0f2edba7ce7fe2338549f32d1224185d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0f2edba7ce7fe2338549f32d1224185d_JaffaCakes118
Size

96KB
MD5

0f2edba7ce7fe2338549f32d1224185d
SHA1

2551dceaffd97badae77f860a28d0117ff58ac21
SHA256

0e1711739f444371a7a8b840d5ab2b3173ac8bc95d7fdb3cb31a39b037ea4346
SHA512

3a0ea41fd7815adaaf2e7663acf139101d3abe9719470806e6bd03b941d78a875445ae5a7341b92adf019e5d24eeb01147fe16027aff31a11404682eccd59cfd
SSDEEP

1536:0tVNHWWXc4NDQ4yIMVc3cB53cNRznLgsaNk7m9yHKpiUhN+jazY2JhGhIx:0jVBXfpQ4yZVc3cv3URzs1e7mhpi9azh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0f2edba7ce7fe2338549f32d1224185d_JaffaCakes118

Files

0f2edba7ce7fe2338549f32d1224185d_JaffaCakes118
.dll regsvr32 windows:4 windows x86 arch:x86

01d54b5c30e7cfea86236cc9e8639e4f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetModuleHandleA
LocalFree
GetProcAddress
WriteFile
LoadLibraryA
EnterCriticalSection
HeapAlloc
CloseHandle
InterlockedDecrement
GetLastError
MoveFileA
InitializeCriticalSection
UnmapViewOfFile
InterlockedExchange
MapViewOfFile
VirtualQuery
ReadFile
GetSystemTimeAsFileTime
GlobalAlloc
HeapFree
WaitForSingleObject
CreateProcessA
VirtualProtect
CreateFileA
GetComputerNameA
ExpandEnvironmentStringsA
ReleaseMutex
GetTickCount
CreateDirectoryA
DeleteFileA
CopyFileA
GetModuleFileNameA
DuplicateHandle
PurgeComm
CopyFileW
SearchPathA
ClearCommError
EnumResourceLanguagesA
FindVolumeMountPointClose
VerifyVersionInfoA
FindFirstChangeNotificationA
FindResourceW
EscapeCommFunction
CreateRemoteThread
SetHandleCount
OpenSemaphoreW
lstrcpyW
FlushViewOfFile
UnregisterWait
GetVersionExA
PulseEvent
CreateToolhelp32Snapshot
IsBadWritePtr
GetBinaryTypeA
EnumUILanguagesW
GetDriveTypeW
InterlockedExchangeAdd
CancelIo
FileTimeToLocalFileTime
WaitNamedPipeW
CompareFileTime
CreateWaitableTimerW
GetSystemTime
lstrcmpW
AssignProcessToJobObject
CreateFileW
SetVolumeMountPointW
ReadFileEx
ChangeTimerQueueTimer
WaitForSingleObjectEx
UpdateResourceA
GetUserDefaultLCID
TerminateJobObject
GetThreadPriority
SetEnvironmentVariableA
GetTempFileNameA
DisconnectNamedPipe
CopyFileExW
FindCloseChangeNotification
SetProcessWorkingSetSize
FindClose
EnumResourceNamesA
GetModuleHandleExW
PeekConsoleInputW
DosDateTimeToFileTime
GetFileTime
CreateMailslotA
GetFileSize
MoveFileW
GetThreadTimes
CallNamedPipeA
RegisterWaitForSingleObjectEx
ConvertDefaultLocale
LockFileEx
HeapDestroy
OpenFileMappingW
ResumeThread
SuspendThread
GetTempPathW
MultiByteToWideChar
SetWaitableTimer
LockFile
GetTempPathA
GetTempFileNameW
MapViewOfFileEx
GetFileSizeEx
FindNextChangeNotification
GetConsoleScreenBufferInfo
SetFileApisToOEM
UnlockFileEx
GetLogicalDriveStringsA
GetDefaultCommConfigW
GetProfileIntW
HeapCompact
SetSystemTime
LocalFlags
RaiseException
SwitchToThread
GetFullPathNameW
QueueUserAPC
GetEnvironmentStrings
FormatMessageW
GetEnvironmentVariableA
CreateTimerQueue
GetStringTypeExA
FreeResource
TerminateThread
GetFileAttributesExA
SetConsoleWindowInfo
GetThreadLocale
SetConsoleScreenBufferSize
GetSystemDirectoryA
SetTimeZoneInformation
WaitNamedPipeA
DeleteCriticalSection
GetSystemTimeAdjustment
ConnectNamedPipe
ReplaceFileW
GetComputerNameW
GetFileAttributesA
GetShortPathNameW
GetVolumeNameForVolumeMountPointW
GetThreadContext
SetComputerNameExW
OpenEventW
SetConsoleMode
PeekConsoleInputA

