792284172cc9686f59c8235f3d4bf30a_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

792284172cc9686f59c8235f3d4bf30a_JaffaCakes118
Size

702KB
MD5

792284172cc9686f59c8235f3d4bf30a
SHA1

fe8e97e3e5866967e1c547340146b36d8bdb155a
SHA256

875d8d1ae6deea06db6d4bcabb98070610b9e354e32dad6fa346806a7c5a5b30
SHA512

bed804bd519afd3bac20a7553fe2bc5ca7a69f054478862969b076fb4e5371d0bfbaa13eb4da5b006331e1fe16c699ca27832b489891819d4cf631a0f372c4f3
SSDEEP

6144:1/pwP4/vnSCJnx6/sgHHno9x3fbbksbA9HfQ/ZTbd6KSFBYP5wurvBfAkP5UPYPh:35/qCJOnoH/rbA9HO0KAme0YHAPd/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
792284172cc9686f59c8235f3d4bf30a_JaffaCakes118

Files

792284172cc9686f59c8235f3d4bf30a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9ff9a685fee4a884ce622fa761a13c74

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenW
lstrcpyW
lstrcatW
lstrlenA
MultiByteToWideChar
GetNumberFormatW
GetLocaleInfoW
CreateFileW
CloseHandle
ReadFile
WriteFile
WideCharToMultiByte
lstrcmpW
lstrcatA
GetDiskFreeSpaceA
FormatMessageA
lstrcpyA
LocalFree
FindFirstFileW
GetLastError
FindClose
GetModuleHandleA
GetModuleFileNameW
GetFileSizeEx
GetCompressedFileSizeW
FileTimeToLocalFileTime
FileTimeToSystemTime
GetDateFormatW
GetTimeFormatW
lstrcmpiW
CreateFileA
GetVersionExA
GetProcAddress
GetSystemInfo
DeviceIoControl
lstrcmpA
LoadLibraryA
FreeLibrary
GetCurrentThreadId
GetVersion
Sleep
SetLastError
GetCurrentProcess
GetEnvironmentVariableA
CreateMutexA
CreateProcessW
GlobalAlloc
GlobalLock
GlobalHandle
GlobalUnlock
GlobalFree
ExpandEnvironmentStringsW
WaitForSingleObject
GetStdHandle
WriteConsoleA
GlobalMemoryStatusEx
RtlCaptureContext
ExitProcess
DeleteFileW
FindFirstFileExW
EnterCriticalSection
LeaveCriticalSection
FindNextFileW
GetFileAttributesW
SetPriorityClass
GetDriveTypeW
GetVolumeInformationW
GetDiskFreeSpaceW
GetTempPathW
SetFileAttributesW
RemoveDirectoryW
GetCommandLineW
GetFullPathNameW
SetErrorMode
InitializeCriticalSection
FreeConsole
TlsSetValue
CreateThread
ResumeThread
ExitThread
RtlUnwind
GetStartupInfoW
GetModuleHandleW
VirtualAlloc
VirtualQuery
DeleteCriticalSection
HeapCreate
HeapDestroy
HeapAlloc
HeapReAlloc
HeapFree
HeapSize
HeapValidate
TlsAlloc
TlsFree
TlsGetValue
UnhandledExceptionFilter
GetSystemTimeAsFileTime
GetStartupInfoA
GetFileType
DuplicateHandle
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetConsoleCtrlHandler
GetConsoleMode
GetConsoleOutputCP
SetStdHandle
SetFilePointer
DeleteFileA

advapi32

OpenProcessToken
GetTokenInformation
GetUserNameA
RegOpenKeyExW
RegEnumKeyExW
RegDeleteKeyW
RegCloseKey
LookupPrivilegeValueA
AdjustTokenPrivileges
RegOpenKeyExA
RegQueryValueExA

