1049f8311001cfdc83ca722186ae6a84_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

1049f8311001cfdc83ca722186ae6a84_JaffaCakes118
Size

864KB
MD5

1049f8311001cfdc83ca722186ae6a84
SHA1

d85d068daa6ff32f7f9c2c3643dd483390fee074
SHA256

0ef1f91d77fbe3293cf787f038514ce7d555f82cc2d0a2d44cacd238b0630129
SHA512

79cdbfc5070866ec4f5d075c008ae83b920e0c34f651306e0b4fbca35af90992bf2e075429186c57f9683a35ad1274d3bc254652ae1303000929de09e4a9c002
SSDEEP

12288:7pF60cAOC5lk48FGg2aPSpyOShhVN/06VNeXZiUttPK24OlzetggBd:7pFUCk4ALx/06OiUttPf4CzUVd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1049f8311001cfdc83ca722186ae6a84_JaffaCakes118

Files

1049f8311001cfdc83ca722186ae6a84_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6d32b96fec3b00645261a7e7cf4fe180

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shfolder

SHGetFolderPathA

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

winmm

waveOutGetDevCapsA
waveOutGetNumDevs

msvfw32

ICInfo
ICOpen
ICClose
ICGetInfo

msacm32

acmDriverDetailsA
acmDriverEnum

kernel32

TlsSetValue
LocalReAlloc
TlsGetValue
GetProcessVersion
GetCPInfo
GetOEMCP
GetThreadLocale
SetErrorMode
WriteFile
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
GetVolumeInformationA
GetFullPathNameA
GetFileAttributesA
GetFileTime
RtlUnwind
HeapFree
HeapAlloc
GetStartupInfoA
ExitProcess
RaiseException
GetTimeZoneInformation
GetSystemTime
GetLocalTime
GetACP
TerminateProcess
CreateThread
ExitThread
HeapReAlloc
HeapSize
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
LCMapStringA
LCMapStringW
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
EnterCriticalSection
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
IsValidLocale
IsValidCodePage
EnumSystemLocalesA
GetUserDefaultLCID
GetLocaleInfoW
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetProfileStringA
InterlockedExchange
GetSystemDirectoryA
GetWindowsDirectoryA
GetVersionExA
GetProcAddress
LoadLibraryA
DeviceIoControl
GetDriveTypeA
CreateFileA
GetLogicalDrives
FreeLibrary
CloseHandle
WaitForSingleObject
ResetEvent
CreateEventA
GetLastError
QueryDosDeviceA
lstrcmpiA
GetCurrentProcessId
InterlockedIncrement
InterlockedDecrement
GetVersion
GetModuleHandleA
CreateProcessA
Sleep
SetConsoleTitleA
AllocConsole
FreeConsole
ReadFile
DuplicateHandle
GetCurrentProcess
CreatePipe
GlobalMemoryStatus
GetCommandLineA
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
GlobalFlags
MulDiv
WritePrivateProfileStringA
GetPrivateProfileStringA
VirtualProtect
SuspendThread
SetThreadPriority
ResumeThread
SetEvent
GlobalAlloc
lstrcmpA
GetCurrentThread
ReleaseMutex
WideCharToMultiByte
GetLocaleInfoA
lstrcpynA
GetModuleFileNameA
MultiByteToWideChar
LockResource
LoadResource
CreateMutexA
FindNextFileA
FindFirstFileA
SetLastError
FindClose
FileTimeToLocalFileTime
FileTimeToSystemTime
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
GlobalLock
GlobalUnlock
GlobalFree
GetCurrentDirectoryA
SetCurrentDirectoryA
GetFileSize
IsBadWritePtr
GetTickCount
LocalAlloc
LocalFree
lstrcatA
lstrlenA
WinExec
lstrcpyA
FormatMessageA
SizeofResource
GetSystemDefaultLangID
FindResourceA
GetFileType

