0dd292f95fac4fedc3e5f61901e5d9e7_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0dd292f95fac4fedc3e5f61901e5d9e7_JaffaCakes118
Size

608KB
MD5

0dd292f95fac4fedc3e5f61901e5d9e7
SHA1

e517a63c13b64b550602178deee33ea11680b67f
SHA256

3d840be55d2c7e282bdb39b9dee22c381e18b1cfcb12f275360e3977a6bb292c
SHA512

f8d27dbf6ab0f3d73ed0f44c6e6fcfdc8d372c44942f555268dfd693f5afe5babce16ba940c02bb8c40a66cab65f28e2922dda79930f489957477bd48d7c4852
SSDEEP

12288:RDWvgbCF18aQ6BOHfjKm31Ybg89UydU1wvd5g5bxr9898:JEgbe06BO/PY089UyO1Wd5g5h98

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0dd292f95fac4fedc3e5f61901e5d9e7_JaffaCakes118

Files

0dd292f95fac4fedc3e5f61901e5d9e7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6ef84f3339b37cd27f28a3dec2bc2371

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

OemToCharBuffW
DdeUnaccessData
DefWindowProcA
DdeAddData
GetClassInfoA
GetDlgItemTextW
RegisterClassW
DialogBoxParamW
GetMenuItemRect
CreateDesktopW
DrawFocusRect
UnregisterHotKey
GetMenuCheckMarkDimensions
EndDeferWindowPos
GetKeyboardLayoutNameA
CallMsgFilterW
SetClipboardData
CreateWindowStationW
RegisterClassExA
MessageBoxW
MoveWindow
RegisterClipboardFormatA
SetMenuItemInfoA
GetWindowLongA
GetTopWindow
GetWindowTextLengthW
CheckMenuItem
LoadKeyboardLayoutA
GetClassNameW
UnregisterClassW
CountClipboardFormats
DestroyMenu
ClipCursor
IsIconic
SetUserObjectInformationW
ModifyMenuA
SetWindowContextHelpId
FlashWindow
OpenInputDesktop
RegisterClassA
IsDialogMessageA
LookupIconIdFromDirectory
GetClassInfoExA
CreateWindowStationA
GetLastActivePopup
AppendMenuW
EnumClipboardFormats
SetRect
GetScrollInfo
CreateWindowExW
LookupIconIdFromDirectoryEx
DestroyWindow
DdeSetUserHandle
GetPropA
WINNLSEnableIME
EnumDisplaySettingsExA
SetMessageQueue
LoadCursorFromFileW
CharPrevExA
DialogBoxIndirectParamA
LoadCursorW
VkKeyScanA
GetClipboardFormatNameW
CloseClipboard
DdeQueryConvInfo
EnumDisplaySettingsA
WindowFromPoint
TranslateAccelerator
LoadBitmapA
GetProcessDefaultLayout
LoadImageA
LoadKeyboardLayoutW
DrawTextExA
EnumDisplaySettingsExW
DragDetect
GetMenuBarInfo
IsChild
SetScrollPos
DefDlgProcW
DrawFrameControl
CreateIconFromResource
RemovePropA
UnhookWindowsHook
BroadcastSystemMessageA
VkKeyScanExA
EqualRect
GetClipboardData
ChangeDisplaySettingsExW
CheckRadioButton
BroadcastSystemMessage
MonitorFromWindow
ReleaseDC
CreateMenu
CreatePopupMenu
CharToOemA
SetActiveWindow
ShowWindow
OpenClipboard
DefFrameProcW
GetWindowTextW
RegisterWindowMessageA
SetMenuItemInfoW

