63056d11d2a0c85a5e5932df2269b7fd_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

63056d11d2a0c85a5e5932df2269b7fd_JaffaCakes118
Size

422KB
MD5

63056d11d2a0c85a5e5932df2269b7fd
SHA1

e848d608730f2a8fd0f2652d5b9c32d8d8391e63
SHA256

60e49e8e896f5c661a7a337202f2e3265403caedaa66815ca26e31ab407cf46f
SHA512

e97b875114dfd10844eb7387079957b105f967e0701365b23e2fb1048f0cacc8e937c5fdd361774f9b90ae8a75f92a7c2e226bc2c1eb4aae33d2b9e234a5a0cb
SSDEEP

6144:67nFEaJUwteAOzq9w6p6/LTeSmp/+YmqNd:oFEaRQRP/hmp/+5od

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
63056d11d2a0c85a5e5932df2269b7fd_JaffaCakes118

Files

63056d11d2a0c85a5e5932df2269b7fd_JaffaCakes118
.exe windows:5 windows x86 arch:x86

a68ec77bb02537a620b207ff13bfa10b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetConsoleCP
FlushFileBuffers
GetFileType
SetEnvironmentVariableW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetOEMCP
IsValidCodePage
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
ReadFile
HeapFree
GetConsoleMode
GetACP
GetModuleFileNameA
FreeLibraryAndExitThread
ResumeThread
ExitThread
CreateThread
GetModuleHandleExW
ReadConsoleW
SetFilePointerEx
HeapReAlloc
FindClose
FindFirstFileExA
FindNextFileA
GetCommandLineA
GetCommandLineW
SetStdHandle
CreateFileW
WriteConsoleW
SetConsoleCursorPosition
GetProcessHeap
LocalFree
HeapAlloc
CloseHandle
GetConsoleTitleA
CreateFileA
LocalAlloc
lstrlenA
VirtualAlloc
WriteFile
GetStdHandle
CreateEventA
GetTempFileNameW
FindNextChangeNotification
SetEvent
GetLastError
FindFirstChangeNotificationW
GetModuleHandleA
WaitForSingleObject
ExitProcess
LoadLibraryExW
FreeLibrary
WaitForMultipleObjects
RaiseException
RtlUnwind
GetStartupInfoW
IsDebuggerPresent
InitializeSListHead
GetCurrentThreadId
HeapSize
GetCurrentProcessId
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
GetCurrentProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCPInfo
GetStringTypeW
GetLocaleInfoW
LCMapStringW
CompareStringW
MultiByteToWideChar
DecodePointer
EncodePointer
GetProcAddress
GetModuleHandleW
GetSystemTimeAsFileTime
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
SwitchToThread
InitializeCriticalSectionAndSpinCount
SetLastError
DeleteCriticalSection
LeaveCriticalSection
WideCharToMultiByte
EnterCriticalSection

user32

EndPaint
BeginPaint
ReleaseDC
UpdateWindow
FindWindowA
ScrollWindow
SetScrollPos
GetDesktopWindow
PostQuitMessage
KillTimer
GetDlgItem
GetClientRect
EndDeferWindowPos
GetWindowDC
SendMessageA
DispatchMessageA
TranslateMessage
GetMessageA
EnableWindow
GetWindow
SetFocus
SetScrollInfo
DeferWindowPos
LoadImageA
DefWindowProcA
GetMenu
GetDC
SetActiveWindow
GetIconInfo
GetSystemMetrics
GetScrollInfo
GetScrollPos
wsprintfA
BeginDeferWindowPos
SetTimer
GetScrollRange
ValidateRect
SetWindowTextA
MessageBoxA
MoveWindow
GetDialogBaseUnits
SetMenu
TranslateAcceleratorA

gdi32

BitBlt
SelectObject
CreateDIBSection
GetTextExtentPoint32A
CreateCompatibleDC
SetPixel
GetStockObject
SetWindowExtEx
MaskBlt
SetViewportExtEx
GetPixel
DeleteDC
TextOutA
GetTextExtentPointA
LineTo
CreatePen
Rectangle
SetViewportOrgEx
CreateFontIndirectA
MoveToEx
Ellipse
DeleteObject
CreateSolidBrush
SwapBuffers
GetTextMetricsA
SetMapMode
CreateBitmap
GetMapMode
GetObjectA
DPtoLP

advapi32

RegQueryValueExA
CryptCreateHash
CryptAcquireContextA
CryptGetKeyParam
RegOpenKeyExA
ConvertStringSecurityDescriptorToSecurityDescriptorA
CryptDecrypt

shell32

ord727
SHGetFileInfoW

avicap32

capGetDriverDescriptionA

msacm32

acmDriverDetailsA

winmm

timeGetTime

version

GetFileVersionInfoW

gdiplus

GdipSetPathGradientSurroundColorsWithCount
GdipDeleteGraphics
GdipCloneBrush
GdipFillEllipseI
GdipCreateFromHDC
GdipFree
GdipCreatePath
GdipCreatePathGradientFromPath
GdipSetPathGradientCenterColor
GdipDeletePath
GdipAlloc
GdipDeleteBrush
GdipAddPathEllipseI
GdiplusStartup
GdipGetPathGradientPointCount

opengl32

glClear
glEnd
wglGetCurrentDC
glColor3f
glBegin
glFlush
glVertex2f
glClearColor

setupapi

SetupDiEnumDeviceInterfaces
SetupDiGetClassDevsA
SetupDiGetDeviceInterfaceDetailA
SetupDiDestroyDeviceInfoList

urlmon

CreateAsyncBindCtx

Sections

.text
Size: 142KB - Virtual size: 141KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 79KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 195KB - Virtual size: 195KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a68ec77bb02537a620b207ff13bfa10b

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

avicap32

msacm32

winmm

version

gdiplus

opengl32

setupapi

urlmon

Sections

.text Size: 142KB - Virtual size: 141KB

.rdata Size: 79KB - Virtual size: 79KB

.data Size: 4KB - Virtual size: 7KB

.rsrc Size: 195KB - Virtual size: 195KB

.text
Size: 142KB - Virtual size: 141KB

.rdata
Size: 79KB - Virtual size: 79KB

.data
Size: 4KB - Virtual size: 7KB

.rsrc
Size: 195KB - Virtual size: 195KB