14e0d90af8f5632f4d0748c532f19d54_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

14e0d90af8f5632f4d0748c532f19d54_JaffaCakes118
Size

808KB
MD5

14e0d90af8f5632f4d0748c532f19d54
SHA1

1b7aa735724ff3baae68ea1b455b8f66ea622557
SHA256

d0492edae3df51897ba20abd21b7f06700c60042e3a1fda76e51b61878e2816b
SHA512

b2e21cc821821fc4fb75474cb0990ffb069491d9f34f229dc6cea4c710b38133d719289574a6d23a310ecc67d468bc5054692b0ce1008fb09cccb06afaaae1ba
SSDEEP

12288:1c/zIky191f/0f7JeMrm0Zcjcd7TfIhrBzeVmL9i6dQ/ox+f:4q/0fdeMrmA/TfI5BGmzJxs

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
14e0d90af8f5632f4d0748c532f19d54_JaffaCakes118

Files

14e0d90af8f5632f4d0748c532f19d54_JaffaCakes118
.exe windows:4 windows x86 arch:x86

65651c4963abbafd16e8befa4c042e49

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

dsetup

ord11

kernel32

HeapAlloc
HeapFree
CreateThread
ExitThread
RaiseException
GetTimeZoneInformation
GetSystemTime
GetACP
HeapReAlloc
HeapSize
FatalAppExitA
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
SetConsoleCtrlHandler
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetLocaleInfoW
TerminateProcess
ExitProcess
RtlUnwind
SetErrorMode
LocalFileTimeToFileTime
GetFileTime
GetFileSize
CopyFileA
GlobalSize
GetOEMCP
GetCPInfo
GetProcessVersion
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
GlobalFlags
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
GetCommandLineA
GetShortPathNameA
GetStringTypeExA
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
GetLastError
CreateMutexA
OpenMutexA
CreateProcessA
DeleteFileA
Sleep
GetCurrentProcessId
SetFileAttributesA
GetFileAttributesA
GetLocalTime
TerminateThread
ResumeThread
FormatMessageA
GetModuleHandleA
SetFileTime
MulDiv
GetTickCount
WaitForSingleObject
GetCurrentDirectoryA
OutputDebugStringA
CreateDirectoryA
FileTimeToSystemTime
GetFileAttributesExA
SystemTimeToFileTime
GetProfileStringA
ReleaseMutex
FreeLibrary
LoadLibraryA
GetWindowsDirectoryA
lstrcpyA
WinExec
lstrlenA
lstrcatA
LoadResource
SizeofResource
FindResourceA
GetCurrentThreadId
GetCurrentThread
lstrcmpiA
lstrcmpA
GlobalDeleteAtom
GlobalAlloc
GlobalLock
GetModuleFileNameA
CloseHandle
SetEvent
SetThreadPriority
SuspendThread
CreateEventA
InterlockedDecrement
LockResource
GlobalFree
GlobalUnlock
GetProcAddress
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
GetVersion
SetLastError
InterlockedIncrement
WideCharToMultiByte
MultiByteToWideChar
lstrlenW
FileTimeToLocalFileTime
lstrcpynA
GetThreadLocale
LocalFree
DuplicateHandle
GetCurrentProcess
CreateFileA
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
MoveFileA
GetStartupInfoA

user32

GetSysColorBrush
GetDialogBaseUnits
CopyAcceleratorTableA
SetRect
GetNextDlgGroupItem
AppendMenuA
RemoveMenu
SetRectEmpty
LoadAcceleratorsA
TranslateAcceleratorA
SetMenu
ReuseDDElParam
UnpackDDElParam
BringWindowToTop
RegisterClipboardFormatA
PostThreadMessageA
OemToCharA
CharToOemA
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
wvsprintfA
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
ScrollWindowEx
IsDlgButtonChecked
SetDlgItemTextA
SetDlgItemInt
GetDlgItemTextA
GetDlgItemInt
CheckRadioButton
CheckDlgButton
SendDlgItemMessageA
MapWindowPoints
SetFocus
AdjustWindowRectEx
EqualRect
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
IsChild
GetCapture
WinHelpA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetMenuItemID
GetMenuStringA
SetWindowPlacement
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
CreateWindowExA
GetClassLongA
SetPropA
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessageTime
GetForegroundWindow
SetForegroundWindow
RegisterWindowMessageA
IntersectRect
SystemParametersInfoA
GetWindowPlacement
MapDialogRect
SetWindowPos
GetWindow
SetWindowContextHelpId
SetCapture
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
GetDlgItem
UnhookWindowsHookEx
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetMessageA
TranslateMessage
DispatchMessageA
GetKeyState
CallNextHookEx
ValidateRect
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DefDlgProcA
IsWindowUnicode
IsWindowVisible
PeekMessageA
GetCursorPos
SetWindowsHookExA
GetLastActivePopup
IsWindowEnabled
MessageBoxA
ShowOwnedPopups
UpdateWindow
RedrawWindow
LoadCursorA
CopyIcon
IsWindow
GetMessagePos
DeleteMenu
InsertMenuA
GetClassNameA
GetWindowThreadProcessId
GetDesktopWindow
WaitMessage
TrackPopupMenu
ReleaseCapture
ScreenToClient
PtInRect
SetTimer
MessageBeep
SetWindowLongA
KillTimer
LoadMenuA
LoadImageA
GetIconInfo
GetDC
CreateIconIndirect
ReleaseDC
FillRect
DrawStateA
OffsetRect
CopyRect
FrameRect
InflateRect
GetSysColor
DrawFocusRect
GetSubMenu
TrackPopupMenuEx
ClientToScreen
WindowFromPoint
GetActiveWindow
InvalidateRect
SetCursor
GetParent
GetNextDlgTabItem
GetWindowLongA
DestroyIcon
DestroyCursor
DestroyMenu
EnableWindow
FindWindowA
SetWindowRgn
PostQuitMessage
IsIconic
GetSystemMetrics
DrawIcon
SendMessageA
GetClientRect
GetWindowRect
LoadIconA
PostMessageA
wsprintfA
CharUpperA
EndDialog
LoadStringA
CharNextA
ScrollWindow

