8ee83b95d6b45388e59eb83321772ada_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

8ee83b95d6b45388e59eb83321772ada_JaffaCakes118
Size

576KB
MD5

8ee83b95d6b45388e59eb83321772ada
SHA1

4e14138470060bad316e8a44ab2e0afc1002bb12
SHA256

4fa56fd1e4a3eaf6dc1acd714c773a8d35f3d72cdd19e07e1e93f00c193ae152
SHA512

be941739fb2448cfd156f6943588d1b10da9b58929cc5693e022a0ca94a1b9c806e284aef38d84413f64a5b722e34c2ce1cf1cc43af938497c5d955ded03aee0
SSDEEP

12288:lEYWpj88dp+GaCSCyH/sylPHcpIsl8uiJ5uj:lERpj8GaCKUyhHcpIkDN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
8ee83b95d6b45388e59eb83321772ada_JaffaCakes118

Files

8ee83b95d6b45388e59eb83321772ada_JaffaCakes118
.exe windows:5 windows x86 arch:x86

c120d9b4b15f2ec1f654e88d6f9b8c9d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetWindowTextW
LoadIconW
ExitWindowsEx
BringWindowToTop
GetSubMenu
RegisterClassExW
LoadBitmapW
LoadCursorW
GetDC
GetMenuItemCount
GetMenuItemID
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
ModifyMenuW
EnableMenuItem
CheckMenuItem
RegisterWindowMessageW
SendDlgItemMessageA
WinHelpW
GetCapture
GetClassLongW
GetClassNameW
SetPropW
GetPropW
RemovePropW
GetForegroundWindow
SetActiveWindow
GetMessageTime
GetMessagePos
SetRect
IsRectEmpty
CopyAcceleratorTableW
OffsetRect
PtInRect
CharNextW
GetFocus
SetFocus
MoveWindow
GetDlgCtrlID
IsWindow
IsDialogMessageW
SendDlgItemMessageW
GetDlgItem
CharUpperW
SetWindowsHookExW
CallNextHookEx
GetActiveWindow
GetKeyState
GetCursorPos
GetWindowTextW
GetSysColorBrush
UnhookWindowsHookEx
IntersectRect
CopyRect
GetSysColor
GetWindowDC
CreateWindowExW
ClientToScreen
RegisterClipboardFormatW
InvalidateRgn
MessageBoxW
LoadStringW
RedrawWindow
GetSystemMetrics
DrawStateW
PostThreadMessageW
InvalidateRect
SystemParametersInfoW
EndPaint
ReleaseDC
DrawTextW
BeginPaint
SetForegroundWindow
DestroyMenu
EndDialog
CreateDialogIndirectParamW
UnregisterClassA
EqualRect
ShowWindow
SetWindowPos
IsWindowVisible
ValidateRect
DefWindowProcW
GetWindowLongW
DestroyWindow
DispatchMessageW
TranslateMessage
GetMessageW
PostMessageW
PeekMessageW
SetWindowLongW
GrayStringW
DrawTextExW
TabbedTextOutW
PostQuitMessage
GetWindow
SetWindowContextHelpId
MapDialogRect
GetWindowThreadProcessId
SendMessageW
GetParent
GetLastActivePopup
IsWindowEnabled
EnableWindow
GetMenuState

comdlg32

GetFileTitleW

shell32

SHGetFolderPathW
ShellExecuteW

ole32

OleUninitialize
CoTaskMemAlloc
CoTaskMemFree
OleInitialize

advapi32

RegCloseKey
RegDeleteValueW
RegEnumKeyExW
RegEnumValueW
RegDeleteKeyW
RegSetValueExW
RegQueryValueExW
RegOpenKeyW
RegEnumKeyW
RegQueryValueW
RegOpenKeyExW
RegCreateKeyExW

gdi32

SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
Escape
ExtTextOutW
TextOutW
RectVisible
PtVisible
GetWindowExtEx
GetViewportExtEx
SetWindowExtEx
SetMapMode
SetBkColor
RestoreDC
SaveDC
GetDeviceCaps
GetObjectW
SetBkMode
GetStockObject
DeleteObject
SetTextColor
SelectObject
ScaleWindowExtEx
ExtSelectClipRgn
DeleteDC
CreateBitmap
ScaleViewportExtEx
DPtoLP
GetRgnBox
GetTextColor
GetBkColor
GetMapMode
CreateRectRgnIndirect
GetClipBox
CreateFontIndirectW

