7a58677b2a6c2325730ab19f64a6947b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

7a58677b2a6c2325730ab19f64a6947b_JaffaCakes118
Size

229KB
MD5

7a58677b2a6c2325730ab19f64a6947b
SHA1

385082ab20c47c8db00866e42dba850aeb7b1880
SHA256

c92ada46330b9997970d699f36f1c7995bd6c3a6bac2c2a1547bad5a4e89d35d
SHA512

9e15ac7124467b797c22223f9f7e8373d90d2f1ed5c496d8ca5c68ce8fc57c2c89e800e049dd0a0406d6d282a0230af540d6465d4bcebe28ddfc9f6be50650c7
SSDEEP

3072:4leM2w2371DVwI8thr4s9ud3WaXTIIwJy4az01wbJ71Njz5dF:DM2zGIcCWYDyaz0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7a58677b2a6c2325730ab19f64a6947b_JaffaCakes118

Files

7a58677b2a6c2325730ab19f64a6947b_JaffaCakes118
.exe windows:5 windows x86 arch:x86

d891659cd66d391af061c8e57e2f092c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DestroyIcon
GetDlgCtrlID
GetSysColorBrush
wvsprintfA
LoadStringA
IsDialogMessageA
FindWindowA
SubtractRect
MsgWaitForMultipleObjects
PostMessageA
LoadIconA
GetMessageA
SendDlgItemMessageA
OemToCharA
EndDialog
ScreenToClient
GetWindowRect
EnableMenuItem
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetWindowPos
GetSysColor
GetWindowLongA
SetCursor
LoadCursorA
CheckDlgButton
GetMessagePos
LoadBitmapA
CallWindowProcA
IsWindowVisible
CloseClipboard
SetClipboardData
EmptyClipboard
RegisterClassA
TrackPopupMenu
AppendMenuA
CreatePopupMenu
GetSystemMetrics
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
DispatchMessageA
PeekMessageA
DestroyWindow
CreateDialogParamA
SetTimer
SetWindowTextA
PostQuitMessage
SetForegroundWindow
wsprintfA
SendMessageTimeoutA
FindWindowExA
SystemParametersInfoA
CreateWindowExA
GetClassInfoA
DialogBoxParamA
CharNextA
OpenClipboard
ExitWindowsEx
IsWindow
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
InvalidateRect
SendMessageA
DefWindowProcA
BeginPaint
GetClientRect
FillRect
DrawTextA
EndPaint
ShowWindow
DefWindowProcW
GetWindowWord
SetWindowWord
SetRect
LoadCursorW
GetLastActivePopup
KillTimer
PostMessageW
SendMessageW
RegisterClassW
DialogBoxParamW
SetDlgItemTextW
CharLowerBuffA
GetWindowLongW
SetWindowLongW
GetKeyState
PeekMessageW
TranslateMessage
DispatchMessageW
GetParent
SendDlgItemMessageW
UpdateWindow
MessageBoxW
SetWindowTextW
GetDlgItemTextW
SetActiveWindow
LoadStringW
GetForegroundWindow
DrawTextW
ClientToScreen
GetWindow
MapWindowPoints
GetPropW
SetPropW
ReleaseDC
ReleaseCapture
SetCapture
MoveWindow
CreateWindowExW
RegisterClassExW
CallWindowProcW
GetMessageW
GetMenu
GetWindowDC
CopyImage
wsprintfW
GetClassNameA
GetWindowTextW
GetWindowTextLengthW
UnhookWindowsHookEx
SetFocus
SystemParametersInfoW
DialogBoxIndirectParamW
DrawIconEx
CallNextHookEx
PtInRect
SetWindowsHookExW
LoadImageW
LoadIconW
MessageBeep
wvsprintfW
CharUpperW
MessageBoxA
DestroyCursor
WinHelpW
SetParent
FindWindowExW
GetClassInfoW
UnregisterClassW
GetCursorPos
GetFocus
SetWindowPlacement
GetWindowPlacement
FindWindowW
IsIconic
BringWindowToTop
IntersectRect
GetDesktopWindow
CreateDialogIndirectParamW
CreateDialogParamW
LoadMenuIndirectW
LoadMenuW
SetProcessDefaultLayout
LoadBitmapW
GetMenuStringW
ModifyMenuW
GetMenuItemInfoW
GetMenuState
DeleteMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
CreateAcceleratorTableW
LoadAcceleratorsW
CharNextW
IsDlgButtonChecked
GetAsyncKeyState
GetClassNameW
InflateRect
WaitForInputIdle
PostThreadMessageW
GetWindowTextLengthA
GetWindowTextA
DrawIcon

