0df408fb4695e11755fb0ca9f1303436_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0df408fb4695e11755fb0ca9f1303436_JaffaCakes118
Size

224KB
MD5

0df408fb4695e11755fb0ca9f1303436
SHA1

e39786737d8fd08280e710be0b6affd0f352caa1
SHA256

ffd202db1be2469d88e8bede432da4771799f314203db7a7f08e3d650e126f87
SHA512

a25c780acab51adc30d8506e019d5f60668704492c7dc4dea053a3aa0dcb5dcf96b26c99e0728464974513f42ab0262020dde937d237540025a6af950984cb05
SSDEEP

6144:sbD42vvMMnMMMMMaeo6Ra5lZett3IyadO8H+JwZdWZyjn6+e/8:AZMMnMMMMMto6Ra5lkDIyadO/IWZgnZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0df408fb4695e11755fb0ca9f1303436_JaffaCakes118

Files

0df408fb4695e11755fb0ca9f1303436_JaffaCakes118
.exe windows:4 windows x86 arch:x86

09790e19b05c2ba8aff3abe138f4a96b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareStringA
LocalAlloc
GetFileType
InitializeCriticalSection
TlsFree
GetLocalTime
GetTimeFormatW
GetStdHandle
GlobalUnlock
CreateMutexA
CloseHandle
lstrlenA
GetCurrentThreadId
DisableThreadLibraryCalls
GetProcAddress
LCMapStringW
TlsAlloc
IsBadReadPtr
MapViewOfFile
GetCPInfo
GetStringTypeW
VirtualQuery
lstrlenW
GetACP
CreateEventW
GetModuleFileNameW
FlushFileBuffers
VirtualFree
GetUserDefaultLangID
GetDateFormatW
SetLastError
FreeEnvironmentStringsA
LocalSize
LoadLibraryA
FindResourceExA
QueryPerformanceCounter
FindResourceExW
HeapAlloc
lstrcpynW
FreeEnvironmentStringsW
UnmapViewOfFile
HeapCreate
CreateThread
CreateFileW
GlobalFree
lstrcmpW
GetStartupInfoA
GetOEMCP
SetUnhandledExceptionFilter
LeaveCriticalSection
LCMapStringA
GetThreadLocale
LoadResource
GetLastError
GetModuleFileNameA
LocalReAlloc
GetCurrentProcessId
GetSystemDefaultLCID
GetStringTypeExW
LockResource
GlobalReAlloc
SetHandleCount
GetModuleHandleA
GlobalHandle
EnumCalendarInfoW
InterlockedCompareExchange
TlsSetValue
GetUserDefaultLCID
GetWindowsDirectoryW
GetStringTypeA
GetCommandLineA
TerminateProcess
CreateFileMappingW
FindResourceW
ExitProcess
SetFilePointer
HeapFree
GetLocaleInfoA
UnhandledExceptionFilter
SetStdHandle
GetTickCount
InterlockedExchange
VirtualProtect
GetCurrentProcess
GetNumberFormatW
GlobalAddAtomW
CompareStringW
MulDiv
FreeLibrary
EnterCriticalSection
GetEnvironmentStrings
GetEnvironmentStringsW
GetProcessHeap
GlobalAlloc
WriteFile
GetSystemTimeAsFileTime
VirtualAlloc
MultiByteToWideChar
lstrcmpiA
GetSystemInfo
InterlockedDecrement
lstrcmpiW
HeapReAlloc
Sleep
DeleteCriticalSection
TlsGetValue
lstrcmpA
GetVersionExA
IsBadWritePtr
WideCharToMultiByte
SetEvent
SizeofResource
WaitForSingleObject
InterlockedIncrement
GetFileSize
LoadLibraryW
FreeResource
GetLocaleInfoW
EnumResourceLanguagesW
GetModuleHandleW
HeapDestroy

gdi32

Arc
RealizePalette
IntersectClipRect
SelectPalette
GetTextAlign
OffsetWindowOrgEx
PatBlt
SetWindowOrgEx
UnrealizeObject
GetTextMetricsW
GetPixel
Polyline
GetTextExtentPointW
FrameRgn
GetClipBox
GetViewportExtEx
CreateCompatibleDC
Ellipse
SelectClipRgn
CombineRgn
CreateRectRgnIndirect
StretchBlt
GetStockObject
OffsetRgn
MaskBlt
GetTextColor
ExcludeClipRect
RectVisible
ExtSelectClipRgn
CreateFontIndirectW
GetDIBits
GetClipRgn
CreateRectRgn
GetCharWidthW
SetDIBColorTable
StretchDIBits
CreatePatternBrush
SetDIBits
BitBlt
SelectObject
SetTextColor
CreateBitmap
GetObjectW
GetDIBColorTable
RestoreDC
SetBkMode
TranslateCharsetInfo
EnumFontFamiliesExW
GetCurrentObject
FillRgn
GetDCOrgEx
CreateDIBSection
CreateBitmapIndirect
CreateRoundRectRgn
CreateCompatibleBitmap
GetDeviceCaps
GetTextCharsetInfo
ExtTextOutW
TextOutW
GetBitmapBits
SetPixel
GetTextExtentPointA
SaveDC
GetNearestColor
GetTextExtentPoint32W
CreatePolygonRgn
CreateFontW
DeleteObject
SetPixelV
SetBkColor
CreatePen
CreateHalftonePalette
Rectangle
GetWindowExtEx
CreateSolidBrush
SetTextAlign
GetPaletteEntries
GetCharWidthA
SetBrushOrgEx
DeleteDC
MoveToEx
LineTo
GetBkColor
ExtTextOutA
CreatePalette