kernel32

OpenWaitableTimerW
LCMapStringA
RtlUnwind
SetConsoleTitleA
GetTickCount
GetModuleFileNameW
WideCharToMultiByte
GetStartupInfoA
TlsFree
CompareStringA
GetTimeFormatA
GetCurrentProcess
SetUnhandledExceptionFilter
GetThreadPriorityBoost
HeapCreate
GetDateFormatA
HeapFree
GetCurrentProcessId
GetCommandLineA
GetConsoleCP
ExitProcess
SetEnvironmentVariableA
GetModuleFileNameA
GetEnvironmentStringsW
CreateFileMappingW
HeapAlloc
LockFile
GetFullPathNameW
GetCurrentThread
ExitThread
GetStartupInfoW
IsValidLocale
FlushFileBuffers
GetStringTypeW
TlsGetValue
SetFilePointer
GetStringTypeA
HeapDestroy
GetProfileIntW
GetEnvironmentVariableA
CloseHandle
GetProcAddress
ReadConsoleInputA
CreateSemaphoreW
GetUserDefaultLCID
HeapReAlloc
ResumeThread
GetTempFileNameW
WriteConsoleW
GetEnvironmentStrings
WriteConsoleA
EnterCriticalSection
WriteFile
UnmapViewOfFile
IsBadWritePtr
GetModuleHandleA
GetCommandLineW
GetConsoleMode
WriteConsoleOutputAttribute
GetLocaleInfoA
lstrlenA
HeapSize
FreeEnvironmentStringsW
GetFileType
GetTempFileNameA
SetLastError
IsDebuggerPresent
GetStdHandle
LCMapStringW
GetThreadSelectorEntry
GetLastError
VirtualAlloc
GetVersionExA
VirtualQuery
TransactNamedPipe
TryEnterCriticalSection
GetPrivateProfileStringA
OpenFileMappingA
TlsSetValue
GetFileAttributesExW
LoadLibraryA
SetStdHandle
EnumSystemLocalesA
GetProcessHeap
GetOEMCP
GetCPInfo
lstrcpynW
UnhandledExceptionFilter
ReadFile
CreateFileA
GetLogicalDrives
GetTempPathW
lstrcmpiW
GetNumberFormatW
CreateMutexA
FreeLibrary
DeleteCriticalSection
GetProcessShutdownParameters
QueryPerformanceCounter
GetFileAttributesExA
TerminateProcess
GetSystemTimeAsFileTime
CreateProcessW
IsValidCodePage
GetConsoleOutputCP
MultiByteToWideChar
GetLocaleInfoW
Sleep
SetHandleCount
lstrcat
InterlockedIncrement
FileTimeToLocalFileTime
GetACP
SetConsoleCtrlHandler
GetProfileStringW
GetTimeZoneInformation
LoadModule
GetCurrentThreadId
TlsAlloc
InterlockedExchange
OutputDebugStringW
InitializeCriticalSection
LeaveCriticalSection
FreeEnvironmentStringsA
SetThreadAffinityMask
CompareStringW
GetSystemDirectoryA
ResetEvent
InterlockedDecrement
CreateMutexW
OpenMutexA
GetUserDefaultLangID
VirtualFree

shell32

DuplicateIcon
SheChangeDirA
SheChangeDirExW
ExtractAssociatedIconW

comctl32

InitCommonControlsEx
ImageList_Create
DrawStatusTextA
ImageList_SetImageCount
ImageList_AddMasked
ImageList_Add
CreateStatusWindowW
CreateToolbarEx
ImageList_DragEnter
ImageList_SetDragCursorImage
ImageList_Merge
ImageList_SetFlags
ImageList_Replace
ImageList_Read
CreateUpDownControl

advapi32

CreateServiceW
LookupAccountSidW
RegSaveKeyW
RegEnumKeyA
CryptSetProvParam
RegOpenKeyA
InitiateSystemShutdownA
CryptEnumProviderTypesW
CryptEnumProviderTypesA

Sections

.text
Size: 196KB - Virtual size: 192KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 268KB - Virtual size: 267KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 116KB - Virtual size: 135KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 24KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6ef84f3339b37cd27f28a3dec2bc2371

Headers

File Characteristics

Imports

user32

kernel32

shell32

comctl32

advapi32

Sections

.text Size: 196KB - Virtual size: 192KB

.rdata Size: 268KB - Virtual size: 267KB

.data Size: 116KB - Virtual size: 135KB

.rsrc Size: 24KB - Virtual size: 23KB

.text
Size: 196KB - Virtual size: 192KB

.rdata
Size: 268KB - Virtual size: 267KB

.data
Size: 116KB - Virtual size: 135KB

.rsrc
Size: 24KB - Virtual size: 23KB