70e7513c32053db39c2b6aaa970d54e3_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

70e7513c32053db39c2b6aaa970d54e3_JaffaCakes118
Size

4.2MB
MD5

70e7513c32053db39c2b6aaa970d54e3
SHA1

875996956824ec0c6da0ffd3830e2cbbfb2edf76
SHA256

a3cf4a8adda9f8805089af3de7a4fd805319da08f32d18fae6bd2b6058c6adc6
SHA512

fc6a873fb78b4b1f5b57a35eca836189d985c446127d8c44da544b67996186a5f971efa2b377ceab788228cb15cb72675870e6470a332a0a696dd36255c824be
SSDEEP

98304:se3cFDN2wrLoHRgdPxESKpFUZqpngY9s:sX2AG0ESKpNnf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
70e7513c32053db39c2b6aaa970d54e3_JaffaCakes118

Files

70e7513c32053db39c2b6aaa970d54e3_JaffaCakes118
.exe windows:5 windows x86 arch:x86

1f3e0968d18e0dd635c63b031e3b864a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

HttpQueryInfoA
InternetConnectW
HttpOpenRequestW
HttpSendRequestW
InternetCloseHandle
InternetOpenW

kernel32

WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CreateFileA
SetEnvironmentVariableA
GetConsoleMode
GetConsoleCP
GetTimeZoneInformation
InitializeCriticalSectionAndSpinCount
LCMapStringA
LCMapStringW
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
QueryPerformanceCounter
HeapDestroy
HeapCreate
GetStartupInfoA
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
GetStdHandle
GetFileType
SetStdHandle
HeapSize
ExitProcess
VirtualQuery
GetSystemInfo
RtlUnwind
RaiseException
IsDebuggerPresent
UnhandledExceptionFilter
HeapReAlloc
CreateThread
ExitThread
GetStartupInfoW
VirtualProtect
SearchPathW
GetProfileIntW
SetErrorMode
GetTempFileNameW
GetCurrentDirectoryW
GetFullPathNameW
DuplicateHandle
SetEndOfFile
UnlockFile
LockFile
lstrcpyW
GlobalFlags
GetThreadLocale
lstrlenA
GlobalGetAtomNameW
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
TlsGetValue
GetCurrentProcessId
InterlockedIncrement
SetThreadPriority
ConvertDefaultLocale
EnumResourceLanguagesW
lstrcmpA
LoadLibraryExW
CompareStringA
GlobalReAlloc
InterlockedExchange
GetCurrentThreadId
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
GetVersionExW
LoadLibraryW
CompareStringW
LoadLibraryA
FreeLibrary
lstrcmpW
GetVersionExA
GetStringTypeA
SetLastError
GlobalFree
GlobalSize
InitializeCriticalSection
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
VirtualFree
VirtualAlloc
IsBadReadPtr
GetFileTime
GetFileAttributesW
GetFileSizeEx
SetFilePointer
lstrlenW
InterlockedDecrement
FileTimeToLocalFileTime
GetSystemTimeAsFileTime
GetLocaleInfoW
SuspendThread
GetCommandLineW
SetUnhandledExceptionFilter
WritePrivateProfileStringW
GlobalUnlock
GlobalLock
GlobalAlloc
ResumeThread
FindResourceExW
GetVolumeInformationW
GetSystemDirectoryW
GetModuleFileNameW
FileTimeToSystemTime
SystemTimeToFileTime
GetLocalTime
HeapFree
GetProcessHeap
HeapAlloc
GetCurrentThread
WideCharToMultiByte
FreeResource
Process32NextW
OpenProcess
Process32FirstW
CreateToolhelp32Snapshot
GetTickCount
GetTempPathW
CreateProcessW
ReadFile
GetFileSize
LocalFree
LocalAlloc
CreateDirectoryW
MultiByteToWideChar
FindClose
FindNextFileW
SetFileAttributesW
RemoveDirectoryW
FindFirstFileW
CloseHandle
FlushFileBuffers
WriteFile
CreateFileW
GetModuleHandleW
GetProcAddress
DeleteFileW
CopyFileW
FormatMessageW
MulDiv
GetLastError
GetCurrentProcess
TerminateProcess
Sleep
SetDllDirectoryW
WaitForSingleObject
FindResourceW
LoadResource
LockResource
SizeofResource
GetModuleHandleA
GetStringTypeW
GetLocaleInfoA

