3722b18641aa6ede7dc102364b583f2e_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

3722b18641aa6ede7dc102364b583f2e_JaffaCakes118
Size

375KB
MD5

3722b18641aa6ede7dc102364b583f2e
SHA1

3edcff06d8091b9dd4b3a9543f05d3158c29e97a
SHA256

55912e6cc4a71d5c51b0eba1e63473f9c5653cfbca176d8cdb22165417a0f2d6
SHA512

d171c394ecb45cb3ef61bc89381cb8ea2f99c006f65c2f7fb0146fea8be82e52daa15dd84e14d196948400b024bd970a837ed3a5c2dcb47165792cade7e7d31d
SSDEEP

6144:2npfnTfCEkXi0AOddyd1NTGRsPs9vAYY53Su29t7jnTIVcPp/jaL:+5LC1Xi09RRJjQCu2L7jTIah4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3722b18641aa6ede7dc102364b583f2e_JaffaCakes118

Files

3722b18641aa6ede7dc102364b583f2e_JaffaCakes118
.exe windows:5 windows x86 arch:x86

991bd88cbdae7889039e6f1206dc1bc8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

InvalidateRgn
GetCursor
DrawFrameControl
ScrollDC
CopyIcon
MapVirtualKeyA
GetNextDlgGroupItem
TrackMouseEvent
LoadCursorW
CharToOemBuffW
RegisterClassW
DialogBoxParamA
CreateAcceleratorTableW
GetPriorityClipboardFormat
GetClipboardViewer
GetListBoxInfo
IsCharAlphaW
ReplyMessage
MonitorFromWindow
VkKeyScanExW
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
RegisterClassA
SetWindowLongA
GetClassInfoA
LoadStringA
GetLastActivePopup
IsWindowEnabled
MessageBoxA
LoadImageA
DrawStateA
FrameRect
DrawFocusRect
TrackPopupMenuEx
WindowFromPoint
GetActiveWindow
GetWindowLongA
DestroyIcon
DestroyCursor
DestroyMenu
DrawTextA
LoadIconA
SendMessageTimeoutA
ShowScrollBar
GetMessageA
TranslateMessage
DispatchMessageA
GetClipboardData
HideCaret
GetWindowTextLengthA
GetDlgItem
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
GetForegroundWindow
SetForegroundWindow
SetFocus
SetScrollRange
KillTimer
SetTimer
UpdateWindow
PostMessageA
GetWindow
InsertMenuA
LoadMenuA
DeleteMenu
GetMenuItemID
GetMessageTime
RemovePropA
FindWindowA
SetWindowPos
GetSystemMetrics
InsertMenuItemA
DrawMenuBar
CreateWindowExA
DestroyWindow
GetWindowRect
OffsetRect
InflateRect
CreateCaret
SetCaretPos
ShowCaret
CreatePopupMenu
EnableWindow
ScreenToClient
SetCapture
ReleaseCapture
GetKeyState
ClientToScreen
CopyRect
WinHelpA
GetCapture
IsChild
SetWindowPlacement
SetScrollPos
GetScrollPos
GetScrollRange
SetScrollInfo
GetTabbedTextExtentA
DefWindowProcA
GetFocus
RegisterWindowMessageA
CallWindowProcA
MessageBeep
GetKeyNameTextA
RemoveMenu
LockWindowUpdate
GetDCEx
GetSysColorBrush
GetClassNameA
UnionRect
ClipCursor
CopyAcceleratorTableA
PostThreadMessageA
CreateMenu
SetCursorPos
WindowFromDC
InSendMessage
wvsprintfA
RegisterClipboardFormatA
MapDialogRect
SetWindowContextHelpId
ShowOwnedPopups
PostQuitMessage
IsClipboardFormatAvailable
IsZoomed
EndDialog
GetPropA
UnhookWindowsHookEx
SetPropA
GetClassLongA
CallNextHookEx
SetWindowsHookExA
GetMenuStringA
SetMenu
TrackPopupMenu
CreateDialogIndirectParamA
InvertRect
RedrawWindow
ScrollWindow
DefMDIChildProcA
TranslateMDISysAccel
DefFrameProcA
CharNextA
ValidateRect
BringWindowToTop
UnpackDDElParam
ReuseDDElParam
TranslateAcceleratorA
LoadAcceleratorsA
GetWindowTextA
IsWindowVisible
GetMenu
GetTopWindow
GetSystemMenu
SetParent
GrayStringA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetNextDlgTabItem
ShowWindow
MoveWindow
IsDialogMessageA
IsDlgButtonChecked
SetDlgItemTextA
CheckRadioButton
CheckDlgButton
GetDesktopWindow
CharUpperA
SendDlgItemMessageA
MapWindowPoints
PeekMessageA
IsWindow
AdjustWindowRectEx
EqualRect
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
GetMessagePos
GetCursorPos
GetScrollInfo
SendMessageA
ReleaseDC
FillRect
GetDC
SetActiveWindow
CheckMenuRadioItem
AppendMenuA
wsprintfA
EnumChildWindows
SetMenuItemInfoA
GetMenuItemInfoA
GetMenuItemCount
GetSubMenu
SetWindowTextA
GetDlgCtrlID
SetRectEmpty
IsRectEmpty
PtInRect
SetRect
InvalidateRect
GetClientRect
DrawEdge
GetParent
GetSysColor
SetCursor
LoadCursorA
LoadBitmapA
UnregisterClassA
GetAsyncKeyState
ExcludeUpdateRgn
DefDlgProcA
IsWindowUnicode
DestroyCaret

