00ad8db5e11e0277824eed0d455c5cd1_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

00ad8db5e11e0277824eed0d455c5cd1_JaffaCakes118
Size

200KB
MD5

00ad8db5e11e0277824eed0d455c5cd1
SHA1

8c173caede3949c8a4b01ff42caf6259c90691e5
SHA256

6ae5506701073690add1f35b111d3087890d0384656960b264cc68b5f97b47d5
SHA512

f3acf549728f734eb9a059384ce61346684718e3df32a1dc9fbc989e6db7e73b91d8d0c40224c11b1d121ab41794466555847ec7c08be2cb36b26aad0ab449fa
SSDEEP

3072:X0XXYArGHlrPl4nxdueyddWX62ty5Ob8EI+bEDE4yzWIvD8tXuA8bMT48gFqqWM9:Xn+GFQtxQ5cI+ADzM8lgQ4QMqafJMq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
00ad8db5e11e0277824eed0d455c5cd1_JaffaCakes118

Files

00ad8db5e11e0277824eed0d455c5cd1_JaffaCakes118
.exe windows:4 windows x86 arch:x86

fad5691cb41b6bbee42eda1711a77c98

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
LoadLibraryA
RtlUnwind
InterlockedExchange
VirtualQuery
HeapReAlloc
HeapAlloc
HeapFree
VirtualAlloc
GlobalDeleteAtom
WriteConsoleA
Thread32Next
VirtualFreeEx
SetEnvironmentVariableA
GetFileAttributesW
WriteFileEx
EnumCalendarInfoA
TlsAlloc
GetProfileIntA
LeaveCriticalSection
EnumCalendarInfoW
CommConfigDialogA
GetPrivateProfileStringA
IsDebuggerPresent
Heap32First
HeapCreate
DebugBreak
SetFilePointer
InitAtomTable
ResetEvent
CreateSemaphoreA
GetNumberFormatA
lstrcatA
GetSystemDefaultLangID
SetConsoleCP
lstrcpyW
GetCurrencyFormatW
FindNextFileA
GetVersion
GetComputerNameA
GetThreadContext
CompareFileTime

comdlg32

GetOpenFileNameA
FindTextA
ChooseFontA
GetFileTitleW
GetSaveFileNameA
ReplaceTextW
ChooseColorW
PageSetupDlgA
FindTextW
LoadAlterBitmap
PrintDlgW

shell32

SHFileOperation
SHGetSpecialFolderLocation
CheckEscapesW
SHGetPathFromIDList
SHGetDiskFreeSpaceA
RealShellExecuteW
DragFinish
DragAcceptFiles
FindExecutableW
ExtractIconExW
CommandLineToArgvW
SHFormatDrive
SHLoadInProc
DragQueryFileAorW
ExtractAssociatedIconA
SheSetCurDrive
SHEmptyRecycleBinW
ExtractIconEx
ShellExecuteA
DragQueryFileA
SHGetMalloc
ExtractAssociatedIconExA
ExtractIconW
SHGetDesktopFolder
ShellAboutA
ShellExecuteEx
DuplicateIcon
SHBrowseForFolderW
SHGetFileInfo
RealShellExecuteA
SHGetSettings
RealShellExecuteExW
FindExecutableA
ShellAboutW
SHGetFileInfoA
ShellHookProc
SHGetInstanceExplorer
SHGetDataFromIDListW
SHFileOperationW
SHQueryRecycleBinA
ExtractIconA
InternalExtractIconListW
SHGetPathFromIDListA
SHFileOperationA
InternalExtractIconListA
SHBrowseForFolderA
SHFreeNameMappings
DragQueryPoint

