7db30f75ecf37c92f6e8b29ce51379e5_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

7db30f75ecf37c92f6e8b29ce51379e5_JaffaCakes118
Size

544KB
MD5

7db30f75ecf37c92f6e8b29ce51379e5
SHA1

9c7a1a393540baa41b36b349b9ff4c4a6a399722
SHA256

b78f83ec57907c8e29f0eea64d836a3a8d46d49a1b3598a7e60e67819ae32834
SHA512

b8120496d160a16a668a96feeec523a318b9b273c5a7b1350cd0a521edfde6ac63abcd22976975d10e4348b24e5ce197a5821243e23f120bfea7795e00a1676b
SSDEEP

6144:ATp3XYyIMYUTgOBeWoavwiU5y95g222222222222K7bqPe:ATp3XYBUEOBeGwiUAb7bD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
7db30f75ecf37c92f6e8b29ce51379e5_JaffaCakes118

Files

7db30f75ecf37c92f6e8b29ce51379e5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d3c3bc213aed4e674f24efd552cace9d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileTime
LocalFileTimeToFileTime
SystemTimeToFileTime
SetFileTime
SetFileAttributesA
FileTimeToSystemTime
FileTimeToLocalFileTime
RtlUnwind
HeapAlloc
GetStartupInfoA
GetCommandLineA
RaiseException
HeapFree
TerminateProcess
CreateThread
ExitThread
HeapSize
HeapReAlloc
GetACP
GetTimeZoneInformation
GetSystemTime
GetLocalTime
FatalAppExitA
LCMapStringA
LCMapStringW
HeapDestroy
HeapCreate
VirtualFree
GetFileAttributesA
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
IsBadCodePtr
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
GetVersionExA
SetConsoleCtrlHandler
SetStdHandle
GetLocaleInfoW
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetShortPathNameA
GetProfileStringA
InterlockedExchange
GetThreadLocale
GetStringTypeExA
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
DeleteFileA
MoveFileA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
DuplicateHandle
SetErrorMode
GetCurrentDirectoryA
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
SizeofResource
GetOEMCP
GetCPInfo
GetProcessVersion
GlobalFlags
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
SuspendThread
SetThreadPriority
ResumeThread
GetModuleFileNameA
lstrcmpA
GetCurrentThread
GlobalFree
lstrcpynA
FormatMessageA
LocalFree
MultiByteToWideChar
WideCharToMultiByte
lstrlenA
InterlockedDecrement
InterlockedIncrement
MulDiv
FindResourceA
LoadResource
LockResource
GetVersion
lstrcatA
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
GlobalUnlock
lstrcpyA
GetModuleHandleA
GetProcAddress
ExitProcess
OpenMutexA
OpenEventA
CreateEventA
ReleaseMutex
WaitForSingleObject
IsBadReadPtr
IsBadWritePtr
SetEvent
UnmapViewOfFile
CloseHandle
FlushViewOfFile
CreateFileMappingA
OpenFileMappingA
MapViewOfFile
CreateFileA
DeviceIoControl
GetFileSize
WinExec
GetWindowsDirectoryA
LoadLibraryA
FreeLibrary
CreateMutexA
SetLastError
GetCurrentThreadId
GetCurrentProcess
GetLastError
GetEnvironmentVariableA
Sleep
GlobalAlloc
GlobalSize
GlobalLock
VirtualAlloc

