080ef94400ac95c3098afe6ec83dde73_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

080ef94400ac95c3098afe6ec83dde73_JaffaCakes118
Size

184KB
MD5

080ef94400ac95c3098afe6ec83dde73
SHA1

795af95a639245406bb364d62fd87369b11a60e3
SHA256

1b85ee659b02e35afaaec7eb56e0816256248e8c73795458e623709d590bc89f
SHA512

aab963f3b08d0d2e2cbe469a6e8825ebb06235df579c1b242dc9c4b0fd7ab59ba1f4e91634308a5eccb72ca5c3a9dd57f0320debade07c425a676ee5494093fd
SSDEEP

3072:jgMP4ukak3H19JrRdFsT4Y1m9octKI9oDRFWfR:hP45aIjKI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
080ef94400ac95c3098afe6ec83dde73_JaffaCakes118

Files

080ef94400ac95c3098afe6ec83dde73_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c8e0a05eeaf6d64764c12643a07a2553

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

AdjustWindowRectEx
GetSysColor
MapWindowPoints
ClientToScreen
GetDC
ReleaseDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
InsertMenuA
GetMenuStringA
LoadCursorA
GetClassNameA
DeleteMenu
GetSysColorBrush
DestroyIcon
PostThreadMessageA
CharUpperA
GetTopWindow
RegisterClassA
DefWindowProcA
CreateWindowExA
GetClassLongA
SetPropA
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetForegroundWindow
SetForegroundWindow
SystemParametersInfoA
GetWindowPlacement
EndDialog
CreateDialogIndirectParamA
DestroyWindow
ScreenToClient
GetWindowTextLengthA
GetWindowTextA
SetWindowTextA
IsDialogMessageA
SendDlgItemMessageA
RegisterClipboardFormatA
BringWindowToTop
EqualRect
CopyRect
GetDlgItem
InvalidateRect
SetWindowLongA
wsprintfA
SetWindowPos
GetMenuItemCount
GetSubMenu
GetMenuItemID
UnpackDDElParam
ReuseDDElParam
SetActiveWindow
WinHelpA
SetMenu
GetMenu
GetClassInfoA
LoadMenuA
DestroyMenu
SetFocus
ShowWindow
IsWindow
GetDesktopWindow
GetWindow
GetCapture
ReleaseCapture
TranslateAcceleratorA
LoadAcceleratorsA
SetRectEmpty
RegisterWindowMessageA
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
GetCursorPos
SetWindowsHookExA
GetParent
GetLastActivePopup
IsWindowEnabled
GetWindowLongA
SetCursor
ShowOwnedPopups
UnhookWindowsHookEx
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
MoveWindow
UpdateWindow
MessageBoxA
LoadStringA
PeekMessageA
EnableWindow
PostQuitMessage
PostMessageA
PtInRect
IsIconic
SendMessageA
GetSystemMetrics
GetClientRect
DrawIcon
LoadIconA
GetDlgCtrlID
GetWindowRect
UnregisterClassA

opapi11

OP_parse_file
OP_error_num
OP_error
OP_set_callback
OP_init

comctl32

ord17

oledlg

ord8

kernel32

WriteFile
SetFilePointer
FlushFileBuffers
DeleteFileA
FindClose
FindFirstFileA
GetVolumeInformationA
GetFullPathNameA
GetStringTypeExA
GetThreadLocale
GetShortPathNameA
RtlUnwind
GetStartupInfoA
GetCommandLineA
ExitProcess
HeapFree
RaiseException
TerminateProcess
HeapReAlloc
HeapSize
GetACP
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
LCMapStringA
LCMapStringW
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
GetCurrentProcess
SetErrorMode
GetOEMCP
GetCPInfo
GetProcessVersion
GetCurrentDirectoryA
GlobalFlags
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
LocalAlloc
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GetLastError
lstrlenW
MulDiv
SetLastError
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
GlobalFindAtomA
GetModuleHandleA
GlobalFree
LockResource
FindResourceA
LoadResource
LoadLibraryA
GetProcAddress
FreeLibrary
GetTickCount
lstrcatA
lstrcpyA
lstrcpynA
GlobalUnlock
GlobalGetAtomNameA
GlobalAddAtomA
GetVersion
CloseHandle
GetModuleFileNameA
GlobalLock
GlobalAlloc
GlobalDeleteAtom
lstrcmpA
lstrcmpiA
GetCurrentThread
GetCurrentThreadId
FormatMessageA
LocalFree
MultiByteToWideChar
WideCharToMultiByte
lstrlenA
InterlockedDecrement
InterlockedIncrement
HeapAlloc

gdi32

SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
DeleteObject
GetDeviceCaps
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetStockObject
SelectObject
RestoreDC
SaveDC
DeleteDC
GetObjectA
SetBkColor
SetTextColor
GetClipBox
CreateBitmap
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

comdlg32

GetFileTitleA

advapi32

RegQueryValueA
RegOpenKeyA
RegSetValueA
RegDeleteKeyA
RegDeleteValueA
RegSetValueExA
RegQueryValueExA
RegOpenKeyExA
RegCreateKeyExA
RegCloseKey

shell32

ExtractIconA
DragQueryFileA
DragFinish

ole32

CoTaskMemAlloc
OleIsCurrentClipboard
CoDisconnectObject
CoFreeUnusedLibraries
OleUninitialize
OleInitialize
CoRevokeClassObject
CoRegisterClassObject
OleFlushClipboard
CoRegisterMessageFilter
StringFromCLSID
CoTaskMemFree

oleaut32

SysFreeString
LoadTypeLi
SysAllocStringByteLen
SysStringLen
SysAllocStringLen
VariantCopy
SysStringByteLen
SysAllocString
VariantClear
VariantChangeType

Sections

.text
Size: 112KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 48KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c8e0a05eeaf6d64764c12643a07a2553

Headers

File Characteristics

Imports

user32

opapi11

comctl32

oledlg

kernel32

gdi32

winspool.drv

comdlg32

advapi32

shell32

ole32

oleaut32

Sections

.text Size: 112KB - Virtual size: 108KB

.rdata Size: 32KB - Virtual size: 28KB

.data Size: 16KB - Virtual size: 29KB

.rsrc Size: 20KB - Virtual size: 48KB

.text
Size: 112KB - Virtual size: 108KB

.rdata
Size: 32KB - Virtual size: 28KB

.data
Size: 16KB - Virtual size: 29KB

.rsrc
Size: 20KB - Virtual size: 48KB