2edaa97d880bca1fef8a8fd0d8c6bc26_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2edaa97d880bca1fef8a8fd0d8c6bc26_JaffaCakes118
Size

268KB
MD5

2edaa97d880bca1fef8a8fd0d8c6bc26
SHA1

26f930a2c079795a26f24a1cb604680128b18fbf
SHA256

72b11dbcc44e92ca6c83276cdfa71c1827973e144b04bd52288d4e933904404b
SHA512

7c0f355b200cca3006ba07999ec802baac278aee7aa59d02f2b1e1ac76171873ecec6e9b9c0a8fe003560b7fef396f08a145f5abb2bd9b6ce42e75bd7069e66a
SSDEEP

6144:NlYR9bRV9WVIhQnrpf1vGAqP+o6rw9bLxr9:NlY7bP9WVKMbvGAqm/Abb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2edaa97d880bca1fef8a8fd0d8c6bc26_JaffaCakes118

Files

2edaa97d880bca1fef8a8fd0d8c6bc26_JaffaCakes118
.dll windows:4 windows x86 arch:x86

33d8f1cc08fa2dff27b0282c237b8cab

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

pngu3267

?GetSize@CPNWindow@@UBEXAAVCPNxSize@@@Z
?GetFont@CPNWindow@@UBEPAVCPNFont@@XZ
?GetClientRect@CPNWindow@@UBEXAAVCPNxRect@@@Z
?GetScreenRect@CPNWindow@@UBEXAAVCPNxRect@@@Z
?SetSize@CPNWindow@@UAEXABVCPNxSize@@@Z
?GetTitle@CPNWindow@@UBEXPADJ@Z
?SetFont@CPNWindow@@UAEXPAVCPNFont@@H@Z
?SetZOrderPosition@CPNWindow@@UAEXK@Z
?SetParent@CPNWindow@@UAEXPAV1@@Z
?GetParent@CPNWindow@@UBEPAV1@XZ
?GetTitleLength@CPNWindow@@UBEJXZ
?SetTitle@CPNWindow@@UAEXPBD@Z
?HandleEvent@CPNWindow@@UAEXAAVCPNEvent@@@Z
?NotifyObservers@CPNRouter@@UAEXAAVCPNEvent@@@Z
??1CPNDialog@@UAE@XZ
?DoModal@CPNMessageBox@@UAEKPAVCPNWindow@@PBD1K@Z
?ScrollWindow@CPNWindow@@UAEXJJPAVCPNxRect@@K@Z
??0CPNDialog@@QAE@XZ
??0CPNWindow@@QAE@XZ
?Attach@CPNWindow@@QAEXPAUHWND__@@@Z
?GetPNWindow@CPNWindow@@SAPAV1@PAX@Z
??0CPNBrowseDialog@@QAE@PAVCPNWindow@@@Z
?DoModal@CPNBrowseDialog@@UAEKXZ
?Move@CPNWindow@@UAEXABVCPNxPoint@@@Z
?Center@CPNWindow@@UAEXXZ
?IsValid@CPNWindow@@UBEHXZ
?Destroy@CPNDialog@@UAEXXZ
?ValidateRect@CPNWindow@@UAEXPBVCPNxRect@@@Z
?HasCapture@CPNWindow@@UBEHXZ
?SetFocus@CPNWindow@@UAEHXZ
?HasFocus@CPNWindow@@UBEHXZ
?Show@CPNWindow@@UAEHH@Z
?MoveAndSize@CPNWindow@@UAEXABU_PNxRect@@@Z
?GetPosition@CPNWindow@@UBEXAAVCPNxPoint@@@Z
?GetShowState@CPNWindow@@UBEJXZ
?SetForegroundWindow@CPNWindow@@UAEXHK@Z
?Enable@CPNWindow@@UAEXH@Z
?SetShowState@CPNWindow@@UAEXJ@Z
?MoveAndSize@CPNWindow@@UAEXABU_PNxPoint@@ABU_PNxSize@@@Z
?AttachWindowItem@CPNWindow@@UAEHKPAV1@@Z
