02eea58d6a9a5dc3c7cc983b987fb51c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

02eea58d6a9a5dc3c7cc983b987fb51c_JaffaCakes118
Size

984KB
MD5

02eea58d6a9a5dc3c7cc983b987fb51c
SHA1

09b944d85c03030a6e255b3ee7ae51158d2065a4
SHA256

1f567da21355c7af2aa039f414a90f71bebf9a9ea5e6a380749825fce2fc0c54
SHA512

f51be17a4f5c5f8e2cdcc2e2119a5b4aa181423a1714a176a94959e12b8dece9b64ed3e346bfb3af7a7d0ce67dd9932a94b3214605cc41b45bda1d54847e016c
SSDEEP

24576:DOCNI9hSW7T+WCi9rjAiLtaVKPxgYp2d+0FPXN8:y+Il7TLCi9rdLEVKP/sdo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/free_pos_guide.exe

Files

02eea58d6a9a5dc3c7cc983b987fb51c_JaffaCakes118
.zip
Free_Account_Sign_Up.htm
.html
free_pos_guide.exe
.exe windows:4 windows x86 arch:x86

47d98253548a00316d5c391062b4cd7c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

CommitUrlCacheEntryA
DeleteUrlCacheEntry
CreateUrlCacheEntryA

kernel32

GlobalFlags
GetCPInfo
GetOEMCP
GetTickCount
GetPrivateProfileIntA
WritePrivateProfileStringA
GetPrivateProfileStringA
GetCurrentDirectoryA
RtlUnwind
HeapFree
HeapAlloc
GetSystemTimeAsFileTime
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
HeapReAlloc
ExitProcess
TerminateProcess
GetStartupInfoA
SetErrorMode
GetFileType
HeapSize
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
LCMapStringA
LCMapStringW
SetHandleCount
GetStdHandle
GetStringTypeA
GetStringTypeW
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetCurrentProcessId
SetUnhandledExceptionFilter
GetTimeZoneInformation
GetDriveTypeA
IsBadReadPtr
IsBadCodePtr
SetEnvironmentVariableA
GetDiskFreeSpaceA
GetTempFileNameA
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesA
lstrcmpA
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
TlsGetValue
GlobalHandle
GlobalReAlloc
LocalAlloc
FreeResource
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcmpW
LoadLibraryA
GetProcAddress
GetShortPathNameA
GetFullPathNameA
GetVolumeInformationA
GetCurrentProcess
DuplicateHandle
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
DeleteFileA
MoveFileA
GetFileTime
GetFileSize
CreateFileA
SetFileTime
CloseHandle
LocalFileTimeToFileTime
FileTimeToLocalFileTime
FileTimeToSystemTime
SetLastError
MulDiv
GlobalLock
GlobalUnlock
GetFileAttributesA
GetStringTypeExA
CompareStringW
CompareStringA
GetVersion
GetLocalTime
SystemTimeToFileTime
RemoveDirectoryA
GlobalAlloc
GlobalFree
GetTempPathA
GetLongPathNameA
CreateDirectoryA
GetCurrentThreadId
GetCommandLineA
GetModuleHandleA
LoadLibraryExA
FreeLibrary
IsDBCSLeadByte
lstrcatA
GetModuleFileNameA
lstrcpyA
lstrcpynA
lstrcmpiA
lstrlenA
InterlockedDecrement
InterlockedIncrement
DeleteCriticalSection
RaiseException
lstrlenW
MultiByteToWideChar
CreateEventA
GetLastError
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
FindNextFileA
FormatMessageA
LocalFree
FindClose
FindFirstFileA
ExpandEnvironmentStringsA
WideCharToMultiByte
FindResourceA
LoadResource
LockResource
SizeofResource
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
SetStdHandle

