664ad298bb467d1fead03c255bec57ea_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

664ad298bb467d1fead03c255bec57ea_JaffaCakes118
Size

1.9MB
MD5

664ad298bb467d1fead03c255bec57ea
SHA1

8e2d218673ae3d3c81febf1ed75b94e73abdb46a
SHA256

125b544ab94e6b6462612c8266bb39de4c575f2e50a2686dcf897f009b8732c9
SHA512

19a762a202d4e03f207fca00b116918e6140c7a88631c050c5f33f542862a3746672e631a26b95f31a331eb77b6bedf851fd10da0738e131202d8d8c5a2f8abd
SSDEEP

24576:4M25Kz3iScbWjRZ0L006Dk/mZfUanuoUSyetjIJRWbVX8UKzpr8enm6mG:4M3eonpQ/mpvuvSye9IObp89prw6m

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
664ad298bb467d1fead03c255bec57ea_JaffaCakes118

Files

664ad298bb467d1fead03c255bec57ea_JaffaCakes118
.exe windows:5 windows x86 arch:x86

708748bf881de5b4755f4604a65c3016

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileAttributesW
lstrlenA
lstrcpynA
lstrcmpiA
lstrcmpA
WritePrivateProfileStructA
WritePrivateProfileStringA
WriteFile
WideCharToMultiByte
WaitForSingleObject
VirtualQuery
AddAtomA
VirtualProtect
VirtualFree
VirtualAlloc
VerSetConditionMask
UnhandledExceptionFilter
TerminateProcess
SetUnhandledExceptionFilter
SetHandleCount
SetFilePointer
SetFileAttributesA
SetEndOfFile
RtlUnwind
ReadFile
QueryPerformanceCounter
MultiByteToWideChar
MoveFileWithProgressW
LocalFree
LoadLibraryA
LCMapStringW
LCMapStringA
IsDBCSLeadByte
InterlockedExchange
HeapReAlloc
HeapFree
HeapDestroy
HeapCreate
HeapAlloc
GlobalFree
GlobalAlloc
GetWindowsDirectoryA
GetVersionExA
GetTickCount
GetSystemTimeAsFileTime
GetSystemInfo
GetSystemDirectoryA
GetStringTypeW
GetStringTypeA
GetStdHandle
GetStartupInfoA
GetShortPathNameA
GetProcAddress
GetPrivateProfileStringA
GetOEMCP
GetModuleHandleA
GetModuleFileNameA
GetLocaleInfoA
GetLocalTime
GetLastError
GetFileType
GetFileSize
GetFileAttributesA
GetExitCodeProcess
GetEnvironmentVariableA
GetEnvironmentStringsW
GetEnvironmentStrings
GetCurrentThreadId
GetCurrentProcessId
GetCurrentProcess
GetCommandLineA
GetCPInfo
GetBinaryTypeW
GetACP
GenerateConsoleCtrlEvent
FreeLibrary
FreeEnvironmentStringsW
FreeEnvironmentStringsA
FindVolumeClose
FindNextFileA
FindFirstFileA
FindClose
ExpandEnvironmentStringsA
ExitThread
ExitProcess
EnumResourceLanguagesA
DeleteFileA
CreateProcessA
CreateFileA
CreateEventW
CreateDirectoryExA
CreateDirectoryA
CopyFileA
CloseHandle
Sleep

user32

MapDialogRect
MapVirtualKeyA
MapWindowPoints
MessageBeep
MessageBoxW
ModifyMenuW
MonitorFromRect
MonitorFromWindow
MoveWindow
OemToCharW
OffsetRect
OpenClipboard
PeekMessageW
PostMessageW
PostQuitMessage
PtInRect
RedrawWindow
RegisterClassW
RegisterPowerSettingNotification
RegisterWindowMessageA
ReleaseCapture
ReleaseDC
RemoveMenu
ScreenToClient
SendMessageTimeoutW
SendMessageW
SetActiveWindow
SetCapture
SetClipboardData
SetCursor
SetCursorPos
SetDlgItemTextW
SetFocus
SetForegroundWindow
SetMenuItemBitmaps
SetMenuItemInfoW
SetMessageExtraInfo
SetRect
SetRectEmpty
SetScrollInfo
SetScrollPos
SetTimer
SetWinEventHook
SetWindowLongA
SetWindowLongW
SetWindowPlacement
SetWindowPos
SetWindowRgn
ShowWindow
SystemParametersInfoW
TrackMouseEvent
TrackPopupMenu
TrackPopupMenuEx
TranslateAcceleratorW
TranslateMessage
UnionRect
UnregisterPowerSettingNotification
UpdateWindow
WaitForInputIdle
WindowFromPoint
LoadCursorA
GetMenuContextHelpId
LockWindowUpdate
LoadStringW
LoadMenuW
LoadKeyboardLayoutW
LoadImageW
LoadIconW
LoadBitmapW
LoadAcceleratorsW
KillTimer
IsZoomed
IsWindowVisible
IsWindowEnabled
IsWindow
IsRectEmpty
IsIconic
IsDlgButtonChecked
IsChild
InvalidateRect
IntersectRect
InsertMenuW
InsertMenuItemW
InflateRect
GetWindowRect
GetWindowPlacement
GetWindowLongW
GetWindowLongA
GetWindowInfo
GetWindowDC
GetWindow
GetTabbedTextExtentA
GetSystemMetrics
GetSystemMenu
GetSysColorBrush
GetSysColor
GetSubMenu
GetScrollPos
GetProcessDefaultLayout
GetParent
GetNextDlgTabItem
GetMonitorInfoW
GetMessageTime
GetMessagePos
GetMenuStringW
GetMenuItemRect
GetMenuItemID
GetMenuItemCount
GetListBoxInfo
GetLastActivePopup
GetKeyboardLayout
GetKeyState
GetInputDesktop
GetForegroundWindow
GetFocus
GetDoubleClickTime
GetDlgItemTextW
GetDlgItem
GetDlgCtrlID
GetDesktopWindow
GetDC
GetCursorPos
GetCursor
GetClientRect
GetClassInfoW
GetCapture
GetAsyncKeyState
GetActiveWindow
FrameRect
FindWindowW
FillRect
EqualRect
EnumWindowStationsA
EnumDesktopsA
EnumChildWindows
EndPaint
EndDeferWindowPos
EnableWindow
EnableMenuItem
EmptyClipboard
DrawTextW
DrawMenuBar
DrawIconEx
DrawFrameControl
DrawFocusRect
DrawEdge
DispatchMessageW
DestroyWindow
DestroyMenu
DestroyIcon
DestroyCursor
DeleteMenu
DeferWindowPos
DefWindowProcW
DdeFreeDataHandle
DdeConnect
CreateWindowExW
CreatePopupMenu
CountClipboardFormats
CopyRect
CloseWindow
CloseClipboard
ClientToScreen
CheckMenuItem
CheckDlgButton
CharPrevW
CharNextW
CharLowerW
CascadeChildWindows
CallWindowProcW
CallMsgFilterW
BroadcastSystemMessageA
BeginPaint
AppendMenuW
BeginDeferWindowPos
LoadCursorW

