1aef5f5627a245ee6a384399a183dfe3_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

1aef5f5627a245ee6a384399a183dfe3_JaffaCakes118
Size

457KB
MD5

1aef5f5627a245ee6a384399a183dfe3
SHA1

18a68ffbbc25c959fc4d3787f22e84d3174fe399
SHA256

48665923ef4a446d3471e2f9eecce7d0b772078c977827b61f79035e513f965c
SHA512

c5b4276ee8232ab7472df7510de04a66c77c92d2eed58dd0f60cfa569b8904833c39e651e554d9bd6712f30aaa001f0e9efb176998cd59dec0a35f4a953a64a3
SSDEEP

6144:tdhltGAfvyBifulgqpullOG8JTNLtnkcbu24e5t7Lj7vlLcjLpQmxce3ykfyC3aJ:tdhLj3yUmoxObnkEfvNcBLxEkad05

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1aef5f5627a245ee6a384399a183dfe3_JaffaCakes118

Files

1aef5f5627a245ee6a384399a183dfe3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7bf80a9f3b905fdf6494a62a0e564f34

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

uxtheme

GetThemeBackgroundContentRect
IsAppThemed
IsThemeActive
GetThemeFont
GetThemeAppProperties
DrawThemeParentBackground
SetWindowTheme
GetThemeMargins
GetThemeColor
GetThemePartSize
OpenThemeData
GetThemeMetric
GetThemeBackgroundExtent
DrawThemeBackground
CloseThemeData

ntdll

NtSetIoCompletion
NtQuerySemaphore
RtlAddAccessAllowedObjectAce
RtlAdjustPrivilege

kernel32

VirtualAlloc

ddraw

DirectDrawCreate

advapi32

RegCreateKeyExA
GetTraceLoggerHandle
RegCloseKey
SetThreadToken
RegDeleteKeyA
RegEnumKeyExW
RegQueryValueExA
RegEnumValueA
OpenThreadToken
RegQueryValueW
SetTokenInformation
UnregisterTraceGuids
RegSetValueExA
CryptCreateHash
GetLengthSid
CryptReleaseContext
TraceEvent
RegOpenKeyExW
RegOpenCurrentUser
RegDeleteKeyW
RegOpenKeyW
TraceMessage
CryptGetHashParam
RegDeleteValueW
GetTraceEnableLevel
ImpersonateSelf
CryptAcquireContextW
RegQueryValueExW
DuplicateTokenEx
RegOpenKeyExA
GetTraceEnableFlags
IsTextUnicode
RegisterTraceGuidsW
GetTokenInformation
RegEnumValueW
ConvertStringSecurityDescriptorToSecurityDescriptorW
CryptHashData
RegCreateKeyA
ConvertStringSidToSidW
CryptDestroyHash
RegEnumKeyW
ConvertSidToStringSidW
GetUserNameW
CreateProcessAsUserW
RegQueryInfoKeyW
OpenProcessToken
RegSetValueExW
RegDeleteValueA
RegCreateKeyExW

