33cb3424f4d1d441e40143c10f7acb50_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

33cb3424f4d1d441e40143c10f7acb50_JaffaCakes118
Size

1.6MB
MD5

33cb3424f4d1d441e40143c10f7acb50
SHA1

ff53d65ca9c4ce4d738f42f2ec152ddbb700ccd9
SHA256

e320fbfcd508cbf6761904ee667ecd6d1492f4d72104b2c1693c7ca260d7993d
SHA512

6d763da4dfbe31d8516b48f8aa80491e926b8dd4a7c364bcb897ad169e2bd6c04e6c6767ffc4a809b354edb6acb93aa3052111c14a351ee9a709d328c879e9e2
SSDEEP

24576:mieETjU1ShPCb848Xxs4UD5guT3OxnD179ZMiN4YHvTcAF:eETjLhf48UOZMiAAF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
33cb3424f4d1d441e40143c10f7acb50_JaffaCakes118

Files

33cb3424f4d1d441e40143c10f7acb50_JaffaCakes118
.dll windows:4 windows x86 arch:x86

110cdc571971432934d69d3b060dbb2f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

msvcr71

clearerr
ftell
fseek
fwrite
_read
fread
fclose
fopen
fprintf
_assert
bsearch
rewind
_stat
_strdup
_timezone
_ftime
_telli64
_lseeki64
_write
memchr
tolower
qsort
_errno
realloc
isalpha
toupper
strtod
strstr
strpbrk
calloc
atoi
isalnum
_strnicmp
_get_osfhandle
remove
_getcwd
rename
exit
time
localtime
gmtime
strftime
mktime
setlocale
_stricmp
_open_osfhandle
_open
_fdopen
wcslen
wcscmp
_snprintf
atof
abort
_iob
fflush
fputc
fputs
atol
_close
__CppXcptFilter
_adjust_fdiv
_initterm
_onexit
__dllonexit
??1type_info@@UAE@XZ
_except_handler3
?terminate@@YAXXZ
floor
strncpy
isspace
_ismbcpunct
strncmp
strtoul
strtol
isdigit
strchr
_CIpow
strspn
sscanf
memmove
malloc
strrchr
rand
??0exception@@QAE@XZ
??1exception@@UAE@XZ
_mbsicmp
??2@YAPAXI@Z
_purecall
_CxxThrowException
??0exception@@QAE@ABV0@@Z
sprintf
__CxxFrameHandler
??_V@YAXPAX@Z
??3@YAXPAX@Z
getenv
free

comctl32

ImageList_BeginDrag
ImageList_SetDragCursorImage
ImageList_DragLeave
ImageList_DragEnter
ImageList_DragMove
ImageList_EndDrag
ord17
ImageList_Add
ImageList_Draw
ImageList_ReplaceIcon
ImageList_Destroy
ImageList_Create
ImageList_GetIconSize
ImageList_GetImageCount
ord6

kernel32

TlsFree
TlsSetValue
TlsAlloc
LocalFree
LocalAlloc
GlobalAlloc
FormatMessageA
GetStdHandle
OutputDebugStringA
GlobalSize
ExpandEnvironmentStringsA
HeapSize
GetProcessHeap
GetSystemDirectoryA
SetFileAttributesA
CreateDirectoryA
GetVolumeInformationA
DeviceIoControl
GetModuleFileNameA
ReadFile
WriteFile
SetFilePointer
CloseHandle
CreateFileA
VirtualQuery
GlobalFree
GlobalUnlock
GlobalLock
SetLastError
MultiByteToWideChar
GetCurrentThreadId
WideCharToMultiByte
FindNextFileA
FindClose
FindFirstFileA
GetLastError
GetFileType
GetFileAttributesA
CopyFileA
SetCurrentDirectoryA
GetWindowsDirectoryA
GetVersionExA
SetErrorMode
GetLocaleInfoA
GetThreadLocale
GetACP
GetUserDefaultLCID
GetEnvironmentVariableA
GetCPInfo
IsValidCodePage
GetProcAddress
GetCurrentProcess
LoadLibraryA
FreeLibrary
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GetTempFileNameA
GetFileTime
GetTempPathA
FileTimeToLocalFileTime
FileTimeToSystemTime
EnterCriticalSection

