0dafa313ff1cbcbb547867ac21bd454f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0dafa313ff1cbcbb547867ac21bd454f_JaffaCakes118
Size

476KB
MD5

0dafa313ff1cbcbb547867ac21bd454f
SHA1

41fa193d44c465b05b0264b1d13016e6f10a770b
SHA256

fadf95605ae8d8945e34dfb3f3d9ee7dc0d07f807fedeaa9e8c2d852caa37aa7
SHA512

006e5c3555b681cf5c984322d2533dc2af8642e7a04df2d1c9d0f1199dadb9a15dc62308342bf4ca35cbc1d8618daa6177692ce7368622e1e0f69d1ff618debb
SSDEEP

12288:1UrkgQZO+oW3f6V84X+gbEX6up83+TuuwouviugLG:199OL+fh4X+6ua3ouvtGG

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0dafa313ff1cbcbb547867ac21bd454f_JaffaCakes118

Files

0dafa313ff1cbcbb547867ac21bd454f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7e1057653b0d0873ad6237289f745e81

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

WSAConnect

ddraw

DirectDrawEnumerateA

user32

GetDlgItem
SetRect
GetForegroundWindow
GetDesktopWindow
GetLastActivePopup
IsZoomed
FrameRect
DrawMenuBar
ShowCursor
DefMDIChildProcA
GetClassNameA
GetWindowDC
DefFrameProcA
VkKeyScanW
PeekMessageW
GetCaretPos
ClientToScreen
GetActiveWindow
EnableMenuItem
GetMenu
GetSystemMenu
WaitMessage
GetDC
DdeNameService
GetWindowThreadProcessId
PostMessageW
WindowFromPoint
SetParent
InsertMenuA
ReleaseDC
SetMenuDefaultItem
SetKeyboardState
DdeQueryStringA
CallWindowProcA
DrawFocusRect
SetMenu
SetCursorPos
LoadIconA
IsCharAlphaA
GetKeyboardState
VkKeyScanA
IsWindowEnabled
GetMessageTime
SubtractRect
EndDialog
AttachThreadInput
GetMenuItemInfoA
GetCursor
MessageBoxA
CharUpperBuffW
DrawTextA
DialogBoxParamA
CharToOemA
HideCaret
CopyRect
DdeInitializeA
AdjustWindowRectEx
DrawIcon
IsDialogMessageA
SetWindowsHookExW
CharUpperBuffA
ClipCursor
GetWindowRgn
InvalidateRect
WaitForInputIdle
GetDCEx
GetScrollInfo
UpdateWindow
TrackPopupMenu
GetUpdateRgn
EnableWindow
GetKeyState
keybd_event
GetPropA
DestroyWindow
EndDeferWindowPos
EnumClipboardFormats
DispatchMessageA
PostThreadMessageA
IsChild
CallNextHookEx
DdeClientTransaction
EnumThreadWindows
GetMenuState
GetClipboardFormatNameA
LockWindowUpdate
GetMenuItemCount
LoadStringA
DdeCreateStringHandleA
DdeCmpStringHandles
GetClassInfoA
TabbedTextOutA
DdePostAdvise
CharPrevA
UnhookWindowsHookEx
PeekMessageA
BeginPaint
SetMenuItemInfoA
GetMenuItemID
RemovePropA
ScreenToClient
GetSystemMetrics
DdeSetUserHandle
ToAscii
PtInRect
OffsetRect
DdeDisconnect
SetScrollRange
CreateDialogParamA
DdeQueryConvInfo
SetWindowTextA
GetWindowTextLengthA
IsIconic
GetScrollPos
GetCaretBlinkTime
GetMenuStringA
DeleteMenu
SetWindowPos
SetScrollInfo
SendMessageA
EqualRect
IsRectEmpty
DestroyCursor
CharLowerBuffA
EmptyClipboard
ShowScrollBar
MapWindowPoints
GetClassInfoExA
CreateAcceleratorTableA
GetClientRect
SetScrollPos
SetWindowsHookExA
RegisterClassA
GetTabbedTextExtentA
DdeConnect
SetWindowRgn
MessageBeep
GetClipboardData
DestroyIcon
CreateMenu
RegisterClassExA
IsWindow
DestroyCaret
GetUpdateRect
SendDlgItemMessageA
WinHelpA
GetFocus
BringWindowToTop
LoadCursorA
LoadImageA
SetFocus
ReleaseCapture
LoadBitmapA
SetActiveWindow
SetPropA
RemoveMenu
MessageBoxIndirectA
FindWindowW
BeginDeferWindowPos
CopyAcceleratorTableA
MsgWaitForMultipleObjects
AdjustWindowRect
SetForegroundWindow
GetCapture
DeferWindowPos
ShowWindow
GetQueueStatus
GetWindowTextA
EndPaint
CharNextA
PostMessageA
SetTimer
GetWindowLongA
CreateCursor
DdeGetLastError
DefWindowProcA
ModifyMenuA
GetAsyncKeyState
GetMessagePos
SetDlgItemTextA
CreatePopupMenu
SetWindowContextHelpId
DrawFrameControl
GetDoubleClickTime
SetCaretPos
CreateIcon
DestroyAcceleratorTable
DdeFreeStringHandle
SetCursor
OemToCharA
CharToOemBuffA
GetParent
PostQuitMessage
KillTimer
IsWindowVisible
CreateCaret
LoadAcceleratorsA
CheckMenuItem
CreateWindowExA
IsClipboardFormatAvailable
CloseClipboard
GetIconInfo
SetClipboardData
CharLowerA
TranslateMessage
DdeCreateDataHandle
GetCursorPos
SetWindowLongA
DdeAbandonTransaction
InflateRect
FillRect
SystemParametersInfoA
DdeFreeDataHandle
DdeGetData
CharLowerBuffW
DestroyMenu
GetSubMenu
MoveWindow
CharUpperA
DdeUninitialize
FindWindowA
GetKeyboardLayout
InvalidateRgn
GetWindowRect
GetWindow
wsprintfA
UnregisterClassA
OpenClipboard
GetSysColor
ShowCaret
AppendMenuA
IntersectRect
SetCapture
TranslateMDISysAccel
RegisterClipboardFormatA

