0f6cb419d1279dcc1d28f3ef1dd3c1ac_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0f6cb419d1279dcc1d28f3ef1dd3c1ac_JaffaCakes118
Size

2.2MB
MD5

0f6cb419d1279dcc1d28f3ef1dd3c1ac
SHA1

d080b9724f6aec5fc4b2a5e5062bd21bb4c87d53
SHA256

d25f6c7eac944d56e78c46760d8224e598e034d93727d5992a5d9cad3453f0aa
SHA512

0f74ffe8ecfffef7005da1f763f111a0a3dcaa0ac4f3701d01e87638ab8a3f1c72a69a26e8d259ce57dbca9bd78901dc1bb0cabf36ac2d4ad563c5f009832d93
SSDEEP

49152:+CxZcIQtd2N3ytiCqbL3e11p8F7UMwoam6fZV+Eie52qo6xCNE:+CovtANCtiCqX3ePp8F7UMwoam6by6v

Score

1^/10

Malware Config

Signatures

Files

0f6cb419d1279dcc1d28f3ef1dd3c1ac_JaffaCakes118
.exe windows:6 windows x86 arch:x86

bfb672bc5c878755f0be2d04195b06ce

Code Sign

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/01/2021, 00:00

Not After

06/01/2031, 00:00

Subject

CN=DigiCert Timestamp 2021,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/01/2016, 12:00

Not After

07/01/2031, 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

5a:de:28:2b:65:76:6b:d0:64:09:b1:68:bf:90:3b:3c:0c:4e:3b:1a:22:4c:87:0f:df:19:a4:cf:2f:a5:34:31
Signer

Actual PE Digest

5a:de:28:2b:65:76:6b:d0:64:09:b1:68:bf:90:3b:3c:0c:4e:3b:1a:22:4c:87:0f:df:19:a4:cf:2f:a5:34:31

Digest Algorithm

sha256

PE Digest Matches

true

09:01:f2:f7:c4:52:64:b8:68:8a:34:00:4e:7a:7b:b5:26:bb:33:7f
Signer

Actual PE Digest

09:01:f2:f7:c4:52:64:b8:68:8a:34:00:4e:7a:7b:b5:26:bb:33:7f

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalFree
InitializeCriticalSectionAndSpinCount
EnterCriticalSection
lstrcmpiW
QueryPerformanceFrequency
GlobalAlloc
WriteConsoleW
GetEnvironmentStringsW
DecodePointer
GetFullPathNameW
DuplicateHandle
GetFileAttributesExW
OutputDebugStringA
LeaveCriticalSection
lstrcmpA
HeapReAlloc
GetPrivateProfileStringW
GlobalFlags
GetStringTypeW
WideCharToMultiByte
WaitForSingleObject
VirtualQuery
GetFileAttributesW
GetOEMCP
GlobalGetAtomNameW
GetFileSize
GetCurrentProcessId
GetEnvironmentVariableW
CompareStringA
GetLastError
SetEvent
FindFirstFileW
IsDebuggerPresent
lstrcpyW
CloseHandle
VerifyVersionInfoW
lstrcmpW
OutputDebugStringW
ExitProcess
SetFilePointer
DeleteCriticalSection
SetUnhandledExceptionFilter
GetStartupInfoW
InitializeSListHead
TlsAlloc
SizeofResource
TlsFree
VirtualProtect
SetErrorMode
InitializeCriticalSection
WriteFile
GetTempFileNameW
IsValidCodePage
LockResource
CompareStringW
WritePrivateProfileStringW
GetCurrentThread
Process32NextW
VirtualAlloc
FreeLibraryAndExitThread
FreeLibrary
GlobalSize
GetVolumeInformationW
HeapQueryInformation
FindResourceExW
SetLastError
GetCommandLineA
GlobalUnlock
SetFilePointerEx
HeapSize
FindFirstFileExW
SetEndOfFile
MultiByteToWideChar
ResetEvent
GetProcAddress
GlobalLock
ResumeThread
QueryPerformanceCounter
SetThreadPriority
FormatMessageW
GetCurrentThreadId
GetConsoleMode
GetSystemDefaultUILanguage
GlobalFree
RtlUnwind
EncodePointer
LoadResource
InitializeCriticalSectionEx
GlobalReAlloc
UnlockFile
DeleteFileW
FindResourceW
GetCurrentDirectoryW
CreateEventW
UnhandledExceptionFilter
IsProcessorFeaturePresent
HeapAlloc
GetModuleHandleW
HeapFree
LoadLibraryW
SystemTimeToTzSpecificLocalTime
CreateFileW
GetSystemInfo
GetCurrentProcess
GetFileType
TerminateProcess
FreeEnvironmentStringsW
GetSystemDirectoryW
FlushFileBuffers
SearchPathW
RaiseException
GlobalAddAtomW
FindClose
GetProfileIntW
LockFile
GetCPInfo
GetModuleFileNameW
GetStdHandle
GetLocaleInfoW
FindNextFileW
WaitForSingleObjectEx
GetModuleHandleExW
LoadLibraryExW
GetACP
GetSystemTimeAsFileTime
GetTempPathW
SetStdHandle
VerSetConditionMask
GlobalDeleteAtom
GetFileTime
GetTimeZoneInformation
LCMapStringW
GetPrivateProfileIntW
SetEnvironmentVariableW
TlsGetValue
GlobalFindAtomW
Sleep
GetFileSizeEx
FileTimeToSystemTime
GetTickCount
GetUserDefaultUILanguage
TlsSetValue
LocalReAlloc
GetCommandLineW
GetWindowsDirectoryW
MulDiv
FileTimeToLocalFileTime
GetVersionExW
GetConsoleCP
GetProcessHeap
GlobalHandle
CreateThread
CopyFileW
GetModuleHandleA
ReadFile
LoadLibraryA
LocalAlloc
ExitThread