user32

CreateDialogParamW
GetNextDlgTabItem
SetMenuContextHelpId
WindowFromPoint
MonitorFromPoint
WaitMessage
GetMenuDefaultItem
InSendMessage
VkKeyScanA
DrawStateW
SetPropA
FindWindowExW
GetClipboardFormatNameA
LookupIconIdFromDirectory
UnhookWindowsHook
ModifyMenuW
SetWindowsHookW
SetWindowLongA
DrawTextExA
UnregisterDeviceNotification
GetKBCodePage
SetWindowWord
OemToCharW
GrayStringW
LoadCursorFromFileW
OpenInputDesktop
RegisterClassA
GetClassInfoExA
CreateMDIWindowA
GetUserObjectSecurity
GetSystemMetrics
GetUserObjectInformationW
GetInputDesktop
GetKeyboardType
EndDialog
PtInRect
CallMsgFilterA
SetMenuInfo
DestroyIcon
DlgDirSelectComboBoxExA
CreateWindowStationW
InsertMenuW
LoadMenuIndirectW
ArrangeIconicWindows
OffsetRect
LoadImageW
GetComboBoxInfo
CreateMDIWindowW
ToAsciiEx
CopyIcon
GetDoubleClickTime
PostQuitMessage
IsCharAlphaA
GetDialogBaseUnits
ImpersonateDdeClientWindow
GetWindowTextA
VkKeyScanExA
GetCaretPos
CharToOemBuffA
GetClassLongA
RemoveMenu
DdeCreateStringHandleW
DeferWindowPos
MapVirtualKeyExA
SendNotifyMessageA
GetMenuItemCount
GetMenuItemInfoW
DestroyCursor
DrawTextA
CallWindowProcW
GetTopWindow
CountClipboardFormats
OemToCharBuffA
GetWindowContextHelpId
wvsprintfA
RegisterHotKey
GetMessageTime
EnumChildWindows
DrawFrame
CallNextHookEx
SetWindowsHookA
GetMenuBarInfo
BroadcastSystemMessageA
SetWindowLongW
SendIMEMessageExW
DdeDisconnect
GetMenuItemRect
UnpackDDElParam
IsMenu
SetRect
PeekMessageW
GetWindow
TranslateAccelerator
ShowWindowAsync
CreateCaret
FindWindowA
EnumDesktopsW
EnumPropsExW
ShowWindow
GetInputState
GetMonitorInfoW
SetCursorPos
DrawIconEx
TrackMouseEvent
SetThreadDesktop
GetWindowThreadProcessId
FrameRect
UnhookWindowsHookEx
GetWindowTextLengthA
DlgDirListA
GetClipboardViewer
DdeDisconnectList
SendMessageTimeoutA
NotifyWinEvent
ExcludeUpdateRgn
MessageBoxExA
MapVirtualKeyExW
ClientToScreen
AnyPopup
SendMessageW
ChildWindowFromPoint
KillTimer
wsprintfW
GetUpdateRgn
BlockInput
SendMessageA
LoadCursorA
TileChildWindows
MapVirtualKeyW
GetTitleBarInfo
OpenDesktopW
CharLowerBuffW
VkKeyScanW
SystemParametersInfoA
SetDlgItemTextA
IsIconic
DdeCreateStringHandleA
DdeInitializeA
OemKeyScan
GetKeyboardLayoutNameW
SetClipboardViewer
IntersectRect
DrawTextW
LoadAcceleratorsA
SetWindowsHookExW
GetMenuContextHelpId
GetKeyboardLayout
CallMsgFilter
LoadMenuIndirectA
RealChildWindowFromPoint
CharUpperBuffA
TranslateAcceleratorW
InvalidateRect
CreateIconFromResource
FreeDDElParam
GetClipboardSequenceNumber
GetLastActivePopup
IsZoomed
GetClassNameW
DrawMenuBar
DlgDirSelectComboBoxExW
IsCharAlphaNumericA
SetClipboardData
ShowScrollBar
ReleaseDC
ReleaseCapture
RegisterClassExA
CharLowerBuffA
GetAncestor
SetWindowPlacement
CharNextW
DrawStateA
DialogBoxIndirectParamA