user32

DdeFreeDataHandle
DdeUninitialize
DdeQueryStringA
DdeFreeStringHandle
GetMenuStringA
DefMDIChildProcA
TranslateMDISysAccel
DefFrameProcA
EnumDisplaySettingsA
ChangeDisplaySettingsA
ShowCursor
SetClipboardData
RegisterClipboardFormatA
GetUpdateRect
DrawIcon
DdeGetData
SetTimer
KillTimer
UnionRect
ValidateRect
GetMessageA
EndDialog
DrawStateA
DrawEdge
PostThreadMessageA
DrawIconEx
BeginPaint
GetWindowDC
EndPaint
GetWindowTextA
GetClassNameA
MapWindowPoints
GetWindowTextLengthA
DdeCreateDataHandle
DdeGetLastError
DdeInitializeA
DdeDisconnect
DdeClientTransaction
DdeCreateStringHandleA
DdeNameService
DdeConnect
DdePostAdvise
SetRect
SetMenu
GetWindowTextW
HideCaret
keybd_event
OpenClipboard
IsClipboardFormatAvailable
CloseClipboard
ChildWindowFromPoint
MessageBeep
LoadCursorA
MessageBoxA
DialogBoxIndirectParamA
GetMessagePos
TranslateAcceleratorA
CreateAcceleratorTableA
DestroyAcceleratorTable
CreateDialogIndirectParamA
RegisterClassA
UnregisterClassA
FlashWindow
SetWindowRgn
AdjustWindowRectEx
GetSystemMenu
GetDesktopWindow
IsIconic
IsZoomed
BringWindowToTop
SetForegroundWindow
GetForegroundWindow
PostMessageA
OffsetRect
DrawFocusRect
CopyRect
GetDlgItem
CreateDialogParamA
InflateRect
GetUpdateRgn
SetWindowsHookExA
IsDialogMessageA
TrackPopupMenu
PtInRect
SetCursor
GetCapture
DestroyWindow
UnhookWindowsHookEx
UnregisterHotKey
RegisterHotKey
CallNextHookEx
GetActiveWindow
GetMenuItemInfoA
SystemParametersInfoA
GetMessageTime
GetWindow
BeginDeferWindowPos
EndDeferWindowPos
SetWindowTextA
GetFocus
IsWindowEnabled
IsWindowVisible
CallWindowProcA
DefWindowProcA
DeferWindowPos
MoveWindow
ClientToScreen
ScreenToClient
UpdateWindow
RedrawWindow
SetParent
GetCursorPos
WindowFromPoint
GetParent
ScrollWindow
SetScrollInfo
GetScrollInfo
SetCursorPos
ReleaseCapture
SetCapture
EnableWindow
SetWindowPos
SetWindowLongA
GetWindowLongA
FillRect
GetClientRect
GetKeyState
GetAsyncKeyState
PeekMessageA
DispatchMessageA
TranslateMessage
PostQuitMessage
CreateWindowExA
GetWindowRect
InvalidateRect
GetSysColor
DrawFrameControl
ShowWindow
SendMessageA
InsertMenuItemA
GetMenuItemCount
GetSubMenu
CreateMenu
AppendMenuA
DrawMenuBar
InsertMenuA
RemoveMenu
DestroyMenu
CreatePopupMenu
SetMenuItemInfoA
ModifyMenuA
CheckMenuRadioItem
CheckMenuItem
EnableMenuItem
GetMenuState
CreateIconIndirect
ReleaseDC
GetDC
LoadImageA
DestroyIcon
GetIconInfo
GetSystemMetrics
LoadBitmapA
LoadIconA
DrawTextA
IsWindow
SetFocus
DestroyCursor