advapi32

RegEnumKeyW
RegDeleteValueW
RegOpenKeyW
RegOpenKeyExA
RegSetValueExA
RegOpenKeyA
SetSecurityDescriptorDacl
RegQueryInfoKeyA
RegEnumValueA
RegSetValueExW
RegCloseKey
OpenProcessToken
ReportEventA
RegEnumValueW
RegCreateKeyW
RegDeleteKeyW
RegQueryValueExW
DeregisterEventSource
RegQueryValueA
RegDeleteKeyA
RegEnumKeyA
RegCreateKeyA
AdjustTokenPrivileges
RegisterEventSourceA
RegSetValueA
RegDeleteValueA
InitializeSecurityDescriptor
LookupPrivilegeValueA
RegQueryValueExA

olecli32

OleClone

kernel32

IsBadCodePtr
UnhandledExceptionFilter
ResetEvent
GetCurrentProcess
GetCommandLineA
WaitForSingleObject
EnterCriticalSection
CreateProcessA
GetFileAttributesA
FormatMessageA
GetEnvironmentStringsW
ExitThread
_lclose
SetEndOfFile
ReadFile
GetTempFileNameA
GetVersion
RemoveDirectoryA
GlobalHandle
HeapFree
MoveFileA
GetExitCodeProcess
CreateProcessW
GetProfileStringA
InitializeCriticalSection
LCMapStringA
GetDriveTypeA
GlobalSize
GetFullPathNameA
LoadResource
GlobalAddAtomA
lstrcpyA
DeleteFileA
GetSystemInfo
GetShortPathNameA
GetSystemDirectoryA
FlushInstructionCache
Sleep
GetModuleHandleA
GetLocaleInfoA
GetStringTypeExA
ResumeThread
CreateEventA
SetStdHandle
GlobalAlloc
FindResourceA
SetLocalTime
GetStringTypeW
InterlockedDecrement
TlsFree
lstrcatA
RtlUnwind
_lread
lstrcmpiA
GetEnvironmentStrings
FileTimeToLocalFileTime
GetProcAddress
SetCurrentDirectoryA
GetUserDefaultLCID
LoadLibraryExA
WinExec
lstrcmpA
GetVolumeInformationA
RaiseException
GetStartupInfoA
HeapReAlloc
InterlockedIncrement
CompareStringW
FindNextFileA
FindClose
CompareStringA
SearchPathA
GetLastError
GetCurrentDirectoryA
MulDiv
WriteFile
LockResource
GetModuleFileNameW
SetFilePointer
LeaveCriticalSection
GetTempPathA
GetOEMCP
GetFileType
GetSystemTime
FreeResource
_lwrite
GetUserDefaultLangID
SetEnvironmentVariableA
TerminateProcess
GetVersionExA
GetCurrentThreadId
WideCharToMultiByte
FreeLibrary
GetCPInfo
FindFirstFileA
GlobalLock
UnlockFile
FreeEnvironmentStringsW
SetLastError
lstrcpynA
CreateSemaphoreA
GetSystemDefaultLCID
GetTimeZoneInformation
SetFileTime
SystemTimeToFileTime
VirtualProtect
SizeofResource
TlsGetValue
GlobalFree
FormatMessageW
FlushFileBuffers
HeapAlloc
LockFile
CreateDirectoryA
lstrlenA
_llseek
FreeEnvironmentStringsA
HeapCreate
DeleteCriticalSection
ReleaseSemaphore
lstrcmpiW
TlsAlloc
GlobalUnlock
CreateFileA
CloseHandle
GetStdHandle
HeapSize
GetWindowsDirectoryA
TlsSetValue
CreateThread
GetACP
GetLocalTime
DuplicateHandle
GetTickCount
GetStringTypeA
GlobalDeleteAtom
GetModuleFileNameA
SetEvent
LCMapStringW
GetFileTime
IsBadReadPtr
GetCurrentProcessId
IsDBCSLeadByte
GetSystemDefaultLangID
SetHandleCount
HeapDestroy
FileTimeToSystemTime
ExitProcess
MultiByteToWideChar
GlobalReAlloc
SetErrorMode
SetFileAttributesA
VirtualFree
VirtualQuery
LoadLibraryA
VirtualAlloc
GetDateFormatA

