a69df37b244a138975d86e34f890eef8_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a69df37b244a138975d86e34f890eef8_JaffaCakes118
Size

947KB
MD5

a69df37b244a138975d86e34f890eef8
SHA1

7f09c131bc17fac1b14dbf4308c7922dbb85289c
SHA256

81243fa0ea9feaa66ba7792d922b1f6c47d6cd9f31ee9cead31c8c09d348b36e
SHA512

c48a751348d0a5bce2c65743b9c6933662239d0449713cbf94156c5de151b726e7d7b3dadf3cd37c0756da815275e8a1c5687649275363549b9feed6a80d395d
SSDEEP

12288:Ac0GxusnhpmrUQr2K4Gl79iQVCPJPAbhsUvho+4NFQL+uWHNwEE3bpZG2KAtWQc6:Ac0GxxvmrNtVYJPAm4M5u66bqetS6

Score

3^/10

Malware Config

Signatures

Unsigned PE 2 IoCs

Checks for missing Authenticode signature.

resource
unpack001/gg.exe
unpack001/mode.exe

Files

a69df37b244a138975d86e34f890eef8_JaffaCakes118
.zip
da/cosdat.dat
da/day.dat
da/nn/1.gif
.gif
da/nn/2.gif
.gif
da/nn/3.gif
.gif
da/nn/4.gif
.gif
da/nn/Thumbs.db
da/nn/b.gif
.gif
da/nn/base.gif
.gif
da/nn/bn.gif
.gif
da/nn/g.gif
.gif
da/nn/gg1.gif
.gif
da/nn/gg2.gif
.gif
da/nn/gg3.gif
.gif
da/nn/gg4.gif
.gif
da/nn/gg5.gif
.gif
da/nn/gg6.gif
.gif
da/nn/gg7.gif
.gif
da/nn/icon.gif
.gif
da/nn/main.css
da/nn/main.html
.html
da/nn/menu.html
.html
da/nn/mm1.gif
.gif
da/nn/mm2.gif
.gif
da/nn/mm3.gif
.gif
da/nn/mm4.gif
.gif
da/nn/mm5.gif
.gif
da/nn/nn1.gif
.gif
da/nn/pp.gif
.gif
da/nn/r.gif
.gif
da/nn/rogo.gif
.gif
da/nn/ss1.gif
.gif
da/nn/ss2.gif
.gif
da/nn/ta.gif
.gif
da/nn/y.gif
.gif
da/score.dat
da/se1.wav
da/se12.wav
da/se13.wav
da/se14.wav
da/se15.wav
da/se16.wav
da/se2.wav
da/se3.wav
da/se4.wav
da/se5.wav
da/se6.wav
da/se7.wav
da/se8.wav
da/sindat.dat
da/smo.dat
gg.exe
.exe windows:4 windows x86 arch:x86

7cbaefdc912f183c89639b1f556c0011

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

sndPlaySoundA
mciSendStringA

kernel32

VirtualQuery
VirtualProtect
GetLocaleInfoA
CreateFileA
FlushFileBuffers
SetStdHandle
GetStringTypeW
GetStringTypeA
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetCPInfo
GetOEMCP
GetACP
GetFileType
GetStdHandle
SetHandleCount
ReadFile
LCMapStringW
MultiByteToWideChar
WideCharToMultiByte
LCMapStringA
QueryPerformanceCounter
GetCurrentProcess
TerminateProcess
ExitProcess
WriteFile
CloseHandle
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
GetStartupInfoA
GetModuleHandleA
CreateDirectoryA
SetCurrentDirectoryA
SetEnvironmentVariableA
GetLastError
GetFullPathNameA
GetCurrentDirectoryA
GetDriveTypeA
HeapAlloc
HeapFree
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
lstrlenA
lstrcpyA
lstrcmpA
lstrcpynA
GetCommandLineA
GetModuleFileNameA
Sleep
RtlUnwind
FreeLibrary
LoadLibraryA
GetProcAddress
WinExec
GetTickCount
FindFirstFileA
FindNextFileA
FindClose
DeleteFileA
GetLocalTime
GetSystemInfo
GlobalMemoryStatus
GetVersion
GetComputerNameA
GetWindowsDirectoryA
GlobalAlloc
GlobalFree
SetEndOfFile
HeapSize
SetFilePointer

user32

GetSystemMenu
AppendMenuA
TranslateMessage
PeekMessageA
FindWindowA
DestroyWindow
GetFocus
SetFocus
DispatchMessageA
GetMessageA
CharUpperA
SendMessageA
SetTimer
LoadIconA
RegisterClassA
UpdateWindow
SetScrollRange
ShowScrollBar
ScrollWindow
SetScrollPos
KillTimer
PostQuitMessage
DefWindowProcA
InvalidateRect
IsWindowEnabled
GetActiveWindow
ShowWindow
SetActiveWindow
SetWindowPos
GetAsyncKeyState
GetSysColor
ShowCursor
SetCursorPos
GetClientRect
GetDlgCtrlID
GetDlgItemTextA
GetWindowTextA
IsDlgButtonChecked
EnumDisplaySettingsA
ChangeDisplaySettingsA
GetCursorPos
MessageBoxA
wsprintfA
FillRect
LoadCursorA
SetCursor
BeginPaint
EndPaint
GetDC
ReleaseDC
GetSystemMetrics
MoveWindow
GetWindowRect
GetWindowLongA
SetWindowLongA
CallWindowProcA
CreateWindowExA
PostMessageA
GetMenu
SetWindowTextA