gdi32

RectInRegion
CreateRectRgnIndirect
SetTextAlign
SelectClipRgn
CreateFontIndirectA
OffsetRgn
ExtCreateRegion
GetRegionData
GetDeviceCaps
SetBrushOrgEx
CreatePatternBrush
LineTo
MoveToEx
ExtCreatePen
CreateHatchBrush
GetRgnBox
EqualRgn
PtInRegion
RestoreDC
SaveDC
GetClipBox
ExtSelectClipRgn
ExtFloodFill
GetPixel
CombineRgn
SetPixel
ExcludeClipRect
CreateRectRgn
SelectPalette
RealizePalette
GdiFlush
Polyline
GetStockObject
CreatePen
CreateSolidBrush
CreateICA
GetTextMetricsA
GetTextExtentPoint32A
SetBkColor
CreateBitmap
CreateCompatibleBitmap
BitBlt
GetPaletteEntries
DeleteObject
GetObjectA
SetTextColor
SetBkMode
SetStretchBltMode
StretchDIBits
DeleteDC
CreateCompatibleDC
SelectObject
SetPolyFillMode
PolyPolygon
RoundRect
Ellipse
MaskBlt
StretchBlt
GetNearestPaletteIndex
CreatePalette
CreateDIBSection
GetDIBits
CreateDIBitmap
GetDIBColorTable
PatBlt
GetSystemPaletteEntries
EnumFontFamiliesExA
GetEnhMetaFileA
CopyEnhMetaFileA
DeleteEnhMetaFile
SetAbortProc
StartDocA
EndDoc
StartPage
EndPage
CreateDCA
PolyBezier
TextOutA
SetROP2
GetCharABCWidthsA
GetTextExtentExPointA
SetWindowOrgEx
SetViewportOrgEx
SetWindowExtEx
SetViewportExtEx
SetMapMode
GetBkColor
GetTextColor
Arc
Rectangle
Polygon
Pie

comdlg32

CommDlgExtendedError
GetOpenFileNameA
GetSaveFileNameA
PageSetupDlgA
PrintDlgA
ChooseFontA
ChooseColorA

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey

shell32

SHGetSpecialFolderLocation
SHGetPathFromIDListA
SHGetMalloc
ShellExecuteExA
DragQueryFileA
DragFinish
DragQueryPoint
DragAcceptFiles
ExtractIconExA
ExtractIconA
SHGetFolderPathA

ole32

CoCreateInstance
OleInitialize
OleUninitialize
RegisterDragDrop
CoLockObjectExternal
RevokeDragDrop
OleSetClipboard
OleIsCurrentClipboard
OleFlushClipboard
ReleaseStgMedium
OleGetClipboard

msvcp71

??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@PBD@Z
??0?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@ABV01@@Z
??1?$basic_string@DU?$char_traits@D@std@@V?$allocator@D@2@@std@@QAE@XZ

iphlpapi

GetAdaptersInfo

wininet

InternetOpenA
InternetConnectA
HttpOpenRequestA
InternetErrorDlg
HttpSendRequestA
InternetQueryDataAvailable
InternetReadFile
InternetCloseHandle

Exports

Exports

ENTRYPOINT

Sections

.text
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 324KB - Virtual size: 322KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 128KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 188KB - Virtual size: 186KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

110cdc571971432934d69d3b060dbb2f

Headers

File Characteristics

Imports

msvcr71

comctl32

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

msvcp71

iphlpapi

wininet

Exports

Exports

Sections

.text Size: 1.1MB - Virtual size: 1.1MB

.rdata Size: 324KB - Virtual size: 322KB

.data Size: 48KB - Virtual size: 128KB

.rsrc Size: 4KB - Virtual size: 2KB

.reloc Size: 188KB - Virtual size: 186KB

.text
Size: 1.1MB - Virtual size: 1.1MB

.rdata
Size: 324KB - Virtual size: 322KB

.data
Size: 48KB - Virtual size: 128KB

.rsrc
Size: 4KB - Virtual size: 2KB

.reloc
Size: 188KB - Virtual size: 186KB