UnregisterClassW
MessageBoxW
SubtractRect
IsCharUpperW
ChangeDisplaySettingsExW
AttachThreadInput
IsWindowVisible
GetSysColor
FindWindowW
ShowCaret
BeginDeferWindowPos
GetClipboardData
ScrollWindowEx
GetDlgCtrlID
GetCaretBlinkTime
RegisterDeviceNotificationW
SetDebugErrorLevel
CallMsgFilterW
GetMenuStringW
SendInput
BroadcastSystemMessageW
RegisterDeviceNotificationA
SetWindowPos
UnregisterClassA
IsCharLowerW
EnumDisplaySettingsW
SetDlgItemInt
DefWindowProcA
UnionRect
GetMenuItemInfoA
DdeQueryNextServer
ClipCursor
IsDlgButtonChecked
WinHelpA
GetKeyState
CharToOemA
EndMenu
GetSystemMenu
RegisterClassW
MessageBoxA
LoadIconA
RegisterClipboardFormatA
DdeAccessData
DdeKeepStringHandle
DlgDirSelectExW
SystemParametersInfoW
CopyRect
InternalGetWindowText
DdeQueryConvInfo
GetMenuState
OpenClipboard
SetKeyboardState
SetSysColors
TileWindows
DdeCreateDataHandle
SetMenuItemInfoA
CreateWindowStationA
ScrollDC
GetGUIThreadInfo
EqualRect
TabbedTextOutW
SetClassLongA
CallWindowProcA
GetWindowTextLengthW
DialogBoxParamW
SetMenuItemBitmaps
GetParent
SetRectEmpty
GetForegroundWindow
EnumPropsA
GetPropW
MoveWindow
GetMessageA
UnloadKeyboardLayout
DestroyMenu
GetThreadDesktop
GetMenuCheckMarkDimensions
CheckDlgButton
SetFocus
MapDialogRect
EnumClipboardFormats
EnableScrollBar
SetCaretBlinkTime
OemToCharA
GetMenuStringA
DdeQueryStringA
CreateAcceleratorTableW
GetKeyboardState
SetDoubleClickTime
LoadImageA
TabbedTextOutA
CloseWindow
DefWindowProcW
SetTimer
SetWindowsHookExA
IsCharLowerA
SetMessageExtraInfo
SetDeskWallpaper
CloseDesktop
SwitchDesktop
WaitForInputIdle
SetWindowTextA
MapVirtualKeyA
CopyAcceleratorTableW
GetMessageW
DefFrameProcA
GetUserObjectInformationA
LoadCursorW
GetAltTabInfo
CreateDesktopW
SetMenuDefaultItem
CharUpperW
DeleteMenu
InvalidateRgn
CheckMenuRadioItem
SendDlgItemMessageW
PeekMessageA
IsRectEmpty
SetCaretPos
GetClipboardFormatNameW
DdeCmpStringHandles
UpdateWindow
FindWindowExA
CreateWindowExW
LoadCursorFromFileA
CopyAcceleratorTableA
GetDC
DragDetect
CascadeWindows
ToUnicode
GetWindowModuleFileNameA
OpenDesktopA
PackDDElParam
DdeUnaccessData
ValidateRect
GetCapture
LockWindowUpdate
SendIMEMessageExA
GetDCEx
AnimateWindow
ReplyMessage
GetWindowModuleFileNameW
LoadKeyboardLayoutA
GetClipboardOwner
ShowCursor
GetWindowTextW
GetClassLongW
GetSysColorBrush
CascadeChildWindows
GetProcessWindowStation
MonitorFromRect
GetWindowRect
FillRect
DrawCaption
CheckMenuItem
SwapMouseButton
LoadBitmapW
OpenIcon
GetClipCursor
CharPrevA
GetCursorPos
GetScrollBarInfo
SetMenu
GetKeyNameTextW
CharLowerA
SetForegroundWindow
GetClassInfoA
CharNextExA
GetWindowInfo
GetTabbedTextExtentW
SetCapture
EditWndProc
RegisterWindowMessageA
DdeConnect
EnumPropsW
WindowFromDC
MsgWaitForMultipleObjectsEx

