985799e66581ef777b52da4338130e6c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

985799e66581ef777b52da4338130e6c_JaffaCakes118
Size

532KB
MD5

985799e66581ef777b52da4338130e6c
SHA1

c9b37102c09db351e30f7dcefedd2821692d7026
SHA256

7921e0e1f73e08021aa0648c408f236cdc483fb187d19e7a5651c08f05d9dd3b
SHA512

7035ddfd52ca208a2dd9dfa639756985688b557bd68d89c12e3ee7939102ba8df93e195b35d73cbac0021ff2ef98ed3619dd3a60edb049a5b8fe79fc55f67013
SSDEEP

6144:7hWh0YI1DsdsLZQ+cUZb8XcBhC5Yp9PHS6pKNJJrF+H3lV/+ZDCE6B2Gh/nNfOf8:7he0wsfcU50RAVUPJrFm+kfh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
985799e66581ef777b52da4338130e6c_JaffaCakes118

Files

985799e66581ef777b52da4338130e6c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

61f0e56c130dab72222babb334740524

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapAlloc
HeapReAlloc
RaiseException
GetCommandLineA
GetProcessHeap
GetStartupInfoA
HeapSize
HeapDestroy
HeapCreate
VirtualFree
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetStdHandle
GetACP
LCMapStringA
LCMapStringW
Sleep
FreeEnvironmentStringsA
GetEnvironmentStrings
VirtualQuery
GetEnvironmentStringsW
SetHandleCount
GetFileType
QueryPerformanceCounter
GetSystemTimeAsFileTime
GetTimeZoneInformation
GetStringTypeA
GetStringTypeW
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
IsValidCodePage
GetConsoleCP
GetConsoleMode
GetLocaleInfoW
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetEnvironmentVariableA
GetSystemInfo
VirtualAlloc
VirtualProtect
RtlUnwind
HeapFree
SetErrorMode
GetCurrentDirectoryA
GetOEMCP
GetCPInfo
GlobalFlags
SystemTimeToFileTime
LocalFileTimeToFileTime
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
LocalAlloc
CreateFileA
GetShortPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
GetCurrentProcess
DuplicateHandle
GetThreadLocale
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
DeleteFileA
MoveFileA
FileTimeToLocalFileTime
FileTimeToSystemTime
GetTickCount
GetPrivateProfileStringA
WritePrivateProfileStringA
GetPrivateProfileIntA
CloseHandle
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesA
GetLocaleInfoA
lstrcmpA
FreeResource
GetCurrentThreadId
GlobalFindAtomA
GlobalDeleteAtom
lstrcmpW
GetVersionExA
LoadLibraryA
GlobalGetAtomNameA
GlobalAddAtomA
InterlockedIncrement
GetCurrentProcessId
GetModuleFileNameA
FreeLibrary
InterlockedDecrement
GetModuleFileNameW
GetDiskFreeSpaceA
GetFullPathNameA
GetTempFileNameA
GetFileTime
SetFileTime
GetModuleHandleA
GetProcAddress
GetFileAttributesA
SetLastError
GlobalFree
CopyFileA
GlobalSize
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageA
LocalFree
MulDiv
FindResourceA
LoadResource
LockResource
SizeofResource
ExitProcess
GetLastError
lstrlenA
lstrcmpiA
GetStringTypeExA
lstrlenW
WideCharToMultiByte
CompareStringA
CompareStringW
MultiByteToWideChar
GetVersion
FreeEnvironmentStringsW
InterlockedExchange

user32

BeginPaint
EndPaint
GetSysColorBrush
UnregisterClassA
GetMenuItemInfoA
FindWindowA
GetDCEx
LockWindowUpdate
DestroyIcon
PostThreadMessageA
GetMessageA
TranslateMessage
ValidateRect
PostQuitMessage
WindowFromPoint
KillTimer
SetTimer
SetParent
GetSystemMenu
GetCursorPos
LoadCursorA
DestroyCursor
SetCursorPos
SetCapture
RedrawWindow
ReleaseDC
GetDC
ClientToScreen
InflateRect
IsZoomed
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
GetPropA
RemovePropA
GetForegroundWindow
DispatchMessageA
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
DestroyWindow
GetMessageTime
GetMessagePos
MapWindowPoints
TrackPopupMenu
SetScrollPos
GetScrollPos
SetForegroundWindow
CreateWindowExA
GetClassInfoExA
RegisterClassA
ScreenToClient
DeferWindowPos
PtInRect
GetWindowDC
DefWindowProcA
CallWindowProcA
GetWindowPlacement
GetWindowRect
IsChild
AdjustWindowRectEx
RegisterWindowMessageA
UnpackDDElParam
ReuseDDElParam
DestroyMenu
GetClassNameA
WinHelpA
EqualRect
GetKeyState
GetMenu
LoadIconA
SetCursor
GetCapture
ReleaseCapture
LoadAcceleratorsA
SetActiveWindow
InvalidateRect
IsIconic
InsertMenuItemA
CreatePopupMenu
GetClassInfoA
OffsetRect
BringWindowToTop
SetMenu
GetDesktopWindow
TranslateAcceleratorA
GetWindowTextLengthA
GetWindowTextA
SetWindowPos
SetFocus
SetWindowLongA
GetDlgCtrlID
SetWindowTextA
IsDialogMessageA
SendDlgItemMessageA
GetDlgItem
GetWindow
CreateMenu
PeekMessageA
IsWindow
GetActiveWindow
CopyAcceleratorTableA
SendNotifyMessageA
PostMessageA
IntersectRect
SetRectEmpty
IsRectEmpty
IsClipboardFormatAvailable
GetWindowThreadProcessId
GetWindowLongA
GetLastActivePopup
IsWindowEnabled
MessageBoxA
UnhookWindowsHookEx
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapA
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
FillRect
CreateDialogIndirectParamA
GetNextDlgTabItem
EndDialog
RegisterClipboardFormatA
ShowOwnedPopups
GetFocus
GetParent
ModifyMenuA
EnableMenuItem
CheckMenuItem
DeleteMenu
IsWindowVisible
GetMenuState
GetMenuStringA
AppendMenuA
GetMenuItemID
InsertMenuA
GetMenuItemCount
GetSubMenu
RemoveMenu
InSendMessage
CopyRect
GetSysColor
DrawIcon
SetRect
SystemParametersInfoA
UpdateWindow
GetSystemMetrics
GetClientRect
EnableWindow
LoadStringW
ShowWindow
SendMessageA
CharUpperA
LoadMenuA

