47937d75be86ed7ab9c2048cee4bbaf4_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

47937d75be86ed7ab9c2048cee4bbaf4_JaffaCakes118
Size

204KB
MD5

47937d75be86ed7ab9c2048cee4bbaf4
SHA1

d7eed8c49beca46ce4be3b376611f22a0351c09c
SHA256

911184d3633225146e3c57884f9c1a7ed7849b8e7e575a8b33de8fd42e745b66
SHA512

802a1196fae9bf3f3cb8dd9abdc359ef5bfa0728dec28d70033b3341f0e6eb6aee1560307f5f7553c1f38ba279de7d6ddce2e7370c1f5d7100fed8c539cdbae8
SSDEEP

3072:XA1yBUlytLJVM9yQGVTcuB4rdSQTDOkoycTXiv+5oN87KppRsqYaefim1:rBUlyzVM9yQGvwPXoyc+C7Kkaw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
47937d75be86ed7ab9c2048cee4bbaf4_JaffaCakes118

Files

47937d75be86ed7ab9c2048cee4bbaf4_JaffaCakes118
.exe windows:5 windows x86 arch:x86

94a9aadfd2b2aa1a04607ccf014e3f4e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapCreate
HeapDestroy
HeapFree
HeapReAlloc
HeapSize
InterlockedDecrement
InterlockedIncrement
IsBadCodePtr
IsBadReadPtr
IsBadWritePtr
LCMapStringA
LCMapStringW
LoadLibraryA
LoadLibraryW
LoadResource
LocalFree
LocalReAlloc
LockFile
LockResource
MapViewOfFile
MoveFileExW
MoveFileW
MulDiv
MultiByteToWideChar
OpenMutexA
OpenProcess
PeekNamedPipe
RaiseException
ReleaseMutex
RemoveDirectoryA
RemoveDirectoryW
ResetEvent
ResumeThread
RtlUnwind
SetCurrentDirectoryA
SetCurrentDirectoryW
SetEndOfFile
SetEnvironmentVariableA
SetEnvironmentVariableW
HeapAlloc
SetEvent
SetFileAttributesA
SetFileAttributesW
SetFilePointer
SetFileTime
SetHandleCount
SetStdHandle
SetThreadExecutionState
SetThreadPriority
SetUnhandledExceptionFilter
SetWaitableTimer
SizeofResource
Sleep
SuspendThread
SystemTimeToFileTime
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
UnlockFile
UnmapViewOfFile
VirtualAlloc
VirtualFree
VirtualProtect
WaitForMultipleObjects
WaitForSingleObject
WideCharToMultiByte
WriteFile
WritePrivateProfileStringA
lstrcatA
lstrcmpA
lstrcmpiA
lstrcpyA
lstrlenA
lstrlenW
VirtualAllocEx
GlobalUnlock
GlobalSize
GlobalReAlloc
GlobalLock
GlobalHandle
GlobalGetAtomNameA
GlobalFree
GlobalFlags
GlobalFindAtomA
GlobalDeleteAtom
GlobalAlloc
GlobalAddAtomA
GetWindowsDirectoryW
GetWindowsDirectoryA
GetVolumeInformationW
GetVolumeInformationA
GetVersionExA
GetVersion
GetUserDefaultLangID
GetTimeZoneInformation
GetTickCount
GetThreadLocale
GetSystemTimeAsFileTime
GetSystemTime
GetSystemInfo
GetSystemDirectoryW
GetSystemDirectoryA
GetSystemDefaultLangID
GetStringTypeW
GetStringTypeA
GetStdHandle
GetStartupInfoA
GetProfileStringA
GetProfileIntA
GetProcessVersion
GetProcessHeap
GetProcAddress
GetOEMCP
GetModuleHandleA
GetModuleFileNameW
GetModuleFileNameA
GetLocaleInfoA
GetLocalTime
GetLastError
GetFullPathNameA
GetFileType
GetFileTime
GetFileSize
GetFileInformationByHandle
GetFileAttributesW
GetFileAttributesExW
GetFileAttributesA
GetExitCodeProcess
GetEnvironmentVariableA
GetEnvironmentStringsW
GetEnvironmentStrings
GetDiskFreeSpaceW
GetDiskFreeSpaceA
GetCurrentThreadId
GetCurrentThread
GetCurrentProcessId
GetCurrentProcess
GetCurrentDirectoryW
GetCurrentDirectoryA
GetComputerNameA
GetCommandLineA
GetCPInfo
GetACP
FreeLibrary
FreeEnvironmentStringsW
FreeEnvironmentStringsA
FormatMessageA
FlushFileBuffers
FindResourceExA
FindResourceA
CancelWaitableTimer
FindNextFileW
FindFirstFileW
FindFirstFileA
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
ExitThread
ExitProcess
DuplicateHandle
DeviceIoControl
DeleteFileW
DeleteFileA
DeleteCriticalSection
CreateWaitableTimerA
CreateProcessW
CreateProcessA
CreateMutexA
CreateFileW
CreateFileMappingA
CreateFileA
CreateEventA
CopyFileA
CompareStringW
CompareStringA
CloseHandle
SetErrorMode

