2a6d24e8860bbd84be02f3062d16a753_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

2a6d24e8860bbd84be02f3062d16a753_JaffaCakes118
Size

352KB
MD5

2a6d24e8860bbd84be02f3062d16a753
SHA1

f7d4cf1c34c98c365b6d0db5da54fffc1f6cf70d
SHA256

37c84094c452b235cc310346dea26829afe3e714383ccfa03beeaadd952200e1
SHA512

602cd0a0d3d3fc7c55a21fc43672e5611044f450e10b13df597504867ef62d58dbef4e1730fdff4c1d0c7bfe6d43503de3827d3f407788e937e886593bd2412b
SSDEEP

6144:vcx+HObXwqYhtJwrJpPiGwic9WpAaUFlWzXARG8tdNeIFmi886hxLA8jHntLT:j7/gJpPiGTcApAQXCzdN9Fm9bc8

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2a6d24e8860bbd84be02f3062d16a753_JaffaCakes118

Files

2a6d24e8860bbd84be02f3062d16a753_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f66bb89f6a9170d4901313b161bdfe9d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mpr

WNetAddConnectionA
WNetConnectionDialog
WNetDisconnectDialog1A
WNetGetProviderNameA
MultinetGetConnectionPerformanceA
WNetDisconnectDialog

user32

CreateDialogIndirectParamW
SetDlgItemInt
GetDoubleClickTime
PeekMessageW
GetDlgItemInt
GetCursorPos
GetClassInfoA
FrameRect
MapVirtualKeyExA
SetFocus
BeginDeferWindowPos
UnpackDDElParam
FindWindowW
MessageBoxA
IsDialogMessageA
GetWindow
ModifyMenuA
GetMessagePos
DeferWindowPos
SetCaretPos
DdeClientTransaction
PostThreadMessageA
FindWindowExA
CharNextW
SetWindowRgn
CopyAcceleratorTableW
ReleaseDC
FindWindowA
DrawTextA
CloseWindow
GetDlgItem
VkKeyScanW
GetProcessWindowStation
CreateWindowStationW
ToAscii
IsDlgButtonChecked
ClipCursor
IntersectRect
GetCaretPos
GetGUIThreadInfo
GetKeyNameTextW
GetParent
CreateMenu
GetScrollInfo
DdeQueryStringA
GetUserObjectInformationW
DefDlgProcA
SendNotifyMessageA
DdeConnectList
CreateCursor
CreateIconFromResource
SendMessageA
GetMessageExtraInfo
GetDlgItemTextW
WindowFromPoint
DefFrameProcW
AdjustWindowRect
ScrollWindow
CharLowerA
GetWindowModuleFileNameA
GetSysColorBrush
AttachThreadInput
CharLowerW
DispatchMessageW
DialogBoxParamA
GetWindowTextA
LoadStringW
SetKeyboardState
InvalidateRect
EnableWindow
DdeAccessData
KillTimer
RemovePropA
ClientToScreen
DispatchMessageA
TranslateAcceleratorA
GetTabbedTextExtentA
DdeFreeStringHandle
GetClipboardData
GetWindowWord
PostThreadMessageW
ScrollWindowEx
GetDlgItemTextA
EnumThreadWindows
GetSystemMetrics
CloseDesktop
LoadBitmapW
SetClassLongA
MapVirtualKeyExW
CharUpperA
BringWindowToTop

