0722726a82b444823ac046d1af5d8885_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0722726a82b444823ac046d1af5d8885_JaffaCakes118
Size

420KB
MD5

0722726a82b444823ac046d1af5d8885
SHA1

c3a4ce142ea98035a897d2365669d376c8a7fb35
SHA256

ccf49600e77852783f5e55ff8f8f51a9020001b4d1a34a61318668a6a517b7a6
SHA512

818c31d4aa424e33d1e14c30a6fe6b7511b495a0381d596390a900167b39d549f65411ee5a4f23ac3241d5e93671277cb76edf9cdcc0ce8dd7a67c5253387cb0
SSDEEP

12288:dhieUasHguhOC+0p6LCvbB9ig3k5RmnsOItT6aawv:XUam6LCv1wg058shfv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0722726a82b444823ac046d1af5d8885_JaffaCakes118

Files

0722726a82b444823ac046d1af5d8885_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1dfe864c44e967b8e6576c39fc7abfac

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CloseHandle
EnterCriticalSection
GetFileAttributesA
RtlUnwind
HeapFree
HeapAlloc
InterlockedDecrement
InterlockedIncrement
GetStartupInfoA
GetVersion
ExitProcess
RaiseException
GetCurrentThreadId
TlsSetValue
TlsAlloc
SetLastError
TlsGetValue
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
HeapReAlloc
IsBadWritePtr
WideCharToMultiByte
MultiByteToWideChar
LCMapStringA
LCMapStringW
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
GetModuleFileNameA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
InitializeCriticalSection
GetEnvironmentStringsW
SetHandleCount
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
GetStringTypeA
GetStringTypeW
GetCPInfo
GetACP
GetOEMCP
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
SetEndOfFile
GetTempPathA
lstrlenW
lstrcpyW
IsDBCSLeadByte
GetModuleHandleA
GetVersionExA
CreateProcessA
SetThreadPriority
ResumeThread
WaitForSingleObject
GetStdHandle
GetHandleInformation
GetCommandLineA
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalFree
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
DeleteFileA
GetFileType
GetFileSize
Sleep
LocalAlloc
LocalFree
OutputDebugStringA
CreateThread
GetThreadLocale
FormatMessageA
FreeLibrary
LoadLibraryA
GetProcAddress
CreateFileA
SetFilePointer
ReadFile
WriteFile
FlushFileBuffers
LeaveCriticalSection
DeleteCriticalSection
GetLastError

user32

ReleaseDC
SendMessageA
SetFocus
GetDC
GetParent
DefWindowProcA
EndPaint
DestroyCursor
wsprintfA
GetScrollInfo
GetScrollRange
ScrollWindow
UpdateWindow
GetClassInfoExA
RegisterClassExA
GetWindowLongA
SetWindowLongA
SetMenuItemInfoA
CreateWindowExA
GetMenuItemInfoA
CopyRect
LoadMenuA
ShowWindow
GetMessageA
TranslateMessage
DispatchMessageA
SetRect
LoadIconA
GetMenu
PostQuitMessage
MoveWindow
DestroyWindow
GetScrollPos
GetMenuItemCount
CheckMenuItem
GetMenuItemID
GetWindowRect
SetWindowTextA
GetSubMenu
EnableMenuItem
MessageBoxA
GetDesktopWindow
UnionRect
IntersectRect
GetSysColor
FillRect
ClientToScreen
ScreenToClient
PtInRect
LoadStringA
GetSystemMetrics
SetScrollPos
PostMessageA
EnableScrollBar
SetScrollInfo
BeginPaint
LoadCursorA
SetCursor
GetClientRect
InvalidateRect

gdi32

DeleteObject
AddFontResourceA
CreateScalableFontResourceA
RemoveFontResourceA
GetObjectA
GetBkColor
RestoreDC
SaveDC
CombineTransform
SetWorldTransform
CreateDIBitmap
MaskBlt
ExtCreatePen
StrokePath
FillPath
CreateHatchBrush
SetBrushOrgEx
PolyBezier
Arc
Polyline
Ellipse
Polygon
Pie
Chord
SetPixel
ExtTextOutW
ExtTextOutA
GetMapMode
SetPolyFillMode
GetCurrentObject
GetViewportExtEx
CreateBitmap
BeginPath
TextOutW
EndPath
CreatePen
CreatePatternBrush
StrokeAndFillPath
GetTextColor
BitBlt
GetTextMetricsW
GetTextExtentPoint32W
GetGlyphOutlineW
GetTextMetricsA
GetGlyphOutlineA
StretchDIBits
CreatePenIndirect
CreateFontIndirectW
ExtCreateRegion
CreateRectRgnIndirect
CombineRgn
SetRectRgn
LPtoDP
IntersectClipRect
SetROP2
SetBkColor
SetTextColor
CreateBrushIndirect
CreateDIBPatternBrushPt
DeleteDC
SetWindowExtEx
SetViewportExtEx
CreateDIBSection
SetStretchBltMode
SetGraphicsMode
SetMapMode
SetWindowOrgEx
SetViewportOrgEx
PatBlt
SetBoundsRect
AbortDoc
Rectangle
DPtoLP
GdiFlush
GetWindowOrgEx
GetWindowExtEx
StretchBlt
CreateFontIndirectA
GetTextExtentPoint32A
CreateSolidBrush
SelectObject
CreateFontA
CreateRectRgn
SelectClipRgn
GetStockObject
FillRgn
MoveToEx
LineTo
SetTextAlign
SetBkMode
TextOutA
GetDeviceCaps
CreateHalftonePalette
SelectPalette
RealizePalette
UnrealizeObject
UpdateColors
CreateCompatibleDC

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter
GetPrinterDriverDirectoryA

comdlg32

GetSaveFileNameA
GetOpenFileNameA

shell32

DragAcceptFiles
DragQueryFileA
ShellExecuteA
DragFinish

winmm

timeGetTime

comctl32

ord6
ord8
CreateToolbarEx
ord17

Sections

.text
Size: 244KB - Virtual size: 240KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 44KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 28KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 100KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1dfe864c44e967b8e6576c39fc7abfac

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

comdlg32

shell32

winmm

comctl32

Sections

.text Size: 244KB - Virtual size: 240KB

.rdata Size: 44KB - Virtual size: 42KB

.data Size: 28KB - Virtual size: 30KB

.rsrc Size: 100KB - Virtual size: 99KB

.text
Size: 244KB - Virtual size: 240KB

.rdata
Size: 44KB - Virtual size: 42KB

.data
Size: 28KB - Virtual size: 30KB

.rsrc
Size: 100KB - Virtual size: 99KB