user32

IsRectEmpty
SendMessageTimeoutW
ClientToScreen
SetRect
DdeQueryStringW
IsDialogMessageW
GetMenuItemCount
SetFocus
MessageBoxExW
CheckRadioButton
GetIconInfo
MonitorFromPoint
DdeInitializeW
DestroyAcceleratorTable
LockSetForegroundWindow
GetScrollInfo
GetSystemMetrics
ChildWindowFromPoint
AttachThreadInput
WindowFromPoint
SetScrollPos
PostThreadMessageW
GetClassLongW
PostMessageW
LoadMenuW
GetWindowTextLengthW
GetClipboardFormatNameW
SendMessageTimeoutA
GetKeyboardLayout
CallNextHookEx
InsertMenuW
FindWindowA
GetMenuStringW
DispatchMessageW
MessageBoxIndirectA
RemoveMenu
GetDoubleClickTime
IsMenu
DestroyMenu
GetMessageW
SystemParametersInfoA
DispatchMessageA
GetLastInputInfo
CheckMenuRadioItem
GetLastActivePopup
LoadCursorW
WaitMessage
IntersectRect
GetWindowTextW
ShowWindow
DdeCreateStringHandleW
MapDialogRect
SetMenuItemBitmaps
DdeConnect
PostQuitMessage
WinHelpW
CharUpperW
GetWindowThreadProcessId
NotifyWinEvent
SetMenuItemInfoW
GetSubMenu
DrawFrameControl
wsprintfW
SetWindowRgn
AdjustWindowRect
SetScrollInfo
PostMessageA
DeleteMenu
RegisterClipboardFormatW
GetPropW
IsCharAlphaNumericW
SetDlgItemInt
CharLowerW
PtInRect
MonitorFromRect
GetCursor
GetPropA
CallMsgFilterW
SetWindowPos
IsWindowVisible
RedrawWindow
CharPrevA
GetMenuItemInfoW
SetPropA
AllowSetForegroundWindow
LoadStringW
MessageBoxW
CopyImage
CharPrevW
GetNextDlgTabItem
GetCursorPos
LoadAcceleratorsW
LoadIconW
ChangeClipboardChain
SetCapture
DdeCreateDataHandle
RegisterWindowMessageW
SetClipboardViewer
DrawEdge
SendNotifyMessageW
CopyRect
UnregisterClassW
InflateRect
CreateIconIndirect
GetMessageTime
DrawTextW
EnumThreadWindows
GetClassInfoExW
CheckMenuItem
SetCursor
SetWindowLongW
VkKeyScanExW
SystemParametersInfoW
DestroyIcon
GetClassWord
CheckDlgButton
SetClipboardData
DdeNameService
IsIconic
RegisterWindowMessageA
GetAsyncKeyState
GetMenuState
SetMenu
MsgWaitForMultipleObjects
BeginDeferWindowPos
AnimateWindow
MapVirtualKeyW
DefWindowProcA
TrackPopupMenu
DdeFreeDataHandle
PeekMessageA
GetClassInfoW
EnumWindows
TrackMouseEvent
CharNextA
FillRect
SendMessageA
CreateDialogParamW
UpdateWindow
EmptyClipboard
KillTimer
SetActiveWindow
IsChild
SetWindowTextW
RemovePropW
CallWindowProcW
EndDeferWindowPos
CreateWindowExW
EndPaint
SendMessageW
CreateMenu
LoadImageW
SetForegroundWindow
MoveWindow
SetParent
HideCaret
GetComboBoxInfo
FindWindowExW
GetMonitorInfoW
AdjustWindowRectEx
GetWindowRect
BeginPaint
InsertMenuItemW
DrawFocusRect
SetRectEmpty
EnumDesktopWindows
DestroyWindow
GetShellWindow
GetTopWindow
ScreenToClient
DdeDisconnect
SetCursorPos
SetWindowsHookExW
GetSystemMenu
GetCapture
GetForegroundWindow
ShowScrollBar
TranslateMessage
EndDialog
GetMenuDefaultItem
GetDlgItemTextW
EndMenu
InvalidateRect
GetSysColorBrush
DrawIconEx
SetDlgItemTextW
FindWindowW
GetDC
DdeUninitialize
SetTimer
UnionRect
RemovePropA
CharNextW
IsWindow
GetWindowRgnBox
UpdateLayeredWindow
GetAncestor
GetMessagePos
DialogBoxIndirectParamW
OpenClipboard
GetClipboardData
GetFocus
MessageBoxIndirectW
GetKeyState
ShowCaret
GetDialogBaseUnits
GetDlgItem
CopyIcon
GetWindowPlacement
ReleaseCapture
GetWindow
DefWindowProcW
GetMessageA
AppendMenuW
EnumChildWindows
CharLowerBuffW
PostThreadMessageA
GetClassNameW
IsHungAppWindow
GetClientRect
SetWindowLongA
IsWindowEnabled
LoadBitmapW
GetActiveWindow
IsWindowUnicode
RegisterClassW
EnableWindow
MapWindowPoints
GetMenuItemID
GetKeyNameTextW
GetWindowInfo
SendDlgItemMessageW
GetWindowLongA
SetPropW
EqualRect
EnableMenuItem
GetDesktopWindow
GetWindowDC
GetDlgCtrlID
DrawTextExW
SetMenuDefaultItem
RegisterClipboardFormatA
SetWindowPlacement
LoadCursorA
PeekMessageW
CreatePopupMenu
DialogBoxParamW
ReleaseDC
TranslateAcceleratorW
DdeGetData
WaitForInputIdle
GetSysColor
DeferWindowPos
ShowOwnedPopups
DdeFreeStringHandle
UnhookWindowsHookEx
IsDlgButtonChecked
OffsetRect
GetMenuItemInfoA
DialogBoxIndirectParamA
EnumDisplaySettingsW
GetParent
DdeClientTransaction
GetWindowLongW
CloseClipboard
MessageBeep
DialogBoxParamA
GetProcessWindowStation
TrackPopupMenuEx
LoadStringA
MessageBoxExA
MonitorFromWindow
RegisterClassExW
MsgWaitForMultipleObjectsEx