shell32

SHGetFolderPathW
ShellExecuteExW
SHBrowseForFolderW
FindExecutableW
SHGetSpecialFolderLocation
SHFileOperationA
ShellExecuteA
SHGetFileInfoA
SHBrowseForFolderA
SHGetPathFromIDListA
SHGetMalloc
SHGetPathFromIDListW
SHGetFileInfoW
ShellExecuteW
SHGetSpecialFolderPathW

ole32

CoTaskMemFree
OleInitialize
OleUninitialize
CoCreateInstance
CoInitialize
CoUninitialize

advapi32

RegOpenKeyA
RegQueryValueW
RegSetValueW
RegCreateKeyW
RegQueryInfoKeyW
RegQueryValueA
CheckTokenMembership
AllocateAndInitializeSid
FreeSid
RegCreateKeyExA
RegDeleteValueA
RegDeleteKeyA
RegOpenKeyExA
RegEnumValueA
RegEnumKeyA
RegSetValueExA
RegQueryValueExA
RegCloseKey
RegCreateKeyExW
RegEnumKeyExW
RegOpenKeyExW
RegQueryValueExW
RegSetValueExW
RegDeleteKeyW
RegDeleteValueW
RegEnumKeyW
RegEnumValueW
RegOpenKeyW

gdi32

SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CreateRectRgnIndirect
PatBlt
CombineRgn
GetMapMode
SetRectRgn
DPtoLP
GetBkColor
GetRgnBox
CreatePalette
GetNearestPaletteIndex
GetPaletteEntries
RealizePalette
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
SetPixel
StretchBlt
SetDIBColorTable
CreateEllipticRgn
Ellipse
CreatePolygonRgn
Polygon
Polyline
Rectangle
EnumFontFamiliesExW
OffsetRgn
GetCurrentObject
CreateFontW
GetCharWidthW
RoundRect
FrameRgn
PtInRegion
SetPixelV
ExtFloodFill
SetPaletteEntries
FillRgn
GetBoundsRect
GetWindowOrgEx
LPtoDP
GetViewportOrgEx
EndDoc
StartPage
EndPage
AbortDoc
SetAbortProc
GetROP2
GetBkMode
GetNearestColor
GetPolyFillMode
GetStretchBltMode
GetTextAlign
GetTextFaceW
CloseMetaFile
CreateMetaFileW
DeleteMetaFile
RestoreDC
RectVisible
PtVisible
SetWindowExtEx
CreateCompatibleBitmap
SetROP2
SetPolyFillMode
GetLayout
SetLayout
SetMapMode
SetGraphicsMode
SetMapperFlags
SelectPalette
ExtSelectClipRgn
GetTextColor
GdiFlush
SetViewportOrgEx
CreateDCA
GetBitmapBits
GetObjectA
CreateDIBSection
SetTextColor
SetBkMode
GetTextExtentPoint32W
GetStockObject
GetPixel
DeleteDC
CreateSolidBrush
CreateCompatibleDC
BitBlt
AddFontResourceW
SelectObject
DeleteObject
GetObjectW
GetDeviceCaps
GetSystemPaletteEntries
CreateFontIndirectW
OffsetClipRgn
LineTo
IntersectClipRect
GetWindowExtEx
GetViewportExtEx
GetObjectType
GetCurrentPositionEx
GetClipRgn
GetClipBox
ExcludeClipRect
Escape
CreatePatternBrush
CreatePen
CreateHatchBrush
CreateDIBPatternBrushPt
CreateBitmap
CreateDCW
CopyMetaFileW
GetTextMetricsW
SetBkColor
CreateRoundRectRgn
CreateRectRgn
SelectClipRgn
CreateBrushIndirect
CreateFontIndirectA
GetTextExtentExPointW
CreateFontA
GetTextCharset
CreateBitmapIndirect
TextOutA
GetTextExtentPointA
GetDCOrgEx
GetTextExtentPoint32A
TranslateCharsetInfo
SaveDC
SetViewportExtEx
PolylineTo
PolyBezierTo
ExtTextOutW
TextOutW
MoveToEx
ExtCreatePen
SetArcDirection
SelectClipPath
PolyDraw
ArcTo
StartDocW
SetColorAdjustment
ModifyWorldTransform
SetWorldTransform
EnumMetaFile
PlayMetaFileRecord
SetTextJustification
SetTextAlign
SetTextCharacterExtra
GetLogColorSpaceW
GetColorSpace
SetICMMode
SetBrushOrgEx
SetStretchBltMode
StretchDIBits
PlayMetaFile
GetDIBits