gdi32

GdiConvertAndCheckDC
GdiFlush
GdiInitSpool
GdiSetAttrs
GdiSetBatchLimit
GetBitmapDimensionEx
GetBkColor
GetBkMode
GetBoundsRect
GetClipBox
GetDeviceCaps
GetEnhMetaFilePixelFormat
GetFontResourceInfoW
GetMapMode
GetMetaFileA
GetObjectA
GetPolyFillMode
GetStockObject
GetTextColor
GetTextExtentPoint32A
GetTextExtentPoint32W
GetTextExtentPointA
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
InvertRgn
GdiAlphaBlend
OffsetViewportOrgEx
PATHOBJ_vEnumStart
PatBlt
PlayMetaFile
PolyPatBlt
PtVisible
QueryFontAssocStatus
RectVisible
RestoreDC
SaveDC
ScaleViewportExtEx
ScaleWindowExtEx
SelectObject
SetArcDirection
SetBitmapDimensionEx
SetBkColor
SetBkMode
SetMapMode
SetTextColor
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
StretchBlt
TextOutA
bInitSystemAndFontsDirectoriesW
ExtTextOutA
ExtTextOutW
ExtFloodFill
Escape
EnumFontFamiliesA
EnumEnhMetaFile
EngTextOut
EngStretchBlt
LPtoDP
AddFontResourceExA
EngFreeModule
EngCreateBitmap
EngCopyBits
Ellipse
DeviceCapabilitiesExW
DescribePixelFormat
DeleteObject
DeleteDC
DeleteColorSpace
DPtoLP
CreateSolidBrush
CreateRectRgn
CreateFontA
CreateDIBitmap
CreateCompatibleDC
CreateBitmap
CancelDC
BitBlt
BRUSHOBJ_pvAllocRbrush
EngGetPrinterDataFileName

comdlg32

GetFileTitleA

advapi32

RegSetValueExA
RegQueryValueExW
RegQueryValueExA
RegOpenKeyExA
RegCreateKeyExA
RegCloseKey
RegOpenKeyA

shell32

Shell_NotifyIconA
Shell_NotifyIcon
ShellHookProc
ShellExecuteW
SHLoadInProc
SHGetIconOverlayIndexW
SHGetDesktopFolder
SHFileOperationW
SHFileOperation
SHBrowseForFolderA
ExtractIconW
ExtractIconA
ExtractAssociatedIconW
ExtractAssociatedIconExW
ExtractAssociatedIconExA
DragQueryFileA
SHAddToRecentDocs

ole32

CoDisconnectObject
CoFreeUnusedLibraries
CoGetClassObject
CoInitialize
CoRegisterMessageFilter
CoRevokeClassObject
CoTaskMemAlloc
CoTaskMemFree
CoUninitialize
CreateILockBytesOnHGlobal
OleFlushClipboard
OleInitialize
OleIsCurrentClipboard
OleUninitialize
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CLSIDFromString
CLSIDFromProgID
CoCreateInstance

shlwapi

StrCmpNIW
StrChrIA

Sections

.text
Size: 1.8MB - Virtual size: 1.8MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 30KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

708748bf881de5b4755f4604a65c3016

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

shlwapi

Sections

.text Size: 1.8MB - Virtual size: 1.8MB

.rdata Size: 30KB - Virtual size: 29KB

.data Size: 12KB - Virtual size: 12KB

.rsrc Size: 6KB - Virtual size: 6KB

.text
Size: 1.8MB - Virtual size: 1.8MB

.rdata
Size: 30KB - Virtual size: 29KB

.data
Size: 12KB - Virtual size: 12KB

.rsrc
Size: 6KB - Virtual size: 6KB