0023a98a15544a4b5bf1fc38264544bc_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

0023a98a15544a4b5bf1fc38264544bc_JaffaCakes118
Size

486KB
MD5

0023a98a15544a4b5bf1fc38264544bc
SHA1

73b07958dba21baa13c22fab18c2f80fd4506e48
SHA256

0f9c6d1ba8cea279f67a5f0fe24dda8b8e6e31937eedbb95806bb379ac78a08e
SHA512

e61e7a3e5b85aeff6623434b115c684262006dd33f396d2977669f47921d137c8be04d7c8353e1b1816e3418a205ecdf40dc797e7f746123eb86fb83361deedb
SSDEEP

6144:zgSjDUw2iKjpDXQia9a2T0KbavMZn2ZENxTeVJtijEtXtUlTnP/EL+oEzM/bagki:fnuRXnIe0Zn2ZEGFX5Kxng+7mr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0023a98a15544a4b5bf1fc38264544bc_JaffaCakes118

Files

0023a98a15544a4b5bf1fc38264544bc_JaffaCakes118
.exe windows:4 windows x86 arch:x86

af21029c690f42a6ed1c3c5f740cb0a8

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

shell32

SHGetPathFromIDListW
ShellExecuteW
Shell_NotifyIconW
SHBrowseForFolderW

version

GetFileVersionInfoW
VerQueryValueW

ole32

CoTaskMemRealloc
StringFromGUID2
CoInitialize
CLSIDFromString
CoCreateInstance
CoTaskMemFree
CoFreeUnusedLibraries
CoUninitialize
CoTaskMemAlloc
CoCreateGuid
CoInitializeEx

advapi32

RegOpenKeyExW
RegCreateKeyW
RegSetValueW
RegQueryValueExW
RegEnumKeyExW
RegCloseKey
RegEnumKeyW
RegDeleteKeyW
RegDeleteValueW
RegQueryValueW

kernel32

DuplicateHandle
RaiseException
GlobalLock
InitializeSListHead
LocalFileTimeToFileTime
GetNumaHighestNodeNumber
SystemTimeToTzSpecificLocalTime
IsProcessorFeaturePresent
GetUserDefaultLCID
CreateSemaphoreW
GetFileSizeEx
FileTimeToSystemTime
CreateTimerQueue
RegisterWaitForSingleObject
ResetEvent
Sleep
CreateThread
OutputDebugStringW
FindFirstFileW
LoadResource
SizeofResource
RtlUnwind
HeapQueryInformation
CloseHandle
GetLongPathNameW
LeaveCriticalSection
GetEnvironmentStringsW
IsDBCSLeadByteEx
GetFileTime
WaitForSingleObject
WaitForSingleObjectEx
VirtualProtect
ReadFile
HeapSize
DeleteCriticalSection
LoadLibraryW
GlobalDeleteAtom
GlobalReAlloc
GetUserDefaultUILanguage
GetCurrentDirectoryW
FindResourceW
QueryDepthSList
CreateDirectoryW
TzSpecificLocalTimeToSystemTime
GetExitCodeThread
QueryPerformanceCounter
GetACP
FreeResource
UnlockFile
GetFullPathNameW
LockResource
HeapAlloc
SetFileTime
GetStartupInfoW
GetCurrentThread
GetCurrentThreadId
SwitchToThread
CreateHardLinkW
GlobalUnlock
CreateTimerQueueTimer
DisableThreadLibraryCalls
GetProcessAffinityMask
GetShortPathNameW
InitializeCriticalSectionAndSpinCount
VirtualFree
GetProcAddress
SetEvent
GlobalFlags
GetConsoleCP
GetModuleHandleW
WriteFile
GetTempFileNameW
GetThreadTimes
FileTimeToLocalFileTime
HeapFree
UnregisterWaitEx
GlobalAddAtomW
GetVolumeInformationW
InitializeCriticalSection
SetLastError
GetLastError
GetTempPathW
GetFileType
InterlockedPopEntrySList
RemoveDirectoryW
GetProcessHeap
GetModuleFileNameA
DeleteTimerQueueTimer
DeleteFileW
GetCurrentProcess
GetSystemInfo
WriteConsoleW
FindNextChangeNotification
HeapReAlloc
SignalObjectAndWait
lstrcmpA
FindNextFileW
CreateFileW
FreeLibraryAndExitThread
AreFileApisANSI
lstrcmpW
CreateEventW
GetPrivateProfileIntW
GetModuleHandleA
IsDBCSLeadByte
GetFileAttributesExW
GetLocaleInfoW
LocalAlloc
ExitProcess
SetUnhandledExceptionFilter
lstrlenW
InterlockedDecrement
MulDiv
GetModuleHandleExW
GetFileSize
SetFileAttributesW
SetThreadPriority
ChangeTimerQueueTimer
GlobalHandle
TlsSetValue
OutputDebugStringA
IsValidCodePage
lstrlenA
TlsGetValue
FormatMessageW
SystemTimeToFileTime
FindClose
FindFirstChangeNotificationW
MoveFileW
SetFilePointer
UnregisterWait
ReleaseSemaphore
GetSystemDefaultUILanguage
GetCPInfo
GetModuleFileNameW
GetStringTypeW
GetStdHandle
GetCommandLineA
LockFile
GlobalFree
IsValidLocale
GetThreadPriority
WritePrivateProfileStringW
IsDebuggerPresent
SetThreadAffinityMask
LoadLibraryA
SetEndOfFile
SetStdHandle
LocalFree
GetFileAttributesW
InterlockedFlushSList
TlsFree
SetFilePointerEx
FindCloseChangeNotification
EnterCriticalSection
LCMapStringW
FreeEnvironmentStringsW
InterlockedPushEntrySList
InterlockedIncrement
GetPrivateProfileStringW
LocalReAlloc
EnumSystemLocalesW
ReadConsoleW
GetSystemDirectoryW
FreeLibrary
GlobalFindAtomW
GlobalAlloc

