a336b1f208a015c8fa4437278c426241_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a336b1f208a015c8fa4437278c426241_JaffaCakes118
Size

202KB
MD5

a336b1f208a015c8fa4437278c426241
SHA1

1a8cfb6103d6d6f67f64e73ee861d3fc45eaed98
SHA256

5a243ec62409b8c0d85fe8620434f4681b8f499d14956f1018cd5b2d75486506
SHA512

f05130bd7d990000e3cede99f2ca2900389ddc60523b8b274952de33eca9550d600b894ca04d0f07460b4d31f0d739ce246e1eb9f28d6bbdb35f32fa79962447
SSDEEP

3072:djEWfUHp4Wtju+CMiluhbvlC41P3X66ZMiv+5oNY7KppRsqYaefim0:j2eWtjFCM+udvcGP3XPO7Kka7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a336b1f208a015c8fa4437278c426241_JaffaCakes118

Files

a336b1f208a015c8fa4437278c426241_JaffaCakes118
.exe windows:5 windows x86 arch:x86

bac50ef7dc6c7a355eb0fa7580470071

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapCreate
HeapDestroy
HeapFree
HeapReAlloc
HeapSize
InterlockedDecrement
InterlockedIncrement
IsBadCodePtr
IsBadReadPtr
IsBadWritePtr
LCMapStringA
LCMapStringW
LoadLibraryA
LoadLibraryW
LoadResource
LocalFree
LocalReAlloc
LockFile
LockResource
MapViewOfFile
MoveFileExW
MoveFileW
MulDiv
MultiByteToWideChar
OpenMutexA
OpenProcess
PeekNamedPipe
RaiseException
ReleaseMutex
RemoveDirectoryA
RemoveDirectoryW
ResetEvent
ResumeThread
RtlUnwind
SetCurrentDirectoryA
SetCurrentDirectoryW
SetEndOfFile
SetEnvironmentVariableA
SetEnvironmentVariableW
HeapAlloc
SetEvent
SetFileAttributesA
SetFileAttributesW
SetFilePointer
SetFileTime
SetHandleCount
SetStdHandle
SetThreadExecutionState
SetThreadPriority
SetUnhandledExceptionFilter
SetWaitableTimer
SizeofResource
Sleep
SuspendThread
SystemTimeToFileTime
TerminateProcess
TlsAlloc
TlsFree
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
UnlockFile
UnmapViewOfFile
VirtualAlloc
VirtualFree
VirtualProtect
WaitForMultipleObjects
WaitForSingleObject
WideCharToMultiByte
WriteFile
WritePrivateProfileStringA
lstrcatA
lstrcmpA
lstrcmpiA
lstrcpyA
lstrlenA
lstrlenW
VirtualAllocEx
GlobalUnlock
GlobalSize
GlobalReAlloc
GlobalLock
GlobalHandle
GlobalGetAtomNameA
GlobalFree
GlobalFlags
GlobalFindAtomA
GlobalDeleteAtom
GlobalAlloc
GlobalAddAtomA
GetWindowsDirectoryW
GetWindowsDirectoryA
GetVolumeInformationW
GetVolumeInformationA
GetVersionExA
GetVersion
GetUserDefaultLangID
GetTimeZoneInformation
GetTickCount
GetThreadLocale
GetSystemTimeAsFileTime
GetSystemTime
GetSystemInfo
GetSystemDirectoryW
GetSystemDirectoryA
GetSystemDefaultLangID
GetStringTypeW
GetStringTypeA
GetStdHandle
GetStartupInfoA
GetProfileStringA
GetProfileIntA
GetProcessVersion
GetProcessHeap
GetProcAddress
GetOEMCP
GetModuleHandleA
GetModuleFileNameW
GetModuleFileNameA
GetLocaleInfoA
GetLocalTime
GetLastError
GetFullPathNameA
GetFileType
GetFileTime
GetFileSize
GetFileInformationByHandle
GetFileAttributesW
GetFileAttributesExW
GetFileAttributesA
GetExitCodeProcess
GetEnvironmentVariableA
GetEnvironmentStringsW
GetEnvironmentStrings
GetDiskFreeSpaceW
GetDiskFreeSpaceA
GetCurrentThreadId
GetCurrentThread
GetCurrentProcessId
GetCurrentProcess
GetCurrentDirectoryW
GetCurrentDirectoryA
GetComputerNameA
GetCommandLineA
GetCPInfo
GetACP
FreeLibrary
FreeEnvironmentStringsW
FreeEnvironmentStringsA
FormatMessageA
FlushFileBuffers
FindResourceExA
FindResourceA
CancelWaitableTimer
FindNextFileW
FindFirstFileW
FindFirstFileA
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
ExitThread
ExitProcess
DuplicateHandle
DeviceIoControl
DeleteFileW
DeleteFileA
DeleteCriticalSection
CreateWaitableTimerA
CreateProcessW
CreateProcessA
CreateMutexA
CreateFileW
CreateFileMappingA
CreateFileA
CreateEventA
CopyFileA
CompareStringW
CompareStringA
CloseHandle
SetErrorMode

