1482fa53ca52782b394160a14eb5a493_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

1482fa53ca52782b394160a14eb5a493_JaffaCakes118
Size

1.7MB
MD5

1482fa53ca52782b394160a14eb5a493
SHA1

307bb28279d6b2c378982d4bac0fef7e6b1cf5ce
SHA256

e67183b75214266052689c33705be1688764d7e4ef78f0829051c3fae1b52b90
SHA512

6e0ce189b7e32328092ec959bdfbe9542070420c58c196058355fe441fe90400f4a9a9c0fe95d5af76018a43e2b0f438d7fa0a7ba2ff99bc43b58e77765ec6c3
SSDEEP

24576:eSeDvpA/8NLbWU5upjhjOAHMXSadsKAfZq0R7wJYDuGGJ15Ujxrx092XDchkagY/:Kdybp9OZXSssKAfEAGYDut1Kc9+QH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1482fa53ca52782b394160a14eb5a493_JaffaCakes118

Files

1482fa53ca52782b394160a14eb5a493_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2ee3cdd393cbe2609306deeb97721962

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

kernel32

GetCurrentProcessId
WideCharToMultiByte
VirtualQuery
FindResourceA
LocalReAlloc
GetThreadLocale
GetEnvironmentStrings
ResetEvent
DeleteFileA
GetProcessHeap
LocalAlloc
GetModuleHandleA
LoadLibraryExA
GlobalAlloc
GetFileType
GetStringTypeW
GetACP
VirtualAlloc
VirtualQuery
LoadLibraryA
ExitProcess

gdi32

CopyEnhMetaFileA
SetPixel
CreateCompatibleDC
GetPixel
CreateBrushIndirect
SaveDC
SetBkMode
CopyEnhMetaFileA
CreatePenIndirect
GetObjectA
GetDIBColorTable
CreateBitmap
GetObjectA

comdlg32

GetSaveFileNameA
ChooseColorA
GetOpenFileNameA
GetSaveFileNameA
ChooseColorA
GetOpenFileNameA
ChooseColorA
GetSaveFileNameA
FindTextA
GetFileTitleA
GetOpenFileNameA
ChooseColorA
FindTextA
GetSaveFileNameA

oleaut32

SafeArrayUnaccessData
VariantCopyInd
SysReAllocStringLen
SafeArrayGetUBound
OleLoadPicture
GetErrorInfo
SafeArrayGetElement
RegisterTypeLib
SysStringLen
SafeArrayCreate
VariantChangeType
SysAllocStringLen
SafeArrayGetElement
VariantCopyInd
SysAllocStringLen
SafeArrayGetUBound
OleLoadPicture
SafeArrayGetElement
OleLoadPicture
SysFreeString
SysReAllocStringLen
SysAllocStringLen
RegisterTypeLib
SafeArrayGetUBound

shell32

SHFileOperationA
SHGetDiskFreeSpaceA
Shell_NotifyIconA
SHGetFolderPathA
DragQueryFileA
SHGetDesktopFolder
SHGetDiskFreeSpaceA
SHGetDesktopFolder

