14f8412a6efc0043fdf855f6eff2217f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

14f8412a6efc0043fdf855f6eff2217f_JaffaCakes118
Size

458KB
MD5

14f8412a6efc0043fdf855f6eff2217f
SHA1

99c8ada8c45b390c44e7daf706705a653914f85f
SHA256

57dad901c66f57147e75656fa5b4df9fd62158b546dc7ceee18767f1ca95e6bc
SHA512

cafbbb42a9b0877f1bcf17a0219d9570bee5878cccbfe2a30f947cff492d3bc089fed34dbf12e410031f9f70decccbaf3464c1e4e71d7d771efa048580bbeb81
SSDEEP

6144:ESOfbGpxOVz9p3ZxpixrSRwLHeALttvwxSnvAHc/0QRSNj2oBudI/0VVCKzHB:hOVBppKrSRwqALt9MEvAHLzDuN1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
14f8412a6efc0043fdf855f6eff2217f_JaffaCakes118

Files

14f8412a6efc0043fdf855f6eff2217f_JaffaCakes118
.exe windows:5 windows x86 arch:x86

26edc58f75bd2e645df523e040711d9d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shlwapi

UrlUnescapeW
PathFindExtensionW
PathRemoveFileSpecW

comctl32

ImageList_Replace
ImageList_SetImageCount
ImageList_Destroy
InitCommonControlsEx
CreateStatusWindowW
ImageList_Draw
ImageList_AddMasked
ImageList_LoadImageW
ImageList_GetImageCount
ImageList_Create
ImageList_Add

shell32

SHGetPathFromIDListW
SHBrowseForFolderW
ShellExecuteW

kernel32

SetLastError
lstrcpynA
lstrlenA
MulDiv
GetCurrentProcessId
GetFileSize
FileTimeToLocalFileTime
CompareFileTime
WideCharToMultiByte
FindClose
WaitForSingleObject
GetFullPathNameW
FindFirstFileW
FindNextFileW
SetFilePointer
HeapFree
HeapAlloc
GetStartupInfoW
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
Sleep
HeapSize
ExitProcess
HeapCreate
HeapDestroy
VirtualFree
GetUserDefaultLangID
HeapReAlloc
GetStdHandle
GetModuleFileNameA
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
LCMapStringW
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCommandLineW
SetHandleCount
GetFileType
GetStartupInfoA
QueryPerformanceCounter
GetTickCount
GetSystemTimeAsFileTime
LoadLibraryA
InitializeCriticalSectionAndSpinCount
RtlUnwind
GetConsoleCP
GetConsoleMode
GetLocaleInfoA
LCMapStringA
GetStringTypeA
GetStringTypeW
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CreateFileA
FlushFileBuffers
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetProcessHeap
InterlockedCompareExchange
IsProcessorFeaturePresent
SetEndOfFile
GetModuleHandleA
CreateFileW
CloseHandle
ReadFile
WriteFile
InterlockedIncrement
InterlockedDecrement
DeleteCriticalSection
InitializeCriticalSection
GetModuleFileNameW
GetModuleHandleW
LoadLibraryExW
MultiByteToWideChar
lstrcmpiW
lstrcpynW
LoadLibraryW
GetLastError
GetProcAddress
FreeLibrary
GetVersionExW
FindResourceExW
FindResourceW
LoadResource
LockResource
SizeofResource
lstrcpyW
CreateThread
LeaveCriticalSection
EnterCriticalSection
GetCurrentThreadId
FlushInstructionCache
GetCurrentProcess
GetTimeFormatW
GetDateFormatW
FileTimeToSystemTime
SystemTimeToFileTime
lstrcmpW
lstrlenW
RaiseException
VirtualAlloc
VirtualQuery