version

VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW

kernel32

FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineA
SetHandleCount
GetStartupInfoA
HeapDestroy
HeapCreate
VirtualFree
QueryPerformanceCounter
GetTimeFormatA
GetDateFormatA
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
GetStringTypeA
GetStringTypeW
EnumSystemLocalesA
IsValidLocale
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetEnvironmentVariableA
SetEnvironmentVariableW
CreateFileA
GetCurrentDirectoryA
GetDriveTypeA
SetFilePointer
GetExitCodeProcess
CreatePipe
GetFileAttributesA
CreateProcessA
GetModuleFileNameA
DeleteFileA
GetLogicalDriveStringsW
ResetEvent
FormatMessageA
GetThreadLocale
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
LocalAlloc
FindFirstFileW
FileTimeToLocalFileTime
FileTimeToSystemTime
FindNextFileW
FindClose
GetCurrentThread
ConvertDefaultLocale
GetVersion
EnumResourceLanguagesW
CompareStringA
lstrcmpW
GlobalDeleteAtom
SetErrorMode
GetModuleHandleW
FreeResource
GetCurrentProcessId
GetStdHandle
FlushFileBuffers
LCMapStringA
IsValidCodePage
GetOEMCP
GetCPInfo
VirtualQuery
GetSystemInfo
VirtualAlloc
VirtualProtect
HeapSize
GetFileType
SetStdHandle
HeapReAlloc
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
ExitProcess
GetSystemTimeAsFileTime
GetStartupInfoW
GetProcessHeap
HeapAlloc
HeapFree
RaiseException
GetLocaleInfoA
GetACP
GetTickCount
GlobalFlags
GlobalAddAtomW
GlobalFindAtomW
CompareStringW
LoadLibraryA
GetVersionExA
GetFileTime
GetVolumeInformationW
DuplicateHandle
GetFileSize
UnlockFile
LockFile
InterlockedIncrement
InterlockedDecrement
IsDebuggerPresent
InitializeCriticalSectionAndSpinCount
RtlUnwind
MoveFileA
GetLastError
lstrlenA
GlobalFree
GlobalAlloc
GlobalLock
GetProcAddress
SizeofResource
LCMapStringW
LockResource
LoadResource
FindResourceW
Sleep
GetModuleFileNameW
CloseHandle
WaitForSingleObject
CreateThread
SetCurrentDirectoryW
GetSystemDefaultLangID
GetUserDefaultLCID
GetCurrentThreadId
ReleaseMutex
CreateMutexW
FindResourceExW
SetFilePointerEx
ReadFile
WriteFile
EndUpdateResourceW
UpdateResourceW
BeginUpdateResourceW
CreateFileW
FreeLibrary
LoadLibraryW
SetEndOfFile
MultiByteToWideChar
GetFileAttributesW
SetFileAttributesW
DeleteFileW
CopyFileW
GetFullPathNameW
GetDiskFreeSpaceExW
GetCurrentDirectoryW
GetTempPathW
GetWindowsDirectoryW
GetSystemDirectoryW
RemoveDirectoryW
CreateDirectoryW
GetCommandLineW
GetEnvironmentVariableW
GetSystemDefaultLCID
GetLocaleInfoW
GetPrivateProfileStringW
WritePrivateProfileStringW
LoadLibraryExW
GetVersionExW
GetCurrentProcess
GetModuleHandleA
SetEvent
CreateEventW
WideCharToMultiByte
GetDriveTypeW
GetExitCodeThread
SetLastError
MulDiv
lstrlenW
LocalFree
FormatMessageW
GlobalUnlock

Sections

.text
Size: 82KB - Virtual size: 81KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 451KB - Virtual size: 450KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 175KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c120d9b4b15f2ec1f654e88d6f9b8c9d

Headers

DLL Characteristics

File Characteristics

Imports

user32

comdlg32

shell32

ole32

advapi32

gdi32

version

kernel32

Sections

.text Size: 82KB - Virtual size: 81KB

.rdata Size: 451KB - Virtual size: 450KB

.data Size: 5KB - Virtual size: 175KB

.rsrc Size: 37KB - Virtual size: 37KB

.text
Size: 82KB - Virtual size: 81KB

.rdata
Size: 451KB - Virtual size: 450KB

.data
Size: 5KB - Virtual size: 175KB

.rsrc
Size: 37KB - Virtual size: 37KB