ole32

GetClassFile
OleGetIconOfClass
CoRevokeClassObject
CoLockObjectExternal
OleQueryCreateFromData
IsAccelerator
StgOpenStorageOnILockBytes
OleRegGetUserType
CLSIDFromString
StgOpenStorage
OleRun
OleCreateLinkToFile
StgIsStorageILockBytes
CreateStreamOnHGlobal
CreateBindCtx
CoRegisterMessageFilter
RegisterDragDrop
CoRegisterClassObject
IIDFromString
CoCreateInstance
MkParseDisplayName
OleCreateLink
OleGetAutoConvert
OleDuplicateData
CoIsOle1Class
OleQueryLinkFromData
OleDestroyMenuDescriptor
OleIsRunning
ReadClassStg
OleCreateFromData
OleGetClipboard
OleSaveToStream
CLSIDFromProgID
OleTranslateAccelerator
CoUnmarshalInterface
DoDragDrop
BindMoniker
CreateOleAdviseHolder
OleUninitialize
CreateILockBytesOnHGlobal
OleSetClipboard
OleInitialize
CoMarshalInterface
OleConvertOLESTREAMToIStorage
CoGetClassObject
OleFlushClipboard
OleLockRunning
OleIsCurrentClipboard
WriteClassStg
OleSetMenuDescriptor
StgCreateDocfileOnILockBytes
ProgIDFromCLSID
OleLoad
OleLoadFromStream
ReleaseStgMedium
StringFromGUID2
CreateDataAdviseHolder
OleConvertIStorageToOLESTREAM
OleCreateLinkFromData
OleSave
OleDoAutoConvert
CoFreeUnusedLibraries
OleCreateFromFile
StringFromCLSID
OleCreateMenuDescriptor
StgCreateDocfile
CoGetMalloc
ReadClassStm
CoDisconnectObject
RevokeDragDrop

Sections

.text
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 2.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 436KB - Virtual size: 435KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7e1057653b0d0873ad6237289f745e81

Headers

File Characteristics

Imports

ws2_32

ddraw

user32

advapi32

olecli32

kernel32

ole32

Sections

.text Size: 4KB - Virtual size: 1KB

.idata Size: 16KB - Virtual size: 12KB

.rdata Size: 8KB - Virtual size: 4KB

.data Size: 8KB - Virtual size: 2.4MB

.rsrc Size: 436KB - Virtual size: 435KB

.text
Size: 4KB - Virtual size: 1KB

.idata
Size: 16KB - Virtual size: 12KB

.rdata
Size: 8KB - Virtual size: 4KB

.data
Size: 8KB - Virtual size: 2.4MB

.rsrc
Size: 436KB - Virtual size: 435KB