user32

SetWindowRgn
GetDlgCtrlID
BeginDeferWindowPos
InsertMenuW
BeginPaint
GetDlgItem
LoadAcceleratorsW
SetCursor
GetSystemMetrics
IsClipboardFormatAvailable
DispatchMessageW
TrackMouseEvent
GetNextDlgTabItem
OffsetRect
GetActiveWindow
SendMessageW
LockWindowUpdate
PtInRect
SetParent
ToUnicodeEx
CloseClipboard
SetWindowPos
GetDesktopWindow
GetForegroundWindow
CheckDlgButton
SetMenuDefaultItem
ScrollWindow
GetKeyNameTextW
FindWindowExW
GetKeyboardState
OpenClipboard
RegisterClipboardFormatW
GetParent
IsIconic
ValidateRect
ReleaseDC
TranslateMessage
SetRect
CopyAcceleratorTableW
SetWindowsHookExW
UnionRect
ShowWindow
GetWindowThreadProcessId
CallNextHookEx
GetWindowTextW
ShowOwnedPopups
SetTimer
GetWindowLongW
GetMenuStringW
EnumChildWindows
DestroyCursor
GetSysColorBrush
AppendMenuW
SetScrollInfo
MapDialogRect
ScreenToClient
GetScrollPos
GetMenuState
LoadMenuW
DestroyIcon
CopyImage
EqualRect
IsDialogMessageW
CallWindowProcW
DrawTextW
GetMenu
SetCursorPos
SetCapture
MessageBoxW
DrawMenuBar
LoadCursorW
EnableScrollBar
SetPropW
ClientToScreen
TranslateAcceleratorW
EndDeferWindowPos
ShowScrollBar
GetMessageW
DestroyMenu
EnableMenuItem
UnpackDDElParam
GetMenuItemCount
MessageBeep
GetNextDlgGroupItem
TabbedTextOutW
SetActiveWindow
GetMenuItemID
SetFocus
EndPaint
IsWindow
LoadImageW
UnhookWindowsHookEx
SetMenuItemBitmaps
GetScrollRange
GetScrollInfo
GetMenuItemInfoW
IsWindowEnabled
TranslateMDISysAccel
SetWindowTextW
GetLastActivePopup
HideCaret
GetKeyboardLayout
DrawFocusRect
SetMenu
ReuseDDElParam
GetKeyState
DrawIcon
LoadIconW
DeferWindowPos
NotifyWinEvent
EndDialog
CharUpperW
SendDlgItemMessageA
MapVirtualKeyExW
DrawIconEx
SetDlgItemTextW
SystemParametersInfoW
CopyRect
GetFocus
IsCharLowerW
AdjustWindowRectEx
MapVirtualKeyW
GetMenuCheckMarkDimensions
CopyIcon
IntersectRect
RemoveMenu
RedrawWindow
CreateDialogIndirectParamW
UpdateLayeredWindow
GetWindowRect
SetWindowLongW
GetAsyncKeyState
DrawStateW
WindowFromPoint
IsWindowVisible
GrayStringW
GetClassInfoExW
SetRectEmpty
MonitorFromPoint
RemovePropW
CreateAcceleratorTableW
GetMessagePos
PeekMessageW
SubtractRect
PostQuitMessage
GetComboBoxInfo
DrawEdge
DestroyWindow
IsMenu
CharUpperBuffW
GetWindowPlacement
RegisterClassW
TrackPopupMenu
FillRect
GetMenuDefaultItem
DestroyAcceleratorTable
EnumDisplayMonitors
GetClassLongW
GetClassNameW
UnregisterClassW
DefFrameProcW
EnableWindow
MapWindowPoints
GetDoubleClickTime
SetMenuItemInfoW
DeleteMenu
GetUpdateRect
GetClientRect
UpdateWindow
SetClipboardData
DefWindowProcW
GetCursorPos
ReleaseCapture
GetWindowRgn
SetWindowPlacement
GetCapture
SetForegroundWindow
FrameRect
DefMDIChildProcW
GetTopWindow
GetPropW
RealChildWindowFromPoint
SetLayeredWindowAttributes
KillTimer
SetScrollPos
RegisterWindowMessageW
CreateMenu
GetWindowTextLengthW
CreateWindowExW
IsRectEmpty
PostMessageW
EmptyClipboard
WaitMessage
CreatePopupMenu
LoadBitmapW
InflateRect
MoveWindow
GetSystemMenu
FindWindowW
GetMonitorInfoW
GetClassInfoW
GetMessageTime
GetWindowDC
MonitorFromWindow
GetSubMenu
InsertMenuItemW
PostThreadMessageW
SetScrollRange
GetWindow
InvertRect
DrawFrameControl
BringWindowToTop
IsZoomed
CheckMenuItem
GetIconInfo
WinHelpW
ModifyMenuW
IsChild
GetDC
GetSysColor
InvalidateRect
DrawTextExW
SetClassLongW

