03abc08d31312dd764fa15b40be4584e_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

03abc08d31312dd764fa15b40be4584e_JaffaCakes118
Size

419KB
MD5

03abc08d31312dd764fa15b40be4584e
SHA1

d3309e14ed7e4acd2097b99714961089cab481dd
SHA256

9cf8bd845ff210f4e2ed59a05c3d7ddfcffa372ca6bb051be22a5ff096f3a042
SHA512

0d7b8141f47dedac8b5a4ac14a8fb0c39809a2468ae484cba6785b389ba6f2edd0fcaf37e573c217b28b977e013978cfe7c8474700d6e2b243e0989c18f2dfdc
SSDEEP

12288:owNHt2RtHD0k8pYZGIpvw9NBxTvVmABOCGN+mt:3NH+tr/pvaxTvVmABOCG4mt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
03abc08d31312dd764fa15b40be4584e_JaffaCakes118

Files

03abc08d31312dd764fa15b40be4584e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9a51fe03c154188ab4c5bf73e3064807

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
LoadLibraryA
RtlUnwind
InterlockedExchange
VirtualQuery
HeapReAlloc
HeapAlloc
HeapFree
VirtualAlloc
CreateMailslotA
GetSystemTime
WriteConsoleOutputA
WaitNamedPipeA
WriteProfileSectionW
InitAtomTable
SetConsoleTextAttribute
LocalUnlock
FindCloseChangeNotification
DeleteFileW
SetCurrentDirectoryW
WriteConsoleOutputW
lstrcmp
lstrcpy
GetPrivateProfileSectionW
OpenProcess
FindResourceExW
lstrcpyW
GetFullPathNameW
GetPrivateProfileStringA
ContinueDebugEvent
Heap32ListFirst
GetProcAddress
EnumDateFormatsW
FlushConsoleInputBuffer
CreateNamedPipeW
HeapUnlock
CreateDirectoryExA
SetComputerNameA
WaitForSingleObjectEx
SetThreadIdealProcessor
LocalFree
GlobalReAlloc
EraseTape
EnumTimeFormatsA
DuplicateHandle
SetThreadContext
GetSystemInfo
Thread32Next
GetPriorityClass
FindFirstFileExA
InitializeCriticalSectionAndSpinCount
GetShortPathNameW
CreateSemaphoreW
ReadConsoleOutputCharacterW
Process32Next
ReadConsoleInputW
SetSystemTimeAdjustment
GlobalDeleteAtom
LocalFlags
SetHandleCount
GetCurrencyFormatW
GetConsoleMode
GetPrivateProfileSectionNamesW
LocalAlloc
MapViewOfFile
MulDiv
ConvertDefaultLocale
HeapLock
DeviceIoControl
GetFullPathNameA
EscapeCommFunction
DebugActiveProcess
SystemTimeToFileTime
VirtualAllocEx
SetThreadAffinityMask
GetStringTypeExA
GetEnvironmentStringsW
CreateMailslotW
ReadConsoleW
GetAtomNameA
OpenSemaphoreA
InterlockedIncrement
GetTempFileNameW
BeginUpdateResourceA
RtlZeroMemory
GetProcessVersion
LockFileEx
CreateMutexA
MoveFileExA
WinExec
FreeLibraryAndExitThread
ResetWriteWatch
GetDiskFreeSpaceExW
GetSystemPowerStatus
GetUserDefaultLCID
LockResource
WritePrivateProfileStructA
GlobalCompact
OpenEventW
GetProcessPriorityBoost
TransactNamedPipe
GetStringTypeW
EnterCriticalSection
GetProfileIntW
GetFileSize
FreeConsole
SetConsoleCP
lstrcat
SearchPathW
SetFileAttributesW
GetProcessAffinityMask
HeapSize
lstrcpyA
HeapCompact
CompareStringA
WriteConsoleOutputCharacterA
ResetEvent
PeekConsoleInputA
GetMailslotInfo
SetWaitableTimer
ResumeThread
CommConfigDialogA
GetLocaleInfoW
CopyFileA
TlsSetValue
GetConsoleOutputCP
FlushViewOfFile
GlobalFindAtomW
GetLocaleInfoA
GetCurrencyFormatA
GetCurrentDirectoryA
GetLogicalDriveStringsA
GetLogicalDrives
ReadConsoleOutputCharacterA
GetLargestConsoleWindowSize
OpenFile
EnumCalendarInfoW
GetPrivateProfileSectionA
LoadLibraryW
OpenSemaphoreW
FillConsoleOutputCharacterW
CommConfigDialogW
SetComputerNameW
lstrcatA
SetConsoleMode
lstrcmpiW
ReleaseMutex
GlobalFix
IsValidLocale
GetPrivateProfileIntW
GlobalFlags
FileTimeToLocalFileTime
EnumSystemCodePagesA
VirtualLock
GlobalUnlock
GetComputerNameW
GetExitCodeProcess
GlobalWire
WriteConsoleOutputCharacterW
GetShortPathNameA
CloseHandle
FindNextFileW
GetDriveTypeW
DeleteCriticalSection
VirtualFree
CreateEventA
EnumResourceTypesW
WriteConsoleA
GetFileType
PeekConsoleInputW
LocalLock
CreateFileMappingA
GetThreadPriorityBoost
FindResourceW