wininet

ShowClientAuthCerts
InternetSetOptionA
FtpRenameFileA
InternetCheckConnectionA
InternetGoOnlineA
RunOnceUrlCache
FtpRemoveDirectoryW
InternetCreateUrlW
FtpSetCurrentDirectoryA
SetUrlCacheGroupAttributeW
FindFirstUrlCacheContainerW
IsHostInProxyBypassList
GetUrlCacheEntryInfoExA
InternetConfirmZoneCrossing
FtpDeleteFileA
InternetInitializeAutoProxyDll
UpdateUrlCacheContentPath
InternetCanonicalizeUrlA
InternetWriteFileExA
DeleteUrlCacheContainerA
GopherGetLocatorTypeW
InternetTimeToSystemTime
FindNextUrlCacheGroup
CreateUrlCacheEntryW
InternetGetConnectedState
GopherCreateLocatorA
GetUrlCacheGroupAttributeA
InternetSetOptionExA
FreeUrlCacheSpaceW
InternetGetLastResponseInfoW
RegisterUrlCacheNotification
InternetSetDialStateA
InternetAttemptConnect
InternetTimeToSystemTimeW
SetUrlCacheConfigInfoA
InternetCreateUrlA
InternetConnectA
UnlockUrlCacheEntryFileA
FtpOpenFileW
InternetTimeFromSystemTimeA
UnlockUrlCacheEntryFileW
IsUrlCacheEntryExpiredW
InternetSetOptionW
FtpGetCurrentDirectoryW
InternetAlgIdToStringA
InternetGetLastResponseInfoA
ShowX509EncodedCertificate
HttpOpenRequestA
InternetCanonicalizeUrlW
InternetUnlockRequestFile
InternetGoOnlineW
InternetSetOptionExW
InternetAlgIdToStringW
FindFirstUrlCacheEntryExA
InternetQueryDataAvailable
InternetWriteFileExW
SetUrlCacheEntryInfoA
FtpGetFileEx
InternetQueryOptionA
InternetFindNextFileW
InternetShowSecurityInfoByURLW
InternetGetCertByURLA
InternetLockRequestFile
InternetAutodialHangup
HttpEndRequestW
InternetCheckConnectionW
HttpCheckDavCompliance
GopherOpenFileW
InternetSetCookieA
InternetHangUp
CreateUrlCacheGroup
ShowSecurityInfo
FindFirstUrlCacheGroup
FtpOpenFileA
InternetSetDialStateW
HttpAddRequestHeadersA
GetUrlCacheEntryInfoA
FtpRemoveDirectoryA
IsUrlCacheEntryExpiredA
FtpPutFileA
InternetReadFileExA
GetUrlCacheEntryInfoW
InternetGetCookieW
FindFirstUrlCacheEntryW
InternetCombineUrlA
DeleteUrlCacheEntryW
ShowCertificate
HttpSendRequestW
HttpSendRequestExA
RetrieveUrlCacheEntryStreamA
CreateUrlCacheEntryA
InternetShowSecurityInfoByURLA
InternetGetConnectedStateEx
InternetCombineUrlW
InternetTimeFromSystemTimeW
HttpSendRequestA
InternetOpenA
GopherFindFirstFileW
FindNextUrlCacheEntryExW
InternetErrorDlg
RetrieveUrlCacheEntryFileA
FindCloseUrlCache
FtpFindFirstFileA
HttpOpenRequestW
FreeUrlCacheSpaceA
InternetSetCookieW
ReadUrlCacheEntryStream
InternetQueryOptionW
InternetConfirmZoneCrossingW
GopherOpenFileA
GopherGetLocatorTypeA
FtpRenameFileW
InternetCloseHandle
FtpSetCurrentDirectoryW
FindNextUrlCacheEntryA
FindNextUrlCacheEntryW
FtpCreateDirectoryA
UnlockUrlCacheEntryFile
FtpCommandW
HttpEndRequestA
FtpGetFileSize
UnlockUrlCacheEntryStream
CreateUrlCacheContainerA
InternetShowSecurityInfoByURL
FindFirstUrlCacheEntryA
GetUrlCacheEntryInfoExW
InternetDial
DeleteIE3Cache
FtpFindFirstFileW
FindNextUrlCacheEntryExA
GetUrlCacheGroupAttributeW
FtpCommandA
GetUrlCacheHeaderData

Sections

.text
Size: 90KB - Virtual size: 89KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 97KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fad5691cb41b6bbee42eda1711a77c98

Headers

File Characteristics

Imports

kernel32

comdlg32

shell32

user32

wininet

Sections

.text Size: 90KB - Virtual size: 89KB

.data Size: 97KB - Virtual size: 96KB

.reloc Size: 12KB - Virtual size: 12KB

.text
Size: 90KB - Virtual size: 89KB

.data
Size: 97KB - Virtual size: 96KB

.reloc
Size: 12KB - Virtual size: 12KB