ff4a8f5ed03fda0c6043b3cc1e4dff72_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

ff4a8f5ed03fda0c6043b3cc1e4dff72_JaffaCakes118
Size

436KB
MD5

ff4a8f5ed03fda0c6043b3cc1e4dff72
SHA1

db86654151a731c347790dde003a5548e867a2ad
SHA256

dd218b74c28a47f0b7dc5b5cc8af822db022887d8712c61311c28b2cd2bd3764
SHA512

d907fcdcc02403b3219bbadb5287b71bb656ce4d70b0a8e20acd0e80a0b6bbe178622db54cbcb47a4c57586908777bd4524cb9e6fdaccaecd3370909d8bcefe8
SSDEEP

12288:TZwfV807E0SUoGCeDTZFgPkCdt8oz0w26z:kDxoGxoPk806z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ff4a8f5ed03fda0c6043b3cc1e4dff72_JaffaCakes118

Files

ff4a8f5ed03fda0c6043b3cc1e4dff72_JaffaCakes118
.exe windows:4 windows x86 arch:x86

775174eef8f1d68b6f7d3efa0efdc73a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalReAlloc
TlsGetValue
TlsSetValue
GlobalFlags
TlsFree
GlobalReAlloc
GlobalHandle
GetProcessVersion
TlsAlloc
GetCPInfo
GetOEMCP
GetPrivateProfileIntA
WritePrivateProfileStringA
LocalAlloc
CopyFileA
GetPrivateProfileStringA
SizeofResource
HeapAlloc
ExitProcess
TerminateProcess
GetTimeZoneInformation
GetSystemTime
lstrlenW
GetStartupInfoA
GetCommandLineA
ExitThread
RaiseException
GetACP
SetErrorMode
GlobalSize
HeapDestroy
GetTickCount
RtlUnwind
FatalAppExitA
VirtualAlloc
IsBadWritePtr
LCMapStringA
HeapFree
SetEvent
GetLocalTime
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetStringTypeA
GetStringTypeW
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
SystemTimeToFileTime
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
GetVersionExA
SetConsoleCtrlHandler
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetLocaleInfoW
SetFileAttributesA
SetFileTime
GetFileSize
LocalFileTimeToFileTime
GetFileTime
LeaveCriticalSection
GetFileAttributesA
EnterCriticalSection
FileTimeToLocalFileTime
DeleteCriticalSection
InitializeCriticalSection
SetLastError
FileTimeToSystemTime
MulDiv
lstrcatA
FreeLibrary
GetVersion
GlobalFindAtomA
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFree
GetModuleHandleA
GlobalUnlock
LoadResource
LockResource
FindResourceA
ResumeThread
SuspendThread
SetThreadPriority
HeapReAlloc
HeapSize
GlobalLock
FindClose
GetCurrentThreadId
SetFilePointer
ReadFile
PurgeComm
WriteFile
GetLastError
GetOverlappedResult
CreateFileA
SetupComm
GetCommTimeouts
SetCommTimeouts
Sleep
EscapeCommFunction
GetCommState
CloseHandle
GlobalAlloc
lstrcmpA
GlobalDeleteAtom
GetProfileStringA
lstrcmpiA
GetCurrentThread
GetShortPathNameA
GetFullPathNameA
GetThreadLocale
GetStringTypeExA
LoadLibraryA
lstrcpynA
lstrcpyA
MoveFileA
GetProcAddress
DeleteFileA
LockFile
SetEndOfFile
UnlockFile
DuplicateHandle
FlushFileBuffers
GetCurrentProcess
MultiByteToWideChar
FormatMessageA
LocalFree
InterlockedDecrement
WideCharToMultiByte
lstrlenA
CreateThread
InterlockedIncrement
GetVolumeInformationA
WaitCommEvent
GetCurrentDirectoryA
GetModuleFileNameA
SetCommBreak
TransmitCommChar
SetCommMask
GetCommMask
GetCommProperties
GetCommModemStatus
ResetEvent
ClearCommError
ClearCommBreak
FindFirstFileA
WaitForSingleObject
CreateEventA
LCMapStringW
UnhandledExceptionFilter
FindNextFileA
SetCommState
FreeEnvironmentStringsA
HeapCreate
VirtualFree
SetStdHandle