user32

DestroyMenu
ModifyMenuW
SetMenu
CreateWindowExW
GetActiveWindow
GetWindowPlacement
IsWindow
DestroyWindow
CharNextW
SetWindowPlacement
DispatchMessageW
TranslateMessage
GetMessageW
PeekMessageW
LoadBitmapW
LoadStringW
IsMenu
GetMenuItemCount
GetDC
ReleaseDC
RegisterClassExW
GetClassInfoExW
DialogBoxParamW
EndDialog
LoadImageW
wvsprintfW
LoadStringA
PostQuitMessage
SetFocus
SetRectEmpty
IsWindowVisible
SetScrollInfo
DestroyCursor
LoadMenuW
LoadAcceleratorsW
SetRect
GetDlgCtrlID
DrawFocusRect
DrawTextW
OffsetRect
DrawFrameControl
GetMessagePos
WindowFromPoint
ScrollWindowEx
GetScrollInfo
SetScrollPos
MessageBeep
TrackPopupMenuEx
MonitorFromPoint
DrawEdge
GetWindowDC
SystemParametersInfoW
RemoveMenu
CreateDialogParamW
GetFocus
FrameRect
UnhookWindowsHookEx
CallNextHookEx
GetClassNameW
SetWindowsHookExW
CharLowerW
GetKeyState
RegisterWindowMessageW
GetSubMenu
GetWindowThreadProcessId
MoveWindow
MapVirtualKeyW
GetKeyNameTextW
UnregisterClassA
GetMenu
SetMenuDefaultItem
GetMenuItemInfoW
SetMenuItemInfoW
ShowWindow
BeginPaint
EndPaint
GetCapture
CopyRect
LoadCursorW
CreatePopupMenu
IsWindowEnabled
ScreenToClient
PtInRect
EnableMenuItem
AppendMenuW
TrackPopupMenu
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
InflateRect
GetSystemMetrics
InvalidateRect
UpdateWindow
ReleaseCapture
GetCursorPos
SetCapture
SetCursor
FillRect
CallWindowProcW
DefWindowProcW
EnableWindow
SendMessageW
PostMessageW
GetDlgItem
MessageBoxW
GetDlgItemTextW
GetWindow
MonitorFromWindow
GetMonitorInfoW
GetWindowRect
GetParent
GetClientRect
MapWindowPoints
SetWindowTextW
SetDlgItemTextW
DestroyCaret
GetSysColor
SetWindowPos
SetWindowLongW
GetWindowLongW
GetSysColorBrush
GetWindowTextW

gdi32

PatBlt
CreatePen
CreateFontIndirectW
SetBkMode
CreateCompatibleBitmap
BitBlt
CreateDIBitmap
CreateBitmap
GetTextExtentPoint32W
CreatePatternBrush
SetViewportOrgEx
SelectObject
CreateCompatibleDC
LineTo
CreateDIBSection
MoveToEx
DeleteDC
DeleteObject
SetBrushOrgEx
SetBkColor
CreateFontW
GetStockObject
GetObjectW
SetTextColor

comdlg32

GetOpenFileNameW
GetSaveFileNameW

advapi32

RegCreateKeyExW
RegSetValueExW
RegOpenKeyExW
RegEnumKeyExW
RegQueryInfoKeyW
RegCloseKey
RegDeleteKeyW
RegDeleteValueW

ole32

CoInitialize
CoCreateInstance
CoTaskMemAlloc
CoTaskMemRealloc
CoTaskMemFree
CoUninitialize

oleaut32

VarUI4FromStr

Sections

.text
Size: 311KB - Virtual size: 311KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 54KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 71KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

26edc58f75bd2e645df523e040711d9d

Headers

DLL Characteristics

File Characteristics

Imports

shlwapi

comctl32

shell32

kernel32

user32

gdi32

comdlg32

advapi32

ole32

oleaut32

Sections

.text Size: 311KB - Virtual size: 311KB

.rdata Size: 54KB - Virtual size: 53KB

.data Size: 20KB - Virtual size: 29KB

.rsrc Size: 71KB - Virtual size: 70KB

.text
Size: 311KB - Virtual size: 311KB

.rdata
Size: 54KB - Virtual size: 53KB

.data
Size: 20KB - Virtual size: 29KB

.rsrc
Size: 71KB - Virtual size: 70KB