropEvent@@@Z
?dropEvent@QGraphicsItem@@MAEXPAVQGraphicsSceneDragDropEvent@@@Z
?isObscuredBy@QGraphicsRectItem@@UBE_NPBVQGraphicsItem@@@Z
?focusOutEvent@QGraphicsItem@@MAEXPAVQFocusEvent@@@Z
?hoverMoveEvent@QGraphicsItem@@MAEXPAVQGraphicsSceneHoverEvent@@@Z
?keyPressEvent@QGraphicsItem@@MAEXPAVQKeyEvent@@@Z
?keyReleaseEvent@QGraphicsItem@@MAEXPAVQKeyEvent@@@Z
?mousePressEvent@QGraphicsItem@@MAEXPAVQGraphicsSceneMouseEvent@@@Z
?mouseReleaseEvent@QGraphicsItem@@MAEXPAVQGraphicsSceneMouseEvent@@@Z
?mouseDoubleClickEvent@QGraphicsItem@@MAEXPAVQGraphicsSceneMouseEvent@@@Z
?wheelEvent@QGraphicsItem@@MAEXPAVQGraphicsSceneWheelEvent@@@Z
?inputMethodEvent@QGraphicsItem@@MAEXPAVQInputMethodEvent@@@Z
?inputMethodQuery@QGraphicsItem@@MBE?AVQVariant@@W4InputMethodQuery@Qt@@@Z
?itemChange@QGraphicsItem@@MAE?AVQVariant@@W4GraphicsItemChange@1@ABV2@@Z
?supportsExtension@QGraphicsRectItem@@MBE_NW4Extension@QGraphicsItem@@@Z
?setExtension@QGraphicsRectItem@@MAEXW4Extension@QGraphicsItem@@ABVQVariant@@@Z
?extension@QGraphicsRectItem@@MBE?AVQVariant@@ABV2@@Z
??1QPainterPath@@QAE@XZ
?addRect@QPainterPath@@QAEXABVQRectF@@@Z
?rect@QGraphicsRectItem@@QBE?AVQRectF@@XZ
??0QPainterPath@@QAE@XZ
?acceptHoverEvents@QGraphicsItem@@QBE_NXZ
?setVisible@QWidget@@UAEX_N@Z
?sizeHint@QWidget@@UBE?AVQSize@@XZ
?minimumSizeHint@QWidget@@UBE?AVQSize@@XZ
?heightForWidth@QWidget@@UBEHH@Z
?mousePressEvent@QWidget@@MAEXPAVQMouseEvent@@@Z
?collidesWithPath@QGraphicsItem@@UBE_NABVQPainterPath@@W4ItemSelectionMode@Qt@@@Z
?mouseDoubleClickEvent@QWidget@@MAEXPAVQMouseEvent@@@Z
?mouseMoveEvent@QWidget@@MAEXPAVQMouseEvent@@@Z
?wheelEvent@QWidget@@MAEXPAVQWheelEvent@@@Z
?keyPressEvent@QWidget@@MAEXPAVQKeyEvent@@@Z
?keyReleaseEvent@QWidget@@MAEXPAVQKeyEvent@@@Z
?focusInEvent@QWidget@@MAEXPAVQFocusEvent@@@Z
?focusOutEvent@QWidget@@MAEXPAVQFocusEvent@@@Z
?enterEvent@QWidget@@MAEXPAVQEvent@@@Z
?leaveEvent@QWidget@@MAEXPAVQEvent@@@Z
?paintEvent@QWidget@@MAEXPAVQPaintEvent@@@Z
?moveEvent@QWidget@@MAEXPAVQMoveEvent@@@Z
?resizeEvent@QWidget@@MAEXPAVQResizeEvent@@@Z
?contextMenuEvent@QMainWindow@@MAEXPAVQContextMenuEvent@@@Z
?tabletEvent@QWidget@@MAEXPAVQTabletEvent@@@Z
?actionEvent@QWidget@@MAEXPAVQActionEvent@@@Z
?dragEnterEvent@QWidget@@MAEXPAVQDragEnterEvent@@@Z
?dragMoveEvent@QWidget@@MAEXPAVQDragMoveEvent@@@Z
?dragLeaveEvent@QWidget@@MAEXPAVQDragLeaveEvent@@@Z
?dropEvent@QWidget@@MAEXPAVQDropEvent@@@Z
?showEvent@QWidget@@MAEXPAVQShowEvent@@@Z
?hideEvent@QWidget@@MAEXPAVQHideEvent@@@Z
?winEvent@QWidget@@MAE_NPAUtagMSG@@PAJ@Z
?changeEvent@QWidget@@MAEXPAVQEvent@@@Z
?inputMethodEvent@QWidget@@MAEXPAVQInputMethodEvent@@@Z
?inputMethodQuery@QWidget@@UBE?AVQVariant@@W4InputMethodQuery@Qt@@@Z
?focusNextPrevChild@QWidget@@MAE_N_N@Z
?styleChange@QWidget@@MAEXAAVQStyle@@@Z
?enabledChange@QWidget@@MAEX_N@Z
?paletteChange@QWidget@@MAEXABVQPalette@@@Z
?fontChange@QWidget@@MAEXABVQFont@@@Z
?windowActivationChange@QWidget@@MAEX_N@Z
?languageChange@QWidget@@MAEXXZ
?devType@QWidget@@UBEHXZ
?paintEngine@QWidget@@UBEPAVQPaintEngine@@XZ
?getDC@QWidget@@UBEPAUHDC__@@XZ
?releaseDC@QWidget@@UBEXPAUHDC__@@@Z
?metric@QWidget@@MBEHW4PaintDeviceMetric@QPaintDevice@@@Z
?collidesWithItem@QGraphicsItem@@UBE_NPBV1@W4ItemSelectionMode@Qt@@@Z
?contains@QGraphicsRectItem@@UBE_NABVQPointF@@@Z
?boundingRect@QGraphicsRectItem@@UBE?AVQRectF@@XZ
?advance@QGraphicsItem@@UAEXH@Z
??0QGraphicsRectItem@@QAE@NNNNPAVQGraphicsItem@@PAVQGraphicsScene@@@Z
?setFlag@QGraphicsItem@@QAEXW4GraphicsItemFlag@1@_N@Z
?setZValue@QGraphicsItem@@QAEXN@Z
?setAcceptHoverEvents@QGraphicsItem@@QAEX_N@Z
??1QGraphicsRectItem@@UAE@XZ
??0QApplication@@QAE@AAHPAPADH@Z
?show@QWidget@@QAEXXZ
?exec@QApplication@@SAHXZ
??1QApplication@@UAE@XZ
?mouseReleaseEvent@QWidget@@MAEXPAVQMouseEvent@@@Z
?focusInEvent@QGraphicsItem@@MAEXPAVQFocusEvent@@@Z