shell32

SHGetPathFromIDListW
DragQueryFileA
SHChangeNotify
ShellExecuteExA
DragAcceptFiles
SHGetFileInfoA
DragFinish
ExtractIconA
SHGetFolderPathA
SHFileOperationA
SHBrowseForFolderA
SHBrowseForFolderW
ShellExecuteA
SHGetFileInfoW
ShellExecuteW
SHFileOperationW
SHGetSpecialFolderLocation

ole32

OleUninitialize
OleInitialize
CoTaskMemFree
WriteClassStg
WriteFmtUserTypeStg
OleDuplicateData
CoCreateInstance

advapi32

RegEnumValueA
RegSetValueExA
RegDeleteValueA
RegOpenKeyExA
RegQueryValueA
FreeSid
RegDeleteKeyA
RegEnumKeyExA
GetUserNameA
RegCreateKeyExA
RegOpenKeyA
RegQueryInfoKeyA
GetFileSecurityA
RegCreateKeyA
RegEnumKeyA
RegSetValueA
SetFileSecurityA
RegEnumValueW
RegQueryValueExW
RegSetValueExW
RegCreateKeyExW
RegDeleteValueW
RegDeleteKeyW
RegCloseKey
RegOpenKeyExW
RegEnumKeyW
SetFileSecurityW
RegQueryValueExA

gdi32

GetPixel
SetTextColor
SetBkMode
CreateFontIndirectW
CreateBrushIndirect
DeleteObject
GetDeviceCaps
SetBkColor
GetCharABCWidthsA
SetMapMode
Polygon
GetFontLanguageInfo
Ellipse
SetPolyFillMode
GetColorSpace
OffsetClipRgn
GetPolyFillMode
GetBitmapBits
FixBrushOrgEx
SetBitmapDimensionEx
ExtSelectClipRgn
GetCharABCWidthsI
GetObjectType
GetLogColorSpaceA
RectInRegion
GetCharABCWidthsFloatW
SelectClipRgn
GetTextMetricsA
SetRectRgn
SelectObject

