05612149e5938f2628669cb5832c87c4_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

05612149e5938f2628669cb5832c87c4_JaffaCakes118
Size

411KB
MD5

05612149e5938f2628669cb5832c87c4
SHA1

cc15f8fb2bfac33244c26333eda00372f6219ae0
SHA256

836130080d427183b4d05cdbc18fe4168fa472995c97318c26ccd7d2b468b3ec
SHA512

7fb2e230c70afe1d7a4cb6bc43604e09248da02e6da677ace1e0032497064204fd42a88913eea93a82de102e31f85fad64f21d2835bd1fe5715d82c03d67cbe6
SSDEEP

6144:2THM8hi4Md2GpO/x/FlaWbFjr7WG+O8NjMo9sqkvyIK194entjJgYop:2THMv/pO/x9lFjr7XV8Nj1F9Bj2Yop

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
05612149e5938f2628669cb5832c87c4_JaffaCakes118

Files

05612149e5938f2628669cb5832c87c4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c352d0c2678a5187fd4c8112d954cf4b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
LoadLibraryA
RtlUnwind
InterlockedExchange
VirtualQuery
HeapReAlloc
HeapAlloc
HeapFree
VirtualAlloc
SetWaitableTimer
EnumResourceTypesA
GlobalGetAtomNameA
Heap32ListNext
PeekConsoleInputW
Sleep
GetVolumeInformationW
GetLocaleInfoW
GetEnvironmentVariableW
SetHandleCount
lstrlenW
GlobalMemoryStatus
SetConsoleTitleA
AllocConsole
WaitForSingleObject
SearchPathA
SetCurrentDirectoryA
GetPriorityClass
GetVolumeInformationA
lstrcmpi
LockFile
SearchPathW
LocalAlloc
GetCurrentDirectoryW
GetProcessShutdownParameters
GlobalAddAtomA
SetThreadIdealProcessor
GetFileTime
EnumResourceLanguagesA
GetACP
GetPrivateProfileStringA
FreeConsole
SetEnvironmentVariableW
GetLongPathNameW
GetEnvironmentVariableA
GetProcessHeap
ReadConsoleA
GetConsoleCursorInfo
CloseHandle
GlobalFindAtomA
EnumCalendarInfoW
BeginUpdateResourceA
GlobalUnWire
CreateThread
GetFileSize
ReadConsoleInputA
FreeEnvironmentStringsW
EnumResourceLanguagesW
ResetWriteWatch
GetLongPathNameA
ResumeThread
CreateEventA
GetConsoleTitleW
FoldStringA
GetProcessHeaps
GetCommandLineW
EnumResourceNamesW
WritePrivateProfileStringW
GetNamedPipeInfo
SetCriticalSectionSpinCount
CreateSemaphoreW
GetShortPathNameW
VirtualQueryEx
OpenEventW
LocalSize
CreateDirectoryA
OpenSemaphoreW
GetEnvironmentStringsA
HeapLock
GetUserDefaultLangID
lstrcmpW
GetThreadTimes
EnumCalendarInfoA
lstrlenA
WaitForDebugEvent
CopyFileExA
GlobalCompact
FindFirstChangeNotificationA
InitAtomTable
GetThreadLocale
EnumSystemLocalesA
GetPrivateProfileStringW
FindResourceW
GetPrivateProfileSectionW
GetDateFormatW
FindCloseChangeNotification
CreateMutexA
lstrcpynA
lstrcatW
GetConsoleScreenBufferInfo
GetLargestConsoleWindowSize
DeleteFileW
SystemTimeToFileTime
WritePrivateProfileSectionA
GetCurrentThread
GetStringTypeExW
GetFullPathNameA
lstrlen
MulDiv
CreateConsoleScreenBuffer
GetTempFileNameW
GetStringTypeW
GetExitCodeProcess
CreateToolhelp32Snapshot
GetPrivateProfileStructA
GetPrivateProfileIntA
VirtualAllocEx
WriteConsoleOutputCharacterW
FormatMessageA
RemoveDirectoryW
SetConsoleCursorPosition
GetCompressedFileSizeA
lstrcpynW
GlobalWire
IsDebuggerPresent
lstrcpyA
FlushViewOfFile
GetShortPathNameA
GetComputerNameW
DisableThreadLibraryCalls
GetWriteWatch
GetFileAttributesExA
AddAtomW
MultiByteToWideChar
SetPriorityClass
SetConsoleCP
LocalFlags
GetCurrencyFormatW
VirtualProtect
CreateWaitableTimerA

advapi32

DuplicateTokenEx
CryptGetHashParam
RegOpenKeyA
RegNotifyChangeKeyValue
RegReplaceKeyW
CryptSetKeyParam
CryptAcquireContextA