gdi32

GetTextExtentPointA
CreateDCA
CopyMetaFileA
LPtoDP
GetTextMetricsA
DPtoLP
CombineRgn
SetRectRgn
GetMapMode
GetBkColor
GetTextColor
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
CreateDIBPatternBrushPt
CreatePatternBrush
CreateHatchBrush
ExtCreatePen
CreatePen
GetWindowExtEx
GetViewportExtEx
GetDeviceCaps
PlayMetaFile
EnumMetaFile
GetObjectType
PlayMetaFileRecord
ExtSelectClipRgn
SelectClipPath
CreateRectRgn
GetClipRgn
PolyBezierTo
SetColorAdjustment
PolylineTo
PolyDraw
SetArcDirection
ArcTo
GetCurrentPositionEx
SetMapperFlags
SetTextCharacterExtra
SetTextJustification
SetTextAlign
LineTo
MoveToEx
OffsetClipRgn
IntersectClipRect
ExcludeClipRect
SelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
OffsetWindowOrgEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetStretchBltMode
SetROP2
SetPolyFillMode
SetBkMode
SelectPalette
RestoreDC
SaveDC
StartDocA
CreateRectRgnIndirect
PatBlt
GetClipBox
GetDCOrgEx
CreateSolidBrush
GetTextExtentPoint32A
GetPixel
SetPixel
CreateBitmap
SetBkColor
SetTextColor
CreateCompatibleBitmap
DeleteObject
GetObjectA
CreateFontIndirectA
CreateRoundRectRgn
CreateCompatibleDC
SelectObject
BitBlt
DeleteDC
GetStockObject
CreateDIBitmap

comdlg32

GetSaveFileNameA
GetFileTitleA
GetOpenFileNameA

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

RegCloseKey
RegQueryValueA
RegOpenKeyExA
RegOpenKeyA
RegCreateKeyExA
RegSetValueExA
RegDeleteValueA
RegDeleteKeyA
RegSetValueA
RegEnumKeyA
RegCreateKeyA
RegQueryValueExA

shell32

DragQueryFileA
DragFinish
SHGetFileInfoA
DragAcceptFiles
ShellExecuteExA
ShellExecuteA
ExtractIconA

comctl32

_TrackMouseEvent
ord13
ord14
ImageList_Destroy
ImageList_Create
ImageList_LoadImageA
ImageList_Merge
ImageList_Read
ImageList_Write
ord17

oledlg

ord8

ole32

WriteFmtUserTypeStg
SetConvertStg
CreateBindCtx
OleDuplicateData
CoTaskMemAlloc
CoTaskMemFree
ReadFmtUserTypeStg
WriteClassStg
StgOpenStorageOnILockBytes
CoGetClassObject
CoCreateInstance
CLSIDFromString
CLSIDFromProgID
ReadClassStg
StringFromCLSID
OleRegGetUserType
StgCreateDocfileOnILockBytes
CoTreatAsClass
ReleaseStgMedium
CoDisconnectObject
OleRun
OleInitialize
OleUninitialize
CoFreeUnusedLibraries
CoRegisterMessageFilter
CoRegisterClassObject
CoRevokeClassObject
OleSetClipboard
OleFlushClipboard
OleIsCurrentClipboard
CreateStreamOnHGlobal
CreateILockBytesOnHGlobal

olepro32

ord251
ord253

oleaut32

LoadTypeLi
SysStringLen
VariantTimeToSystemTime
SysReAllocStringLen
SafeArrayDestroyDescriptor
SafeArrayDestroyData
SafeArrayDestroy
SafeArrayUnlock
SafeArrayLock
SafeArrayPutElement
SafeArrayPtrOfIndex
SafeArrayGetElement
SafeArrayAllocDescriptor
SafeArrayAllocData
SafeArrayCopy
VarBstrFromDate
VarDateFromStr
VarBstrFromCy
VarCyFromStr
SysStringByteLen
VariantChangeType
SysAllocStringByteLen
SysAllocString
VariantCopy
SafeArrayRedim
SafeArrayCreate
SafeArrayGetDim
SafeArrayGetElemsize
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayAccessData
SafeArrayUnaccessData
SysAllocStringLen
SysFreeString
VariantClear

d3d9

Direct3DCreate9

wininet

InternetSetOptionA
InternetOpenA
InternetCloseHandle
InternetReadFile
HttpQueryInfoA
HttpOpenRequestA
HttpSendRequestA
InternetConnectA

Sections

.text
Size: 328KB - Virtual size: 325KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 88KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 364KB - Virtual size: 363KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

65651c4963abbafd16e8befa4c042e49

Headers

File Characteristics

Imports

dsetup

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

d3d9

wininet

Sections

.text Size: 328KB - Virtual size: 325KB

.rdata Size: 88KB - Virtual size: 85KB

.data Size: 24KB - Virtual size: 41KB

.rsrc Size: 364KB - Virtual size: 363KB

.text
Size: 328KB - Virtual size: 325KB

.rdata
Size: 88KB - Virtual size: 85KB

.data
Size: 24KB - Virtual size: 41KB

.rsrc
Size: 364KB - Virtual size: 363KB