0014ccea773bb3d535b0bc5d90e5fc5f_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

0014ccea773bb3d535b0bc5d90e5fc5f_JaffaCakes118
Size

850KB
MD5

0014ccea773bb3d535b0bc5d90e5fc5f
SHA1

e5c386d108b2f1dabda603850e93b29281794991
SHA256

868e2e284842786e373e4f5a532871ed7f53712b1b66473d5654b04bb033e6c0
SHA512

f69ac0471996c77918bf45781001559f9dc11d6f37f3a990b57b0de76fc986ea6a7ac65fe079a9c2e7da9c7b1ad757c59aa94b2531b97d008c094f59724c96c3
SSDEEP

12288:OoWdBjdDhyzwgXPdlGdXbaH0wUExv5cjkXWXKWhCe//nbpDtSNTS04jC2TwtX:MDhSPKK4ExwxKkXlZSRSiMwtX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0014ccea773bb3d535b0bc5d90e5fc5f_JaffaCakes118

Files

0014ccea773bb3d535b0bc5d90e5fc5f_JaffaCakes118
.exe windows:5 windows x86 arch:x86

79bea8f2f4b86864e74332da0febac16

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

QueryPerformanceCounter
LocalFree
WriteConsoleW
TlsGetValue
GetCurrentProcess
LoadLibraryW
GetSystemInfo
FindClose
lstrcmpiW
InterlockedExchange
FormatMessageW
GetOEMCP
TlsSetValue
VirtualProtectEx
GetTimeZoneInformation
WaitForSingleObject
InterlockedIncrement
GetOverlappedResult
GetProcessHeap
GetNumberFormatW
GetModuleHandleW
SearchPathW
GetTempFileNameW
FreeEnvironmentStringsW
GetCurrentThread
GlobalAddAtomW
RtlUnwind
TerminateProcess
lstrlenW
InterlockedDecrement
CompareStringW
InitializeCriticalSectionAndSpinCount
FreeResource
CreateFileW
lstrcpyW
GetProcAddress
GetEnvironmentStringsW
GlobalFlags
GetTempPathW
HeapReAlloc
SizeofResource
OpenEventW
LCMapStringW
SetLastError
GetModuleFileNameW
MulDiv
GlobalAlloc
HeapSetInformation
VirtualAlloc
CopyFileW
GetFileSizeEx
SetHandleCount
FindResourceExW
ResumeThread
GetProfileIntW
SetFilePointer
GetSystemDirectoryW
IsValidCodePage
HeapCreate
Sleep
MultiByteToWideChar
GlobalHandle
TerminateThread
GetCurrentThreadId
InitializeCriticalSection
lstrcmpA
SetThreadPriority
WriteFile
GlobalFree
LockFile
GetConsoleCP
GetVersionExW
HeapQueryInformation
CreateEventW
GlobalUnlock
GlobalFindAtomW
SetEnvironmentVariableA
SetEndOfFile
CloseHandle
FreeLibrary
FlushFileBuffers
DuplicateHandle
GetStdHandle
GetLastError
UnlockFile
LocalReAlloc
CreateThread
UnhandledExceptionFilter
HeapDestroy
GlobalSize
FileTimeToSystemTime
CreateNamedPipeW
GetFullPathNameW
VirtualQuery
FindResourceW
HeapSize
LeaveCriticalSection
GetConsoleMode
GetCommandLineW
IsDebuggerPresent
lstrlenA
GetFileAttributesW
GlobalReAlloc
WaitForMultipleObjects
FileTimeToLocalFileTime
GetCurrentProcessId
GetVolumeInformationW
ReadFile
FindFirstFileW
IsProcessorFeaturePresent
LoadLibraryExW
HeapFree
ExitThread
GetCurrentDirectoryW
lstrcmpW
GetUserDefaultUILanguage
GetStartupInfoW
GlobalDeleteAtom
SetEvent
TlsAlloc
WideCharToMultiByte
GetCPInfo
CreateMutexW
InterlockedCompareExchange
SetUnhandledExceptionFilter
GetFileSize
GetFileAttributesExW
LockResource
HeapAlloc
DisconnectNamedPipe
GlobalLock
GetTickCount
GetSystemTimeAsFileTime
GetFileType
LocalAlloc
GetACP
LoadResource
RaiseException
TlsFree
GetFileTime
GlobalGetAtomNameW
EnterCriticalSection
DeleteCriticalSection
SetStdHandle
GetLocaleInfoW
GetStringTypeW