gdi32

SetPixel
GetPixel
SetStretchBltMode
StretchBlt
StretchDIBits
Rectangle
RealizePalette
BitBlt
DeleteDC
SelectPalette
SetDIBColorTable
CreatePalette
SetBkMode
LineTo
CreateSolidBrush
CreatePen
GetTextMetricsA
SelectObject
CreateFontIndirectA
DeleteObject
TextOutA
GetTextExtentPoint32A
GetTextExtentPointA
CreateCompatibleDC
CreateDIBSection
GetDeviceCaps
SetTextColor
GetStockObject
MoveToEx

comdlg32

GetOpenFileNameA
GetSaveFileNameA
ChooseColorA

advapi32

GetUserNameA

shell32

ShellExecuteA
ShellExecuteExA

Exports

Exports

_ll_callfunc@16

Sections

.text
Size: 97KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
mode.exe
.exe windows:4 windows x86 arch:x86

e6c4f6edd8745f5cc2ce37ffbed151d3

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
GetModuleFileNameA
FreeLibrary
LoadLibraryA
GetProcAddress
WinExec
GetTickCount
FindFirstFileA
FindNextFileA
FindClose
DeleteFileA
GetLocalTime
GlobalFree
GetStringTypeW
GetStringTypeA
RtlUnwind
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetFileType
GetStdHandle
SetHandleCount
ReadFile
LCMapStringW
LCMapStringA
MultiByteToWideChar
WideCharToMultiByte
SetFilePointer
GetCurrentProcess
TerminateProcess
WriteFile
CloseHandle
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
ExitProcess
GetVersion
GetStartupInfoA
GetModuleHandleA
CreateDirectoryA
SetCurrentDirectoryA
SetEnvironmentVariableA
GlobalAlloc
GetWindowsDirectoryA
GetLastError
GetDriveTypeA
GetFullPathNameA
GetCurrentDirectoryA
HeapAlloc
HeapFree
SetStdHandle
FlushFileBuffers
CreateFileA
GetCPInfo
GetACP
GetOEMCP
SetEndOfFile

user32

GetSystemMetrics
MoveWindow
GetMenu
PostMessageA
ReleaseDC
GetDC
GetWindowRect
ChangeDisplaySettingsA
SendMessageA
CreateWindowExA
EndPaint
BeginPaint
SetCursor
LoadCursorA
FillRect
wsprintfA
MessageBoxA
GetCursorPos
EnumDisplaySettingsA
DestroyWindow
IsDlgButtonChecked
GetWindowTextA
GetDlgItemTextA
GetDlgCtrlID
GetClientRect
GetFocus
SetScrollRange
ScrollWindow
SetScrollPos
PostQuitMessage
DefWindowProcA
InvalidateRect
FindWindowA
GetSystemMenu
AppendMenuA
PeekMessageA
TranslateMessage
DispatchMessageA
KillTimer
GetMessageA
SetTimer
SetWindowLongA
ShowScrollBar
UpdateWindow
GetActiveWindow
LoadIconA
RegisterClassA
ShowWindow
SetActiveWindow
SetWindowPos
GetAsyncKeyState
ShowCursor
SetFocus
SetWindowTextA
SetCursorPos

gdi32

SetBkMode
TextOutA
SetStretchBltMode
StretchBlt
DeleteObject
CreateFontIndirectA
GetStockObject
SelectObject
GetTextMetricsA
CreatePen
CreateSolidBrush
SetTextColor
GetTextExtentPoint32A
GetTextExtentPointA
CreatePalette
SetDIBColorTable
GetDeviceCaps
MoveToEx
LineTo
SetPixel
GetPixel
SelectPalette
StretchDIBits
Rectangle
RealizePalette
BitBlt
DeleteDC
CreateDIBSection
CreateCompatibleDC

comdlg32

ChooseColorA
GetSaveFileNameA
GetOpenFileNameA

shell32

ShellExecuteExA
ShellExecuteA

winmm

sndPlaySoundA
mciSendStringA

Sections

.text
Size: 89KB - Virtual size: 89KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
��ǂ݂��.txt
��.html
.html

Sharing

General

Malware Config

Signatures

Files

7cbaefdc912f183c89639b1f556c0011

Headers

File Characteristics

Imports

winmm

kernel32

user32

gdi32

comdlg32

advapi32

shell32

Exports

Exports

Sections

.text Size: 97KB - Virtual size: 96KB

.rdata Size: 8KB - Virtual size: 8KB

.data Size: 3KB - Virtual size: 26KB

.rsrc Size: 3KB - Virtual size: 2KB

e6c4f6edd8745f5cc2ce37ffbed151d3

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

shell32

winmm

Sections

.text Size: 89KB - Virtual size: 89KB

.rdata Size: 5KB - Virtual size: 5KB

.data Size: 14KB - Virtual size: 36KB

.rsrc Size: 4KB - Virtual size: 2KB

.text
Size: 97KB - Virtual size: 96KB

.rdata
Size: 8KB - Virtual size: 8KB

.data
Size: 3KB - Virtual size: 26KB

.rsrc
Size: 3KB - Virtual size: 2KB

.text
Size: 89KB - Virtual size: 89KB

.rdata
Size: 5KB - Virtual size: 5KB

.data
Size: 14KB - Virtual size: 36KB

.rsrc
Size: 4KB - Virtual size: 2KB