user32

MessageBeep
MessageBoxA
MessageBoxW
ModifyMenuA
ModifyMenuW
MoveWindow
MsgWaitForMultipleObjects
OffsetRect
PeekMessageA
PostMessageA
PostQuitMessage
PostThreadMessageA
PtInRect
RegisterClassA
RegisterClipboardFormatA
RegisterWindowMessageA
ReleaseCapture
ReleaseDC
RemoveMenu
RemovePropA
ScreenToClient
SendDlgItemMessageA
SendMessageA
SendMessageW
SetActiveWindow
SetCapture
SetClipboardViewer
SetCursor
SetCursorPos
SetDlgItemTextA
SetDlgItemTextW
SetFocus
SetForegroundWindow
SetMenuItemBitmaps
SetParent
SetPropA
SetRect
SetRectEmpty
SetTimer
SetWindowContextHelpId
SetWindowLongA
SetWindowPos
SetWindowTextA
SetWindowTextW
SetWindowsHookExA
ShowCaret
ShowWindow
SystemParametersInfoA
SystemParametersInfoW
TabbedTextOutA
TrackPopupMenu
TranslateMessage
UnhookWindowsHookEx
UnionRect
UnregisterClassA
UpdateWindow
ValidateRect
WinHelpA
WindowFromPoint
wsprintfA
wsprintfW
IsClipboardFormatAvailable
IsChild
InvalidateRect
IntersectRect
InflateRect
HideCaret
GrayStringA
GetWindowThreadProcessId
GetWindowTextW
GetWindowTextLengthW
GetWindowTextLengthA
MapWindowPoints
GetWindowRect
GetWindowPlacement
GetWindowLongA
GetWindowDC
GetWindow
GetTopWindow
GetSystemMetrics
GetSysColorBrush
GetSysColor
GetSubMenu
GetPropA
GetParent
GetNextDlgTabItem
GetNextDlgGroupItem
GetMessagePos
GetMessageA
GetMenuState
GetMenuItemID
GetMenuItemCount
GetMenuCheckMarkDimensions
GetMenu
GetLastActivePopup
GetKeyState
GetForegroundWindow
GetFocus
GetDlgItemTextA
GetDlgItem
GetDlgCtrlID
GetDesktopWindow
GetDCEx
GetDC
GetCursorPos
GetClientRect
GetClassNameA
GetClassLongA
GetClassInfoA
GetCapture
GetAsyncKeyState
GetActiveWindow
FrameRect
FindWindowA
FillRect
ExitWindowsEx
ExcludeUpdateRgn
EqualRect
EnumWindows
EndPaint
EndDialog
EndDeferWindowPos
EnableWindow
EnableMenuItem
DrawTextW
DrawTextA
DrawStateA
DrawIconEx
DrawIcon
DrawFrameControl
DrawFocusRect
DispatchMessageA
DestroyWindow
DestroyMenu
DestroyIcon
DeleteMenu
DeferWindowPos
DefWindowProcW
DefWindowProcA
DefDlgProcA
CreateWindowExW
CreateWindowExA
CreatePopupMenu
CreateDialogParamW
CreateDialogParamA
CreateDialogIndirectParamA
MapDialogRect
LockWindowUpdate
LoadStringA
LoadImageW
LoadImageA
LoadIconA
LoadCursorA
LoadBitmapA
KillTimer
IsWindowVisible
IsWindowUnicode
IsWindowEnabled
IsWindow
IsRectEmpty
IsIconic
GetWindowTextA
IsDialogMessageA
AdjustWindowRectEx
AppendMenuA
AppendMenuW
BeginDeferWindowPos
BeginPaint
CallNextHookEx
CallWindowProcA
ChangeClipboardChain
CharNextA
CharUpperA
CheckMenuItem
CheckMenuRadioItem
ClientToScreen
CopyAcceleratorTableA
CopyIcon
CopyRect
GetMessageTime

