General

Malware Config

Signatures

Files

• 69a92665b40a70d2bcf20e5ef96ba3f1_JaffaCakes118

  .exe windows:5 windows x86 arch:x86

  a42844e6e6f2ebfa29ddb02a0b907204

  
  

  Headers

  DLL Characteristics

  IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

  File Characteristics

  IMAGE_FILE_RELOCS_STRIPPED

  IMAGE_FILE_EXECUTABLE_IMAGE

  IMAGE_FILE_32BIT_MACHINE

  Imports

  user32

  GetWindowTextW

  UnregisterClassA

  EnumWindows

  LoadStringW

  MapWindowPoints

  KillTimer

  IntersectRect

  SetTimer

  GetClassLongW

  DrawIconEx

  CallWindowProcW

  SetWindowLongW

  GetWindowLongW

  GetDlgItem

  GetParent

  SetCapture

  GetCapture

  ReleaseCapture

  UpdateWindow

  InvalidateRect

  PtInRect

  ScreenToClient

  GetCursorPos

  BeginPaint

  SendMessageW

  DefWindowProcW

  GetWindowRect

  PostQuitMessage

  GetDC

  ReleaseDC

  IsDialogMessageW

  GetClientRect

  MoveWindow

  CopyRect

  DestroyWindow

  LoadImageW

  DestroyIcon

  LoadBitmapW

  GetSystemMetrics

  TrackPopupMenu

  DestroyMenu

  DrawStateW

  SetMenuItemInfoW

  CheckMenuItem

  AppendMenuW

  CreatePopupMenu

  IsWindowVisible

  wsprintfW

  RegisterWindowMessageW

  GetWindowTextLengthW

  WindowFromPoint

  SetWindowTextW

  GetWindowDC

  CreateAcceleratorTableW

  GetFocus

  DestroyAcceleratorTable

  GetClassNameW

  InvalidateRgn

  ClientToScreen

  GetSysColor

  RegisterClassExW

  CharNextW

  PeekMessageW

  GetMessageW

  TranslateMessage

  DispatchMessageW

  PostThreadMessageW

  GetClassInfoExW

  EnableWindow

  AdjustWindowRectEx

  GetWindow

  MonitorFromWindow

  EndDialog

  DialogBoxIndirectParamW

  DrawTextW

  LoadCursorW

  SetCursor

  ShowWindow

  GetDesktopWindow

  GetActiveWindow

  SetWindowPos

  FindWindowW

  GetKeyboardState

  keybd_event

  GetForegroundWindow

  GetWindowThreadProcessId

  AttachThreadInput

  SetForegroundWindow

  SetActiveWindow

  SetFocus

  MonitorFromPoint

  GetMonitorInfoW

  MessageBoxW

  ole32

  CoTaskMemFree

  CoTaskMemAlloc

  OleInitialize

  CoInitialize

  gdi32

  CreateRoundRectRgn

  CombineRgn

  CreateRectRgn

  CreateFontIndirectW

  SetBkMode

  GetTextColor

  SetTextColor

  GetStockObject

  CreateSolidBrush

  CreateFontW

  GetTextExtentPoint32W

  IntersectClipRect

  OffsetViewportOrgEx

  ExcludeClipRect

  CreateRectRgnIndirect

  GetClipBox

  CreateDIBSection

  DeleteDC

  BitBlt

  CreateCompatibleBitmap

  SelectObject

  CreateCompatibleDC

  SetStretchBltMode

  StretchBlt

  DeleteObject

  SetBkColor

  EnumFontFamiliesExW

  comctl32

  InitCommonControlsEx

  version

  VerQueryValueW

  GetFileVersionInfoW

  GetFileVersionInfoSizeW

  kernel32

  GetLogicalDriveStringsW

  EnterCriticalSection

  OpenEventA

  DuplicateHandle

  CreateSemaphoreA

  CancelIo

  DisconnectNamedPipe

  GetOverlappedResult

  CreateNamedPipeW

  ConnectNamedPipe

  SetNamedPipeHandleState

  PeekNamedPipe

  LeaveCriticalSection

  LoadResource

  FindResourceW

  SizeofResource

  LockResource

  MulDiv

  GetLastError

  GlobalFree

  GlobalUnlock

  GlobalLock

  GlobalAlloc

  GetCurrentThreadId

  CloseHandle

  WaitForSingleObject

  CreateEventW

  OpenProcess

  GetProcAddress

  lstrcmpiA