user32

MessageBeep
MessageBoxA
MessageBoxW
ModifyMenuA
ModifyMenuW
MoveWindow
MsgWaitForMultipleObjects
OffsetRect
PeekMessageA
PostMessageA
PostQuitMessage
PostThreadMessageA
PtInRect
RegisterClassA
RegisterClipboardFormatA
RegisterWindowMessageA
ReleaseCapture
ReleaseDC
RemoveMenu
RemovePropA
ScreenToClient
SendDlgItemMessageA
SendMessageA
SendMessageW
SetActiveWindow
SetCapture
SetClipboardViewer
SetCursor
SetCursorPos
SetDlgItemTextA
SetDlgItemTextW
SetFocus
SetForegroundWindow
SetMenuItemBitmaps
SetParent
SetPropA
SetRect
SetRectEmpty
SetTimer
SetWindowContextHelpId
SetWindowLongA
SetWindowPos
SetWindowTextA
SetWindowTextW
SetWindowsHookExA
ShowCaret
ShowWindow
SystemParametersInfoA
SystemParametersInfoW
TabbedTextOutA
TrackPopupMenu
TranslateMessage
UnhookWindowsHookEx
UnionRect
UnregisterClassA
UpdateWindow
ValidateRect
WinHelpA
WindowFromPoint
wsprintfA
wsprintfW
IsClipboardFormatAvailable
IsChild
InvalidateRect
IntersectRect
InflateRect
HideCaret
GrayStringA
GetWindowThreadProcessId
GetWindowTextW
GetWindowTextLengthW
GetWindowTextLengthA
MapWindowPoints
GetWindowRect
GetWindowPlacement
GetWindowLongA
GetWindowDC
GetWindow
GetTopWindow
GetSystemMetrics
GetSysColorBrush
GetSysColor
GetSubMenu
GetPropA
GetParent
GetNextDlgTabItem
GetNextDlgGroupItem
GetMessagePos
GetMessageA
GetMenuState
GetMenuItemID
GetMenuItemCount
GetMenuCheckMarkDimensions
GetMenu
GetLastActivePopup
GetKeyState
GetForegroundWindow
GetFocus
GetDlgItemTextA
GetDlgItem
GetDlgCtrlID
GetDesktopWindow
GetDCEx
GetDC
GetCursorPos
GetClientRect
GetClassNameA
GetClassLongA
GetClassInfoA
GetCapture
GetAsyncKeyState
GetActiveWindow
FrameRect
FindWindowA
FillRect
ExitWindowsEx
ExcludeUpdateRgn
EqualRect
EnumWindows
EndPaint
EndDialog
EndDeferWindowPos
EnableWindow
EnableMenuItem
DrawTextW
DrawTextA
DrawStateA
DrawIconEx
DrawIcon
DrawFrameControl
DrawFocusRect
DispatchMessageA
DestroyWindow
DestroyMenu
DestroyIcon
DeleteMenu
DeferWindowPos
DefWindowProcW
DefWindowProcA
DefDlgProcA
CreateWindowExW
CreateWindowExA
CreatePopupMenu
CreateDialogParamW
CreateDialogParamA
CreateDialogIndirectParamA
MapDialogRect
LockWindowUpdate
LoadStringA
LoadImageW
LoadImageA
LoadIconA
LoadCursorA
LoadBitmapA
KillTimer
IsWindowVisible
IsWindowUnicode
IsWindowEnabled
IsWindow
IsRectEmpty
IsIconic
GetWindowTextA
IsDialogMessageA
AdjustWindowRectEx
AppendMenuA
AppendMenuW
BeginDeferWindowPos
BeginPaint
CallNextHookEx
CallWindowProcA
ChangeClipboardChain
CharNextA
CharUpperA
CheckMenuItem
CheckMenuRadioItem
ClientToScreen
CopyAcceleratorTableA
CopyIcon
CopyRect
GetMessageTime