?DetachWindowItem@CPNWindow@@UAEXXZ
?Attach@CPNWindow@@UAEXABU_PNxWindow@@@Z
?Attach@CPNWindow@@UAEXPAX@Z
?Detach@CPNWindow@@UAEXXZ
?SubclassWnd@CPNWindow@@UAEHPAU_PNxWindow@@@Z
?GetPNxWindowID@CPNWindow@@UBEPAXXZ
??BCPNWindow@@UBE?BU_PNxWindow@@XZ
?OnEvent@XPNDialog@@UAEHAAVCPNEvent@@@Z
?Create@CPNWindow@@UAEHPAV1@JJJJKPBD@Z
?MapCoordinatesTo@CPNWindow@@UBEXPAV1@AAVCPNxRect@@@Z
?MapCoordinatesTo@CPNWindow@@UBEXPAV1@AAVCPNxPoint@@@Z
?SetIcon@CPNWindow@@UAEXAAVCPNIcon@@H@Z
?IsPtInWindow@XPNWindow@@UBEHABVCPNxPoint@@@Z
?AddToolTip@CPNWindow@@UAEHPBD@Z
?AddToolTip@CPNWindow@@UAEHAAVCPNxRect@@PBD@Z
?RemoveAllToolTips@CPNWindow@@UAEXXZ
?EnableToolTips@CPNWindow@@UAEXH@Z
?UpdateShowStateIfMinimized@CPNWindow@@UAEXXZ
?ShouldDrawFocus@CPNWindow@@MAEHXZ
?ParentPaintBackground@XPNWindow@@MAEHPAVCPNDC@@PAVCPNxRect@@@Z
?OnWndMsg@CPNWindow@@UAEHKIJPAJ@Z
?Create@CPNDialog@@UAEHKPAVCPNWindow@@@Z
?DoModal@CPNDialog@@UAEKXZ
?DoModeless@CPNDialog@@UAEKXZ
?DoModaless@CPNDialog@@UAEKXZ
?InitDialog@CPNDialog@@UAEHXZ
?EndDialog@CPNDialog@@UAEXK@Z
?PreDomodal@XPNDialog@@UAEXPAVCPNWindow@@@Z
?PostDomodal@XPNDialog@@UAEXPAVCPNWindow@@@Z
?GetSingleInstanceId@XPNDialog@@UAEKXZ
?GetTemplateId@XPNDialog@@UBEKXZ
?SetDefaultButtonId@CPNDialog@@UAEXK@Z
?GetDefaultButtonId@CPNDialog@@UBEKXZ
?IsShown@CPNWindow@@UBEHXZ
?IsEnabled@CPNWindow@@UBEHXZ
?ClientToScreen@CPNWindow@@UBEXAAVCPNxRect@@@Z
?ClientToScreen@CPNWindow@@UBEXAAVCPNxPoint@@@Z
?ScreenToClient@CPNWindow@@UBEXAAVCPNxRect@@@Z
?ScreenToClient@CPNWindow@@UBEXAAVCPNxPoint@@@Z
?PauseUpdates@CPNWindow@@UAEXXZ
?HasPausedUpdates@CPNWindow@@UBEHXZ
?ResumeUpdates@CPNWindow@@UAEXXZ
?RepaintRect@CPNWindow@@UAEXPBVCPNxRect@@H@Z
?RedrawWindow@CPNWindow@@UAEXXZ
?GetMenu@CPNWindow@@UAEHAAVCPNMenu@@@Z
?SetSingleInstance@CPNDialog@@UAEXH@Z
?SetCapture@CPNWindow@@UAEXXZ
?ReleaseCapture@CPNWindow@@UAEXXZ

pncrt

wcslen
fprintf
_stricmp
_vsnprintf
strtol
strncpy
isdigit
strtod
_ftol
fclose
fopen
strrchr
_mbctype
printf
wcscpy
wcscat
wcstok
_wcsdup
__dllonexit
_onexit
_initterm
_adjust_fdiv
strtok
malloc
_strdup
free
isspace
strchr
mblen
atol
atof
_snprintf
_strlwr
realloc
time
strstr
strncmp
_atoi64
srand
rand
_splitpath
atoi
tolower
_purecall
sprintf
??3@YAXPAX@Z
??2@YAPAXI@Z
_strcmpi
_strnicmp
_stat
_putenv
_itoa
calloc
sscanf

