0f1121d33dbaeb6636a53e8c7c79770f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0f1121d33dbaeb6636a53e8c7c79770f_JaffaCakes118
Size

2.6MB
MD5

0f1121d33dbaeb6636a53e8c7c79770f
SHA1

62fa61b89ca2f55e66ae58c1698e26ee47b12fad
SHA256

7164de72905ab21f74515b9c2cce4f144699d9d86c4c86192d1e8c98b4ad25fa
SHA512

6f305b4139fad95a9890661c316663021fb10479e7f38cceda5cba1ff20c86f606b3df91aa2b7575120a990e3e67518f16408d489ffb6c68f7706507241804d5
SSDEEP

49152:oMCkevWLqZXhlCJCFfXhRFti2+iM91aCZ0wac8c3yTXtvT0FgzorRfTvH:oMC9vWLqZXhIJCVRRFAie1l5MvT0FgzE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0f1121d33dbaeb6636a53e8c7c79770f_JaffaCakes118

Files

0f1121d33dbaeb6636a53e8c7c79770f_JaffaCakes118
.exe windows:5 windows x86 arch:x86

93639de3e2bb8e8c2715707d49832c3e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCloseKey
RegQueryValueExA
RegOpenKeyExA
GetUserNameA

user32

GetKeyState
GetActiveWindow
GetSystemMetrics
GetDoubleClickTime
GetSysColor
SystemParametersInfoA
IsClipboardFormatAvailable
SendMessageA
InvalidateRect
CreateIconIndirect
LoadImageA
LoadIconA
GetIconInfo
GetClipboardData
EmptyClipboard
OpenClipboard
CloseClipboard
SetClipboardData
RegisterClipboardFormatA
GetClipboardFormatNameA
SetWindowTextW
SetWindowTextA
DestroyIcon
MessageBeep
GetWindowPlacement
BeginPaint
EndPaint
DefWindowProcW
GetKeyboardLayout
PostMessageA
LoadCursorA
RegisterClassW
CreateWindowExW
GetDC
GetUpdateRgn
HideCaret
ValidateRect
ScrollWindow
AdjustWindowRectEx
SetWindowPos
GetWindowRect
GetClientRect
ClientToScreen
CreateCaret
SetCaretPos
ShowCaret
UnregisterHotKey
ReleaseCapture
MsgWaitForMultipleObjects
SetCursor
DestroyCursor
RegisterClassA
CreateWindowExA
GetMessageA
TranslateMessage
DispatchMessageW
DispatchMessageA
GetCursorPos
ReleaseDC
GetCapture
SetCapture
GetFocus
SetFocus
GetForegroundWindow
GetParent
SetForegroundWindow
GetWindowLongA
SetWindowLongA
UpdateWindow
DestroyCaret
GetWindow
SetTimer
MessageBoxA
PostThreadMessageA
DestroyWindow
PostQuitMessage
DefWindowProcA
PeekMessageA
IsWindowUnicode
PeekMessageW
AdjustWindowRect
IsIconic
IsZoomed
ShowWindow

gdi32

ExtSelectClipRgn
CreateDCA
GetROP2
GetCurrentObject
GetBkColor
GetTextColor
SetROP2
Polyline
PolyPolyline
MoveToEx
LineTo
RectVisible
Ellipse
Arc
Polygon
PolyPolygon
CreatePatternBrush
SetTextColor
SetBkColor
PatBlt
CreateRectRgnIndirect
CreatePen
GetStockObject
GetNearestColor
GetTextMetricsA
CreateICA
GetClipRgn
SetTextAlign
GetViewportOrgEx
GetDeviceCaps
LPtoDP
CreatePalette
SetMapMode
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
CreateSolidBrush
CreateDIBitmap
GetObjectA
GetDIBits
CreateCompatibleBitmap
CreateCompatibleDC
CreateDIBSection
SetDIBitsToDevice
CreateBitmap
BitBlt
SelectObject
DeleteDC
StretchDIBits
SelectPalette
RealizePalette
CreateRectRgn
SelectClipRgn
DeleteObject
GdiFlush
GetCharWidthW
GetCharABCWidthsW
EnumFontFamiliesA
ExtTextOutW
CreateFontA
SetBkMode
GetCharABCWidthsA