ole32

CreateItemMoniker
CoLockObjectExternal
CreateOleAdviseHolder
OleTranslateAccelerator
CoWaitForMultipleHandles
CoMarshalInterThreadInterfaceInStream
MkParseDisplayName
OleRegGetUserType
StgCreateDocfile
OleRun
OleUninitialize
RevokeDragDrop
CreatePointerMoniker
CreateAntiMoniker
CoGetObjectContext
CreateDataCache
CreateDataAdviseHolder
CoUnmarshalInterface
OleSaveToStream
StringFromGUID2
OleQueryCreateFromData
CoSwitchCallContext
CoRegisterMessageFilter
OleCreateMenuDescriptor
CoTaskMemAlloc
CoInitialize
CoGetMarshalSizeMax

user32

GetGUIThreadInfo
wsprintfA
CheckRadioButton
MonitorFromWindow
GetDesktopWindow
SetClassLongW
GetShellWindow
DrawEdge
GetClassInfoExW
RegisterWindowMessageW
DefMDIChildProcA
CharNextW
LoadImageA
ReplyMessage
GetDlgItem
MessageBoxW
RegisterHotKey
GetWindowContextHelpId
CallNextHookEx
UnhookWindowsHookEx
GetWindowThreadProcessId
PeekMessageA
GetMessageA
SendMessageA
SetWindowsHookExA
NotifyWinEvent
SetRect
GetNextDlgTabItem
IsCharAlphaNumericA
SetRectEmpty
DrawTextA
DrawFrameControl
GetWindowTextLengthA
SetWindowTextA
DrawAnimatedRects
GetCursorPos
MapDialogRect
GetSystemMetrics
DestroyWindow
EnableScrollBar
SendMessageTimeoutA
InSendMessage
WaitMessage
GetPropW
ChildWindowFromPoint
CopyAcceleratorTableA
SetMenuItemInfoW
EnumWindowStationsW
CreateCaret
GetUserObjectInformationW
GetDialogBaseUnits
ChangeMenuA
DestroyMenu
SetProcessWindowStation
SetCaretPos
GetComboBoxInfo
MessageBoxExW
WindowFromPoint
SetWindowRgn
GetKeyNameTextW
DialogBoxParamW
MonitorFromPoint
ShowCursor
CloseWindowStation
DrawTextW
EnumDesktopsW
CharNextExA
WindowFromDC
HideCaret
GetSysColor
SetDlgItemInt
GetDoubleClickTime
SendMessageW
SendNotifyMessageA
PostMessageA
CharPrevW
CreateWindowExA
UnionRect
DestroyCaret
ValidateRect
GetKeyNameTextA
GetTopWindow
FindWindowW
EnumDisplaySettingsW
EnableWindow
WinHelpW
GetScrollBarInfo
IsDlgButtonChecked
SetWindowLongA
IsWindow
AppendMenuA
UpdateWindow
EnumDisplaySettingsA
OemToCharA
DrawMenuBar
MessageBoxExA
ChangeDisplaySettingsW
GetMonitorInfoA
GetWindowTextA
SubtractRect
MapWindowPoints
GrayStringA
SetWindowTextW
EqualRect
GetProcessWindowStation
SendNotifyMessageW
GetProcessDefaultLayout
MessageBoxIndirectW
CallWindowProcW
GetScrollRange
GetSystemMenu
GetWindowDC
EnableMenuItem
CallMsgFilterW
LoadBitmapW
CopyIcon
AppendMenuW
ReleaseCapture
GetWindowTextLengthW
ExitWindowsEx
KillTimer
IsCharAlphaW
ShowScrollBar
UnpackDDElParam
GetMenuStringA
AdjustWindowRect

shell32

DragQueryFileA
SHFormatDrive
SHCreateShellItem
SHCreateDirectoryExW
DragQueryFileW
DragAcceptFiles
ShellAboutA
SHAddToRecentDocs
SHGetFolderPathA

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 68KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

01d54b5c30e7cfea86236cc9e8639e4f

Headers

File Characteristics

Imports

kernel32

ole32

user32

shell32

Exports

Exports

Sections

.text Size: 68KB - Virtual size: 66KB

.rdata Size: 12KB - Virtual size: 8KB

.data Size: 8KB - Virtual size: 6KB

.reloc Size: 4KB - Virtual size: 2KB

.text
Size: 68KB - Virtual size: 66KB

.rdata
Size: 12KB - Virtual size: 8KB

.data
Size: 8KB - Virtual size: 6KB

.reloc
Size: 4KB - Virtual size: 2KB