1ba1d511d6aadff604683e42dacc87de_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

1ba1d511d6aadff604683e42dacc87de_JaffaCakes118
Size

862KB
MD5

1ba1d511d6aadff604683e42dacc87de
SHA1

0b1e1a5a1b925eaddb542dd4fc5da44e1c8fe23f
SHA256

1535bdb6c0240fb35f3071d47ebc6423bcdd94c62f548bff78ec293830834535
SHA512

fcea75c0c3eed2ab8660ed41726ece102f6b32ed6301970d31daaba3e439c75739da81c87303e1d5cf7b3720a2b76a0fb7466ac2eaa00dba98e0ca1ee8157b0e
SSDEEP

24576:63HT0PGErMFsZLiF8cjfS7w6HJJHla2pZhR:yz0PGErMF2LAXfSvHJJFa2pZhR

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1ba1d511d6aadff604683e42dacc87de_JaffaCakes118

Files

1ba1d511d6aadff604683e42dacc87de_JaffaCakes118
.exe windows:5 windows x86 arch:x86

2afd18e9d5ce554cf465ba523b33a2a6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateEventW
GlobalAlloc
FreeResource
InterlockedExchange
GetFileTime
lstrcpynW
GetVersionExA
GetModuleHandleA
GetConsoleOutputCP
GetWindowsDirectoryW
ReadFile
FindNextFileW
GetSystemInfo
GetCommandLineA
GetVersionExW
SetUnhandledExceptionFilter
TlsAlloc
GetVolumeInformationW
GlobalFree
FreeEnvironmentStringsW
GetSystemDefaultLangID
FindResourceExW
CreateThread
SetFilePointer
WaitForSingleObject
WriteConsoleA
FlushFileBuffers
HeapDestroy
EnumUILanguagesW
RaiseException
DeleteCriticalSection
LockFile
ExitProcess
DeviceIoControl
VirtualAlloc
GetThreadLocale
GetStdHandle
FreeEnvironmentStringsA
TlsGetValue
WritePrivateProfileStringW
SizeofResource
GetPrivateProfileIntW
IsDebuggerPresent
GetCPInfo
GetStringTypeA
GlobalHandle
MulDiv
LCMapStringA
HeapReAlloc
LocalFree
CompareStringA
GetPrivateProfileStringW
OutputDebugStringW
LocalReAlloc
GetModuleFileNameW
SetHandleCount
GlobalAddAtomW
HeapSize
EnterCriticalSection
GetCommandLineW
InitializeCriticalSection
GetFileAttributesW
CreateFileW
WideCharToMultiByte
FindFirstFileW
MultiByteToWideChar
GlobalUnlock
lstrlenW
CreateProcessW
LeaveCriticalSection
GetSystemDirectoryA
lstrcatA
VirtualProtectEx
GetStartupInfoW
FormatMessageW
SetThreadPriority
GetStartupInfoA
WriteConsoleW
GlobalLock
GetTickCount
FileTimeToSystemTime
DuplicateHandle
LockResource
CreateFileA
GlobalFindAtomW
FindResourceW
LocalAlloc
EnumResourceLanguagesW
UnlockFile
GetLocaleInfoW
GetCurrentProcess
VirtualFree
GetTimeZoneInformation
GetOEMCP
LCMapStringW
GetProcessHeap
VirtualQuery
GetDateFormatW
HeapAlloc
HeapFree
GetFileType
ConvertDefaultLocale
LoadResource
TlsFree
UnhandledExceptionFilter
LoadLibraryA
TlsSetValue
Sleep
GetLastError
GetTimeFormatW
lstrcmpW
InterlockedDecrement
GetDriveTypeA
CloseHandle
GetCurrentThreadId
GetProcAddress
InterlockedIncrement
GlobalReAlloc
GetModuleHandleW
FindClose
LoadLibraryW
FileTimeToLocalFileTime
GetEnvironmentStrings
SetEnvironmentVariableA
GetConsoleCP
GetLocalTime
lstrlenA
RtlUnwind
GetEnvironmentStringsW
lstrcmpA
GetCurrentThread
GetModuleFileNameA
GetUserDefaultUILanguage
GlobalFlags
GetFullPathNameW
WriteFile
FreeLibrary
GlobalDeleteAtom
WaitForMultipleObjects
SetEndOfFile
ExitThread
TerminateProcess
HeapCreate
SetErrorMode
VirtualProtect
SetStdHandle
GetLocaleInfoA
GetCurrentDirectoryA
GetStringTypeW
QueryPerformanceCounter
SuspendThread
GetACP
CompareStringW
GetSystemTimeAsFileTime
GetFileSize
SetLastError
ResetEvent
ResumeThread
GetVersion
GetCurrentProcessId