user32

RegisterClipboardFormatA
DeleteMenu
DestroyIcon
GetDCEx
LockWindowUpdate
PostThreadMessageA
SetParent
SetMenu
TranslateAcceleratorA
EndPaint
BeginPaint
GetWindowDC
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
GetMessageA
TranslateMessage
ValidateRect
ShowOwnedPopups
GetActiveWindow
CreateDialogIndirectParamA
EndDialog
PostQuitMessage
MessageBeep
GetNextDlgTabItem
GetNextDlgGroupItem
GetDesktopWindow
InvalidateRgn
CopyAcceleratorTableA
SetRect
SetWindowContextHelpId
MapDialogRect
SetMenuItemBitmaps
ModifyMenuA
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
IsWindowEnabled
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
WinHelpA
GetCapture
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
GetClassInfoExA
GetClassNameA
SetPropA
GetPropA
RemovePropA
SendDlgItemMessageA
GetForegroundWindow
GetLastActivePopup
SetActiveWindow
DispatchMessageA
BeginDeferWindowPos
EndDeferWindowPos
GetDlgItem
GetTopWindow
GetSysColorBrush
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
LoadIconA
PeekMessageA
MapWindowPoints
ScrollWindow
TrackPopupMenu
GetKeyState
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
SetForegroundWindow
ShowScrollBar
IsWindowVisible
GetMenu
ScreenToClient
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
GetClassInfoA
RegisterClassA
DefWindowProcA
CallWindowProcA
GetWindowLongA
SetWindowLongA
SetWindowPos
IntersectRect
GetWindowPlacement
CopyRect
GetWindow
SetFocus
GetDlgCtrlID
GetFocus
IsChild
IsIconic
GetCursorPos
ReleaseCapture
SetCursor
LoadCursorA
PtInRect
GetParent
SetCapture
InvalidateRect
ClientToScreen
SetWindowRgn
DrawIcon
FillRect
OffsetRect
IsRectEmpty
RegisterWindowMessageA
FindWindowA
SystemParametersInfoA
AdjustWindowRectEx
GetWindowTextLengthA
GetWindowTextA
wsprintfA
GetSystemMetrics
GetMenuState
GetMenuStringA
GetMenuItemInfoA
InflateRect
UnionRect
IsZoomed
WindowFromPoint
DestroyMenu
UnpackDDElParam
ReuseDDElParam
GetMenuItemID
InsertMenuA
GetMenuItemCount
LoadMenuA
GetSubMenu
UnregisterClassA
CharUpperA
GetDC
LoadAcceleratorsA
InsertMenuItemA
CreatePopupMenu
SetRectEmpty
DestroyWindow
BringWindowToTop
ReleaseDC
LoadBitmapA
GetSysColor
PostMessageA
SetTimer
LoadImageA
SendMessageA
UpdateWindow
GetWindowRect
KillTimer
CharNextA
IsWindow
EnableWindow
GetClientRect
MessageBoxA

gdi32

ExtSelectClipRgn
DeleteDC
CreatePatternBrush
CreateCompatibleDC
GetStockObject
BitBlt
CreateSolidBrush
PatBlt
StretchDIBits
GetCharWidthA
CreateFontA
GetBkColor
GetTextExtentPoint32A
CreateFontIndirectA
GetTextColor
SetRectRgn
CombineRgn
GetMapMode
GetWindowExtEx
GetViewportExtEx
CreateRectRgn
SelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
SetTextColor
GetClipBox
Ellipse
LPtoDP
CreateEllipticRgn
GetDeviceCaps
CreateCompatibleBitmap
SetDIBits
GetDIBits
DeleteObject
GetTextMetricsA
GetObjectA
IntersectClipRect
ExcludeClipRect
SetMapMode
SetBkMode
RestoreDC
SaveDC
GetRgnBox
CreateRectRgnIndirect
CreateBitmap
SetBkColor
GetPixel

comdlg32

GetSaveFileNameA
GetOpenFileNameA
CommDlgExtendedError
GetFileTitleA
PrintDlgA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

SetFileSecurityA
RegQueryValueExA
RegOpenKeyExA
RegSetValueExA
RegCreateKeyExA
RegDeleteKeyA
RegDeleteValueA
RegQueryInfoKeyA
RegEnumKeyExA
RegSetValueA
RegOpenKeyA
RegCreateKeyA
GetFileSecurityA
RegCloseKey
RegQueryValueA
RegEnumKeyA

shell32

ExtractIconA
SHGetPathFromIDListA
SHGetSpecialFolderLocation
SHGetFileInfoA
DragFinish
SHGetMalloc
DragQueryFileA

comctl32

ImageList_AddMasked
ImageList_GetImageInfo
ord17
ImageList_Destroy
ImageList_Create
ImageList_Draw

shlwapi

PathStripToRootA
PathIsUNCA
PathFindExtensionA
PathFindFileNameA

oledlg

ord8

ole32

CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromProgID
CLSIDFromString
CoInitialize
CoUninitialize
StringFromGUID2
CoCreateInstance
CoTaskMemRealloc
CoTaskMemFree
CoTaskMemAlloc
CoRegisterClassObject
CoRevokeClassObject
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
OleIsCurrentClipboard
CoRegisterMessageFilter
OleFlushClipboard

oleaut32

OleCreateFontIndirect
VariantInit
SafeArrayGetDim
SafeArrayCreate
VariantChangeType
VariantCopy
SystemTimeToVariantTime
SysAllocStringLen
SafeArrayDestroy
SafeArrayGetElemsize
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayAccessData
SafeArrayUnaccessData
SysAllocStringByteLen
SysStringLen
VarUI4FromStr
RegisterTypeLi
UnRegisterTypeLi
LoadTypeLi
SysAllocString
SysFreeString
VariantClear

urlmon

ReleaseBindInfo

Sections

.text
Size: 284KB - Virtual size: 283KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 76KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 476KB - Virtual size: 475KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

47d98253548a00316d5c391062b4cd7c

Headers

File Characteristics

Imports

wininet

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

urlmon

Sections

.text Size: 284KB - Virtual size: 283KB

.rdata Size: 76KB - Virtual size: 74KB

.data Size: 16KB - Virtual size: 28KB

.rsrc Size: 476KB - Virtual size: 475KB

.text
Size: 284KB - Virtual size: 283KB

.rdata
Size: 76KB - Virtual size: 74KB

.data
Size: 16KB - Virtual size: 28KB

.rsrc
Size: 476KB - Virtual size: 475KB