user32

CopyAcceleratorTableA
GetNextDlgGroupItem
MessageBeep
SetRectEmpty
LoadAcceleratorsA
TranslateAcceleratorA
LoadMenuA
SetMenu
ReuseDDElParam
UnpackDDElParam
InvalidateRect
BringWindowToTop
InflateRect
RegisterClipboardFormatA
RemoveMenu
PostThreadMessageA
DestroyIcon
InsertMenuA
PtInRect
GetClassNameA
WindowFromPoint
GetWindowThreadProcessId
GetDesktopWindow
WaitMessage
ReleaseCapture
SetCapture
LoadCursorA
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
ClientToScreen
DestroyMenu
LoadStringA
wvsprintfA
UpdateWindow
MapWindowPoints
GetSysColor
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
BeginDeferWindowPos
CopyRect
EndDeferWindowPos
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
CharNextA
SetRect
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
TrackPopupMenu
SetWindowPlacement
DefWindowProcA
CreateWindowExA
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
DeleteMenu
GetMessagePos
GetForegroundWindow
SetForegroundWindow
RegisterWindowMessageA
OffsetRect
IntersectRect
GetWindowRect
MapDialogRect
GetWindow
SetWindowContextHelpId
EndDialog
SetActiveWindow
IsWindow
CreateDialogIndirectParamA
DestroyWindow
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
PeekMessageA
GetCursorPos
SetWindowsHookExA
SetCursor
ShowOwnedPopups
PostQuitMessage
CharUpperA
wsprintfA
GetLastActivePopup
GetParent
SetFocus
GetMenuStringA
GetDialogBaseUnits
GetSysColorBrush
IsChild
WinHelpA
GetMessageTime
IsWindowEnabled
ShowWindow
SetWindowPos
MoveWindow
SetWindowLongA
GetDlgCtrlID
GetWindowTextLengthA
GetWindowTextA
SetWindowTextA
GetWindowLongA
IsDialogMessageA
ScrollWindowEx
IsDlgButtonChecked
SetDlgItemTextA
SetDlgItemInt
SendDlgItemMessageA
GetDlgItemTextA
GetDlgItemInt
GetDlgItem
CheckRadioButton
CheckDlgButton
OemToCharA
CharToOemA
EnableWindow
IsIconic
GetSystemMetrics
GetClientRect
DrawIcon
GetSystemMenu
AppendMenuA
LoadIconA
MessageBoxA
PostMessageA
SendMessageA
GetWindowPlacement
SystemParametersInfoA
GetCapture
DrawFocusRect
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DefDlgProcA
IsWindowUnicode

gdi32

PolyDraw
DeleteObject
GetClipRgn
PolyBezierTo
SelectClipPath
ExtSelectClipRgn
CreateRectRgn
GetObjectType
EnumMetaFile
PlayMetaFileRecord
GetDeviceCaps
GetViewportExtEx
PlayMetaFile
CreatePen
ExtCreatePen
GetWindowExtEx
CreateHatchBrush
CreatePatternBrush
CreateSolidBrush
PtVisible
RectVisible
CreateDIBPatternBrushPt
ExtTextOutA
Escape
TextOutA
GetCurrentPositionEx
GetTextExtentPoint32A
ArcTo
CreateFontIndirectA
GetTextColor
GetTextMetricsA
DPtoLP
LPtoDP
GetBkColor
PatBlt
SetRectRgn
GetMapMode
CreateRectRgnIndirect
CopyMetaFileA
CombineRgn
CreateDIBitmap
CreateDCA
BitBlt
GetTextExtentPointA
CreateCompatibleDC
SetMapperFlags
SetTextCharacterExtra
LineTo
MoveToEx
SetTextAlign
IntersectClipRect
ExcludeClipRect
OffsetClipRgn
ScaleWindowExtEx
SetWindowExtEx
SelectClipRgn
SetWindowOrgEx
ScaleViewportExtEx
OffsetWindowOrgEx
OffsetViewportOrgEx
SetViewportOrgEx
SetViewportExtEx
SetStretchBltMode
SetROP2
SetMapMode
SetBkMode
SelectPalette
SetPolyFillMode
SelectObject
RestoreDC
GetStockObject
StartDocA
DeleteDC
SaveDC
SetBkColor
SetTextColor
GetObjectA
SetArcDirection
PolylineTo
SetColorAdjustment
SetTextJustification
GetClipBox
GetDCOrgEx
CreateBitmap

