a8c074f0efe9dd79b0e9ee4dc8f1ec1e_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

a8c074f0efe9dd79b0e9ee4dc8f1ec1e_JaffaCakes118
Size

2.0MB
MD5

a8c074f0efe9dd79b0e9ee4dc8f1ec1e
SHA1

4b9d7fc79beedbb7d841b7e1d81368993e7535fa
SHA256

a578a303124b78af12b799468f03e7310b537c88890cf8ddf0f00160bbda3109
SHA512

d8adf75e9afd6a6888bc55139f8f7bb7b2ae7aa80177bc96137d9560fc716ec2727db4ff5e5b808c8d97b2e9c01faf6d3f11e2226c84c54cd613328671bce0a7
SSDEEP

49152:/A5Dr9WJvgL+qPjvZFUuwEJ2cLyf2ubxPZ+irv:Y5DrMbqPjHUTkL4zCi7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a8c074f0efe9dd79b0e9ee4dc8f1ec1e_JaffaCakes118

Files

a8c074f0efe9dd79b0e9ee4dc8f1ec1e_JaffaCakes118
.exe windows:5 windows x86 arch:x86

0ddae0a71df06970d1be55fcf0365a9b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapReAlloc
InterlockedCompareExchange
LCMapStringA
LCMapStringW
LoadLibraryA
LoadResource
LocalAlloc
LocalFree
LocalLock
LocalReAlloc
LocalSize
LocalUnlock
LockResource
MapViewOfFile
MoveFileA
MoveFileExA
MulDiv
MultiByteToWideChar
OpenFile
OpenProcess
OpenThread
QueryPerformanceCounter
ReadConsoleOutputCharacterW
ReadFile
RemoveDirectoryA
RemoveDirectoryW
ResumeThread
RtlUnwind
SetCommTimeouts
SetConsoleCP
SetCurrentDirectoryA
SetEndOfFile
SetEnvironmentVariableA
SetErrorMode
SetFileAttributesA
SetFilePointer
SetHandleCount
HeapFree
SetLastError
SetStdHandle
SetUnhandledExceptionFilter
SetVolumeLabelA
SizeofResource
TerminateProcess
Thread32First
UnhandledExceptionFilter
UnmapViewOfFile
VirtualAlloc
VirtualFree
WaitForSingleObject
WideCharToMultiByte
WinExec
WriteConsoleInputW
WriteFile
WritePrivateProfileStringA
WritePrivateProfileStructW
_lclose
_lcreat
_llseek
_lopen
_lread
_lwrite
lstrcatA
lstrcatW
lstrcmpA
lstrcmpW
lstrcmpiA
lstrcmpiW
lstrcpyA
lstrcpyW
lstrcpynA
lstrcpynW
lstrlenA
lstrlenW
Sleep
HeapDestroy
HeapCreate
HeapAlloc
Heap32Next
GlobalUnlock
GlobalUnfix
GlobalUnWire
GlobalLock
GlobalFree
GlobalFindAtomA
GlobalAlloc
GlobalAddAtomW
GlobalAddAtomA
GetWindowsDirectoryA
GetVersionExA
GetVersion
GetUserDefaultUILanguage
GetUserDefaultLCID
GetTimeFormatW
GetTickCount
GetTempPathA
GetTempFileNameA
GetSystemTimeAsFileTime
GetSystemDirectoryA
GetStringTypeW
GetStringTypeA
GetStdHandle
GetStartupInfoA
GetProcAddress
GetPrivateProfileStringA
GetPrivateProfileIntA
GetOEMCP
GetNamedPipeHandleStateA
GetModuleHandleA
GetModuleFileNameA
GetLocaleInfoW
GetLocalTime
GetLastError
GetFullPathNameA
GetFileType
GetFileTime
GetFileSizeEx
GetFileInformationByHandle
GetFileAttributesW
GetFileAttributesExA
GetFileAttributesA
GetEnvironmentVariableA
GetEnvironmentStringsW
GetEnvironmentStrings
GetDriveTypeA
GetDefaultCommConfigW
GetDateFormatW
GetDateFormatA
GetCurrentThreadId
GetCurrentProcessId
GetCurrentProcess
GetCurrentDirectoryA
GetComputerNameExA
GetCommandLineW
GetCommandLineA
GetCPInfoExA
GetCPInfo
GetACP
FreeResource
FreeLibrary
FreeEnvironmentStringsW
FreeEnvironmentStringsA
FreeConsole
FormatMessageW
FormatMessageA
FoldStringW
FindResourceW
FindResourceA
FindNextFileA
FindFirstFileW
FindFirstFileA
FindClose
FileTimeToLocalFileTime
FileTimeToDosDateTime
ExitProcess
DeleteVolumeMountPointW
DeleteFileW
DeleteFileA
CreateSemaphoreW
CreateProcessA
CreateFileW
CreateFileMappingW
CreateFileA
CreateDirectoryA
CopyFileA
CompareStringW
CommConfigDialogW
SetHandleInformation
CloseHandle