user32

IsWindowEnabled
GetMenuItemInfoA
GetCursorPos
CharNextA
GetIconInfo
DeleteMenu
AdjustWindowRectEx
ScrollWindow
TranslateMDISysAccel
PeekMessageA
GetWindowRect
DrawAnimatedRects
DestroyIcon
SetWindowTextA
SetPropA
GetClassLongA
SetWindowLongA
BeginPaint
EnumChildWindows
GetForegroundWindow
MessageBoxA
GetTopWindow
GetScrollInfo
GetSystemMenu
InflateRect
GetWindow
DefMDIChildProcA
CheckMenuItem
GetSysColor
GetMenuStringA
CloseClipboard
SetParent
CharNextW
RemovePropA
GetKeyState
EnableScrollBar
SetMenu
RemoveMenu
GetDCEx
GetScrollRange
GetKeyboardLayoutNameA
ShowOwnedPopups
UpdateWindow
EnableWindow
MoveWindow
GetWindowLongW
SetWindowLongW
CreateMenu
PostMessageA
WaitMessage
GetActiveWindow
TrackPopupMenu
LoadIconA
SetForegroundWindow
DrawEdge
IsZoomed
GetCapture
KillTimer
DestroyMenu
GetParent
ShowWindow
GetMessagePos
SetScrollPos
SetMenuItemInfoA
LoadBitmapA
SendMessageA
GetClassNameA
OpenClipboard
FillRect
ActivateKeyboardLayout
TranslateMessage
GetWindowPlacement
DrawTextA
GetMenuState
SetRect
LoadCursorA
DestroyWindow
CharLowerBuffA
IsRectEmpty
SetScrollRange
WindowFromPoint
SetTimer
SetCursor
IsDialogMessageW
GetSysColorBrush
GetMenuItemCount
CharLowerA
MessageBeep
EnumWindows
RegisterClipboardFormatA
GetClipboardData
GetKeyboardType
CharToOemA
GetKeyboardState
DrawIconEx
FrameRect
CallNextHookEx
DefFrameProcA
SetWindowPlacement
GetDC
SendMessageW
SetWindowPos
IsIconic
GetDlgItem
EndPaint
GetLastActivePopup
GetKeyboardLayout
EnumThreadWindows
SetScrollInfo
OffsetRect
UnregisterClassA
GetDesktopWindow
DispatchMessageW
IsWindow
LoadStringA
CreatePopupMenu
GetKeyNameTextA
SetClassLongA
RegisterClassA
MapVirtualKeyA
ReleaseCapture
AdjustWindowRectEx
GetMenuItemInfoA
RemovePropA
CharToOemA
SetParent
CallWindowProcA
SetClassLongA
PeekMessageW
CreateIcon
GetKeyboardLayoutNameA
PostMessageA
GetWindowThreadProcessId
GetFocus
SetPropA
RedrawWindow
SetScrollRange
ActivateKeyboardLayout
EnableScrollBar
ShowOwnedPopups
DestroyIcon
GetMenuStringA
ChildWindowFromPoint
LoadBitmapA
DrawIconEx
PtInRect
DeleteMenu
IsDialogMessageW
CharNextW
CreateMenu
DestroyCursor
OemToCharA
SetFocus
ScreenToClient
SetCapture
OpenClipboard
SetWindowsHookExA
GetForegroundWindow
DefWindowProcA
SendMessageA
LoadIconA
GetTopWindow
IsZoomed
CharNextA
GetParent
GetSystemMetrics
MoveWindow
BeginPaint
SetClipboardData
FillRect
MapWindowPoints
GetMenu
CreatePopupMenu
GetWindowLongA
EnableMenuItem
IsWindowVisible
GetSysColor
CharLowerBuffA
GetSysColorBrush
GetPropA
GetScrollPos
GetScrollInfo
GetKeyState
GetWindow
GetMessagePos
GetDesktopWindow
GetSubMenu
GetClientRect
RegisterWindowMessageA
IsIconic
MessageBoxA
CloseClipboard
TranslateMDISysAccel
CreateWindowExA
UnhookWindowsHookEx
SetScrollInfo
SetScrollPos
OffsetRect
SendMessageW
GetCursorPos
IsRectEmpty
GetKeyNameTextA
GetScrollRange
IsWindowEnabled
SetWindowTextA
DrawAnimatedRects
GetMenuItemID
DrawTextA
SetCursor
EnumChildWindows
SetWindowLongA
SetWindowPlacement
RegisterClassA
EnumWindows
RegisterClipboardFormatA
DispatchMessageA
CharLowerA
MessageBeep
IsDialogMessageA
PeekMessageA
DrawFrameControl
WaitMessage
WindowFromPoint
SystemParametersInfoA
IsChild
UpdateWindow
LoadCursorA
GetWindowPlacement
KillTimer
TrackPopupMenu
FrameRect
GetWindowDC
DrawMenuBar
GetIconInfo
UnregisterClassA
MsgWaitForMultipleObjects
ShowWindow
SetTimer
ReleaseCapture
DefMDIChildProcA
GetCursor
GetMenuItemCount
GetMenuState
SetMenu
ShowScrollBar
GetClassLongA
GetWindowTextA
DefFrameProcA
GetKeyboardType
ClientToScreen
DestroyWindow
SetForegroundWindow
DestroyWindow
SetMenu
GetKeyboardLayoutNameA
SetWindowPos
PostMessageA
SetWindowsHookExA
CreateMenu
GetWindowTextA
DispatchMessageA
SetRect
RedrawWindow
GetIconInfo
RemoveMenu
GetKeyboardType
GetMenu
EnumChildWindows
SetScrollInfo
EndPaint
OffsetRect
RemovePropA
CharNextA
GetSystemMetrics
DrawFrameControl
SetCursor
CreateWindowExA
LoadStringA
CloseClipboard
CallWindowProcA
GetLastActivePopup
MoveWindow
ActivateKeyboardLayout
CharLowerBuffA
DefWindowProcA
TranslateMessage
RegisterWindowMessageA
SetParent
ShowWindow
GetKeyboardLayout
GetWindowThreadProcessId
CharToOemA
GetKeyNameTextA
GetClassNameA
EmptyClipboard
GetMenuItemID
SetClipboardData
TrackPopupMenu
MessageBoxA
SetTimer
CharNextW
DefFrameProcA
InsertMenuA
DefMDIChildProcA
ChildWindowFromPoint
GetMessagePos
SendMessageW
EnableWindow
SetClassLongA
ScreenToClient
GetClipboardData
EnumThreadWindows
MapVirtualKeyA
CallNextHookEx
ShowScrollBar
GetWindowDC
SetScrollRange
GetSystemMenu
WaitMessage
GetCapture
ReleaseDC
GetDlgItem
SetCapture
GetCursorPos
MessageBeep
TranslateMDISysAccel
PostQuitMessage
EqualRect
GetMenuState
LoadCursorA
CharLowerA
CreateIcon
KillTimer
CreatePopupMenu
IsWindow
DestroyCursor
GetActiveWindow
SetActiveWindow
DestroyMenu
UnhookWindowsHookEx
SetWindowLongA
GetWindowLongA
OpenClipboard
FrameRect
RegisterClassA
IsWindowEnabled
GetParent
IsChild
GetWindowPlacement
GetForegroundWindow
GetTopWindow
IsWindowVisible
IsZoomed
EnableScrollBar
GetDCEx
DrawMenuBar
GetWindowRect
IsDialogMessageA
UnregisterClassA
WindowFromPoint
SetMenuItemInfoA
LoadIconA
DrawTextA
GetWindowLongW
UpdateWindow
SetPropA
GetMenuItemCount
EnableMenuItem
FindWindowA
GetWindow
InsertMenuItemA
MapWindowPoints
IntersectRect
DeleteMenu
DrawIconEx

