3aef16b66f91a679376c821d2705b8c4_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3aef16b66f91a679376c821d2705b8c4_JaffaCakes118
Size

168KB
MD5

3aef16b66f91a679376c821d2705b8c4
SHA1

83ff30d20122b1d2ba4d07f42f2ffee24237387d
SHA256

447dc755ed3cc737cf23ffee2bffefbd89f6c2b043da9a073e8e42c589da27b9
SHA512

b383c743150a05865ac9764327601835e794c595e03a08befa4cca2e0ac5588d7ee4f1062ae02c2479c1b8a3dbbc41b611a0be54d00be76c23d948d371ef6e68
SSDEEP

3072:qmVPF16yErNxLI19esH0YiRDBJT0b8r7rXm7R0Tz2dr1Qe07GAejs+C+Uy5J5/Io:qI/6vBIvesH0DR0bU70R0m3E73MljUCT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/dbp.exe

Files

3aef16b66f91a679376c821d2705b8c4_JaffaCakes118
.zip
dbp.exe
.exe windows:4 windows x86 arch:x86

bd18401c4320f18aa7e81980b159ac22

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

AddAtomA
CreateSemaphoreA
ExitProcess
FindAtomA
GetAtomNameA
GetLastError
InterlockedDecrement
InterlockedIncrement
ReleaseSemaphore
SetLastError
SetUnhandledExceptionFilter
Sleep
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
WaitForSingleObject

msvcrt

_fdopen
_read
_stat
_strdup
_write
__getmainargs
__mb_cur_max
__p___argc
__p___argv
__p__environ
__p__fmode
__set_app_type
_cexit
_ctype
_errno
_filelengthi64
_fstati64
_iob
_isctype
_lseeki64
_onexit
_pctype
_setmode
_strnicmp
_vsnprintf
abort
atexit
fclose
fflush
fgetpos
fopen
fprintf
fread
free
fsetpos
fwrite
getc
localeconv
malloc
memchr
memcpy
memmove
memset
pow
putc
setlocale
setvbuf
signal
strcmp
strcoll
strcpy
strftime
strlen
strtod
strxfrm
ungetc

libgimp-2.0-0

gimp_brightness_contrast
gimp_destroy_params
gimp_display_delete
gimp_display_new
gimp_displays_flush
gimp_displays_reconnect
gimp_extension_ack
gimp_file_load
gimp_hue_saturation
gimp_image_clean_all
gimp_image_convert_grayscale
gimp_image_delete
gimp_image_flatten
gimp_image_get_layers
gimp_image_height
gimp_image_merge_visible_layers
gimp_image_resize
gimp_image_rotate
gimp_image_scale
gimp_image_set_filename
gimp_image_undo_disable
gimp_image_width
gimp_install_procedure
gimp_layer_resize_to_image_size
gimp_levels_stretch
gimp_main
gimp_progress_install
gimp_progress_uninstall
gimp_run_procedure2

libgimpbase-2.0-0

gimp_gtkrc

libgimpui-2.0-0

gimp_ui_init

libgimpwidgets-2.0-0

gimp_dialog_new

libglib-2.0-0

g_free
g_idle_add
g_malloc
g_slist_free
g_source_remove
g_strdup

libgobject-2.0-0

g_object_get_data
g_object_set_data
g_signal_connect_data
g_type_check_instance_cast

libgtk-win32-2.0-0

gtk_adjustment_get_type
gtk_adjustment_new
gtk_adjustment_set_value
gtk_bin_get_type
gtk_box_get_type
gtk_box_pack_end
gtk_box_pack_start
gtk_button_get_type
gtk_button_new_with_label
gtk_button_set_label
gtk_cell_renderer_text_new
gtk_check_button_new
gtk_check_button_new_with_label
gtk_container_add
gtk_container_get_type
gtk_container_set_border_width
gtk_dialog_get_type
gtk_dialog_run
gtk_entry_get_text
gtk_entry_get_type
gtk_entry_new
gtk_file_chooser_dialog_new
gtk_file_chooser_get_filenames_utf8
gtk_file_chooser_get_type
gtk_file_chooser_set_select_multiple
gtk_file_chooser_unselect_all
gtk_file_selection_get_filename_utf8
gtk_file_selection_get_type
gtk_file_selection_hide_fileop_buttons
gtk_file_selection_new
gtk_frame_new
gtk_hbox_new
gtk_hscale_new
gtk_init_abi_check
gtk_label_get_type
gtk_label_new
gtk_label_set_text
gtk_list_store_append
gtk_list_store_clear
gtk_list_store_new
gtk_list_store_set
gtk_main
gtk_main_quit
gtk_menu_get_active
gtk_menu_get_type
gtk_menu_item_new_with_label
gtk_menu_new
gtk_menu_shell_append
gtk_menu_shell_get_type
gtk_misc_get_type
gtk_misc_set_padding
gtk_notebook_append_page
gtk_notebook_get_type
gtk_notebook_new
gtk_object_get_type
gtk_option_menu_get_type
gtk_option_menu_new
gtk_option_menu_set_history
gtk_option_menu_set_menu
gtk_progress_bar_get_type
gtk_progress_bar_new
gtk_progress_bar_set_fraction
gtk_radio_button_get_group
gtk_radio_button_get_type
gtk_radio_button_new_with_label
gtk_rc_parse_utf8
gtk_scale_get_type
gtk_scale_set_digits
gtk_scale_set_draw_value
gtk_scrolled_window_add_with_viewport
gtk_scrolled_window_get_type
gtk_scrolled_window_new
gtk_scrolled_window_set_policy
gtk_spin_button_new
gtk_table_attach
gtk_table_attach_defaults
gtk_table_get_type
gtk_table_new
gtk_toggle_button_get_active
gtk_toggle_button_get_type
gtk_toggle_button_new_with_label
gtk_toggle_button_set_active
gtk_tree_model_get
gtk_tree_model_get_type
gtk_tree_selection_selected_foreach
gtk_tree_selection_set_mode
gtk_tree_view_append_column
gtk_tree_view_column_new_with_attributes
gtk_tree_view_get_selection
gtk_tree_view_get_type
gtk_tree_view_new_with_model
gtk_vbox_new
gtk_widget_destroy
gtk_widget_get_pango_context
gtk_widget_hide
gtk_widget_set_sensitive
gtk_widget_set_size_request
gtk_widget_show
gtk_widget_show_all
gtk_window_get_type
gtk_window_set_modal

libpango-1.0-0

pango_layout_get_pixel_size
pango_layout_new
pango_layout_set_text

Sections

.text
Size: 457KB - Virtual size: 456KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 464B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 19KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

bd18401c4320f18aa7e81980b159ac22

Headers

File Characteristics

Imports

kernel32

msvcrt

libgimp-2.0-0

libgimpbase-2.0-0

libgimpui-2.0-0

libgimpwidgets-2.0-0

libglib-2.0-0

libgobject-2.0-0

libgtk-win32-2.0-0

libpango-1.0-0

Sections

.text Size: 457KB - Virtual size: 456KB

.data Size: 512B - Virtual size: 464B

.rdata Size: 13KB - Virtual size: 13KB

.bss Size: - Virtual size: 19KB

.idata Size: 8KB - Virtual size: 7KB

.text
Size: 457KB - Virtual size: 456KB

.data
Size: 512B - Virtual size: 464B

.rdata
Size: 13KB - Virtual size: 13KB

.bss
Size: - Virtual size: 19KB

.idata
Size: 8KB - Virtual size: 7KB