gdi32

SetLayout
GetObjectType
Rectangle
CreatePatternBrush
GetPixel
CopyMetaFileW
CombineRgn
CreateFontIndirectW
SetTextColor
SelectPalette
CreateRoundRectRgn
CreateDIBitmap
SetViewportOrgEx
GetBoundsRect
SetPaletteEntries
SetPolyFillMode
SetBkColor
CreateDIBSection
ExtFloodFill
EnumFontFamiliesExW
CreateRectRgn
EnumFontFamiliesW
CreatePalette
CreateSolidBrush
GetDIBits
SaveDC
GetNearestPaletteIndex
SelectObject
GetViewportExtEx
GetDeviceCaps
RoundRect
ExtSelectClipRgn
DeleteObject
SetRectRgn
ScaleWindowExtEx
PtInRegion
RealizePalette
TextOutW
FillRgn
CreateBitmap
SetDIBColorTable
CreateHatchBrush
ExcludeClipRect
GetTextExtentPoint32W
GetWindowOrgEx
GetPaletteEntries
Escape
SetROP2
CreateEllipticRgn
SetMapMode
SelectClipRgn
GetTextColor
StretchBlt
GetViewportOrgEx
PtVisible
RestoreDC
GetObjectW
GetTextCharsetInfo
OffsetRgn
GetTextFaceW
CreateCompatibleDC
IntersectClipRect
OffsetWindowOrgEx
CreatePolygonRgn
GetWindowExtEx
SetViewportExtEx
Ellipse
CreateRectRgnIndirect
DPtoLP
SetPixelV
Polyline
ExtTextOutW
GetTextMetricsW
DeleteDC
GetRgnBox
SetWindowOrgEx
Polygon
CreateDCW
SetPixel
LPtoDP
SetBkMode
GetLayout
ScaleViewportExtEx
PatBlt
GetBkColor
LineTo
RectVisible
SetTextAlign
GetSystemPaletteEntries
GetStockObject
CreateCompatibleBitmap
SetWindowExtEx
FrameRgn
OffsetViewportOrgEx
CreatePen
MoveToEx
GetClipBox
BitBlt

msimg32

TransparentBlt
AlphaBlend

winspool.drv

ClosePrinter
OpenPrinterW
DocumentPropertiesW

advapi32

RegCloseKey
AdjustTokenPrivileges
RegQueryValueExW
RegOpenKeyExW
RegCreateKeyExW
RegDeleteKeyW
RegQueryValueW
RegEnumKeyW
RegSetValueExW
LookupPrivilegeValueW
RegDeleteValueW
OpenProcessToken
RegEnumValueW
RegEnumKeyExW