gdi32

PathToRegion
SetBkMode
CopyEnhMetaFileW
GetBkMode
PtInRegion
ChoosePixelFormat
CreateSolidBrush
EnumFontsW
GetObjectA
TranslateCharsetInfo
DeleteColorSpace
UpdateICMRegKeyA
CombineTransform
GetWorldTransform
DPtoLP
RoundRect
GetDIBits
CreateRectRgnIndirect
GetCharacterPlacementW
RemoveFontResourceA
CreateColorSpaceA
CreateDiscardableBitmap
CreateFontA
GetTextExtentPointW
GdiSetBatchLimit
Arc
GetCharABCWidthsFloatA
SaveDC
SetWindowExtEx
ColorMatchToTarget
PlayMetaFileRecord
GetBitmapBits
RestoreDC
GetGraphicsMode
OffsetWindowOrgEx
EnumFontFamiliesExA
MaskBlt
EnumObjects
GetCharWidthA
AnimatePalette
ResizePalette
GetCharWidthW
SwapBuffers
DescribePixelFormat
SetDIBColorTable
GetROP2
StartPage
GetTextAlign
PlayEnhMetaFileRecord
ExtCreateRegion
GetMetaFileA
GetStretchBltMode
CreateEnhMetaFileA
GetEnhMetaFileDescriptionA
CreateDIBitmap
CopyEnhMetaFileA
SelectClipPath
GetEnhMetaFileW
DeleteObject
DeviceCapabilitiesExA
FrameRgn
SetTextColor
GetBoundsRect
SetEnhMetaFileBits
ScaleViewportExtEx
GetGlyphOutlineW
GetMetaRgn
GdiGetBatchLimit
GetCharWidthFloatA
CreateDCA
GetTextFaceW
ExtCreatePen
GetKerningPairs
GetLogColorSpaceW
FillPath
GetRegionData
CreateFontW
GetArcDirection
AngleArc
GetBrushOrgEx
SetRectRgn
CreateMetaFileW
CreateColorSpaceW
FillRgn
SetWinMetaFileBits
CreateCompatibleDC
CreateRectRgn
CreateICA
PlayMetaFile
SetArcDirection
SetStretchBltMode
GetColorAdjustment
GetCharacterPlacementA
UnrealizeObject
GetPath
GetKerningPairsW
CreateEllipticRgn
SelectPalette
StretchBlt
WidenPath
GetNearestPaletteIndex
RectInRegion
FixBrushOrgEx
PtVisible
ExtTextOutA
GdiPlayScript
AddFontResourceW
SetMetaRgn
CreatePolyPolygonRgn
Polyline
GetWindowExtEx
DeleteDC
SetBoundsRect
GetLayout
GetTextFaceA
Chord
SelectClipRgn
Escape
SetDIBits
ScaleWindowExtEx
DrawEscape
PolyTextOutA
CreateEllipticRgnIndirect
ExtSelectClipRgn
SetPixelFormat
CreatePenIndirect
EnumFontFamiliesExW
SetICMProfileW
LPtoDP
GetNearestColor
CreateDIBPatternBrushPt
GetSystemPaletteEntries
SetICMProfileA
SetMiterLimit
GetObjectType
GetCurrentPositionEx
PolyBezierTo
DeviceCapabilitiesExW
GdiPlayDCScript
CancelDC
EqualRgn
SetViewportExtEx
GetMetaFileW
ColorCorrectPalette
GetTextMetricsA
SetGraphicsMode
CreateDIBPatternBrush
ModifyWorldTransform
EnumMetaFile
CreatePatternBrush
GetCharABCWidthsFloatW
FlattenPath
GetKerningPairsA
PlgBlt
GetTextExtentPoint32W
SetMetaFileBitsEx
GetTextColor
SetFontEnumeration
SetWorldTransform
EndPath
CreatePalette
InvertRgn
UpdateICMRegKeyW
GetTextMetricsW
GetPixel
TextOutW
StartDocA
gdiPlaySpoolStream
PolylineTo
CopyMetaFileW
CombineRgn
GetLogColorSpaceA
RectVisible
GetDIBColorTable
MoveToEx
BeginPath
GdiPlayJournal
AbortDoc
PolyDraw
GetCharWidth32W
FloodFill
PlayEnhMetaFile
GetMetaFileBitsEx
ArcTo
GetEnhMetaFileHeader
DeleteEnhMetaFile
GetWinMetaFileBits
RealizePalette
GetEnhMetaFileDescriptionW
CreateRoundRectRgn
GetBkColor
PolyPolyline
GetTextCharsetInfo
LineTo
GetGlyphOutlineA
CheckColorsInGamut
SetMapperFlags
SetBrushOrgEx
LineDDA
PaintRgn
CreateCompatibleBitmap
CopyMetaFileA
SetPixelV
CreateScalableFontResourceW
GetGlyphOutline
GetICMProfileW
EnumICMProfilesA
CreateDCW
CloseFigure
SetViewportOrgEx
SetICMMode
GetICMProfileA
CreatePolygonRgn
SetDIBitsToDevice
RemoveFontResourceW
GetCurrentObject
SetColorSpace
PatBlt
PolyTextOutW
StrokePath
Ellipse
EndDoc
GetAspectRatioFilterEx
GetTextExtentExPointW
SetBkColor
AbortPath
ResetDCW
GetRgnBox
SelectObject
GetRasterizerCaps
StartDocW
GetFontLanguageInfo
CreateDIBSection
CreateFontIndirectW
SetWindowOrgEx
AddFontResourceA
GetEnhMetaFileBits
GetCharWidth32A
SetLayout
GetDeviceGammaRamp
GetPaletteEntries
GetMiterLimit
GetMapMode
GetPixelFormat
EnableEUDC
GetTextCharset
EnumEnhMetaFile
SetBitmapBits
GetTextExtentExPointA
GetPolyFillMode
CreateBitmap
SetTextCharacterExtra
SetPaletteEntries
CreateBitmapIndirect
GetClipRgn
OffsetRgn
CreateHatchBrush
GetWindowOrgEx
GetCharABCWidthsW
ExtFloodFill
GetFontData
SetPolyFillMode
SetDeviceGammaRamp
Polygon
ExtEscape
EnumFontFamiliesA
GetCharABCWidthsA
SetTextAlign

