0faa2bbdcb281633bdedec3ed30a0863_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

0faa2bbdcb281633bdedec3ed30a0863_JaffaCakes118
Size

348KB
MD5

0faa2bbdcb281633bdedec3ed30a0863
SHA1

0db6d14cb76a0825d1d46016d9a538bc326df076
SHA256

1a9b1ae7bd82c8a468d73649141f73f53f5c97d0cbbe68bf9e9c9e3cdacb2adc
SHA512

f32ceacfe144b841490507008ffafc5f265d020d2a26ddda9f90c772819840ec53920640eb6d54463594137373db62c41e973d2034f975f3a0c42472761297bb
SSDEEP

6144:LRlD1wwd33ClcsdosVs4XbGEDwYCpwaccWiyXuA6ogy+:LRlD1Dx3McsDvX68TCpwacpp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0faa2bbdcb281633bdedec3ed30a0863_JaffaCakes118

Files

0faa2bbdcb281633bdedec3ed30a0863_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7988345543a5b92b90de16e69166e59c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

UnhandledExceptionFilter
FreeEnvironmentStringsW
GetEnvironmentStrings
LCMapStringW
LCMapStringA
FreeEnvironmentStringsA
GetEnvironmentStringsW
GetFileType
GetEnvironmentVariableA
HeapDestroy
HeapCreate
SetHandleCount
VirtualAlloc
IsBadWritePtr
GetStdHandle
VirtualFree
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
GetTimeZoneInformation
GlobalReAlloc
LockResource
CompareStringW
SetEnvironmentVariableA
HeapReAlloc
GetACP
HeapSize
RaiseException
HeapAlloc
GetCommandLineA
HeapFree
GetStartupInfoA
RtlUnwind
SetErrorMode
GetTickCount
SystemTimeToFileTime
FileTimeToLocalFileTime
FileTimeToSystemTime
GetOEMCP
LocalFileTimeToFileTime
GetFileSize
TlsGetValue
GetCPInfo
GetProcessVersion
EnterCriticalSection
LocalReAlloc
TlsSetValue
SetUnhandledExceptionFilter
GetStringTypeA
LeaveCriticalSection
TerminateProcess
OpenProcess
GetModuleFileNameA
GetLogicalDrives
GetDriveTypeA
WritePrivateProfileStringA
GetLocalTime
DeleteFileA
CopyFileA
SetFileAttributesA
GetCurrentDirectoryA
ExitProcess
UnmapViewOfFile
GetVersionExA
CloseHandle
MapViewOfFile
LocalFree
LoadLibraryA
GetProcAddress
GetCurrentProcessId
TlsFree
DeleteCriticalSection
GlobalHandle
GetProfileStringA
LocalAlloc
TlsAlloc
InitializeCriticalSection
GetShortPathNameA
SizeofResource
GlobalFlags
GetVolumeInformationA
GetThreadLocale
GetStringTypeExA
UnlockFile
MoveFileA
SetEndOfFile
SetFilePointer
LockFile
FlushFileBuffers
CreateFileA
WriteFile
ReadFile
FindNextFileA
GetCurrentProcess
DuplicateHandle
FindClose
FindFirstFileA
SetLastError
InterlockedDecrement
FormatMessageA
WideCharToMultiByte
MultiByteToWideChar
InterlockedIncrement
MulDiv
GetFileTime
GetLastError
GetDiskFreeSpaceA
GetTempFileNameA
SetFileTime
GetFullPathNameA
GetVersion
lstrcpynA
GetFileAttributesA
GlobalFindAtomA
lstrcatA
GlobalGetAtomNameA
lstrlenA
lstrcpyA
GetModuleHandleA
GlobalAddAtomA
GetPrivateProfileStringA
GetPrivateProfileIntA
lstrcmpiA
GlobalAlloc
GlobalDeleteAtom
lstrcmpA
GetCurrentThread
GetCurrentThreadId
GlobalFree
GlobalLock
GlobalUnlock
FindResourceA
CompareStringA
FreeLibrary
SetStdHandle
LoadResource

