667af01c1421aee7b032c625cad95eeb_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

667af01c1421aee7b032c625cad95eeb_JaffaCakes118
Size

570KB
MD5

667af01c1421aee7b032c625cad95eeb
SHA1

68a8a8be1102d23eeb0a93d4b043a6d6b621d418
SHA256

696602a7bf7c108371fb7d5f0ec69c4be3ab47fc8b3120638e86482cf7c32550
SHA512

39170e4cad305ef9016fcd369e1838d5daa683c0eb41174c209af7c22f3fb8d7dbc7435dc4be7c21348ed5d1191b2d12e816f24026345e5b87785c74ce9c3a27
SSDEEP

12288:aVwH8ne+eAECn2cI49JfR6suE4/aY0kkGkkSi:eU8e+dn2cLfR6sd6F

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
667af01c1421aee7b032c625cad95eeb_JaffaCakes118

Files

667af01c1421aee7b032c625cad95eeb_JaffaCakes118
.exe windows:5 windows x86 arch:x86

aeb70fcc24df8eddd0d116270423c3b8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalUnlock
InterlockedExchange
VirtualAlloc
GlobalFree
GetLocalTime
CloseHandle
lstrcpyA
InterlockedCompareExchange
HeapFree
GetProcessHeap
HeapAlloc
LoadLibraryA
IsProcessorFeaturePresent
VirtualFree
CreateFileW
SetEnvironmentVariableA
CompareStringW
CompareStringA
CreateFileA
GetLocaleInfoW
SetStdHandle
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
InitializeCriticalSectionAndSpinCount
IsValidLocale
EnumSystemLocalesA
GetLocaleInfoA
GetUserDefaultLCID
LCMapStringW
LCMapStringA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
CreateEventA
FreeEnvironmentStringsA
SetFilePointer
FlushFileBuffers
GetConsoleMode
GetConsoleCP
ReadFile
SetEvent
GetFileType
SetHandleCount
GetStringTypeW
GetStringTypeA
HeapSize
GetStdHandle
WriteFile
ExitProcess
Sleep
HeapReAlloc
HeapCreate
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
RtlUnwind
GetStartupInfoA
GetCommandLineA
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
VirtualQuery
GetSystemInfo
GetModuleHandleW
VirtualProtect
IsBadCodePtr
FlushInstructionCache
GlobalAlloc
lstrlenW
MultiByteToWideChar
WaitForSingleObject
GlobalLock
DebugBreak
GetVersionExA
OutputDebugStringA
GetCurrentThreadId
DeleteCriticalSection
IsDBCSLeadByte
MulDiv
LeaveCriticalSection
SizeofResource
WideCharToMultiByte
InitializeCriticalSection
GetDateFormatA
GetTimeFormatA
GetCurrentProcess
InterlockedDecrement
InterlockedIncrement
LoadLibraryExA
SetEndOfFile
GetModuleHandleA
GetModuleFileNameA
LockResource
EnterCriticalSection
GetProcAddress
lstrcmpiA
SetLastError
GetLastError
GetTimeZoneInformation
RaiseException
LoadResource
FreeLibrary
lstrlenA
FindResourceA
GetEnvironmentStrings
GetFullPathNameA

user32

LoadImageA
UnregisterClassA
ClientToScreen
MapWindowPoints
EnableWindow
CallWindowProcA
GetClassNameA
SetDlgItemTextA
LoadCursorA
IsWindowVisible
GetSystemMetrics
IsWindow
GetActiveWindow
ShowWindow
SetWindowPos
RedrawWindow
DefWindowProcA
EndDialog
GetDlgItem
MonitorFromWindow
LoadBitmapA
LoadMenuA
GetWindow
GetSubMenu
DdeKeepStringHandle
wsprintfA
CreateMenu
CreateWindowExA
GetWindowLongA
InvalidateRect
SetWindowLongA
GetWindowTextA
SetDlgItemInt
GetMonitorInfoA
DialogBoxParamA
TrackPopupMenu
GetMenuCheckMarkDimensions
PtInRect
CreateIconIndirect
GetDC
SetWindowContextHelpId
OffsetRect
GetCursorInfo
IntersectRect
GetScrollInfo
ReleaseDC
SetClassLongA
ChangeClipboardChain
IsWindowUnicode
ScrollWindow
GetSysColor
GetCursorPos
DdeImpersonateClient
CreatePopupMenu
EnumDesktopsA
IsDlgButtonChecked
AppendMenuA
DdeNameService
SetScrollInfo
GetDialogBaseUnits
GetClassLongA
DestroyWindow
SetCursor
GetWindowRect
SendDlgItemMessageA
LoadStringA
GetParent
MessageBeep
CharNextA
GetClientRect
SetFocus
GetWindowTextLengthA
SendMessageA

advapi32

RegQueryInfoKeyA
RegCreateKeyExA
RegSetValueExA
RegQueryValueExA
RegDeleteKeyA
DuplicateTokenEx
RegCloseKey
RegDeleteValueA
RegOpenKeyExA
RegEnumKeyExA

ole32

CoCreateInstance
CoUninitialize
CoTaskMemRealloc
CLSIDFromProgID
CoInitialize
CoTaskMemFree
CoGetClassObject
CoTaskMemAlloc
CreateStreamOnHGlobal
StgCreateDocfile
CoInitializeEx

oleaut32

SystemTimeToVariantTime
SysFreeString
VariantTimeToSystemTime
GetErrorInfo
VariantClear
VarUI4FromStr
VariantChangeType
VariantInit
SysAllocString
SysAllocStringLen

comctl32

ImageList_Add
ord17
InitCommonControlsEx
ImageList_LoadImageA

gdi32

CreateCompatibleDC
SelectObject
DeleteObject
SetBkColor
CreateCompatibleBitmap
SetTextColor
DescribePixelFormat
SetViewportOrgEx
GetTextMetricsA
SetTextAlign
DeleteDC
GetObjectA
GetPixel

opengl32

glFrustum
glMatrixMode

comdlg32

GetOpenFileNameA
GetSaveFileNameA
CommDlgExtendedError

winmm

waveOutMessage
waveOutGetPlaybackRate

ws2_32

send
WSAGetLastError
shutdown
recv
closesocket
WSAAsyncSelect
accept

avifil32

AVIStreamStart

odbc32

ord9

iphlpapi

CreateIpForwardEntry
AddIPAddress

pdh

PdhBrowseCountersA

wtsapi32

WTSQueryUserToken

uxtheme

OpenThemeData
IsAppThemed

ntdsapi

DsGetRdnW

Exports

Exports

Launch

Sections

.text
Size: 212KB - Virtual size: 212KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 274KB - Virtual size: 273KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

aeb70fcc24df8eddd0d116270423c3b8

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

ole32

oleaut32

comctl32

gdi32

opengl32

comdlg32

winmm

ws2_32

avifil32

odbc32

iphlpapi

pdh

wtsapi32

uxtheme

ntdsapi

Exports

Exports

Sections

.text Size: 212KB - Virtual size: 212KB

.rdata Size: 49KB - Virtual size: 49KB

.data Size: 14KB - Virtual size: 22KB

.rsrc Size: 274KB - Virtual size: 273KB

.reloc Size: 18KB - Virtual size: 18KB

.text
Size: 212KB - Virtual size: 212KB

.rdata
Size: 49KB - Virtual size: 49KB

.data
Size: 14KB - Virtual size: 22KB

.rsrc
Size: 274KB - Virtual size: 273KB

.reloc
Size: 18KB - Virtual size: 18KB