170e930a282cd6cf88f683c9d53aac45_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

170e930a282cd6cf88f683c9d53aac45_JaffaCakes118
Size

196KB
MD5

170e930a282cd6cf88f683c9d53aac45
SHA1

acbde702514951bf3414d65373d71c0c1c489e64
SHA256

c98e8a884c4d3a42dd919f22e37e4b928e5225be399c6303cfe8b8c44001bff7
SHA512

e18bd247f67b356860f1040005d9e45a58d40dab963287b93bd5f4a6abbda289947c9ac6b9e20deac71b9a20bfc7592e168a481ad47f4ef09fc0a1bb82dc4564
SSDEEP

3072:7as/Ez7g5UqayW1jneH6YWIPIbFzAHsIhbcCcE5BT7i:NMzE+qaycjEnzItusIhxLB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
170e930a282cd6cf88f683c9d53aac45_JaffaCakes118

Files

170e930a282cd6cf88f683c9d53aac45_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d5d45b4affb70b12b9ad603aa6b688e0

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RtlUnwind
RaiseException
GetStartupInfoA
SetErrorMode
FileTimeToLocalFileTime
GetCommandLineA
HeapFree
HeapAlloc
GetDriveTypeA
GetFileType
ExitProcess
SetStdHandle
CreateThread
ExitThread
HeapReAlloc
HeapSize
GetACP
GetTimeZoneInformation
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
FreeEnvironmentStringsW
GetCPInfo
FileTimeToSystemTime
GetOEMCP
lstrcpyA
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
CompareStringA
CompareStringW
SetEnvironmentVariableA
FindClose
GetFileAttributesA
FindFirstFileA
SizeofResource
GetFileTime
GetFileSize
GetProcessVersion
WritePrivateProfileStringA
TlsGetValue
GlobalFlags
GlobalReAlloc
LocalReAlloc
TlsSetValue
TlsAlloc
TlsFree
GlobalHandle
GetFullPathNameA
GetVolumeInformationA
WriteFile
UnlockFile
LockFile
LeaveCriticalSection
ReadFile
CreateFileA
FormatMessageA
DeleteCriticalSection
InitializeCriticalSection
EnterCriticalSection
LocalFree
LocalAlloc
MultiByteToWideChar
lstrcpynA
MulDiv
InterlockedDecrement
WideCharToMultiByte
InterlockedIncrement
lstrcatA
lstrlenA
GetVersion
GetEnvironmentStrings
GlobalFindAtomA
GlobalGetAtomNameA
GetCurrentDirectoryA
GlobalAddAtomA
GetEnvironmentStringsW
GetModuleHandleA
SetLastError
FreeLibrary
GlobalUnlock
GlobalFree
LockResource
FindResourceA
LoadResource
SuspendThread
SetThreadPriority
ResumeThread
GetModuleFileNameA
GlobalLock
GlobalAlloc
GlobalDeleteAtom
lstrcmpA
lstrcmpiA
GetCurrentThread
GetCurrentThreadId
FlushFileBuffers
SetFilePointer
SetEndOfFile
GetStdHandle
SetHandleCount
HeapDestroy
FreeEnvironmentStringsA
SetEvent
DuplicateHandle
GetCurrentProcess
CreateEventA
WaitForSingleObject
CloseHandle
Sleep
GetLastError
CreateMutexA
GetProcAddress
LoadLibraryA
GetProfileStringA

user32

ScreenToClient
AdjustWindowRectEx
GetSysColor
MapWindowPoints
UpdateWindow
ReleaseDC
GetDC
CopyRect
DestroyMenu
ClientToScreen
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
CharUpperA
LoadCursorA
LoadStringA
PtInRect
GetSysColorBrush
InflateRect
InvalidateRect
GetMenuItemID
DefWindowProcA
CreateWindowExA
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetForegroundWindow
GetClassNameA
RegisterWindowMessageA
OffsetRect
IntersectRect
GetSubMenu
EndDialog
SetActiveWindow
IsWindow
DestroyWindow
SetFocus
ShowWindow
SetWindowPos
SetWindowLongA
GetDlgCtrlID
GetWindowTextLengthA
GetWindowTextA
SetWindowTextA
IsDialogMessageA
SendDlgItemMessageA
GetDlgItem
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetMessageA
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
GetCursorPos
SetWindowsHookExA
GetParent
GetLastActivePopup
IsWindowEnabled
GetWindowLongA
MessageBoxA
SetCursor
PostQuitMessage
PostMessageA
PostThreadMessageA
PeekMessageA
TranslateMessage
DispatchMessageA
EnableWindow
IsIconic
GetTopWindow
GetCapture
WinHelpA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetWindowPlacement
GetWindowRect
SetForegroundWindow
GetWindow
SystemParametersInfoA
GetSystemMetrics
GetClientRect
DrawIcon
GetSystemMenu
AppendMenuA
SendMessageA
LoadIconA
CreateDialogIndirectParamA
wsprintfA
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
DefDlgProcA
CharNextA
IsWindowUnicode

gdi32

CreateBitmap
GetClipBox
SetTextColor
SetBkColor
GetObjectA
PatBlt
DeleteDC
SaveDC
RestoreDC
SelectObject
GetStockObject
SetBkMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
IntersectClipRect
DeleteObject
GetDeviceCaps
CreateSolidBrush
PtVisible
RectVisible
ExtTextOutA
Escape
TextOutA
CreateDIBitmap
BitBlt
GetTextExtentPointA
CreateCompatibleDC

comdlg32

GetFileTitleA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegCreateKeyExA
RegSetValueExA
RegCloseKey
RegOpenKeyExA

shell32

ShellExecuteA

comctl32

ord17

wsock32

WSACleanup
WSAStartup

wininet

InternetOpenUrlA
InternetGetLastResponseInfoA
HttpQueryInfoA
InternetCrackUrlA
InternetCanonicalizeUrlA
InternetQueryOptionA
InternetOpenA
InternetCloseHandle
InternetSetStatusCallback
InternetSetFilePointer
InternetWriteFile
InternetReadFile
InternetQueryDataAvailable

Sections

.text
Size: 124KB - Virtual size: 121KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d5d45b4affb70b12b9ad603aa6b688e0

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

wsock32

wininet

Sections

.text Size: 124KB - Virtual size: 121KB

.rdata Size: 28KB - Virtual size: 27KB

.data Size: 24KB - Virtual size: 38KB

.rsrc Size: 16KB - Virtual size: 12KB

.text
Size: 124KB - Virtual size: 121KB

.rdata
Size: 28KB - Virtual size: 27KB

.data
Size: 24KB - Virtual size: 38KB

.rsrc
Size: 16KB - Virtual size: 12KB