user32

WindowFromPoint
GetTabbedTextExtentA
FindWindowA
MessageBeep
GetNextDlgGroupItem
CopyAcceleratorTableA
CharNextA
DestroyIcon
LoadStringA
GetSysColorBrush
GetMenuStringA
InsertMenuA
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
GetClassNameA
CharUpperA
GetSystemMenu
DeleteMenu
AppendMenuA
IsRectEmpty
SetParent
KillTimer
UnpackDDElParam
ReuseDDElParam
SetMenu
LoadMenuA
DestroyMenu
GetDesktopWindow
ReleaseCapture
TranslateAcceleratorA
SetRectEmpty
InvalidateRect
PtInRect
FillRect
SetRect
GetDC
ReleaseDC
LoadCursorA
DestroyCursor
LoadIconA
MapWindowPoints
GetSysColor
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
GetClientRect
BeginDeferWindowPos
CopyRect
EndDeferWindowPos
ScrollWindow
GetScrollInfo
IsZoomed
BringWindowToTop
PostThreadMessageA
GetTopWindow
IsChild
GetCapture
WinHelpA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
DefWindowProcA
CreateWindowExA
InflateRect
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetForegroundWindow
SetForegroundWindow
RegisterWindowMessageA
OffsetRect
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindowRect
MapDialogRect
GetWindow
SetWindowContextHelpId
wsprintfA
SetFocus
ShowWindow
SetWindowPos
MoveWindow
RegisterClipboardFormatA
LockWindowUpdate
GetDCEx
InvertRect
SetCapture
SetWindowLongA
GetDlgCtrlID
GetWindowTextLengthA
GetWindowTextA
SetWindowTextA
IsDialogMessageA
SetDlgItemTextA
SendDlgItemMessageA
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
GetScrollRange
SetScrollRange
SetScrollInfo
ShowScrollBar
GetClassLongA
EnableMenuItem
GetFocus
GetMessageA
TranslateMessage
DispatchMessageA
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
PeekMessageA
GetCursorPos
SetWindowsHookExA
GetLastActivePopup
MessageBoxA
SetCursor
ShowOwnedPopups
PostMessageA
PostQuitMessage
GetNextDlgTabItem
EndDialog
GetActiveWindow
SetActiveWindow
IsWindow
GetSystemMetrics
CreateDialogIndirectParamA
DestroyWindow
GetParent
GetWindowLongA
GetDlgItem
IsWindowEnabled
SendMessageA
SetTimer
EnableWindow
UpdateWindow
SetScrollPos
GetScrollPos
LoadAcceleratorsA
HideCaret
ShowCaret
UnregisterClassA
DrawFocusRect
DefDlgProcA
ExcludeUpdateRgn
IsWindowUnicode

gdi32

SetTextColor
SetMapMode
SetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
OffsetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
SelectClipRgn
ExcludeClipRect
ScaleWindowExtEx
MoveToEx
IntersectClipRect
SetTextAlign
LineTo
GetCurrentPositionEx
CreateRectRgn
SetStretchBltMode
GetViewportExtEx
GetWindowExtEx
CreateSolidBrush
PtVisible
CreatePatternBrush
TextOutA
ExtTextOutA
RectVisible
GetTextColor
GetBkColor
Escape
GetNearestColor
GetStretchBltMode
LPtoDP
GetTextAlign
GetBkMode
GetPolyFillMode
GetTextFaceA
GetWindowOrgEx
GetROP2
GetMapMode
SetRectRgn
BitBlt
CreateRectRgnIndirect
CombineRgn
CreateDIBitmap
GetTextExtentPointA
SetROP2
SetPolyFillMode
RestoreDC
SaveDC
GetTextMetricsA
GetTextExtentPoint32A
CreateFontIndirectA
GetCharWidthA
DeleteObject
CreateFontA
CreateCompatibleDC
SelectObject
CreateCompatibleBitmap
DeleteDC
CreateDCA
StretchDIBits
StartDocA
StartPage
SetAbortProc
EndDoc
GetObjectA
EndPage
GetViewportOrgEx
CreatePen
AbortDoc
Rectangle
GetStockObject
DPtoLP
CreateBitmap
GetClipBox
PatBlt
SetBkMode
SetBkColor
GetDeviceCaps

comdlg32

GetSaveFileNameA
GetOpenFileNameA
PrintDlgA
GetFileTitleA
CommDlgExtendedError

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

advapi32

RegOpenKeyA
SetSecurityInfo
SetEntriesInAclA
GetSecurityInfo
RegCloseKey
RegSetValueExA
RegOpenKeyExA
RegCreateKeyExA
RegQueryValueA
RegEnumKeyA
GetFileSecurityA
RegDeleteKeyA
RegQueryValueExA
RegDeleteValueA
SetFileSecurityA
RegCreateKeyA
RegSetValueA

shell32

ExtractIconA
DragQueryFileA
DragFinish
SHGetFileInfoA

comctl32

ord17

oledlg

ord8

ole32

CoFreeUnusedLibraries
OleUninitialize
OleInitialize
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoRegisterMessageFilter
CreateILockBytesOnHGlobal
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard
CoTaskMemAlloc
CoTaskMemFree

olepro32

ord253

oleaut32

SysStringLen
SysFreeString
SysAllocStringByteLen
SysAllocString
VariantChangeType
SysAllocStringLen
VariantClear
VariantTimeToSystemTime
VariantCopy

psapi

EnumProcesses
GetModuleFileNameExA
EnumProcessModules
GetModuleBaseNameA

Sections

.text
Size: 236KB - Virtual size: 233KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 60KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7988345543a5b92b90de16e69166e59c

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

psapi

Sections

.text Size: 236KB - Virtual size: 233KB

.rdata Size: 60KB - Virtual size: 57KB

.data Size: 20KB - Virtual size: 35KB

.rsrc Size: 28KB - Virtual size: 24KB

.text
Size: 236KB - Virtual size: 233KB

.rdata
Size: 60KB - Virtual size: 57KB

.data
Size: 20KB - Virtual size: 35KB

.rsrc
Size: 28KB - Virtual size: 24KB