advapi32

CryptEnumProviderTypesA
RegEnumValueW
RegFlushKey
RegSetKeySecurity
RegDeleteValueA
RegOpenKeyA
RegConnectRegistryA
LookupAccountSidW
CryptAcquireContextW
RegReplaceKeyA
RevertToSelf
GetUserNameW
LookupAccountNameW
LookupPrivilegeDisplayNameA
StartServiceW
CryptSignHashA
CryptSetProviderA
CryptCreateHash
RegSetValueExA
CryptGetUserKey
CreateServiceA
CryptContextAddRef
RegOpenKeyExA
CryptSetProvParam
LookupPrivilegeDisplayNameW
RegRestoreKeyA
LogonUserA
RegSetValueExW
CryptGenKey
RegRestoreKeyW
RegCreateKeyExA
CryptImportKey
CryptHashData
CryptVerifySignatureA
RegDeleteValueW
CryptEnumProvidersW
CryptSetProviderExA
RegEnumValueA
RegEnumKeyExW
RegQueryValueA
CryptDeriveKey
CryptSetHashParam
LookupSecurityDescriptorPartsA
CryptDestroyHash
RegCloseKey
CryptDecrypt
RegDeleteKeyA
RegConnectRegistryW
CryptEnumProviderTypesW
CryptExportKey
RegLoadKeyA
LookupSecurityDescriptorPartsW
CryptAcquireContextA
CryptSetProviderW
RegEnumKeyExA
StartServiceA
CryptHashSessionKey
InitiateSystemShutdownW
CryptGenRandom
CryptGetKeyParam
DuplicateToken
DuplicateTokenEx
AbortSystemShutdownW
LookupPrivilegeValueW
RegQueryMultipleValuesW
InitializeSecurityDescriptor
LookupPrivilegeValueA
InitiateSystemShutdownA
CryptDuplicateKey
RegEnumKeyW
RegQueryValueExW
CryptEncrypt
CryptSetKeyParam
RegCreateKeyW
GetUserNameA
RegSaveKeyA
CryptGetHashParam
CryptSignHashW
ReportEventW
CryptReleaseContext
RegOpenKeyW
CryptGetDefaultProviderW
RegDeleteKeyW
ReportEventA
RegCreateKeyExW
LookupAccountSidA
LogonUserW
RegSetValueW
CryptVerifySignatureW
CryptEnumProvidersA
CryptSetProviderExW
RegQueryInfoKeyW
RegSetValueA
RegQueryValueW
RegQueryMultipleValuesA
RegSaveKeyW
CreateServiceW
RegCreateKeyA
CryptGetDefaultProviderA
RegLoadKeyW
LookupAccountNameA
CryptGetProvParam
CryptDuplicateHash
RegQueryInfoKeyA
LookupPrivilegeNameA
RegReplaceKeyW
RegNotifyChangeKeyValue
LookupPrivilegeNameW
RegOpenKeyExW
AbortSystemShutdownA
CryptDestroyKey
RegQueryValueExA

Sections

.text
Size: 140KB - Virtual size: 139KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 259KB - Virtual size: 259KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9a51fe03c154188ab4c5bf73e3064807

Headers

File Characteristics

Imports

kernel32

gdi32

advapi32

Sections

.text Size: 140KB - Virtual size: 139KB

.data Size: 259KB - Virtual size: 259KB

.reloc Size: 18KB - Virtual size: 18KB

.text
Size: 140KB - Virtual size: 139KB

.data
Size: 259KB - Virtual size: 259KB

.reloc
Size: 18KB - Virtual size: 18KB