ole32

DoDragDrop
RegisterDragDrop
RevokeDragDrop
OleInitialize
OleUninitialize

kernel32

TerminateThread
GetModuleFileNameA
IsDBCSLeadByte
lstrcpynA
CreateEventA
CreateThread
WaitForSingleObject
CloseHandle
FindFirstFileW
SetLocaleInfoA
GetLocaleInfoA
GetNumberFormatA
SetErrorMode
GetFileAttributesA
FindClose
GetDriveTypeA
GetCurrentThreadId
lstrlenA
Sleep
OutputDebugStringA
CompareStringA
MultiByteToWideChar
GetModuleHandleA
InterlockedIncrement
MulDiv
LoadLibraryA
GetProcAddress
InterlockedDecrement
DisableThreadLibraryCalls
FreeLibrary
GlobalUnlock
GlobalLock
GlobalAlloc
GetVersionExA
GlobalFree
WideCharToMultiByte
lstrcpyA
GlobalSize
GetPrivateProfileStringA
SetEvent

user32

SetRect
GetMessageA
WindowFromPoint
DialogBoxParamA
EndDialog
GetDlgItemTextA
CharPrevA
CharNextA
CharLowerA
MapWindowPoints
IsRectEmpty
EnableWindow
SystemParametersInfoA
RedrawWindow
TranslateMessage
DispatchMessageA
SetWindowTextA
SetWindowPos
CreateWindowExA
SetWindowLongA
CallWindowProcA
GetActiveWindow
EnumClipboardFormats
EmptyClipboard
SetClipboardData
OpenClipboard
GetClipboardData
CloseClipboard
GetDoubleClickTime
SetTimer
PostThreadMessageA
SetWindowsHookExA
CallNextHookEx
PtInRect
SendDlgItemMessageA
IsWindowEnabled
GetSysColor
SendMessageA
UnhookWindowsHookEx
ShowWindow
RegisterClipboardFormatA
GetDlgItem
ReleaseDC
GetDC
GetSystemMetrics
GetClientRect
GetScrollPos
UpdateWindow
PostMessageA
PeekMessageA
wsprintfA
DrawFocusRect
FillRect
GetFocus
KillTimer
GetSysColorBrush
GetWindowRect
SetFocus
DestroyMenu
TrackPopupMenu
ClientToScreen
EnableMenuItem
GetSubMenu
GetWindowLongA
GetKeyState
SetCapture
ReleaseCapture
ScreenToClient
MessageBoxA
LockWindowUpdate
GetParent
SetCursor
LoadCursorA

advapi32

IsTextUnicode
RegCloseKey
RegOpenKeyExA
RegQueryValueExA
RegQueryInfoKeyA

gdi32

SelectObject
GetTextExtentPointA
CreatePen
DeleteObject
SetTextColor
SetBkColor
CreateSolidBrush
GetObjectA
GetDeviceCaps
CreateFontIndirectA
CreateDIBitmap
GetPixel
SetPixel
GetTextExtentPoint32A
ExtTextOutA
GetBkColor
GetCurrentObject
DeleteDC
BitBlt
SetBkMode
CreateCompatibleBitmap
CreateCompatibleDC
Rectangle
GetStockObject

comctl32

ImageList_AddMasked
ImageList_Destroy
ImageList_Create
ord17
ImageList_GetImageInfo
ImageList_Draw

winmm

timeGetTime

Exports

Exports

RMACreateInstance
RMAShutdown
SetDLLAccessPath

Sections

.text
Size: 168KB - Virtual size: 167KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.text
Size: 228KB - Virtual size: 228KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

33d8f1cc08fa2dff27b0282c237b8cab

Headers

File Characteristics

Imports

pngu3267

pncrt

ole32

kernel32

user32

advapi32

gdi32

comctl32

winmm

Exports

Exports

Sections

.text Size: 168KB - Virtual size: 167KB

.rdata Size: 36KB - Virtual size: 32KB

.data Size: 12KB - Virtual size: 14KB

.rsrc Size: 32KB - Virtual size: 29KB

.reloc Size: 16KB - Virtual size: 14KB

.text Size: 228KB - Virtual size: 228KB

.text
Size: 168KB - Virtual size: 167KB

.rdata
Size: 36KB - Virtual size: 32KB

.data
Size: 12KB - Virtual size: 14KB

.rsrc
Size: 32KB - Virtual size: 29KB

.reloc
Size: 16KB - Virtual size: 14KB

.text
Size: 228KB - Virtual size: 228KB