user32

GetCapture
DestroyCursor
CreateWindowExW
BeginDeferWindowPos
CreatePopupMenu
InflateRect
KillTimer
MonitorFromPoint
GetMenuItemID
SetRect
DrawFrameControl
MapDialogRect
GrayStringW
GetDoubleClickTime
UnpackDDElParam
EqualRect
TranslateAcceleratorW
SetCursorPos
GetForegroundWindow
GetIconInfo
GetSystemMenu
GetSysColor
FillRect
PtInRect
GetMonitorInfoW
GetKeyNameTextW
ShowScrollBar
DestroyWindow
WinHelpW
PostMessageW
GetMessageTime
MapWindowPoints
OpenClipboard
DeferWindowPos
GetMenuItemCount
TranslateMDISysAccel
CallWindowProcW
LoadMenuW
IsWindow
CopyRect
UpdateWindow
CallNextHookEx
GetPropW
SetMenuDefaultItem
GetWindowRgn
DrawEdge
ScreenToClient
GetClassInfoExW
GetLastActivePopup
DrawIcon
EnableScrollBar
DrawStateW
SetWindowTextW
FrameRect
UnionRect
GetWindow
SetScrollPos
ReleaseDC
EnableWindow
GetKeyboardLayout
LockWindowUpdate
PeekMessageW
CreateMenu
GetMessagePos
CopyAcceleratorTableW
SetParent
IsMenu
SetFocus
EnumDisplayMonitors
IsIconic
IsWindowEnabled
GetDlgCtrlID
SetActiveWindow
EndDeferWindowPos
DrawMenuBar
ValidateRect
ScrollWindow
GetMenuItemInfoW
AppendMenuW
SetClassLongW
DestroyAcceleratorTable
RegisterWindowMessageW
HideCaret
DispatchMessageW
SetRectEmpty
SetTimer
GetClassInfoW
LoadIconW
SetWindowRgn
DialogBoxParamW
ShowOwnedPopups
ClientToScreen
ShowWindow
GetMenuCheckMarkDimensions
ModifyMenuW
SystemParametersInfoW
NotifyWinEvent
ReuseDDElParam
CharUpperW
InsertMenuItemW
SetScrollRange
MessageBeep
MapVirtualKeyExW
RegisterClassW
DestroyMenu
GetParent
DeleteMenu
CheckMenuItem
SendDlgItemMessageW
GetFocus
DrawTextW
MessageBoxW
GetMenuStringW
ToUnicodeEx
SetWindowsHookExW
GetAsyncKeyState
SetMenuItemBitmaps
DefMDIChildProcW
GetCursorPos
BeginPaint
DefFrameProcW
IsRectEmpty
GetScrollPos
GetKeyboardState
CloseClipboard
DestroyIcon
PostQuitMessage
SubtractRect
SetWindowPos
GetActiveWindow
CopyIcon
GetMessageW
CreateAcceleratorTableW
GetNextDlgGroupItem
GetScrollRange
SetMenu
GetWindowRect
GetDesktopWindow
GetDlgItem
InvertRect
IsClipboardFormatAvailable
AdjustWindowRectEx
CreateDialogIndirectParamW
TranslateMessage
IsChild
MonitorFromWindow
ReleaseCapture
RegisterClipboardFormatW
GetWindowThreadProcessId
GetNextDlgTabItem
WindowFromPoint
SetForegroundWindow
IsWindowVisible
SetLayeredWindowAttributes
InvalidateRect
DrawTextExW
LoadBitmapW
GetUpdateRect
GetWindowTextW
LoadAcceleratorsW
WaitMessage
GetWindowDC
UnhookWindowsHookEx
OffsetRect
SendMessageW
DrawIconEx
SetScrollInfo
SetPropW
GetTopWindow
RemoveMenu
GetMenuState
LoadImageW
RedrawWindow
GetMenu
CheckDlgButton
GetDC
CopyImage
GetSysColorBrush
SetCapture
CharUpperBuffW
SetWindowLongW
InsertMenuW
LoadCursorW
SetWindowPlacement
EnumWindows
DefWindowProcW
EmptyClipboard
GetClassLongW
DrawFocusRect
TrackPopupMenu
SetClipboardData
SendDlgItemMessageA
GetClassNameW
GetScrollInfo
GetSubMenu
GetWindowPlacement
TabbedTextOutW
RemovePropW
GetMenuDefaultItem
GetClientRect
EnableMenuItem
GetWindowLongW
GetKeyState
MoveWindow
BringWindowToTop
IsDialogMessageW
IntersectRect
PostThreadMessageW
GetSystemMetrics
IsZoomed
MapVirtualKeyW
GetWindowTextLengthW
EndDialog
EndPaint
SetCursor
UpdateLayeredWindow
IsCharLowerW
RealChildWindowFromPoint