kernel32

GetFileSize
GetModuleFileNameW
GetCurrentProcess
CopyFileW
ExitProcess
GetWindowsDirectoryW
GetTempPathW
GetCommandLineW
SetErrorMode
CloseHandle
lstrlenW
lstrcpynW
GetDiskFreeSpaceW
GlobalUnlock
GlobalLock
CreateThread
LoadLibraryW
CreateProcessW
lstrcmpiA
GetTempFileNameW
lstrcatW
GetProcAddress
LoadLibraryA
GetModuleHandleA
OpenProcess
lstrcpyW
GetVersionExW
GetSystemDirectoryW
GetVersion
lstrcpyA
RemoveDirectoryW
lstrcmpA
lstrcmpiW
lstrcmpW
ExpandEnvironmentStringsW
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
GlobalFree
GetModuleHandleW
LoadLibraryExW
FreeLibrary
WritePrivateProfileStringW
GetPrivateProfileStringW
WideCharToMultiByte
lstrlenA
MulDiv
WriteFile
ReadFile
MultiByteToWideChar
SetFilePointer
FindClose
FindNextFileW
FindFirstFileW
DeleteFileW
lstrcpynA
HeapDestroy
GetEnvironmentVariableA
TerminateProcess
GetFileType
SetStdHandle
HeapReAlloc
ExitThread
GetCommandLineA
RaiseException
GetSystemTime
GetStartupInfoA
GetLocalTime
HeapFree
GetTimeZoneInformation
HeapAlloc
GlobalSize
RtlUnwind
GetOEMCP
CreateFileW
FreeEnvironmentStringsW
GlobalFlags
GetCPInfo
GetProcessVersion
TlsSetValue
TlsGetValue
LocalReAlloc
GlobalHandle
GlobalReAlloc
TlsFree
FileTimeToSystemTime
TlsAlloc
FileTimeToLocalFileTime
GetDiskFreeSpaceA
GetFileTime
GetCurrentThread
GetCurrentDirectoryA
SetThreadPriority
GetProfileIntA
SuspendThread
GetPrivateProfileIntA
WritePrivateProfileStringA
GetPrivateProfileStringA
DeleteCriticalSection
SetLastError
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
LocalAlloc
GetStringTypeExA
GetShortPathNameA
GetThreadLocale
GetVolumeInformationA
FindFirstFileA
UnlockFile
MoveFileA
SetEndOfFile
LockFile
FlushFileBuffers
GetCurrentThreadId
DuplicateHandle
GlobalFindAtomA
GlobalGetAtomNameA
GlobalAddAtomA
GlobalDeleteAtom
TerminateThread
WriteProfileStringA
GetVersionExA
ResumeThread
GetProfileStringA
GetTempFileNameA
SetEvent
GetWindowsDirectoryA
GetFileAttributesA
GetFullPathNameA
CreateEventA
CopyFileA
GetExitCodeThread
FindResourceExA
VirtualProtect
GetSystemTimeAsFileTime
FindResourceA
lstrcatA
FormatMessageA
LocalFree
GetSystemDirectoryA
CreateProcessA
GetACP
LoadResource
LockResource
SizeofResource
CreateFileA
DeleteFileA
GetModuleFileNameA
GetTempPathA
GetTickCount
Sleep
SetFileAttributesW
CreateDirectoryW
GetLastError
GetFileAttributesW
SetCurrentDirectoryW
MoveFileW
GetFullPathNameW
GetShortPathNameW
SearchPathW
CompareFileTime
SetFileTime
QueryInformationJobObject
CreateNamedPipeW
FreeResource
CreateMemoryResourceNotification
SetFileApisToOEM
CreateTimerQueue
GetFileInformationByHandle
UpdateResourceW
GetDriveTypeW
HeapCreate
VirtualFree
VirtualAlloc
SetUnhandledExceptionFilter
GetStdHandle
FreeEnvironmentStringsA
SystemTimeToFileTime
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
InterlockedIncrement
InterlockedDecrement
QueryPerformanceCounter
GetCurrentProcessId
IsValidCodePage
UnhandledExceptionFilter
IsDebuggerPresent
InitializeCriticalSectionAndSpinCount
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
HeapSize
LocalFileTimeToFileTime

Sections

.text
Size: 120KB - Virtual size: 120KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 354KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

kkkkkkkk
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 181KB - Virtual size: 181KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

991bd88cbdae7889039e6f1206dc1bc8

Headers

DLL Characteristics

File Characteristics

Imports

user32

shell32

ole32

advapi32

gdi32

kernel32

Sections

.text Size: 120KB - Virtual size: 120KB

.rdata Size: 35KB - Virtual size: 35KB

.data Size: 28KB - Virtual size: 354KB

kkkkkkkk Size: 9KB - Virtual size: 8KB

.rsrc Size: 181KB - Virtual size: 181KB

.text
Size: 120KB - Virtual size: 120KB

.rdata
Size: 35KB - Virtual size: 35KB

.data
Size: 28KB - Virtual size: 354KB

kkkkkkkk
Size: 9KB - Virtual size: 8KB

.rsrc
Size: 181KB - Virtual size: 181KB