user32

TranslateAcceleratorW
CreateAcceleratorTableW
LoadAcceleratorsW
GetKeyboardState
GetKeyboardLayout
ToUnicodeEx
DestroyAcceleratorTable
SetClassLongW
GetDoubleClickTime
CopyIcon
GetIconInfo
SetCursorPos
GetMenuDefaultItem
SetMenuDefaultItem
IsMenu
SetParent
LockWindowUpdate
CreatePopupMenu
IsZoomed
GetAsyncKeyState
NotifyWinEvent
GetSystemMenu
MessageBeep
GetNextDlgGroupItem
InvalidateRgn
CopyAcceleratorTableW
CharNextW
DeleteMenu
WaitMessage
ReleaseCapture
SetCapture
UnregisterClassW
CharUpperW
UnionRect
SetWindowRgn
DrawFocusRect
DrawFrameControl
DrawEdge
DrawIconEx
SystemParametersInfoW
DestroyMenu
GetMenuItemInfoW
InflateRect
GetWindowThreadProcessId
GetSysColorBrush
MapVirtualKeyW
GetKeyNameTextW
ShowOwnedPopups
GetMessageW
TranslateMessage
ValidateRect
SetWindowContextHelpId
MapDialogRect
PostQuitMessage
LoadMenuW
EmptyClipboard
CloseClipboard
SetClipboardData
DestroyIcon
CopyImage
OpenClipboard
SetRectEmpty
DrawStateW
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
ModifyMenuW
EnableMenuItem
CheckMenuItem
ShowWindow
MoveWindow
SetWindowTextW
IsDialogMessageW
CheckDlgButton
RegisterWindowMessageW
SendDlgItemMessageW
InsertMenuItemW
WinHelpW
IsChild
GetCapture
SetWindowsHookExW
CallNextHookEx
GetClassLongW
GetClassNameW
RemovePropW
GetFocus
GetForegroundWindow
GetLastActivePopup
DispatchMessageW
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
UnhookWindowsHookEx
GetMessagePos
PeekMessageW
MapWindowPoints
ScrollWindow
TrackPopupMenu
GetKeyState
SetMenu
SetScrollRange
GetScrollRange
SetForegroundWindow
ShowScrollBar
IsWindowVisible
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
AdjustWindowRectEx
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
SetWindowPlacement
GetDlgCtrlID
DefWindowProcW
CallWindowProcW
CopyRect
GetMenu
SetWindowLongW
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetWindowTextLengthW
GetWindowTextW
GetScrollPos
SetScrollPos
SetFocus
GetDesktopWindow
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamW
DestroyWindow
IsWindow
GetWindowLongW
GetDlgItem
IsWindowEnabled
GetNextDlgTabItem
EndDialog
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
GrayStringW
ReuseDDElParam
UnpackDDElParam
RegisterClipboardFormatW
EnableScrollBar
UpdateLayeredWindow
FrameRect
CharUpperBuffW
GetUpdateRect
SubtractRect
IsClipboardFormatAvailable
DefFrameProcW
DefMDIChildProcW
DrawTextExW
DrawTextW
TabbedTextOutW
GetMenuState
GetMenuStringW
AppendMenuW
GetMenuItemID
InsertMenuW
GetMenuItemCount
GetSubMenu
RemoveMenu
GetSysColor
DrawMenuBar
TranslateMDISysAccel
PostThreadMessageW
IsCharLowerW
MapVirtualKeyExW
CreateMenu
DestroyCursor
GetWindowRgn
SendDlgItemMessageA
BringWindowToTop
PtInRect
GetCursorPos
LoadBitmapW
SetWindowPos
IsRectEmpty
ScreenToClient
DrawIcon
IsIconic
LoadIconW
FillRect
ReleaseDC
GetDC
LoadImageW
SetRect
SendMessageW
LoadCursorW
SetCursor
UpdateWindow
InvalidateRect
RedrawWindow
GetSystemMetrics
MessageBoxW
SendMessageTimeoutW
FindWindowW
GetParent
GetWindowRect
GetWindow
SetPropW
GetPropW
EnableWindow
PostMessageW
SetTimer
KillTimer
GetClientRect
GetMessageTime
WindowFromPoint