gdi32

ScaleWindowExtEx
GetTextExtentPoint32W
CreatePatternBrush
CombineRgn
StretchBlt
GetBitmapBits
GetViewportOrgEx
SetRectRgn
GetTextFaceW
GetBkColor
OffsetWindowOrgEx
CreateFontIndirectW
ExtFloodFill
GetObjectType
SetPaletteEntries
CreatePalette
SetWindowOrgEx
SetTextColor
CreateRoundRectRgn
DPtoLP
CreatePen
SelectPalette
GetTextCharsetInfo
GetStockObject
SetBkColor
GetNearestPaletteIndex
GetWindowExtEx
GetRgnBox
PtVisible
CreateRectRgn
BitBlt
SelectObject
LineTo
LPtoDP
CreateCompatibleBitmap
DeleteDC
Rectangle
OffsetRgn
RectVisible
SetBkMode
CreateDIBitmap
SetViewportExtEx
Ellipse
GetObjectW
PatBlt
SelectClipRgn
CreateDIBSection
CreateDCW
RestoreDC
CreatePolygonRgn
CopyMetaFileW
CreateRectRgnIndirect
GetClipBox
ExtSelectClipRgn
RealizePalette
ExcludeClipRect
CreateBitmap
Polyline
FrameRgn
SetLayout
TextOutW
CreateSolidBrush
MoveToEx
SetPixelV
OffsetViewportOrgEx
FillRgn
GetDeviceCaps
GetWindowOrgEx
IntersectClipRect
EnumFontFamiliesW
GetLayout
Escape
GetBoundsRect
ScaleViewportExtEx
SetMapMode
SaveDC
CreateHatchBrush
CreateCompatibleDC
Polygon
GetPixel
SetPolyFillMode
SetROP2
GetTextColor
DeleteObject
SetTextAlign
GetTextMetricsW
SetViewportOrgEx
SetPixel
CreateEllipticRgn
ExtTextOutW
EnumFontFamiliesExW
GetSystemPaletteEntries
GetPaletteEntries
GetViewportExtEx
SetWindowExtEx
PtInRegion
SetDIBColorTable