kernel32

GetLastError
HeapCreate
HeapSize
GetProcessHeap
CreateFileW
SetEnvironmentVariableW
SetEnvironmentVariableA
CompareStringW
SetStdHandle
SetLastError
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetCPInfo
LCMapStringW
LCMapStringA
ExitThread
ExitProcess
GetModuleHandleW
GetStartupInfoA
GetCommandLineA
HeapAlloc
GetModuleFileNameW
GetFileType
WriteConsoleW
HeapFree
RaiseException
IsDebuggerPresent
UnhandledExceptionFilter
TerminateProcess
GetSystemTimeAsFileTime
RtlUnwind
InterlockedExchange
GetLocaleInfoW
GetCurrentProcess
GlobalMemoryStatus
FreeLibrary
VirtualAlloc
VirtualFree
OutputDebugStringA
ReadFile
SetFilePointer
SetEndOfFile
GetFileSize
GetStdHandle
SetUnhandledExceptionFilter
GetLocalTime
WriteFile
IsBadReadPtr
GetModuleFileNameA
GetVersionExA
GetEnvironmentStringsW
FreeEnvironmentStringsW
CreateEventA
SetEvent
CreateSemaphoreA
ReleaseSemaphore
FormatMessageA
MultiByteToWideChar
WideCharToMultiByte
GetUserDefaultLCID
GetDriveTypeA
FindFirstFileA
CreateDirectoryA
CreateFileA
CloseHandle
DeleteFileA
MoveFileA
FindNextFileA
GetConsoleOutputCP
WriteConsoleA
IsValidLocale
EnumSystemLocalesA
GetStringTypeW
GetStringTypeA
VirtualQuery
IsValidCodePage
GetOEMCP
GetACP
FlushFileBuffers
GetConsoleMode
GetConsoleCP
InitializeCriticalSectionAndSpinCount
GetCurrentProcessId
SetHandleCount
GetEnvironmentStrings
FreeEnvironmentStringsA
LoadLibraryW
HeapReAlloc
FindClose
LeaveCriticalSection
EnterCriticalSection
InterlockedDecrement
InterlockedIncrement
GetCurrentDirectoryA
Sleep
DeleteCriticalSection
InitializeCriticalSection
GetModuleHandleA
GlobalSize
GlobalAlloc
GetLocaleInfoA
WaitForSingleObject
LoadLibraryA
GetProcAddress
GetVersion
InterlockedExchangeAdd
GetCurrentThreadId
QueryPerformanceCounter
GetTickCount
GlobalLock
GlobalUnlock
GlobalFree
CreateThread

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetMalloc
ShellExecuteA

winmm

PlaySoundA

ole32

CoCreateGuid
DoDragDrop
CoTaskMemFree
ReleaseStgMedium
OleUninitialize
OleInitialize
RevokeDragDrop
RegisterDragDrop

ws2_32

accept
send
recv
closesocket
gethostbyname
connect
htons
htonl
bind
WSAGetLastError
select
WSAStartup
ntohl
setsockopt
ioctlsocket
socket

Sections

.text
Size: 1.0MB - Virtual size: 1.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 817KB - Virtual size: 816KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 130KB - Virtual size: 307KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 98KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

93639de3e2bb8e8c2715707d49832c3e

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

user32

gdi32

kernel32

shell32

winmm

ole32

ws2_32

Sections

.text Size: 1.0MB - Virtual size: 1.0MB

.rdata Size: 817KB - Virtual size: 816KB

.data Size: 130KB - Virtual size: 307KB

.tls Size: 17KB - Virtual size: 16KB

.rsrc Size: 98KB - Virtual size: 97KB

.text
Size: 1.0MB - Virtual size: 1.0MB

.rdata
Size: 817KB - Virtual size: 816KB

.data
Size: 130KB - Virtual size: 307KB

.tls
Size: 17KB - Virtual size: 16KB

.rsrc
Size: 98KB - Virtual size: 97KB