qtcore4

?free@QVectorData@@SAXPAU1@H@Z
?qBadAlloc@@YAXXZ
?allocate@QVectorData@@SAPAU1@HH@Z
?toLocal8Bit@QString@@QBE?AVQByteArray@@XZ
?free@QString@@CAXPAUData@1@@Z
?detach@QByteArray@@QAEXXZ
?qWinMain@@YAXPAUHINSTANCE__@@0PADHAAHAAV?$QVector@PAD@@@Z
?qFree@@YAXPAX@Z
?reallocate@QVectorData@@SAPAU1@PAU1@HHH@Z
?disconnectNotify@QObject@@MAEXPBD@Z
?connectNotify@QObject@@MAEXPBD@Z
?customEvent@QObject@@MAEXPAVQEvent@@@Z
?childEvent@QObject@@MAEXPAVQChildEvent@@@Z
?timerEvent@QObject@@MAEXPAVQTimerEvent@@@Z
?eventFilter@QObject@@UAE_NPAV1@PAVQEvent@@@Z
?fromWCharArray@QString@@SA?AV1@PBGH@Z
?qMemSet@@YAPAXPAXHI@Z

msvcr80

exit
_ismbblead
_XcptFilter
??3@YAXPAX@Z
??2@YAPAXI@Z
__CxxFrameHandler3
_amsg_exit
__getmainargs
_cexit
_exit
memcpy
_CxxThrowException
_acmdln
_controlfp_s
_invoke_watson
_except_handler4_common
_decode_pointer
_onexit
_lock
__dllonexit
_unlock
?_type_info_dtor_internal_method@type_info@@QAEXXZ
?terminate@@YAXXZ
_crt_debugger_hook
__set_app_type
_encode_pointer
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_configthreadlocale
_initterm_e
_initterm

kernel32

GetCommandLineW
Sleep
InterlockedCompareExchange
GetStartupInfoA
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
InterlockedExchange

Sections

.text
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 704B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

715eef512ddb6fc85898661495425576

Headers

File Characteristics

PDB Paths

Imports

scheditor

basgui

qtgui4

qtcore4

msvcr80

kernel32

Sections

.text Size: 6KB - Virtual size: 5KB

.rdata Size: 12KB - Virtual size: 12KB

.data Size: 512B - Virtual size: 1KB

.rsrc Size: 1024B - Virtual size: 704B

.text
Size: 6KB - Virtual size: 5KB

.rdata
Size: 12KB - Virtual size: 12KB

.data
Size: 512B - Virtual size: 1KB

.rsrc
Size: 1024B - Virtual size: 704B