gdi32

GetClipBox
GetDIBits
GetDeviceCaps
GetMapMode
GetObjectA
GetStockObject
GetTextColor
GetTextExtentPointA
GetTextMetricsA
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LPtoDP
OffsetViewportOrgEx
PatBlt
PtVisible
RectVisible
RestoreDC
SaveDC
ScaleViewportExtEx
ScaleWindowExtEx
SelectClipRgn
SelectObject
SetBkColor
SetBkMode
SetMapMode
GetCharWidthA
SetStretchBltMode
SetTextColor
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
StretchBlt
StretchDIBits
TextOutA
GdiGetBatchLimit
CloseFigure
CloseEnhMetaFile
EndPage
CloseMetaFile
FillPath
AbortDoc
BeginPath
AbortPath
CreateHalftonePalette
DeleteEnhMetaFile
EndDoc
DeleteMetaFile
EndPath
CancelDC
GdiFlush
DeleteColorSpace
CreateMetaFileW
GetBkColor
ExtTextOutA
ExcludeClipRect
EnumFontFamiliesExA
Escape
DeleteObject
DeleteDC
DPtoLP
CreateSolidBrush
CreateRectRgnIndirect
CreateRectRgn
CreatePatternBrush
CreateFontIndirectW
CreateFontIndirectA
CreateFontA
CreateDIBitmap
CreateDIBSection
CreateCompatibleDC
CreateCompatibleBitmap
CreateBitmap
CopyMetaFileA
CombineRgn
SetRectRgn
BitBlt

comdlg32

GetSaveFileNameA
GetOpenFileNameA
GetFileTitleA
GetSaveFileNameW

advapi32

RegQueryValueExW

shell32

SHBrowseForFolderA
SHBrowseForFolderW
SHFileOperationA
SHFileOperationW
SHGetDesktopFolder
SHGetFileInfoA
SHGetFileInfoW
SHGetMalloc
SHGetPathFromIDListA
SHGetPathFromIDListW
ShellExecuteA
ShellExecuteExA
ShellExecuteExW
ShellExecuteW
Shell_NotifyIconA
FindExecutableW

ole32

DoDragDrop
OleDuplicateData
OleFlushClipboard
OleGetClipboard
OleInitialize
OleIsCurrentClipboard
OleUninitialize
RegisterDragDrop
ReleaseStgMedium
RevokeDragDrop
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
StringFromGUID2
CreateILockBytesOnHGlobal
CoUninitialize
CoTaskMemFree
CoTaskMemAlloc
CoRevokeClassObject
CoRegisterMessageFilter
CoRegisterClassObject
CoLockObjectExternal
CoInitialize
CoGetObject
CoGetClassObject
CoFreeUnusedLibraries
CoDisconnectObject
CoCreateInstance
CLSIDFromString
CLSIDFromProgID
CreateStreamOnHGlobal

comctl32

ImageList_GetIcon
ImageList_EndDrag
ImageList_Draw
ImageList_DragShowNolock
ImageList_DragMove
ImageList_DragLeave
ImageList_Remove
ImageList_Destroy
ImageList_Create
ImageList_BeginDrag
ImageList_AddMasked
ImageList_Add
DestroyPropertySheetPage
CreatePropertySheetPageA
ImageList_DragEnter
PropertySheetA

Sections

.text
Size: 136KB - Virtual size: 136KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bac50ef7dc6c7a355eb0fa7580470071

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

comctl32

Sections

.text Size: 136KB - Virtual size: 136KB

.rdata Size: 13KB - Virtual size: 12KB

.data Size: 8KB - Virtual size: 8KB

.rsrc Size: 44KB - Virtual size: 43KB

.text
Size: 136KB - Virtual size: 136KB

.rdata
Size: 13KB - Virtual size: 12KB

.data
Size: 8KB - Virtual size: 8KB

.rsrc
Size: 44KB - Virtual size: 43KB