355d8d802f8c6906575ac04c58d8ff21_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

355d8d802f8c6906575ac04c58d8ff21_JaffaCakes118
Size

235KB
MD5

355d8d802f8c6906575ac04c58d8ff21
SHA1

5de7215b4a4be09f964f2c26a21d68a6ea463f4a
SHA256

54e158787639c5aff1b028053c552cbae1840e2118008bbedf9060e6df47f41f
SHA512

338b14a67bd6dee6defbe1f62cf0cb373dfd63d8c31d2cb4fca29b21d050175be64007d2674b30253df23a7a3911319a8ebc4c366458393401f4ea6ec558c825
SSDEEP

3072:UDnudOuHIFnmfWD3wS233z0IygIilLP2EDa1VEKqjv9nm+tyIs88LyfD6k0q/myI:oe+EDMmKavd3T8GsPIpg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
355d8d802f8c6906575ac04c58d8ff21_JaffaCakes118

Files

355d8d802f8c6906575ac04c58d8ff21_JaffaCakes118
.exe windows:5 windows x86 arch:x86

74a98247ec5d6615a67d3fb30e4fa3ed

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_SYSTEM

Imports

msvcrt

strcspn
system
strncmp
mbtowc
towupper
ungetwc

netapi32

NetLocalGroupDel

gdi32

ExtEscape
GetBkColor
GetCurrentPositionEx
GetLayout
GetTextExtentPointA
GetTextExtentExPointW
GdiSetBatchLimit
DeleteColorSpace
GetRegionData
InvertRgn
GetRasterizerCaps
GetTextExtentExPointI
GetCharWidthFloatA
GetClipBox
GetTextCharsetInfo
GetPolyFillMode
GetTextCharset
GetFontData
GetPixel
CreateCompatibleBitmap
StrokePath
GetLogColorSpaceA
DescribePixelFormat
SetROP2
GetCharWidthW

shell32

ExtractIconExA
ExtractAssociatedIconA
ExtractIconA

mscms

GetColorDirectoryW
GetColorProfileHeader
GetColorProfileElement

kernel32

LocalFree
GetCommTimeouts
GetSystemWindowsDirectoryA
GetConsoleDisplayMode
EraseTape
FileTimeToDosDateTime
GetConsoleCursorInfo
GetPrivateProfileStructW
GetSystemTime
GetUserDefaultLangID
FindAtomW
DefineDosDeviceW
DeviceIoControl
GetTimeFormatW
WriteProfileStringW
MultiByteToWideChar
GetCurrentDirectoryA
LoadLibraryExW
GlobalFindAtomA
FormatMessageW
DeactivateActCtx
GetDiskFreeSpaceExA
GetShortPathNameA
GetAtomNameW
GetProfileStringW
VirtualQuery
GetPrivateProfileSectionNamesW
FindNextFileA
GlobalAddAtomA
GetTempFileNameW
EnumResourceNamesW
GetProfileSectionA
GetConsoleOutputCP
GlobalAddAtomW
lstrcpynA
WriteProfileStringA
GetAtomNameA
GetTempFileNameA
VirtualFree
GetTapeStatus
MapViewOfFile
GetLocalTime
FindActCtxSectionStringW
LoadLibraryW
GetCurrentProcess
FindResourceA
GetThreadSelectorEntry
lstrcmpW
GetStringTypeExW
EscapeCommFunction
FindFirstFileExW
GetFileAttributesExW
FindResourceExA
LocalAlloc
CreateFileMappingW
GetCompressedFileSizeA
GetSystemDirectoryA
CreateThread
GetPrivateProfileStringA
lstrcpynW
VirtualAlloc
GlobalHandle
EnumSystemGeoID
WriteProfileSectionA
GlobalGetAtomNameA
FindVolumeClose
GetSystemInfo
UnmapViewOfFile
IsThreadAFiber
LocaleNameToLCID
GetSystemTimes
lstrcatW
GetConsoleMode
TransmitCommChar
NotifyUILanguageChange
GetModuleHandleW
GetPrivateProfileSectionW
GlobalFree