gdi32

GetClipBox
GetDIBits
GetDeviceCaps
GetMapMode
GetObjectA
GetStockObject
GetTextColor
GetTextExtentPointA
GetTextMetricsA
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LPtoDP
OffsetViewportOrgEx
PatBlt
PtVisible
RectVisible
RestoreDC
SaveDC
ScaleViewportExtEx
ScaleWindowExtEx
SelectClipRgn
SelectObject
SetBkColor
SetBkMode
SetMapMode
GetCharWidthA
SetStretchBltMode
SetTextColor
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
StretchBlt
StretchDIBits
TextOutA
FillPath
GdiGetBatchLimit
CloseFigure
DeleteMetaFile
AbortPath
EndDoc
AbortDoc
EndPage
CloseEnhMetaFile
BeginPath
CreateHalftonePalette
DeleteEnhMetaFile
CloseMetaFile
EndPath
CancelDC
GdiFlush
DeleteColorSpace
CreateMetaFileW
GetBkColor
ExtTextOutA
ExcludeClipRect
EnumFontFamiliesExA
Escape
DeleteObject
DeleteDC
DPtoLP
CreateSolidBrush
CreateRectRgnIndirect
CreateRectRgn
CreatePatternBrush
CreateFontIndirectW
CreateFontIndirectA
CreateFontA
CreateDIBitmap
CreateDIBSection
CreateCompatibleDC
CreateCompatibleBitmap
CreateBitmap
CopyMetaFileA
CombineRgn
SetRectRgn
BitBlt

comdlg32

GetSaveFileNameA
GetOpenFileNameA
GetFileTitleA
GetSaveFileNameW

advapi32

RegQueryValueExW

shell32

SHBrowseForFolderA
SHBrowseForFolderW
SHFileOperationA
SHFileOperationW
SHGetDesktopFolder
SHGetFileInfoA
SHGetFileInfoW
SHGetMalloc
SHGetPathFromIDListA
SHGetPathFromIDListW
ShellExecuteA
ShellExecuteExA
ShellExecuteExW
ShellExecuteW
Shell_NotifyIconA
FindExecutableW

ole32

DoDragDrop
OleDuplicateData
OleFlushClipboard
OleGetClipboard
OleInitialize
OleIsCurrentClipboard
OleUninitialize
RegisterDragDrop
ReleaseStgMedium
RevokeDragDrop
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
StringFromGUID2
CreateILockBytesOnHGlobal
CoUninitialize
CoTaskMemFree
CoTaskMemAlloc
CoRevokeClassObject
CoRegisterMessageFilter
CoRegisterClassObject
CoLockObjectExternal
CoInitialize
CoGetObject
CoGetClassObject
CoFreeUnusedLibraries
CoDisconnectObject
CoCreateInstance
CLSIDFromString
CLSIDFromProgID
CreateStreamOnHGlobal

comctl32

ImageList_GetIcon
ImageList_EndDrag
ImageList_Draw
ImageList_DragShowNolock
ImageList_DragMove
ImageList_DragLeave
ImageList_Remove
ImageList_Destroy
ImageList_Create
ImageList_BeginDrag
ImageList_AddMasked
ImageList_Add
DestroyPropertySheetPage
CreatePropertySheetPageA
ImageList_DragEnter
PropertySheetA

Sections

.text
Size: 138KB - Virtual size: 137KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

94a9aadfd2b2aa1a04607ccf014e3f4e

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

comctl32

Sections

.text Size: 138KB - Virtual size: 137KB

.rdata Size: 13KB - Virtual size: 12KB

.data Size: 8KB - Virtual size: 8KB

.rsrc Size: 44KB - Virtual size: 43KB

.text
Size: 138KB - Virtual size: 137KB

.rdata
Size: 13KB - Virtual size: 12KB

.data
Size: 8KB - Virtual size: 8KB

.rsrc
Size: 44KB - Virtual size: 43KB