shell32

SHAppBarMessage
DragQueryFileW
SHBrowseForFolderW
SHGetPathFromIDListW
DragFinish
SHGetFileInfoW
ShellExecuteW
SHGetDesktopFolder
SHGetSpecialFolderLocation
SHGetMalloc

comctl32

InitCommonControlsEx

shlwapi

PathIsUNCW
PathStripToRootW
PathRemoveFileSpecW
StrFormatKBSizeW
PathFindFileNameA
PathFindExtensionW
PathFindFileNameW

uxtheme

GetCurrentThemeName
IsAppThemed
DrawThemeBackground
OpenThemeData
IsThemeBackgroundPartiallyTransparent
DrawThemeText
CloseThemeData
GetThemeColor
DrawThemeParentBackground
GetWindowTheme
GetThemeSysColor
GetThemePartSize

ole32

OleDuplicateData
OleTranslateAccelerator
ReleaseStgMedium
CoCreateGuid
CoLockObjectExternal
CoUninitialize
RevokeDragDrop
CreateStreamOnHGlobal
OleCreateMenuDescriptor
OleGetClipboard
CoCreateInstance
OleLockRunning
CoInitializeSecurity
RegisterDragDrop
IsAccelerator
CoInitialize
CoTaskMemFree
CoInitializeEx
OleDestroyMenuDescriptor
CoDisconnectObject
DoDragDrop
CoTaskMemAlloc

oleaut32

LoadTypeLi
SystemTimeToVariantTime
VariantTimeToSystemTime
VariantInit
SysStringLen
VariantCopy
SysAllocStringLen
VarBstrFromDate
VariantChangeType
VariantClear
SysFreeString
SysAllocString

gdiplus

GdipDisposeImage
GdipDrawImageRectI
GdipDrawImageI
GdipBitmapLockBits
GdipSetInterpolationMode
GdipDeleteGraphics
GdiplusShutdown
GdipCreateBitmapFromHBITMAP
GdipGetImageWidth
GdipFree
GdipGetImagePixelFormat
GdipGetImagePaletteSize
GdipBitmapUnlockBits
GdipCloneImage
GdipCreateBitmapFromStream
GdiplusStartup
GdipCreateFromHDC
GdipAlloc
GdipCreateBitmapFromScan0
GdipGetImageGraphicsContext
GdipGetImagePalette
GdipGetImageHeight

oleacc

CreateStdAccessibleObject
LresultFromObject
AccessibleObjectFromWindow

imm32

ImmReleaseContext
ImmGetOpenStatus
ImmGetContext

winmm

PlaySoundW

Sections

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.inhu
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.hemjo
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 330KB - Virtual size: 329KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 184KB - Virtual size: 183KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 136KB - Virtual size: 135KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bfb672bc5c878755f0be2d04195b06ce

Code Sign

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:ddCertificate

Extended Key Usages

Key Usages

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15Certificate

Extended Key Usages

Key Usages

5a:de:28:2b:65:76:6b:d0:64:09:b1:68:bf:90:3b:3c:0c:4e:3b:1a:22:4c:87:0f:df:19:a4:cf:2f:a5:34:31Signer

09:01:f2:f7:c4:52:64:b8:68:8a:34:00:4e:7a:7b:b5:26:bb:33:7fSigner

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

gdiplus

oleacc

imm32

winmm

Sections

.text Size: 1.5MB - Virtual size: 1.5MB

.inhu Size: 1KB - Virtual size: 1KB

.hemjo Size: 4KB - Virtual size: 4KB

.rdata Size: 330KB - Virtual size: 329KB

.data Size: 21KB - Virtual size: 38KB

.rsrc Size: 184KB - Virtual size: 183KB

.reloc Size: 136KB - Virtual size: 135KB

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

5a:de:28:2b:65:76:6b:d0:64:09:b1:68:bf:90:3b:3c:0c:4e:3b:1a:22:4c:87:0f:df:19:a4:cf:2f:a5:34:31
Signer

09:01:f2:f7:c4:52:64:b8:68:8a:34:00:4e:7a:7b:b5:26:bb:33:7f
Signer

.text
Size: 1.5MB - Virtual size: 1.5MB

.inhu
Size: 1KB - Virtual size: 1KB

.hemjo
Size: 4KB - Virtual size: 4KB

.rdata
Size: 330KB - Virtual size: 329KB

.data
Size: 21KB - Virtual size: 38KB

.rsrc
Size: 184KB - Virtual size: 183KB

.reloc
Size: 136KB - Virtual size: 135KB