user32

RegisterClipboardFormatW
RegisterWindowMessageW
ReleaseDC
ScreenToClient
SendDlgItemMessageA
SendDlgItemMessageW
SendMessageA
SendMessageW
SetActiveWindow
SetCaretBlinkTime
SetCursor
SetDlgItemTextA
SetDlgItemTextW
SetFocus
SetRect
SetRectEmpty
SetScrollPos
SetTimer
SetWinEventHook
SetWindowLongW
SetWindowPlacement
SetWindowTextA
SetWindowTextW
ShowWindow
SystemParametersInfoA
TileChildWindows
TranslateAcceleratorW
TranslateMessage
UnhookWinEvent
UpdateWindow
VkKeyScanExA
WinHelpW
WindowFromDC
WindowFromPoint
wsprintfA
wsprintfW
GetSysColorBrush
RegisterClipboardFormatA
RegisterClassExW
RegisterClassA
PostQuitMessage
PostMessageW
PostMessageA
PeekMessageW
PeekMessageA
OpenClipboard
OemToCharA
MoveWindow
MessageBoxW
MessageBoxA
MessageBeep
LoadStringW
LoadStringA
LoadImageW
LoadIconW
LoadIconA
LoadCursorW
LoadCursorFromFileW
LoadCursorA
LoadBitmapA
LoadAcceleratorsW
KillTimer
IsWindowVisible
IsIconic
IsDialogMessageW
IsDialogMessageA
IsClipboardFormatAvailable
InvalidateRect
IMPQueryIMEW
IMPGetIMEA
GrayStringW
GetWindowTextW
GetWindowTextA
GetWindowRect
GetWindowPlacement
GetWindowLongW
GetTitleBarInfo
GetSystemMetrics
GetSystemMenu
GetSysColor
GetSubMenu
GetScrollBarInfo
GetParent
GetMouseMovePointsEx
GetMessageW
GetMessageA
GetMenuState
GetMenuItemInfoW
GetMenu
GetListBoxInfo
GetKeyboardLayout
GetForegroundWindow
GetFocus
GetDlgItemTextW
GetDlgItemTextA
GetDlgItem
GetDlgCtrlID
GetDialogBaseUnits
GetDesktopWindow
GetDCEx
GetDC
GetCursorPos
GetClassNameW
GetCaretPos
GetAltTabInfoA
FindWindowA
FillRect
ExitWindowsEx
EnumThreadWindows
EnumPropsExA
EnumPropsA
EnumDisplaySettingsW
EnumChildWindows
EndPaint
EndDialog
EnableWindow
EnableMenuItem
DrawTextExW
DrawIcon
DrawEdge
DlgDirSelectExW
DispatchMessageW
DispatchMessageA
DialogBoxParamW
DialogBoxParamA
DestroyWindow
DestroyIcon
DefWindowProcW
DefWindowProcA
DdeUninitialize
DdeQueryStringW
DdeInitializeA
DdeGetData
DdeFreeDataHandle
DdeDisconnect
DdeCreateStringHandleA
DdeCreateDataHandle
DdeConnect
DdeCmpStringHandles
DdeClientTransaction
CreateWindowExW
CreateWindowExA
CreateIconFromResourceEx
CreateDialogParamW
CreateDialogParamA
CloseClipboard
ChildWindowFromPoint
CheckMenuItem
CharUpperW
CharNextW
CharNextA
CharLowerW
CharLowerBuffW
ChangeDisplaySettingsW
ChangeDisplaySettingsExA
BeginPaint
AttachThreadInput
ArrangeIconicWindows
AppendMenuA
GetClientRect