gdi32

CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
Rectangle
GetRgnBox
CreateRoundRectRgn
OffsetRgn
CreatePalette
GetPaletteEntries
RoundRect
ExtFloodFill
SetPaletteEntries
GetViewportOrgEx
LPtoDP
PtInRegion
FillRgn
FrameRgn
GetBoundsRect
GetNearestPaletteIndex
GetSystemPaletteEntries
Polygon
GetWindowOrgEx
Polyline
GetTextFaceW
SetPixelV
GetPixel
GetWindowExtEx
GetViewportExtEx
EnumFontFamiliesExW
Ellipse
CreateRectRgn
SelectClipRgn
DeleteObject
GetTextColor
GetBkColor
CreatePolygonRgn
CreateEllipticRgn
GetTextMetricsW
DPtoLP
GetMapMode
SetRectRgn
CreateRectRgnIndirect
CreateDIBSection
SetPixel
StretchBlt
CombineRgn
RealizePalette
SetDIBColorTable
GetDCOrgEx
CreateHatchBrush
CreatePen
GetObjectType
SelectPalette
CreateBitmap
ExtSelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
OffsetWindowOrgEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
PatBlt
GetObjectW
CreatePatternBrush
GetDeviceCaps
Escape
ExtTextOutW
TextOutW
RectVisible
DeleteDC
SetTextAlign
MoveToEx
LineTo
IntersectClipRect
ExcludeClipRect
GetClipBox
SetMapMode
SetTextColor
SetROP2
SetPolyFillMode
SetBkMode
SetBkColor
RestoreDC
SaveDC
CopyMetaFileW
GetStockObject
SelectObject
CreateCompatibleBitmap
CreateFontW
CreateSolidBrush
CreateFontIndirectW
GetTextExtentPoint32W
BitBlt
CreateCompatibleDC
PtVisible

msimg32

AlphaBlend
TransparentBlt

comdlg32

GetFileTitleW

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

advapi32

LookupAccountSidW
CryptImportKey
CryptSetKeyParam
CryptDestroyKey
CryptReleaseContext
CryptDecrypt
AllocateAndInitializeSid
SetEntriesInAclW
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
RegEnumKeyExW
RegDeleteValueW
RegSetValueExW
RegQueryValueW
RegOpenKeyW
RegEnumKeyW
RegDeleteKeyW
RegOpenKeyExW
StartServiceW
AdjustTokenPrivileges
CryptAcquireContextW
GetTokenInformation
OpenProcessToken
OpenThreadToken
CloseServiceHandle
DeleteService
ControlService
QueryServiceStatusEx
OpenServiceW
OpenSCManagerW
RegQueryValueExW
RegCloseKey
RegCreateKeyExW
FreeSid
SetFileSecurityW

shell32

SHGetSpecialFolderPathW
SHGetFileInfoW
SHAppBarMessage
DragFinish
DragQueryFileW
SHGetPathFromIDListW
SHBrowseForFolderW
ShellExecuteW

comctl32

_TrackMouseEvent
InitCommonControlsEx
ImageList_GetIconSize

shlwapi

SHSetValueW
SHDeleteValueW
SHDeleteKeyW
SHGetValueW
PathFileExistsW
PathRemoveFileSpecW
PathFindFileNameW
PathFindExtensionW
PathStripToRootW
PathIsUNCW

oledlg

OleUIBusyW

ole32

CoUninitialize
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
OleDuplicateData
CoInitializeEx
ReleaseStgMedium
CoTaskMemFree
CreateStreamOnHGlobal
CoCreateInstance
CoInitialize
OleIsCurrentClipboard
OleFlushClipboard
DoDragDrop
RegisterDragDrop
CoLockObjectExternal
RevokeDragDrop
CoRegisterMessageFilter
CoRevokeClassObject
IsAccelerator
OleTranslateAccelerator
OleDestroyMenuDescriptor
CoTaskMemAlloc
OleCreateMenuDescriptor
OleLockRunning
OleGetClipboard

oleaut32

SysFreeString
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
VariantCopy
SysAllocStringLen
SysStringLen
VariantChangeType
SysAllocString
VariantClear
VariantInit
OleCreateFontIndirect

gdiplus

GdipCreateBitmapFromStream
GdipGetImagePalette
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdiplusStartup
GdipDeleteGraphics
GdipCreateBitmapFromStreamICM
GdipGetImageWidth
GdipGetImageHeight
GdipDisposeImage
GdipCloneImage
GdipAlloc
GdipFree
GdipCreateBitmapFromScan0
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipGetImageGraphicsContext
GdiplusShutdown
GdipDrawImageI

imm32

ImmGetOpenStatus
ImmReleaseContext
ImmGetContext

winmm

PlaySoundW

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 313KB - Virtual size: 313KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2.4MB - Virtual size: 2.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 157KB - Virtual size: 156KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1f3e0968d18e0dd635c63b031e3b864a

Headers

DLL Characteristics

File Characteristics

Imports

wininet

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

gdiplus

imm32

winmm

Sections

.text Size: 1.2MB - Virtual size: 1.2MB

.rdata Size: 313KB - Virtual size: 313KB

.data Size: 25KB - Virtual size: 53KB

.rsrc Size: 2.4MB - Virtual size: 2.4MB

.reloc Size: 157KB - Virtual size: 156KB

.text
Size: 1.2MB - Virtual size: 1.2MB

.rdata
Size: 313KB - Virtual size: 313KB

.data
Size: 25KB - Virtual size: 53KB

.rsrc
Size: 2.4MB - Virtual size: 2.4MB

.reloc
Size: 157KB - Virtual size: 156KB