0e40ea717b470349d7431c5aa70b5a57_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0e40ea717b470349d7431c5aa70b5a57_JaffaCakes118
Size

752KB
MD5

0e40ea717b470349d7431c5aa70b5a57
SHA1

6d78a177c6b07bef0ed67913a3413ca7d1d063c8
SHA256

b967fd773a2c52e415e88be852c985ef5cddec74802e12bb66da64eec8623b6f
SHA512

d65fd133961c1323c44d05a61cedc25e29f0dfbfd8a5bd6945a5d69b090b5c49bcc2975d970d9c824fefbaf003591a749686b568de73c2e21956df524cc8eb2f
SSDEEP

12288:DeNhs1OwTRwC8ucT5uP+PRtARt3ZwBS/OZBCOm3BDRfZ6oLe2u:qpwW4cT5uKtARtpb/OZZiRfZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0e40ea717b470349d7431c5aa70b5a57_JaffaCakes118

Files

0e40ea717b470349d7431c5aa70b5a57_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a1eed569054ff13bc615af94bdf62176

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LCMapStringA
LCMapStringW
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
SetHandleCount
GetStdHandle
GetFileType
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetUnhandledExceptionFilter
HeapSize
GetStringTypeW
IsBadReadPtr
GetACP
GetTimeZoneInformation
WideCharToMultiByte
CompareStringA
CompareStringW
SetEnvironmentVariableA
MapViewOfFile
CreateFileMappingA
UnmapViewOfFile
GetProcAddress
LockResource
FindResourceA
LoadResource
WriteFile
WaitForMultipleObjects
ReadFile
GetLastError
RaiseException
GetCommandLineA
GetStartupInfoA
HeapReAlloc
FindNextFileA
ExitProcess
HeapFree
HeapAlloc
RtlUnwind
FileTimeToLocalFileTime
FileTimeToSystemTime
SetErrorMode
SystemTimeToFileTime
LocalFileTimeToFileTime
GetFileSize
GetShortPathNameA
GetThreadLocale
GetStringTypeExA
GetVolumeInformationA
FindFirstFileA
FindClose
MoveFileA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
CreateFileA
GetOEMCP
GetCPInfo
GetProcessVersion
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
SizeofResource
GlobalFlags
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
GetModuleFileNameA
GetCurrentThread
lstrcmpA
MulDiv
SetLastError
LocalFree
GetFileTime
GetDiskFreeSpaceA
CreateProcessA
GetTempFileNameA
SetFileTime
GetFullPathNameA
MultiByteToWideChar
lstrcpynA
GetFileAttributesA
IsBadCodePtr
lstrlenA
GlobalFree
InterlockedDecrement
InterlockedIncrement
LoadLibraryA
FreeLibrary
lstrcatA
GetCurrentThreadId
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcpyA
GetModuleHandleA
SetStdHandle
GetStringTypeA
GetCurrentDirectoryA
CreateEventA
DeleteFileA
GlobalUnlock
GlobalLock
GlobalAlloc
GetExitCodeProcess
Sleep
GetVersion
CreateThread
GetProfileStringA
CloseHandle
DuplicateHandle
CreatePipe
GetCurrentProcess
TerminateProcess
TerminateThread
WaitForSingleObject
SetEvent