  lstrcmpA

  SetEnvironmentVariableA

  CompareStringW

  CompareStringA

  GetStdHandle

  WriteConsoleW

  WriteConsoleA

  ExpandEnvironmentStringsW

  GetLocaleInfoA

  FlushFileBuffers

  GetConsoleMode

  GetConsoleCP

  GetStringTypeA

  QueryPerformanceCounter

  GetStartupInfoA

  GetFileType

  SetHandleCount

  GetEnvironmentStringsW

  FreeEnvironmentStringsW

  GetDateFormatA

  GetTimeFormatA

  IsValidCodePage

  GetOEMCP

  HeapCreate

  GetStringTypeW

  LCMapStringW

  LCMapStringA

  GetCPInfo

  GetStartupInfoW

  GlobalMemoryStatusEx

  SetUnhandledExceptionFilter

  UnhandledExceptionFilter

  TlsFree

  DeleteAtom

  FindAtomW

  TlsAlloc

  AddAtomW

  OpenThread

  GetAtomNameW

  SetEndOfFile

  RemoveDirectoryW

  lstrlenA

  MoveFileW

  WritePrivateProfileStringW

  GetCommandLineA

  GetVersionExA

  InterlockedIncrement

  InterlockedDecrement

  OutputDebugStringA

  HeapValidate

  FreeEnvironmentStringsA

  GetEnvironmentStrings

  FatalAppExitA

  DebugBreak

  RtlUnwind

  SetFilePointer

  LoadLibraryExA

  VirtualProtect

  VirtualQuery

  CreateFileA

  GetConsoleOutputCP

  SetStdHandle

  DeleteCriticalSection

  TlsSetValue

  TlsGetValue

  FormatMessageW

  OutputDebugStringW

  VirtualAlloc

  GetSystemDirectoryW

  ExitThread

  FlushInstructionCache

  DeleteFileW

  GlobalReAlloc

  lstrlenW

  LoadLibraryA

  RaiseException

  ReleaseMutex

  GetExitCodeProcess

  GetModuleHandleW

  GetVersionExW

  MultiByteToWideChar

  GetCurrentProcess

  LocalFree

  GetModuleFileNameW

  FreeConsole

  GetCurrentProcessId

  CreateRemoteThread

  CreateMutexW

  Sleep

  GetModuleHandleA

  LoadLibraryW

  ReadFile

  CreateFileW

  LocalAlloc

  InitializeCriticalSection

  FreeLibrary

  GetDriveTypeW

  CreateDirectoryW

  CreateProcessW

  SetLastError

  WideCharToMultiByte

  GetTickCount

  GetTempPathW

  GetTimeZoneInformation

  GetSystemInfo

  GetPrivateProfileStringW

  GetSystemTimeAsFileTime

  GetDiskFreeSpaceExW

  GetFileSize

  GetUserDefaultUILanguage

  GetTempFileNameW

  CopyFileW

  WriteFile

  ProcessIdToSessionId

  lstrcpyW

  GetFileAttributesW

  MoveFileExW

  DeviceIoControl

  FindNextFileW

  FindClose

  lstrcmpiW

  GetLocaleInfoW

  GetFullPathNameW

  FindFirstFileW

  lstrcmpW

  LoadLibraryExW

  GetACP

  SetEvent

  ExitProcess

  CreateThread

  GetModuleFileNameA

  TerminateThread

  GlobalFindAtomW

  TerminateProcess

  OpenMutexW

  GetSystemTime

  SystemTimeToFileTime

  WaitForMultipleObjects

  ResetEvent

  CreateEventA

  GetSystemWindowsDirectoryW

  GetVolumeInformationW

  VirtualFree

  ReleaseSemaphore

  HeapFree

  GetProcessHeap

  HeapAlloc

  IsProcessorFeaturePresent

  HeapDestroy

  HeapReAlloc

  HeapSize

  LocalFileTimeToFileTime

  SetFilePointerEx

  GetFileSizeEx

  Sections

  .text

  Size: 131KB - Virtual size: 131KB

  IMAGE_SCN_CNT_CODE

  IMAGE_SCN_MEM_EXECUTE

  IMAGE_SCN_MEM_READ

  .rdata

  Size: 125KB - Virtual size: 124KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  .data

  Size: 5KB - Virtual size: 48KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ

  IMAGE_SCN_MEM_WRITE

  .rsrc

  Size: 8KB - Virtual size: 7KB

  IMAGE_SCN_CNT_INITIALIZED_DATA

  IMAGE_SCN_MEM_READ