user32

WindowFromPoint
CharNextA
CopyAcceleratorTableA
GetNextDlgGroupItem
CharUpperA
RegisterClipboardFormatA
PostThreadMessageA
BeginPaint
GetWindowDC
ClientToScreen
SetWindowContextHelpId
MapDialogRect
GetAsyncKeyState
TranslateMessage
ValidateRect
GetCursorPos
PostQuitMessage
GetMenuCheckMarkDimensions
GetMenuState
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
MoveWindow
SetWindowTextA
IsDialogMessageA
SendDlgItemMessageA
MapWindowPoints
PeekMessageA
SetFocus
AdjustWindowRectEx
DestroyMenu
IsWindowVisible
GetClassInfoA
RegisterClassA
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
DefWindowProcA
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
SetWindowPos
IntersectRect
GetWindowPlacement
GetNextDlgTabItem
EndDialog
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
GetDlgItem
IsWindowEnabled
GetWindowLongA
GetClassNameA
MessageBoxA
WinHelpA
GetKeyState
PostMessageA
IsChild
CopyIcon
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
DefDlgProcA
IsWindowUnicode
EndPaint
GetTopWindow
GetParent
IsWindow
PtInRect
MessageBeep
DestroyCursor
SystemParametersInfoA
SetRect
AdjustWindowRect
OffsetRect
LoadStringA
GetMenuItemCount
GetMenuStringA
GetMenuItemID
ModifyMenuA
GetSubMenu
GetSysColorBrush
CopyRect
LoadBitmapA
GetWindow
GetMenu
IsMenu
GetCapture
ClipCursor
SetCapture
GetMessageA
DispatchMessageA
ReleaseCapture
SetWindowLongA
LoadCursorA
EnableWindow
wsprintfA
SendMessageA
ShowWindow
FindWindowA
LockWindowUpdate
GetDesktopWindow
LoadIconA
GetWindowRect
AppendMenuA
GetSystemMenu
DrawIcon
GetClientRect
GetSystemMetrics
IsIconic
InvalidateRect
GetSysColor
RedrawWindow
UpdateWindow
SetCursor
RemoveMenu
InflateRect
TabbedTextOutA
DrawTextA
GrayStringA
RegisterWindowMessageA
DrawEdge
GetFocus
ReleaseDC
FillRect
GetDC
ScreenToClient

gdi32

CreateCompatibleDC
CreateCompatibleBitmap
PtVisible
RectVisible
ExtTextOutA
Escape
CreateRectRgn
DeleteDC
SetTextColor
SetBkColor
GetTextFaceA
GetClipBox
CreateBitmap
PatBlt
CreateRectRgnIndirect
SaveDC
RestoreDC
SetBkMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
IntersectClipRect
BitBlt
GetViewportExtEx
GetWindowExtEx
CreatePen
CreatePatternBrush
GetMapMode
SetRectRgn
CombineRgn
DPtoLP
GetTextColor
LPtoDP
GetBkColor
GetCurrentObject
GetDeviceCaps
SetMapMode
StartDocA
CreateFontA
SetTextAlign
EndPage
StartPage
GetTextExtentPoint32A
SelectObject
MoveToEx
LineTo
TextOutA
EndDoc
DeleteObject
CreateSolidBrush
GetStockObject
GetTextExtentPointA
GetObjectA
CreateDIBitmap
CreateFontIndirectA

comdlg32

PrintDlgA
GetSaveFileNameA
GetFileTitleA
GetOpenFileNameA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

shell32

ShellExecuteA

comctl32

ImageList_DrawIndirect
CreatePropertySheetPageA
DestroyPropertySheetPage
PropertySheetA
ImageList_LoadImageA
ImageList_Create
ImageList_Destroy
ImageList_Draw
ImageList_AddMasked
ImageList_GetImageCount
ImageList_Remove
ord17
ImageList_GetImageInfo
ImageList_GetBkColor
ImageList_SetBkColor

oledlg

ord8

ole32

CoFreeUnusedLibraries
OleUninitialize
OleInitialize
CoTaskMemAlloc
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoInitializeEx
CoInitialize
CoCreateInstance
CoUninitialize
CoCreateGuid
StringFromIID
CoTaskMemFree
CoRegisterMessageFilter
CoRevokeClassObject
OleIsCurrentClipboard
OleFlushClipboard
StgOpenStorageOnILockBytes

olepro32

ord253

oleaut32

VariantClear
VariantInit
SysFreeString
SysAllocStringLen
VariantTimeToSystemTime
VariantCopy
VariantChangeType
SysAllocString
SysStringLen
SysAllocStringByteLen

Sections

.text
Size: 448KB - Virtual size: 447KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 84KB - Virtual size: 82KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 124KB - Virtual size: 145KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 204KB - Virtual size: 204KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

6d32b96fec3b00645261a7e7cf4fe180

Headers

File Characteristics

Imports

shfolder

version

winmm

msvfw32

msacm32

kernel32

user32

gdi32

comdlg32

winspool.drv

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

Sections

.text Size: 448KB - Virtual size: 447KB

.rdata Size: 84KB - Virtual size: 82KB

.data Size: 124KB - Virtual size: 145KB

.rsrc Size: 204KB - Virtual size: 204KB

.text
Size: 448KB - Virtual size: 447KB

.rdata
Size: 84KB - Virtual size: 82KB

.data
Size: 124KB - Virtual size: 145KB

.rsrc
Size: 204KB - Virtual size: 204KB