user32

GetMenuCheckMarkDimensions
wvsprintfA
LoadBitmapA
BringWindowToTop
DefFrameProcA
TranslateMDISysAccel
TranslateAcceleratorA
DrawMenuBar
DefMDIChildProcA
RedrawWindow
SetRectEmpty
LoadAcceleratorsA
GetDesktopWindow
DestroyMenu
SetMenu
ReuseDDElParam
UnpackDDElParam
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
InflateRect
PostQuitMessage
ShowOwnedPopups
GetCursorPos
ValidateRect
TranslateMessage
GetMessageA
DestroyIcon
PtInRect
SetParent
IsRectEmpty
DeleteMenu
GetSystemMenu
SetMenuItemBitmaps
GetMenuState
GetSysColorBrush
CharUpperA
InsertMenuA
KillTimer
WindowFromPoint
SetRect
FillRect
GetDCEx
LockWindowUpdate
BeginDeferWindowPos
CopyRect
EndDeferWindowPos
ScrollWindow
SetScrollRange
SetScrollPos
GetTopWindow
IsChild
GetCapture
WinHelpA
wsprintfA
GetClassInfoA
GetMenuItemID
TrackPopupMenu
GetClassNameA
GetWindowTextA
DeferWindowPos
DefWindowProcA
CreateWindowExA
CallNextHookEx
GetClassLongA
SetPropA
LoadStringA
MoveWindow
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
SetWindowPos
RegisterWindowMessageA
OffsetRect
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetNextDlgTabItem
EndDialog
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
IsWindowEnabled
IsWindow
GetSystemMetrics
LoadMenuA
GetMenuItemCount
GetDlgItem
PostMessageA
GetWindowLongA
SetWindowLongA
GetMenuStringA
GetClipboardData
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
GetFocus
InvertRect
ModifyMenuA
GetMenu
GetSubMenu
CheckMenuItem
GetParent
IsZoomed
ClientToScreen
CreatePopupMenu
AppendMenuA
SetCursor
InvalidateRect
GetClientRect
UpdateWindow
LoadCursorA
MessageBoxA
GetKeyState
ReleaseCapture
SetCapture
GetDC
IsDialogMessageA
ReleaseDC
DrawIconEx
LoadIconA
SetTimer
IsWindowVisible
GetWindowRect
SetDlgItemTextA
SendDlgItemMessageA
MapWindowPoints
GetSysColor
PeekMessageA
DispatchMessageA
SetFocus
AdjustWindowRectEx
ScreenToClient
EqualRect
EnableMenuItem
ShowWindow
UnhookWindowsHookEx
SetWindowTextA
GetPropA
GetWindowTextLengthA
GetDlgCtrlID
EnableWindow
SendMessageA
SetWindowsHookExA
RegisterClassA
CharNextA
DefDlgProcA
ShowCaret
UnregisterClassA
HideCaret
ExcludeUpdateRgn
IsWindowUnicode
DrawFocusRect

gdi32

DeleteObject
CreatePen
StretchDIBits
SetStretchBltMode
CreateBitmap
Arc
SetBrushOrgEx
GetClipBox
SetTextColor
SetBkColor
GetObjectA
PatBlt
CreateRectRgnIndirect
SaveDC
DeleteDC
GetStockObject
RestoreDC
SetROP2
SetBkMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
MoveToEx
LineTo
SetTextAlign
CreateRectRgn
GetDeviceCaps
CreateSolidBrush
CreatePatternBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
SetRectRgn
CombineRgn
CreateFontIndirectA
GetTextExtentPoint32A
GetTextMetricsA
CreateCompatibleDC
CreateCompatibleBitmap
GetCharWidthA
CreateFontA
BitBlt
CreateDIBitmap
GetTextExtentPointA
SelectObject

comdlg32

GetFileTitleA
GetSaveFileNameA
ChooseColorA
GetOpenFileNameA

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

RegSetValueExA
RegDeleteValueA
RegQueryValueExA
RegOpenKeyExA
RegCreateKeyExA
RegSetValueA
RegCreateKeyA
SetSecurityDescriptorDacl
GetFileSecurityA
SetFileSecurityA
RegDeleteKeyA
RegOpenKeyA
RegEnumKeyA
RegCloseKey
RegQueryValueA
InitializeSecurityDescriptor

shell32

DragQueryFileA
DragFinish
ExtractIconA
DragAcceptFiles
ShellExecuteA
SHGetFileInfoA

comctl32

ImageList_Destroy
ord17

Sections

.text
Size: 488KB - Virtual size: 488KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 124KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 108KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a1eed569054ff13bc615af94bdf62176

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

Sections

.text Size: 488KB - Virtual size: 488KB

.rdata Size: 124KB - Virtual size: 124KB

.data Size: 28KB - Virtual size: 45KB

.rsrc Size: 108KB - Virtual size: 104KB

.text
Size: 488KB - Virtual size: 488KB

.rdata
Size: 124KB - Virtual size: 124KB

.data
Size: 28KB - Virtual size: 45KB

.rsrc
Size: 108KB - Virtual size: 104KB