shlwapi

PathFindFileNameW
PathRemoveFileSpecW
UrlUnescapeW
PathFindExtensionW
PathStripToRootW
PathIsUNCW

winspool.drv

DocumentPropertiesW
ClosePrinter
OpenPrinterW

oleaut32

SysFreeString
SysAllocString
VariantChangeType
SysStringLen
VarBstrCmp
VariantInit
VariantClear
OleCreatePropertyFrame

user32

GetClassLongW
DispatchMessageW
SetRectEmpty
GetClientRect
GetParent
MessageBoxW
CharLowerBuffW
ValidateRect
GetMessageTime
InvalidateRect
GetClassInfoW
SetTimer
GetSysColorBrush
PostMessageW
CharUpperW
IntersectRect
GetLastActivePopup
CreateWindowExW
SetCursor
GetWindowThreadProcessId
TranslateMessage
SetDlgItemTextW
GetMenuItemID
EnableMenuItem
ReleaseDC
MonitorFromWindow
DestroyIcon
GetTopWindow
GetForegroundWindow
GetSystemMetrics
GetWindow
ShowWindow
CreatePopupMenu
GetMenu
SetWindowsHookExW
SendMessageW
SetWindowPos
TabbedTextOutW
OemToCharA
CharToOemBuffW
CheckMenuItem
EndDialog
GetDlgCtrlID
UnionRect
IsWindow
IsWindowEnabled
GetSubMenu
BeginPaint
SetActiveWindow
GetFocus
IsDialogMessageW
PtInRect
GetCapture
CharLowerW
LoadBitmapW
OffsetRect
RemovePropW
UpdateWindow
ClientToScreen
InflateRect
IsWindowVisible
IsRectEmpty
SetWindowLongW
RegisterWindowMessageW
GetKeyState
AdjustWindowRectEx
SendDlgItemMessageA
DestroyMenu
GetMonitorInfoW
OemToCharBuffA
EndPaint
CharToOemA
PeekMessageW
RegisterClassW
SetForegroundWindow
GetDC
EqualRect
LoadIconW
SetFocus
SetRect
GetWindowLongW
CreateDialogParamW
GetMenuItemCount
GetCursorPos
DrawTextW
GetSysColor
EnableWindow
GetDlgItem
WinHelpW
GetClassInfoExW
SetMenuItemInfoW
GetWindowTextLengthW
GetNextDlgTabItem
PostQuitMessage
GetDesktopWindow
GetPropW
DefWindowProcW
GetWindowRect
SetPropW
LoadCursorW
CallNextHookEx
RealChildWindowFromPoint
SetMenu
MapWindowPoints
GetMessagePos
ScreenToClient
TrackPopupMenu
GetActiveWindow
CopyRect
GrayStringW
DrawTextExW
GetMenuCheckMarkDimensions
CreateDialogIndirectParamW
SetWindowTextW
SetMenuItemBitmaps
UnhookWindowsHookEx
GetClassNameW
GetMessageW
KillTimer

gdi32

EndPath
SelectObject
GetClipBox
GetPath
SetViewportExtEx
GetStockObject
CreateFontIndirectW
GetObjectW
SetTextColor
SetWindowExtEx
TranslateCharsetInfo
AddFontResourceW
RestoreDC
BeginPath
GetDeviceCaps
SetBkColor
OffsetViewportOrgEx
SaveDC
ScaleWindowExtEx
RectVisible
AbortPath
CreateBitmap
ScaleViewportExtEx
SetBkMode
Escape
SetMapMode
DeleteObject
GetTextExtentPoint32W
CreatePen
SetViewportOrgEx
CloseFigure
PtVisible
CreateDIBSection
GetTextMetricsW

oleacc

LresultFromObject
CreateStdAccessibleObject

Sections

.text
Size: 77KB - Virtual size: 80KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 255KB - Virtual size: 254KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 105KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: - Virtual size: 16KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.CRT
Size: 1024B - Virtual size: 768B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

af21029c690f42a6ed1c3c5f740cb0a8

Headers

File Characteristics

Imports

shell32

version

ole32

advapi32

kernel32

shlwapi

winspool.drv

oleaut32

user32

gdi32

oleacc

Sections

.text Size: 77KB - Virtual size: 80KB

.data Size: 255KB - Virtual size: 254KB

.rdata Size: 105KB - Virtual size: 104KB

.bss Size: - Virtual size: 16KB

.idata Size: 13KB - Virtual size: 13KB

.CRT Size: 1024B - Virtual size: 768B

.tls Size: 512B - Virtual size: 32B

.rsrc Size: 32KB - Virtual size: 32KB

.text
Size: 77KB - Virtual size: 80KB

.data
Size: 255KB - Virtual size: 254KB

.rdata
Size: 105KB - Virtual size: 104KB

.bss
Size: - Virtual size: 16KB

.idata
Size: 13KB - Virtual size: 13KB

.CRT
Size: 1024B - Virtual size: 768B

.tls
Size: 512B - Virtual size: 32B

.rsrc
Size: 32KB - Virtual size: 32KB