user32

IsCharAlphaNumericW
IsCharAlphaW
wsprintfW
CharUpperBuffW
SendMessageA
GetSystemMetrics
GetDC
ReleaseDC
SetWindowsHookExA
GetDesktopWindow
GetWindowRect
SetWindowPos
UnhookWindowsHookEx
DispatchMessageA
PeekMessageA
DestroyWindow
FindWindowA
IsIconic
FlashWindow
GetForegroundWindow
SetForegroundWindow
GetThreadDesktop
GetUserObjectInformationA
wsprintfA
SystemParametersInfoA
WaitForInputIdle
MsgWaitForMultipleObjects
PostQuitMessage
ExitWindowsEx
GetParent
CopyRect
OffsetRect
GetClientRect
ScreenToClient
IsWindow
BeginDeferWindowPos
DeferWindowPos
RedrawWindow
EndDeferWindowPos
InvalidateRect
GetWindowLongA
SetWindowLongA
SetLayeredWindowAttributes
ShowWindow
SetFocus
GetCursorPos
PtInRect
ClientToScreen
GetClassLongA
GetSysColor
PostMessageA
GetWindow
DrawTextW
GetWindowTextW
GetWindowLongW
SetWindowLongW
SendMessageW
GetClassInfoA
LoadCursorA
RegisterClassA
CreateWindowExA
BeginPaint
EndPaint
UpdateWindow
GetMessagePos
ReleaseCapture
SetCapture
DefWindowProcA
GetMenuState
CheckMenuItem
LoadImageA
DrawIconEx
DestroyIcon
GetDlgItem
IsZoomed
SetCursor
SetDlgItemTextW
SetWindowTextW
RegisterWindowMessageW
GetActiveWindow
MessageBoxW
EndDialog
DialogBoxParamW
SetWindowTextA
RegisterClassExW
CreateWindowExW
DrawTextA
GetDlgCtrlID
TrackMouseEvent
EnableWindow
CreateDialogParamW
SetWindowRgn
IsWindowVisible
GetIconInfo
KillTimer
SetTimer
CallWindowProcA
SetCursorPos
MoveWindow
LoadIconA
GetWindowTextA
GetKeyState
EnableMenuItem
CheckMenuRadioItem
MessageBoxA
TrackPopupMenu
OemToCharA
SetMenu
MapWindowPoints
LoadMenuA
GetSubMenu
TrackPopupMenuEx
DestroyMenu
InsertMenuItemW
DeleteMenu
LoadAcceleratorsA
TranslateAcceleratorA
TranslateMessage
WaitMessage
GetFocus
DrawMenuBar
GetSystemMenu
ModifyMenuW

gdi32

GetDeviceCaps
CreateFontA
CreatePen
SelectObject
MoveToEx
LineTo
DeleteObject
SetBkColor
ExtTextOutA
GetStockObject
Rectangle
CreateSolidBrush
RoundRect
SetPixel
SetTextColor
SetBkMode
GetObjectA
CreateFontIndirectA
GetTextExtentPoint32W
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt
DeleteDC
CreateRoundRectRgn
CombineRgn
CreateRectRgn
ExcludeClipRect
SelectClipRgn
ExtSelectClipRgn
GetPixel

comctl32

ImageList_ReplaceIcon
ImageList_Create
ImageList_Destroy
InitCommonControlsEx

comdlg32

ChooseColorA
GetOpenFileNameW
GetSaveFileNameW

shlwapi

StrStrIW
StrStrIA
StrTrimW
PathFileExistsW
PathFindExtensionW
StrFormatByteSizeA
StrFormatByteSizeW
PathUnquoteSpacesW
StrFormatKBSizeW

shell32

SHGetFileInfoW
ShellExecuteW
ShellExecuteExW
SHGetFileInfoA
SHGetMalloc
SHGetSpecialFolderLocation
SHBrowseForFolderW
SHGetPathFromIDListW
DragQueryFileW
DragFinish
CommandLineToArgvW
DragAcceptFiles

msimg32

GradientFill

winmm

PlaySoundW

ole32

CoTaskMemAlloc
CoTaskMemFree
CoCreateInstance
CoInitialize
CoUninitialize

Sections

.text
Size: 271KB - Virtual size: 271KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 54KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 31KB - Virtual size: 2.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 344KB - Virtual size: 344KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9ff9a685fee4a884ce622fa761a13c74

Headers

File Characteristics

Imports

kernel32

advapi32

user32

gdi32

comctl32

comdlg32

shlwapi

shell32

msimg32

winmm

ole32

Sections

.text Size: 271KB - Virtual size: 271KB

.rdata Size: 54KB - Virtual size: 54KB

.data Size: 31KB - Virtual size: 2.7MB

.rsrc Size: 344KB - Virtual size: 344KB

.text
Size: 271KB - Virtual size: 271KB

.rdata
Size: 54KB - Virtual size: 54KB

.data
Size: 31KB - Virtual size: 2.7MB

.rsrc
Size: 344KB - Virtual size: 344KB