gdi32

XLATEOBJ_hGetColorTransform
GetObjectW
TextOutW
TextOutA
StretchBlt
StartDocW
SetWindowExtEx
SetViewportExtEx
SetTextColor
SetMapMode
SetBkMode
SetBkColor
SetAbortProc
SelectPalette
SelectObject
SaveDC
RealizePalette
PatBlt
MoveToEx
LineTo
LPtoDP
GetTextMetricsW
GetTextMetricsA
GetTextFaceW
GetTextFaceA
GetTextExtentPointW
GetTextExtentPointA
GetTextExtentPoint32W
GetTextCharacterExtra
GetStretchBltMode
AddFontResourceExA
GetObjectA
GetNearestPaletteIndex
GetGlyphIndicesA
GetDeviceCaps
GetDCOrgEx
GetCurrentPositionEx
GdiSetServerAttr
GdiEndPageEMF
GdiConvertPalette
GdiAddGlsBounds
FillPath
ExtTextOutA
EnumFontsW
EngDeleteClip
EngCreateDeviceBitmap
DeleteObject
DeleteDC
CreateSolidBrush
CreatePen
CreateFontIndirectW
CreateFontIndirectA
CreateFontA
CreateDCW
CreateCompatibleDC
CreateCompatibleBitmap
CreateBrushIndirect
CreateBitmapIndirect
BitBlt
GetStockObject

comdlg32

ReplaceTextW
PrintDlgExW
PageSetupDlgW
GetSaveFileNameW
GetOpenFileNameW
GetOpenFileNameA
GetFileTitleW
FindTextW
ChooseFontW
CommDlgExtendedError

advapi32

RegSetValueExW
RegSetValueExA
RegSetValueA
RegQueryValueExW
RegQueryValueExA
RegOpenKeyExA
RegOpenKeyA
RegEnumValueA
RegEnumKeyExA
RegEnumKeyA
RegDeleteValueA
RegDeleteKeyA
RegCreateKeyW
RegCreateKeyExA
RegCloseKey
OpenServiceA
OpenSCManagerA
IsTextUnicode
DeleteService
ControlService
CloseServiceHandle

shell32

Shell_NotifyIconW
ShellExecuteEx
ShellExecuteA
ShellAboutW
SHPathPrepareForWriteW
SHLoadNonloadedIconOverlayIdentifiers
SHGetPathFromIDListW
SHGetFolderPathW
SHGetDataFromIDListW
SHFreeNameMappings
SHFileOperationW
SHCreateDirectoryExW
SHAppBarMessage
ExtractIconW
ExtractIconExA
ExtractIconA
DuplicateIcon
DragQueryFileW
DragQueryFileAorW
DragQueryFileA
DragFinish
DragAcceptFiles
CommandLineToArgvW
CheckEscapesW

shlwapi

StrStrA
StrStrIW
StrRChrIA

msvcrt

_XcptFilter
__getmainargs
__p__commode
__p__fmode
__set_app_type
__setusermatherr
_acmdln
_adjust_fdiv
_c_exit
_cexit
_controlfp
_except_handler3
_exit
_initterm
_snwprintf
_wtol
exit
iswctype
localtime
time
wcsncmp
wcsncpy

Sections

.text
Size: 1.9MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 61KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0ddae0a71df06970d1be55fcf0365a9b

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

shlwapi

msvcrt

Sections

.text Size: 1.9MB - Virtual size: 1.9MB

.rdata Size: 61KB - Virtual size: 61KB

.data Size: 12KB - Virtual size: 12KB

.rsrc Size: 6KB - Virtual size: 5KB

.text
Size: 1.9MB - Virtual size: 1.9MB

.rdata
Size: 61KB - Virtual size: 61KB

.data
Size: 12KB - Virtual size: 12KB

.rsrc
Size: 6KB - Virtual size: 5KB