comctl32

ImageList_Destroy
ImageList_AddMasked
ImageList_Create
ord17

version

GetFileVersionInfoSizeW
GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA
VerQueryValueW
GetFileVersionInfoW

kernel32

CreateSemaphoreW
MulDiv
CloseHandle
FindResourceW
OpenSemaphoreW
LoadResource
LockResource
FlushFileBuffers
FileTimeToLocalFileTime
GetModuleFileNameW
GetFileAttributesW
GetLastError
GetCommandLineW
GetVersionExW
GetSystemDefaultLangID
InitializeCriticalSection
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
FreeResource
GetProcAddress
GetFileSize
WriteFile
ReadFile
SetEndOfFile
SetFilePointer
GetModuleHandleW
GetPrivateProfileIntW
GetPrivateProfileStringW
GetPrivateProfileSectionNamesW
CreateDirectoryW
CreateFileW
WideCharToMultiByte
FindResourceExW
LocalAlloc
LocalFree
FreeLibrary
GlobalAlloc
GlobalFree
OpenProcess
GetCurrentProcess
GetCurrentProcessId
TerminateProcess
WaitForSingleObject
FindClose
lstrlenW
OpenFile
_lread
_lwrite
_lclose
_llseek
LoadLibraryW
LoadLibraryExW
GetEnvironmentVariableW
ExpandEnvironmentStringsW
GetSystemDirectoryW
GetTempPathW
GetWindowsDirectoryW
RemoveDirectoryW
SetFileAttributesW
DeleteFileW
FindFirstFileW
FindNextFileW
CopyFileA
CopyFileW
MoveFileExW
GetSystemDefaultLCID
GetUserDefaultLCID
TerminateThread
SetLastError
SetEvent
ResetEvent
GetSystemTimeAsFileTime
CreateEventW
GlobalLock
GlobalUnlock
MultiByteToWideChar
CompareStringW
GetFullPathNameW
GetShortPathNameW
GetExitCodeProcess
GetFileSizeEx
SetHandleInformation
CreatePipe
CreateProcessW
GetDiskFreeSpaceExW
GetCurrentThreadId
GetCurrentThread
GetSystemInfo
WaitForMultipleObjects
GetTickCount
WritePrivateProfileStringW
GetStringTypeW
SetThreadPriority
ResumeThread
GetSystemTime
GetLocalTime
SystemTimeToTzSpecificLocalTime
GetTimeZoneInformation
SystemTimeToFileTime
GetVolumeInformationW
FileTimeToSystemTime
ExitProcess
lstrlenA
GlobalSize
FormatMessageW
OutputDebugStringA
EncodePointer
DecodePointer
GetVersion
GetModuleHandleA
GlobalDeleteAtom
lstrcmpW
LoadLibraryA
GlobalAddAtomW
GlobalFindAtomW
SuspendThread
lstrcmpA
CompareStringA
TlsAlloc
TlsGetValue
TlsSetValue
TlsFree
GlobalReAlloc
GlobalHandle
LocalReAlloc
GlobalGetAtomNameW
GetAtomNameW
GetThreadLocale
GlobalFlags
GetLocaleInfoW
GetSystemDefaultUILanguage
SetEnvironmentVariableA
GetFullPathNameA
EnumSystemLocalesW
IsValidLocale
LCMapStringW
GetTimeFormatW
GetDateFormatW
OutputDebugStringW
SetConsoleCtrlHandler
FatalAppExitA
SetCurrentDirectoryW
PeekNamedPipe
WriteConsoleW
SetFilePointerEx
GetCPInfo
GetOEMCP
GetACP
IsValidCodePage
SetUnhandledExceptionFilter
UnhandledExceptionFilter
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetStartupInfoW
GetStdHandle
GetFileType
SetStdHandle
VirtualQuery
VirtualAlloc