gdi32

GetViewportExtEx
BitBlt
GetPixel
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
CreatePatternBrush
CreateRectRgn
CreateSolidBrush
CreateRectRgnIndirect
SetRectRgn
CombineRgn
GetMapMode
SetBkMode
RestoreDC
SelectClipRgn
IntersectClipRect
ExcludeClipRect
GetStockObject
SaveDC
GetBkColor
StretchDIBits
CreateFontA
GetCharWidthA
DeleteObject
PatBlt
GetTextExtentPoint32A
GetTextMetricsA
SelectObject
GetObjectA
SetBkColor
SetTextColor
GetClipBox
CreateCompatibleDC
CreateCompatibleBitmap
DeleteDC
GetWindowExtEx
CreateBitmap
CreateDCA
CopyMetaFileA
GetDeviceCaps
CreateFontIndirectA
SetMapMode

comdlg32

GetFileTitleA

winspool.drv

ClosePrinter
OpenPrinterA
DocumentPropertiesA

advapi32

RegDeleteValueA
RegSetValueExA
RegCreateKeyExA
RegQueryValueA
RegDeleteKeyA
RegEnumKeyA
RegOpenKeyExA
RegQueryValueExA
GetFileSecurityA
SetFileSecurityA
RegOpenKeyA
RegSetValueA
RegCloseKey
RegCreateKeyA

shell32

DragFinish
DragQueryFileA
SHGetFileInfoA
ExtractIconA

shlwapi

PathFindFileNameA
PathStripToRootA
PathFindExtensionA
PathIsUNCA

oledlg

ord3
ord1
ord7
ord5
ord8

ole32

OleSetContainedObject
OleCreateFromFile
OleCreateLinkToFile
OleGetIconOfClass
CreateItemMoniker
CreateGenericComposite
OleRun
OleSetMenuDescriptor
GetClassFile
CLSIDFromString
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CoDisconnectObject
OleGetClipboard
OleIsCurrentClipboard
OleFlushClipboard
CoRevokeClassObject
CoRegisterMessageFilter
GetHGlobalFromILockBytes
OleLockRunning
CreateStreamOnHGlobal
OleSaveToStream
WriteClassStm
OleSave
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
OleDuplicateData
CoTaskMemAlloc
ReleaseStgMedium
CoTreatAsClass
StringFromCLSID
ReadClassStg
ReadFmtUserTypeStg
OleRegGetUserType
WriteClassStg
WriteFmtUserTypeStg
SetConvertStg
StgIsStorageFile
StgOpenStorage
CreateFileMoniker
CoTaskMemFree
StgCreateDocfile
CreateBindCtx
OleLoad
StgOpenStorageOnILockBytes
OleCreate
OleCreateStaticFromData

oleaut32

SysAllocStringLen
VariantInit
VariantChangeType
VariantClear

Exports

Exports

Run

Sections

.text
Size: 324KB - Virtual size: 322KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 88KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 104KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

61f0e56c130dab72222babb334740524

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

shlwapi

oledlg

ole32

oleaut32

Exports

Exports

Sections

.text Size: 324KB - Virtual size: 322KB

.rdata Size: 88KB - Virtual size: 86KB

.data Size: 12KB - Virtual size: 27KB

.rsrc Size: 104KB - Virtual size: 102KB

.text
Size: 324KB - Virtual size: 322KB

.rdata
Size: 88KB - Virtual size: 86KB

.data
Size: 12KB - Virtual size: 27KB

.rsrc
Size: 104KB - Virtual size: 102KB