advapi32

RegQueryValueExA
FreeSid
CheckTokenMembership
RegQueryValueW
RegQueryValueExW
RegOpenKeyExA
RegCloseKey
RegOpenCurrentUser
OpenProcessToken
AllocateAndInitializeSid
RegSetValueExW
RegCreateKeyExW
RegCreateKeyW
RegOpenKeyExW

ddraw

DirectDrawCreate

ntdll

RtlFlushSecureMemoryCache
RtlActivateActivationContextEx
RtlUnwind

user32

GetCursor
GetDCEx
SetWindowRgn
LoadImageW
IsDialogMessageW
GetNextDlgTabItem
SetCapture
CreateIconIndirect
CopyRect
IsRectEmpty
GetWindowTextLengthW
IntersectRect
GetFocus
SetCursorPos
SystemParametersInfoA
CharLowerW
RegisterWindowMessageW
GetWindowRgn
CreateWindowExW
DestroyMenu
IsChild
MapWindowPoints
CreateCaret
GetWindowLongA
FrameRect
HideCaret
CreateDialogIndirectParamA
ValidateRect
GetShellWindow
DialogBoxIndirectParamW
SetWindowLongW
SetActiveWindow
DrawTextExW
EnumDesktopsW
GetMenuItemID
GetMenuState
PeekMessageW
SystemParametersInfoW
CopyIcon
CloseDesktop
SubtractRect
GetDlgItem
GetSubMenu
UpdateWindow
GetKeyboardLayout
DrawTextW
PtInRect
SetLastErrorEx
CheckMenuItem
SetCursor
ClientToScreen
GetWindowPlacement
LoadCursorW
SetTimer
ChildWindowFromPoint
GetScrollInfo
DrawIcon
GetUpdateRect
SetWindowTextW
SendDlgItemMessageW
SetScrollPos
SendMessageW
GetWindowRect
SetWindowTextA
CharPrevW
GetCaretBlinkTime
TrackPopupMenu
SetCaretPos
FillRect
SetMenu
CreateWindowExA
SetScrollRange
GetUpdateRgn
MessageBeep
IsIconic
GetProcessWindowStation
MapVirtualKeyW
SetScrollInfo
LockWindowUpdate
DrawFrameControl
CreateDialogIndirectParamW
InvalidateRgn
LoadStringW
GetMenuItemInfoW
RemovePropW
GetScrollRange
AdjustWindowRect
MoveWindow
SetDlgItemTextW
GetMenu
WinHelpW
EndDialog
SetThreadDesktop
DeferWindowPos
GetSystemMenu
GetForegroundWindow
GetWindowThreadProcessId
ShowWindow
CreatePopupMenu
OpenDesktopW
DestroyIcon
CallMsgFilterW
GetParent
IsWindowVisible
EndPaint
InvertRect
DrawIconEx
IsWindow
DefWindowProcW
GetSysColor
InvalidateRect
ShowCaret
ReleaseCapture
SendNotifyMessageW
GetScrollPos
GetDoubleClickTime
GetActiveWindow
GetDC
RegisterClassW
DestroyWindow
AppendMenuW
DestroyCursor
EndDeferWindowPos
GetWindowDC
EqualRect
SetForegroundWindow
MapDialogRect
DrawEdge
EnableScrollBar
UnionRect
InflateRect
IsWindowEnabled
EnumWindows
GetWindowLongW
GetAsyncKeyState
GetMessageW
SetRectEmpty
GetThreadDesktop
SetWindowPos
RedrawWindow
CallWindowProcW
BeginDeferWindowPos
GetKeyNameTextW
GetCursorPos
SetPropW
WindowFromPoint
SetFocus
ShowScrollBar
GetMessagePos
GrayStringW
GetKeyboardState
GetClientRect
AdjustWindowRectEx
ScreenToClient
GetKeyState
GetWindow
SetKeyboardState
DispatchMessageW
BeginPaint
DestroyCaret
GetCapture
GetPropW
ScrollWindowEx
GetWindowTextW
GetSysColorBrush
ReleaseDC
CopyImage
DrawFocusRect
GetClassNameW
TranslateMessage
GetDlgCtrlID
UnregisterClassW
GetDesktopWindow
SetParent
SetRect
OffsetRect
IsZoomed
LoadIconW
PostMessageW
GetMessageTime
WaitMessage
GetIconInfo
GetMenuItemCount
EnableWindow
EnumChildWindows
PostQuitMessage
GetSystemMetrics
KillTimer

atl

AtlModuleRegisterClassObjects

Sections

.text
Size: 4KB - Virtual size: 920B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 460KB - Virtual size: 458KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 48KB - Virtual size: 2.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 16KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

09790e19b05c2ba8aff3abe138f4a96b

Headers

File Characteristics

Imports

kernel32

gdi32

advapi32

ddraw

ntdll

user32

atl

Sections

.text Size: 4KB - Virtual size: 920B

.idata Size: 12KB - Virtual size: 10KB

.rsrc Size: 460KB - Virtual size: 458KB

.data Size: 48KB - Virtual size: 2.0MB

.rdata Size: 16KB - Virtual size: 14KB

.text
Size: 4KB - Virtual size: 920B

.idata
Size: 12KB - Virtual size: 10KB

.rsrc
Size: 460KB - Virtual size: 458KB

.data
Size: 48KB - Virtual size: 2.0MB

.rdata
Size: 16KB - Virtual size: 14KB