oleaut32

LPSAFEARRAY_UserSize

gdi32

StartDocA
RestoreDC
GetTextExtentPoint32A
SetDIBColorTable
GetTextColor
GetPixel
ResizePalette
BitBlt
SetWorldTransform
SetViewportOrgEx
GetClipBox
IntersectClipRect
FillRgn
PtVisible
GetDeviceCaps
CreateCompatibleBitmap
GetRgnBox
GetCharABCWidthsW
GdiFlush
GetTextMetricsA
GetSystemPaletteEntries
GetFontData
StartDocW
PolyDraw
CreateFontIndirectA
GetEnhMetaFileHeader
AbortDoc
GetPolyFillMode
EndPage
GetROP2
ExtEscape
UpdateColors
EnumFontsA
CreatePenIndirect
SetPixelV
CancelDC
CombineRgn
CopyEnhMetaFileW
OffsetClipRgn
GetDIBits
CopyEnhMetaFileA
GetNearestPaletteIndex
CreateDCA
SetTextCharacterExtra
GetTextFaceA
OffsetRgn
Polygon
GetMapMode
SetWindowExtEx
EnumFontFamiliesA
CreateFontIndirectW
RemoveFontResourceA
Arc
ExtTextOutA
SelectPalette
PolyBezierTo
SelectClipRgn
RealizePalette
MoveToEx
GetGlyphOutlineA
GetWinMetaFileBits
CreateICA
DeleteEnhMetaFile
EnumFontFamiliesExW
ScaleViewportExtEx
SetDeviceGammaRamp
ResetDCW
SetAbortProc
Ellipse
GetKerningPairsA
SetPolyFillMode
RectVisible
EndDoc
CreateMetaFileA
ExtCreatePen
ScaleWindowExtEx
SwapBuffers
GetEnhMetaFilePaletteEntries
SetROP2
GetTextAlign
CreateBitmap
StartPage
CreateRoundRectRgn
Pie
CreateSolidBrush
ExtSelectClipRgn
SetBkMode
SetBkColor
GetWindowOrgEx
SetRectRgn
EnumFontsW
CloseEnhMetaFile
GetObjectA
CreateRectRgn
GetClipRgn
CreatePen
Polyline
SetViewportExtEx
GetTextExtentPointA
LPtoDP
OffsetWindowOrgEx
SetPixelFormat
StretchBlt
GetEnhMetaFileBits
SetPixel
SetWindowOrgEx
StrokePath
CreateFontW
CreateDCW
CreateCompatibleDC
GetCharWidthA
CreateDIBPatternBrushPt
CreateICW
SetBitmapBits
DPtoLP
EnumMetaFile
DeleteDC
CreateEllipticRgn
GetGlyphOutlineW
EndPath
PlayEnhMetaFile
GetTextExtentPoint32W
OffsetViewportOrgEx
GetObjectType
Rectangle
GetBitmapBits
FillPath
SetTextAlign

msvcrt

__dllonexit
isdigit
_onexit
scanf
_getwche
_controlfp
_except_handler3
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
getc
_fgetchar

advapi32

RegQueryInfoKeyW
QueryServiceStatus
QueryServiceLockStatusW
LockServiceDatabase
LogonUserA
BuildExplicitAccessWithNameA
NotifyBootConfigStatus
BuildImpersonateTrusteeA
GetServiceKeyNameA
GetServiceDisplayNameA
LsaOpenPolicy

netapi32

NetServerEnum

version

VerInstallFileA
GetFileVersionInfoW
VerFindFileA
VerQueryValueA
GetFileVersionInfoA
VerFindFileW
GetFileVersionInfoSizeW
GetFileVersionInfoSizeA

mfc42

ord2554
ord1100
ord5731
ord3922
ord1089
ord1059
ord2396
ord3346
ord1033
ord5302
ord2725
ord1077
ord1168
ord4698
ord5307
ord1033
ord5714
ord4486
ord2982
ord1000
ord3259
ord4465
ord1006
ord3262
ord2985
ord3081
ord2976
ord1016
ord3830
ord3831
ord3825
ord3079
ord4080
ord1084
ord4424
ord3738
ord561
ord6375
ord815
ord1576
ord1081

Sections

.text
Size: 184KB - Virtual size: 182KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 56KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 44KB - Virtual size: 4.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f66bb89f6a9170d4901313b161bdfe9d

Headers

File Characteristics

Imports

mpr

user32

oleaut32

gdi32

msvcrt

advapi32

netapi32

version

mfc42

Sections

.text Size: 184KB - Virtual size: 182KB

.rdata Size: 56KB - Virtual size: 54KB

.data Size: 44KB - Virtual size: 4.1MB

.rsrc Size: 64KB - Virtual size: 60KB

.text
Size: 184KB - Virtual size: 182KB

.rdata
Size: 56KB - Virtual size: 54KB

.data
Size: 44KB - Virtual size: 4.1MB

.rsrc
Size: 64KB - Virtual size: 60KB