shell32

SHGetDataFromIDListW
SHFileOperationW
SHGetPathFromIDListA
SHGetDesktopFolder
SHSetLocalizedName
SHBrowseForFolderW
Shell_NotifyIconA
SHPathPrepareForWriteW
SHBindToParent
ExtractIconExW
ShellExecuteA
ShellExecuteExW
Shell_NotifyIconW
ExtractIconW
SHGetSpecialFolderPathW
SHGetFileInfoW
SHChangeNotify
SHAppBarMessage
SHGetPathFromIDListW
ShellAboutW
DragQueryFileW
ShellExecuteW
SHGetFolderPathAndSubDirW
SHGetFolderPathW
SHGetInstanceExplorer
ExtractAssociatedIconExW
SHGetSpecialFolderLocation
SHCreateShellItem
SHGetFolderLocation

gdi32

CreateSolidBrush
EqualRgn
SaveDC
OffsetRgn
GetRegionData
CloseEnhMetaFile
CreateEnhMetaFileA
CreateFontIndirectW
SetDCPenColor
CreatePolygonRgn
GetPaletteEntries
SetViewportExtEx
GetClipBox
GetDeviceCaps
CreateDIBSection
GetTextExtentPoint32A
CreateMetaFileW
MoveToEx
SetWindowExtEx
RectVisible
BitBlt
CloseMetaFile
CreateRectRgn
SetMapMode
CreatePalette
CreateCompatibleBitmap
Rectangle
StretchBlt
GetTextMetricsW
CreateDCA
IntersectClipRect
TextOutA
GetSystemPaletteEntries
CreatePen
CreateDCW
SetStretchBltMode
CreateFontW
GetTextExtentPoint32W
SetTextAlign
SetBrushOrgEx
SetTextColor
GetLayout
GetObjectA
SetLayout
CreateHalftonePalette
SetPaletteEntries
GetTextAlign
ExtCreateRegion
OffsetWindowOrgEx
ExtTextOutW
SetWindowOrgEx
LPtoDP
GetPixel
PlayEnhMetaFile
GetTextExtentExPointI
CreateDIBPatternBrushPt
GetBkMode
PatBlt
SetViewportOrgEx
GetObjectW
StretchDIBits
CreateFontIndirectA
SetBkColor
GetTextExtentPointW
GetBkColor
RestoreDC
SelectPalette
GetDIBits
GetGlyphIndicesW
SelectObject
CreatePatternBrush
SetRectRgn
TextOutW
GetTextCharset
GetRgnBox
GetDCOrgEx
DeleteEnhMetaFile
CreateRectRgnIndirect
CreateCompatibleDC
CombineRgn
GetBrushOrgEx
RealizePalette
GetTextColor
LineTo
DeleteDC
SetBkMode
GetStockObject
CreateBitmap
DeleteObject

rtutils

TraceDumpExA
TraceDumpExW

psapi

GetProcessImageFileNameW

Sections

.text
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 55KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 221KB - Virtual size: 221KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 166KB - Virtual size: 2.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

7bf80a9f3b905fdf6494a62a0e564f34

Headers

File Characteristics

Imports

uxtheme

ntdll

kernel32

ddraw

advapi32

user32

shell32

gdi32

rtutils

psapi

Sections

.text Size: 1024B - Virtual size: 1000B

.rsrc Size: 55KB - Virtual size: 54KB

.rdata Size: 221KB - Virtual size: 221KB

.data Size: 166KB - Virtual size: 2.4MB

.idata Size: 12KB - Virtual size: 12KB

.text
Size: 1024B - Virtual size: 1000B

.rsrc
Size: 55KB - Virtual size: 54KB

.rdata
Size: 221KB - Virtual size: 221KB

.data
Size: 166KB - Virtual size: 2.4MB

.idata
Size: 12KB - Virtual size: 12KB