AreFileApisANSI
IsProcessorFeaturePresent
HeapQueryInformation
HeapSize
GetDriveTypeW
ExitThread
CreateThread
ReadConsoleW
GetProcessHeap
HeapAlloc
GetConsoleMode
GetConsoleCP
FindNextFileA
HeapReAlloc
HeapFree
RaiseException
LocalUnlock
LocalLock
GetDiskFreeSpaceW
SearchPathW
GetProfileIntW
GetTempFileNameW
VerifyVersionInfoW
VerSetConditionMask
SetErrorMode
lstrcpyW
SetFileTime
LocalFileTimeToFileTime
GetFileTime
GetFileAttributesExW
GetStringTypeExW
MoveFileW
lstrcmpiW
DuplicateHandle
UnlockFile
Sleep
InterlockedIncrement
InterlockedDecrement
IsDebuggerPresent
RtlUnwind
SizeofResource
GetCurrentDirectoryW
HeapDestroy
FindFirstFileA
GetVersionExA
GlobalMemoryStatus
FlushConsoleInputBuffer
GetNumberOfConsoleInputEvents
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
lstrcpyA
IsBadCodePtr
GetEnvironmentVariableA
GetDriveTypeA
FormatMessageA
VerLanguageNameA
CreateEventA
EnumSystemLocalesA
GetTimeFormatA
GetDateFormatA
QueryPerformanceFrequency
ReleaseSemaphore
GetNumberFormatW
EnumResourceLanguagesW
IsBadWritePtr
GetFileInformationByHandle
FileTimeToDosDateTime
GetProfileStringW
GetCommState
SetCommState
DeviceIoControl
GetExitCodeThread
lstrcatW
FindResourceExA
GetUserDefaultUILanguage
GlobalMemoryStatusEx
SetEnvironmentVariableW
SetProcessWorkingSetSize
IsBadReadPtr
InitializeSListHead
CreateMutexW
FindResourceA
ReleaseMutex
SetThreadLocale
HeapCreate
GetStartupInfoA
SetHandleCount
GetEnvironmentStrings
FreeEnvironmentStringsA
VirtualFree
GetLocaleInfoA
GetStringTypeA
GetConsoleOutputCP
WriteConsoleA
DosDateTimeToFileTime
LCMapStringA
GetTempPathA
DeleteFileA
GetPrivateProfileStringA
WritePrivateProfileStringA
LoadLibraryExA
ExpandEnvironmentStringsA
lstrcmpiA
GetSystemDirectoryA
lstrcatA
GetTempFileNameA
CreateFileA
RemoveDirectoryA
CreateProcessA
GetDiskFreeSpaceA
lstrcpynA
GetCommandLineA
GetWindowsDirectoryA
GetModuleFileNameA
SetFileAttributesA
CreateDirectoryA
GetFileAttributesA
SetCurrentDirectoryA
MoveFileA
GetShortPathNameA
SearchPathA
CompareFileTime
VirtualProtect
SetConsoleMode
ReadConsoleInputA
PeekConsoleInputA

Sections

.text
Size: 144KB - Virtual size: 143KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 65KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d891659cd66d391af061c8e57e2f092c

Headers

DLL Characteristics

File Characteristics

Imports

user32

shell32

ole32

advapi32

gdi32

comctl32

version

kernel32

Sections

.text Size: 144KB - Virtual size: 143KB

.rdata Size: 65KB - Virtual size: 65KB

.data Size: 6KB - Virtual size: 40KB

.rsrc Size: 13KB - Virtual size: 12KB

.text
Size: 144KB - Virtual size: 143KB

.rdata
Size: 65KB - Virtual size: 65KB

.data
Size: 6KB - Virtual size: 40KB

.rsrc
Size: 13KB - Virtual size: 12KB