gdi32

SelectClipRgn
ArcTo
GetColorSpace
RemoveFontResourceA
PolyPolygon
GdiSetBatchLimit
GetGraphicsMode
CreatePenIndirect
GetObjectW
CreateBitmap
CreateScalableFontResourceW
SetDIBits
BitBlt
GetLogColorSpaceW
SetBkMode
GetRasterizerCaps
CopyMetaFileA
BeginPath
GetRgnBox
CreateFontIndirectW
GetEnhMetaFileA
GetSystemPaletteUse
ResetDCW
GetClipBox
SetRectRgn
GetCharacterPlacementA
AngleArc
GetOutlineTextMetricsW
SetTextJustification
GetCurrentObject
ColorMatchToTarget
CreateRectRgnIndirect
AnimatePalette
GetStockObject
PaintRgn
DescribePixelFormat
EnumEnhMetaFile
CreateColorSpaceW
RestoreDC
GetTextMetricsW
SetViewportOrgEx
CreateDCW
SetPixel
GetPaletteEntries
GetEnhMetaFilePaletteEntries
SetMiterLimit
UpdateICMRegKeyW
EnumObjects
GetTextColor
GdiPlayJournal
GetKerningPairs
SetBitmapDimensionEx
EnumFontFamiliesExW
GetFontData
GetCharWidthW
GetOutlineTextMetricsA
GetEnhMetaFileDescriptionW
GetTextExtentPointA
SetTextAlign
ExtTextOutW
PlayEnhMetaFileRecord
ChoosePixelFormat
EqualRgn
GetDeviceGammaRamp
CreateEnhMetaFileW
GetTextExtentPointW
ScaleViewportExtEx
GetGlyphOutlineW
UnrealizeObject
CopyEnhMetaFileA
GetPath
SetMetaRgn
SetMapMode
GetCharABCWidthsFloatA
TranslateCharsetInfo
GdiPlayScript
SetWinMetaFileBits
GetObjectType
CreateDCA
EnumFontsA
ResetDCA
FillRgn
SetICMMode
CreateMetaFileW
EnumFontFamiliesW
EndPath
Chord
SetColorAdjustment
IntersectClipRect
CreateScalableFontResourceA
GetTextFaceA
SetICMProfileA
MaskBlt
CreatePatternBrush
PlayMetaFile
ExtFloodFill
SetLayout
ExtCreatePen
GetClipRgn
SetWindowOrgEx
GetICMProfileA
SetTextColor
GetRegionData
CreateCompatibleBitmap
CancelDC
RectVisible
StretchDIBits
GetAspectRatioFilterEx
CreatePalette
SelectObject
GetSystemPaletteEntries
GetRandomRgn
GetMetaFileW
PolyTextOutA
GetLogColorSpaceA
UpdateICMRegKeyA
Pie
CreateICW
DeleteObject
CreateDiscardableBitmap
DeviceCapabilitiesExW
FrameRgn
EndDoc
SetPaletteEntries
PolyDraw
SetDeviceGammaRamp
GetStretchBltMode
DeleteColorSpace
SetStretchBltMode
GetCharWidthFloatW
GetROP2
GdiGetBatchLimit
GetICMProfileW
StretchBlt
Arc
SetMagicColors
OffsetWindowOrgEx
CreateFontW
EnumFontFamiliesExA
GdiPlayDCScript
PolyBezierTo
TextOutW
GetBitmapDimensionEx
FlattenPath
EnumICMProfilesA
PtVisible
RemoveFontResourceW
GetDIBColorTable
GetBkMode
PlayMetaFileRecord
GetMapMode
CreateColorSpaceA
ExtCreateRegion
CloseEnhMetaFile
CreateEllipticRgn
GetMiterLimit
SetArcDirection
ExcludeClipRect
WidenPath
CreateICA
SelectClipPath
FixBrushOrgEx
OffsetRgn
GetDeviceCaps
PolyPolyline
SwapBuffers
GetLayout
GetTextCharacterExtra
CreateHatchBrush
GetCharacterPlacementW
LPtoDP
SetColorSpace
SetBitmapBits
StrokeAndFillPath
StartDocA
GetBoundsRect
CreatePen
GetDIBits
DPtoLP
CreateRectRgn
CheckColorsInGamut
Polyline
PolylineTo
ExtTextOutA
GetEnhMetaFileW
SetSystemPaletteUse
GetKerningPairsA
Escape
CreatePolygonRgn
PathToRegion

comdlg32

PageSetupDlgW
GetOpenFileNameW
PrintDlgW
GetOpenFileNameA
ChooseColorA
LoadAlterBitmap
GetFileTitleA
ChooseFontW
ChooseColorW
GetSaveFileNameA
PrintDlgA
GetSaveFileNameW
GetFileTitleW
FindTextW
FindTextA
ReplaceTextA

Sections

.text
Size: 136KB - Virtual size: 136KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 254KB - Virtual size: 254KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c352d0c2678a5187fd4c8112d954cf4b

Headers

File Characteristics

Imports

kernel32

advapi32

gdi32

comdlg32

Sections

.text Size: 136KB - Virtual size: 136KB

.data Size: 254KB - Virtual size: 254KB

.reloc Size: 19KB - Virtual size: 19KB

.text
Size: 136KB - Virtual size: 136KB

.data
Size: 254KB - Virtual size: 254KB

.reloc
Size: 19KB - Virtual size: 19KB