secur32

FreeCredentialsHandle

user32

GetShellWindow
GetSubMenu
PostQuitMessage
SetForegroundWindow
GetMessageExtraInfo
FillRect
EnableMenuItem
FindWindowW
LoadImageA
DestroyCursor
GetCursorInfo
SetActiveWindow
GetProcessDefaultLayout
OpenClipboard
SetCursor
GetMenuStringW
CloseDesktop
GetWindowLongA
CreateWindowExW
FreeDDElParam
DialogBoxParamW
EnumWindowStationsA
LockWorkStation
GetSysColorBrush
DefWindowProcW
DestroyWindow
FindWindowExW
DrawStateW
GetMenuState
MessageBeep
GetForegroundWindow
CharUpperW
MoveWindow
LookupIconIdFromDirectoryEx
DestroyMenu
LockWindowUpdate
GetMenuStringA
DrawFocusRect
RegisterWindowMessageW
GetMenuCheckMarkDimensions
GetScrollInfo
FlashWindow
PeekMessageW
LoadKeyboardLayoutW
GetUpdateRect
GetMessageA
LoadCursorW
RegisterClassExW
LoadAcceleratorsW
CharNextW
CreateDialogParamW
GetWindowRgn
EnumWindows
SetScrollPos
UpdateWindow
GetScrollPos
LockSetForegroundWindow
GetRawInputDeviceInfoW
GetWindowPlacement
DeleteMenu
GetWindowRect
InsertMenuItemA
GetClassInfoExA
IsIconic
EnableScrollBar
UnhookWindowsHookEx
CreateIconIndirect
BringWindowToTop
SetThreadDesktop
DrawTextW
CreateIconFromResource
GetPriorityClipboardFormat
PhysicalToLogicalPoint
GetClipboardViewer
DestroyCaret
EnableWindow
GetWindowTextW
DrawIcon
LoadMenuIndirectA
GetSystemMenu
GetKeyboardLayout
GetWindowLongW
GetDlgItem
InvalidateRect
LoadIconW
GetSystemMetrics
SetWindowPos
SendMessageW
IsRectEmpty

ole32

CoCreateInstance
CoInitialize
CoUninitialize
CoInitializeEx

winspool.drv

DeletePrinterDriverW
DeletePrinter
FindClosePrinterChangeNotification

oleaut32

LoadRegTypeLi
LoadTypeLibEx
VarCyNeg

shlwapi

PathMakeSystemFolderW
GetMenuPosFromID

clusapi

GetClusterFromResource

advapi32

GetSidIdentifierAuthority
GetServiceDisplayNameA
InitiateSystemShutdownA
LookupPrivilegeDisplayNameW
GetFileSecurityW
GetSecurityDescriptorControl
CryptDestroyKey
QueryUsersOnEncryptedFile
GetCurrentHwProfileA
LookupAccountNameA
StartServiceA
IsTextUnicode
GetPrivateObjectSecurity
DecryptFileW
GetTokenInformation
GetUserNameA
GetCurrentHwProfileW
GetSidSubAuthorityCount
AccessCheckAndAuditAlarmA
LookupPrivilegeNameW
EnumServicesStatusExW

wininet

GetUrlCacheEntryInfoA
DeleteUrlCacheEntryW
FindNextUrlCacheGroup
FindFirstUrlCacheEntryW

Sections

.text
Size: 120KB - Virtual size: 120KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

CODE
Size: 9KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

CONST
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_READ

.crt2
Size: 96KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

74a98247ec5d6615a67d3fb30e4fa3ed

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

netapi32

gdi32

shell32

mscms

kernel32

secur32

user32

ole32

winspool.drv

oleaut32

shlwapi

clusapi

advapi32

wininet

Sections

.text Size: 120KB - Virtual size: 120KB

CODE Size: 9KB - Virtual size: 18KB

CONST Size: 7KB - Virtual size: 7KB

.crt2 Size: 96KB - Virtual size: 96KB

.text
Size: 120KB - Virtual size: 120KB

CODE
Size: 9KB - Virtual size: 18KB

CONST
Size: 7KB - Virtual size: 7KB

.crt2
Size: 96KB - Virtual size: 96KB