comdlg32

GetOpenFileNameW
GetFileTitleW

advapi32

RegCreateKeyExW
IsValidSid
ConvertStringSecurityDescriptorToSecurityDescriptorW
SetSecurityDescriptorDacl
ConvertSidToStringSidW
RegOpenKeyExW
RegDeleteValueW
SetSecurityDescriptorSacl
GetSecurityDescriptorSacl
GetTokenInformation
RegSetValueExW
OpenThreadToken
RegDeleteKeyW
RegEnumKeyExW
RegCloseKey
OpenProcessToken
InitializeSecurityDescriptor
RegQueryValueExW

shell32

SHGetFileInfoW
DragQueryFileW
SHGetDesktopFolder
DragFinish
ShellExecuteW
SHBrowseForFolderW
SHGetFolderLocation
SHGetPathFromIDListW
SHAppBarMessage
ShellExecuteExW
SHGetSpecialFolderLocation

ole32

CoInitialize
ReleaseStgMedium
RevokeDragDrop
CoTaskMemAlloc
OleGetClipboard
OleDestroyMenuDescriptor
OleLockRunning
CoLockObjectExternal
OleCreateMenuDescriptor
OleTranslateAccelerator
CoInitializeEx
CoCreateInstance
IsAccelerator
CoUninitialize
RegisterDragDrop
DoDragDrop
CLSIDFromString
CoTaskMemFree
CreateStreamOnHGlobal
OleDuplicateData

oleaut32

VarBstrFromDate
SystemTimeToVariantTime
SysFreeString
SysAllocStringByteLen
SysAllocString
SysAllocStringLen
VariantClear
VariantChangeType
VariantInit
SysStringByteLen
VariantTimeToSystemTime
SysStringLen

comctl32

ImageList_GetIconSize

shlwapi

ord215
PathIsUNCW
PathFindExtensionW
PathFindFileNameW
PathStripToRootW
PathRemoveFileSpecW
ord345
SHDeleteValueA

winmm

PlaySoundW

msimg32

TransparentBlt
AlphaBlend

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

gdiplus

GdipDrawImageI
GdipGetImagePixelFormat
GdipGetImagePalette
GdipSetInterpolationMode
GdipGetImageHeight
GdipCreateBitmapFromHBITMAP
GdipDisposeImage
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipCreateBitmapFromScan0
GdipCreateFromHDC
GdipBitmapLockBits
GdipCloneImage
GdipDrawImageRectI
GdipAlloc
GdipCreateBitmapFromStream
GdipGetImagePaletteSize
GdipBitmapUnlockBits
GdiplusShutdown
GdiplusStartup
GdipDeleteGraphics
GdipFree

oleacc

LresultFromObject
AccessibleObjectFromWindow
CreateStdAccessibleObject

Exports

Exports

MyCopyMemory

Sections

.text
Size: 166KB - Virtual size: 165KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 174KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.kop
Size: 312KB - Virtual size: 312KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rew
Size: 181KB - Virtual size: 180KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.koop
Size: 168KB - Virtual size: 167KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 712B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

79bea8f2f4b86864e74332da0febac16

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

comctl32

shlwapi

winmm

msimg32

imm32

gdiplus

oleacc

Exports

Exports

Sections

.text Size: 166KB - Virtual size: 165KB

.rdata Size: 15KB - Virtual size: 14KB

.data Size: 512B - Virtual size: 174KB

.kop Size: 312KB - Virtual size: 312KB

.rew Size: 181KB - Virtual size: 180KB

.koop Size: 168KB - Virtual size: 167KB

.rsrc Size: 1024B - Virtual size: 712B

.reloc Size: 5KB - Virtual size: 4KB

.text
Size: 166KB - Virtual size: 165KB

.rdata
Size: 15KB - Virtual size: 14KB

.data
Size: 512B - Virtual size: 174KB

.kop
Size: 312KB - Virtual size: 312KB

.rew
Size: 181KB - Virtual size: 180KB

.koop
Size: 168KB - Virtual size: 167KB

.rsrc
Size: 1024B - Virtual size: 712B

.reloc
Size: 5KB - Virtual size: 4KB