comdlg32

GetOpenFileNameA
GetSaveFileNameA
GetFileTitleA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegOpenKeyA
RegCloseKey
RegEnumValueA
RegOpenKeyExA
RegDeleteValueA
RegSetValueExA
RegCreateKeyExA
RegQueryValueExA
RegDeleteKeyA
RegSetValueA
RegQueryValueA
RegEnumKeyA
RegCreateKeyA

shell32

ExtractIconA
DragQueryFileA
DragAcceptFiles
SHGetFileInfoA
DragFinish

comctl32

ord17

oledlg

ord8

ole32

SetConvertStg
CreateBindCtx
WriteFmtUserTypeStg
OleDuplicateData
CoFreeUnusedLibraries
OleUninitialize
OleInitialize
CoDisconnectObject
OleRegGetUserType
WriteClassStg
CoTaskMemFree
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
ReadFmtUserTypeStg
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoCreateInstance
StgOpenStorageOnILockBytes
ReadClassStg
StringFromCLSID
CoTreatAsClass
ReleaseStgMedium
CoRegisterMessageFilter
CoRegisterClassObject
CoRevokeClassObject
OleSetClipboard
OleFlushClipboard
OleIsCurrentClipboard
CreateStreamOnHGlobal
OleRun
CoTaskMemAlloc

olepro32

ord253

oleaut32

VarBstrFromCy
SysFreeString
LoadTypeLi
SysStringLen
SafeArrayDestroyDescriptor
SafeArrayDestroyData
SafeArrayDestroy
SafeArrayUnlock
SafeArrayLock
SafeArrayPutElement
SafeArrayPtrOfIndex
SafeArrayGetElement
SafeArrayAllocDescriptor
SafeArrayAllocData
SafeArrayCopy
VarBstrFromDate
VarDateFromStr
SafeArrayGetUBound
VarCyFromStr
SysStringByteLen
SysAllocStringByteLen
SafeArrayRedim
SafeArrayCreate
SafeArrayGetDim
SafeArrayGetElemsize
SafeArrayGetLBound
VariantChangeType
SafeArrayAccessData
SafeArrayUnaccessData
SysAllocString
SysReAllocStringLen
VariantCopy
VariantTimeToSystemTime
VariantClear
SysAllocStringLen

Sections

.text
Size: 324KB - Virtual size: 321KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 72KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 163KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.LC
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

775174eef8f1d68b6f7d3efa0efdc73a

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

Sections

.text Size: 324KB - Virtual size: 321KB

.rdata Size: 72KB - Virtual size: 70KB

.data Size: 16KB - Virtual size: 163KB

.rsrc Size: 16KB - Virtual size: 15KB

.LC Size: 3KB - Virtual size: 3KB

.text
Size: 324KB - Virtual size: 321KB

.rdata
Size: 72KB - Virtual size: 70KB

.data
Size: 16KB - Virtual size: 163KB

.rsrc
Size: 16KB - Virtual size: 15KB

.LC
Size: 3KB - Virtual size: 3KB