user32

BeginPaint
EndPaint
CheckDlgButton
CheckRadioButton
GetDlgItemInt
GetDlgItemTextA
SetDlgItemInt
SetDlgItemTextA
IsDlgButtonChecked
ScrollWindowEx
IsDialogMessageA
SetWindowTextA
MoveWindow
ShowWindow
IsWindowEnabled
GetNextDlgTabItem
EnableMenuItem
CheckMenuItem
SetMenuItemBitmaps
ModifyMenuA
GetMenuState
LoadBitmapA
GetMenuCheckMarkDimensions
CharToOemA
OemToCharA
CreateDialogIndirectParamA
GetActiveWindow
EndDialog
wvsprintfA
WindowFromPoint
GetCursorPos
LoadStringA
DestroyMenu
PostQuitMessage
ShowOwnedPopups
ValidateRect
TranslateMessage
GetMessageA
GetClassNameA
GetDesktopWindow
GetSysColorBrush
GetDialogBaseUnits
SetCapture
ReleaseCapture
WaitMessage
GetWindowThreadProcessId
InsertMenuA
DeleteMenu
GetMenuStringA
SetRectEmpty
LoadAcceleratorsA
TranslateAcceleratorA
SetMenu
ReuseDDElParam
UnpackDDElParam
BringWindowToTop
CharUpperA
PeekMessageA
DispatchMessageA
GetFocus
SetActiveWindow
SetFocus
AdjustWindowRectEx
EqualRect
DeferWindowPos
BeginDeferWindowPos
CopyRect
EndDeferWindowPos
IsWindowVisible
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
MessageBoxA
GetWindowDC
GetCapture
WinHelpA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetMenuItemID
TrackPopupMenu
SetWindowPlacement
GetDlgItem
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
DefWindowProcA
DestroyWindow
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
GetWindowLongA
SetWindowPos
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
IsIconic
DrawIcon
GetSystemMenu
AppendMenuA
CreateWindowExA
InSendMessage
LoadIconA
LoadMenuA
GetSubMenu
DrawFocusRect
GetSystemMetrics
LoadCursorA
CopyIcon
GetWindowRect
GetParent
GetDC
ReleaseDC
InflateRect
RedrawWindow
SetCursor
GetMessagePos
ScreenToClient
PtInRect
SetTimer
MessageBeep
SetWindowLongA
KillTimer
DestroyCursor
GetClientRect
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DefDlgProcA
RegisterWindowMessageA
GetThreadDesktop
GetUserObjectInformationA
wsprintfA
IsWindow
SendMessageA
EmptyClipboard
SetClipboardData
OpenClipboard
GetClipboardData
CloseClipboard
EnableWindow
GrayStringA
ClientToScreen
PostMessageA
UpdateWindow
SendDlgItemMessageA
IsChild
MapWindowPoints
DrawTextA
TabbedTextOutA
GetSysColor
InvalidateRect
IsWindowUnicode
CharNextA
GetKeyState

gdi32

TextOutA
ExtTextOutA
Escape
CreateFontIndirectA
GetObjectA
GetStockObject
GetTextExtentPoint32A
GetCharWidthA
GetDCOrgEx
GetClipBox
SetTextColor
SetBkColor
DeleteDC
StartDocA
SaveDC
RestoreDC
SelectObject
SelectPalette
SetBkMode
SetPolyFillMode
SetROP2
SetStretchBltMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
RectVisible
MoveToEx
LineTo
SetTextAlign
SetTextJustification
SetTextCharacterExtra
SetMapperFlags
GetCurrentPositionEx
ArcTo
SetArcDirection
PolyDraw
PolylineTo
SetColorAdjustment
PolyBezierTo
DeleteObject
GetClipRgn
CreateRectRgn
SelectClipPath
ExtSelectClipRgn
PlayMetaFileRecord
GetObjectType
EnumMetaFile
PlayMetaFile
GetDeviceCaps
GetViewportExtEx
GetWindowExtEx
ExtCreatePen
CreateHatchBrush
CreatePatternBrush
CreateDIBPatternBrushPt
CreateBitmap
PatBlt
SetRectRgn
CombineRgn
CreateRectRgnIndirect
PtVisible
CreatePolygonRgn
CreateFontA
GetTextMetricsA
CreateSolidBrush
CreatePen
Polygon
CreateCompatibleDC
LPtoDP
CreateCompatibleBitmap
GetMapMode
DPtoLP
GetBkColor
OffsetClipRgn
CreateDIBitmap
GetTextExtentPointA
BitBlt

comdlg32

GetFileTitleA

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

RegCreateKeyExA
RegOpenKeyA
RegDeleteKeyA
RegDeleteValueA
RegSetValueExA
RegQueryValueExA
GetUserNameA
RegOpenKeyExA
RegQueryValueA
RegCloseKey
OpenProcessToken
GetTokenInformation

shell32

DragQueryFileA
DragFinish
DragAcceptFiles
ShellExecuteA
SHGetFileInfoA

comctl32

ord17

Sections

.text
Size: 316KB - Virtual size: 312KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 40KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 124KB - Virtual size: 122KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d3c3bc213aed4e674f24efd552cace9d

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

Sections

.text Size: 316KB - Virtual size: 312KB

.rdata Size: 40KB - Virtual size: 38KB

.data Size: 20KB - Virtual size: 35KB

.idata Size: 16KB - Virtual size: 13KB

.rsrc Size: 124KB - Virtual size: 122KB

.reloc Size: 24KB - Virtual size: 21KB

.text
Size: 316KB - Virtual size: 312KB

.rdata
Size: 40KB - Virtual size: 38KB

.data
Size: 20KB - Virtual size: 35KB

.idata
Size: 16KB - Virtual size: 13KB

.rsrc
Size: 124KB - Virtual size: 122KB

.reloc
Size: 24KB - Virtual size: 21KB