shlwapi

SHQueryInfoKeyA
PathIsDirectoryA
SHDeleteKeyA
PathFileExistsA
SHSetValueA
SHQueryInfoKeyA
SHStrDupA
SHDeleteValueA
SHEnumValueA
SHQueryValueExA
SHDeleteKeyA
SHSetValueA
PathIsDirectoryA
SHQueryValueExA
SHGetValueA
PathIsDirectoryA
SHQueryInfoKeyA
PathFileExistsA
PathGetCharTypeA
SHDeleteKeyA
PathFileExistsA
PathGetCharTypeA
PathIsContentTypeA
SHGetValueA
SHEnumValueA
PathIsDirectoryA
PathIsContentTypeA
SHGetValueA

msvcrt

memmove
wcstol
calloc
clock
srand
wcscspn
srand
mbstowcs
calloc
sqrt
rand
_acmdln
wcstol
tolower
clock
memcpy
clock
sprintf
rand
atol
exit
malloc
swprintf
wcschr
wcsncmp
memset
sqrt
wcstol
wcscspn
malloc
rand
exit
memset
sqrt
wcstol
swprintf
atol
sprintf
tolower
time
memmove
mbstowcs
sprintf
tolower
wcschr
srand
wcstol
calloc
memset
wcsncmp
time
_acmdln
exit

version

VerInstallFileA
GetFileVersionInfoA
GetFileVersionInfoA
VerQueryValueA
VerInstallFileA
VerFindFileA
GetFileVersionInfoA
VerInstallFileA
GetFileVersionInfoA
VerFindFileA
GetFileVersionInfoA
GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA
VerInstallFileA
VerQueryValueA
VerInstallFileA
GetFileVersionInfoSizeA

ole32

CoRegisterClassObject
ReleaseStgMedium
CoGetMalloc

comctl32

ImageList_DrawEx
ImageList_DragShowNolock
ImageList_Draw
ImageList_GetBkColor
ImageList_Write
ImageList_DragShowNolock
ImageList_Add
ImageList_DrawEx
ImageList_Read
ImageList_Destroy
ImageList_Write
ImageList_DragShowNolock
ImageList_GetBkColor
ImageList_Read
ImageList_Create
ImageList_Draw
ImageList_DrawEx
ImageList_Add
ImageList_Remove
ImageList_Add
ImageList_Create
ImageList_DragShowNolock
ImageList_Read
ImageList_Destroy
ImageList_Write
ImageList_Draw
ImageList_DrawEx
ImageList_Remove
ImageList_Create
ImageList_Add
ImageList_GetBkColor
ImageList_Destroy
ImageList_DrawEx
ImageList_Draw
ImageList_GetBkColor
ImageList_DragShowNolock

advapi32

RegEnumKeyA
RegQueryValueExA
RegDeleteKeyA
RegLoadKeyA

Sections

CODE
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 556KB - Virtual size: 555KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

DATA
Size: 279KB - Virtual size: 5.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: 835KB - Virtual size: 834KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 435B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

text
Size: 512B - Virtual size: 72B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2ee3cdd393cbe2609306deeb97721962

Headers

File Characteristics

Imports

kernel32

gdi32

comdlg32

oleaut32

shell32

user32

shlwapi

msvcrt

version

ole32

comctl32

advapi32

Sections

CODE Size: 68KB - Virtual size: 67KB

.data Size: 556KB - Virtual size: 555KB

DATA Size: 279KB - Virtual size: 5.3MB

BSS Size: 835KB - Virtual size: 834KB

.idata Size: 16KB - Virtual size: 15KB

.rdata Size: 512B - Virtual size: 435B

text Size: 512B - Virtual size: 72B

.text Size: 512B - Virtual size: 24B

.rsrc Size: 16KB - Virtual size: 16KB

CODE
Size: 68KB - Virtual size: 67KB

.data
Size: 556KB - Virtual size: 555KB

DATA
Size: 279KB - Virtual size: 5.3MB

BSS
Size: 835KB - Virtual size: 834KB

.idata
Size: 16KB - Virtual size: 15KB

.rdata
Size: 512B - Virtual size: 435B

text
Size: 512B - Virtual size: 72B

.text
Size: 512B - Virtual size: 24B

.rsrc
Size: 16KB - Virtual size: 16KB