user32

InvalidateRgn
SetWindowPlacement
UnhookWindowsHookEx
AppendMenuW
SetCursorPos
MessageBoxW
EndDialog
PeekMessageW
GetFocus
GetClassLongW
IsChild
GetDlgItem
GetForegroundWindow
GetCursorPos
GetWindowInfo
GetClassInfoW
UpdateWindow
TrackPopupMenu
MapWindowPoints
GetActiveWindow
PostThreadMessageW
AllowSetForegroundWindow
SetFocus
CreateWindowExW
GetNextDlgGroupItem
CheckMenuItem
GetMessageTime
InflateRect
MapDialogRect
GetClassInfoExW
GetClassNameW
CharUpperW
GetNextDlgTabItem
SetWindowTextW
OffsetRect
GetMessagePos
GrayStringW
GetSubMenu
SendMessageW
IsDialogMessageW
SetActiveWindow
EndPaint
DefWindowProcW
GetMenu
RedrawWindow
GetSysColor
RegisterClipboardFormatW
GetMessageW
KillTimer
InvalidateRect
GetWindowThreadProcessId
BeginPaint
LoadMenuW
UnregisterClassW
WindowFromPoint
TrackMouseEvent
SetRectEmpty
GetWindowTextLengthW
LoadBitmapW
TranslateMessage
GetKeyState
GetCapture
SendDlgItemMessageW
SystemParametersInfoA
SetMenuItemBitmaps
ClientToScreen
RegisterClassW
DispatchMessageW
RemovePropW
PostMessageW
PtInRect
SetTimer
GetMenuItemID
FindWindowW
ScreenToClient
CallNextHookEx
SetRect
GetWindowRect
ReleaseCapture
CreateDialogIndirectParamW
GetMenuState
ExitWindowsEx
SetCapture
GetWindowLongW
SetWindowContextHelpId
GetDlgCtrlID
ValidateRect
GetSystemMetrics
SetWindowPos
GetTopWindow
CopyRect
DrawTextExW
GetLastActivePopup
EnableMenuItem
SetWindowLongW
MoveWindow
IsWindow
AdjustWindowRectEx
LoadCursorW
GetSystemMenu
DestroyWindow
GetWindow
SetCursor
LoadIconW
GetWindowTextW
MessageBeep
SendDlgItemMessageA
IntersectRect
RegisterWindowMessageW
GetMenuItemCount
ReleaseDC
GetSysColorBrush
SetPropW
GetDesktopWindow
GetWindowPlacement
CallWindowProcW
GetWindowDC
RemoveMenu
CharNextW
SetForegroundWindow
PostQuitMessage
MsgWaitForMultipleObjects
UnregisterClassA
LoadMenuIndirectW
GetMenuCheckMarkDimensions
SetWindowsHookExW
EnableWindow
WinHelpW
ModifyMenuW
SetMenuDefaultItem
GetClientRect
InsertMenuW
TabbedTextOutW
IsIconic
ShowWindow
IsWindowVisible
GetParent
DestroyMenu
IsRectEmpty
DrawTextW
EqualRect
CopyAcceleratorTableW
GetPropW
GetDC
IsWindowEnabled
DrawFocusRect

gdi32

GetTextExtentPoint32W
GetTextColor
ExcludeClipRect
CreateBitmap
CreateSolidBrush
GetMapMode
SetBkColor
CreateCompatibleDC
CreateRectRgnIndirect
StretchDIBits
CreateCompatibleBitmap
SetViewportOrgEx
CreateFontIndirectW
GetViewportExtEx
GetPixel
GetBkColor
ScaleViewportExtEx
PatBlt
PtVisible
ExtSelectClipRgn
OffsetViewportOrgEx
GetRgnBox
SetViewportExtEx
SelectPalette
CreatePen
CreateBitmapIndirect
GetDeviceCaps
DeleteDC
RectVisible
ExtTextOutW
SaveDC
LineTo
ScaleWindowExtEx
StretchBlt
GetClipBox
SetPixel
SetMapMode
BitBlt
SetWindowExtEx
MoveToEx
DeleteObject
TextOutW
SelectObject
Polyline
GetWindowExtEx
GetObjectW
Escape
SetTextColor
SetBkMode
DPtoLP
GetStockObject
SetStretchBltMode
RestoreDC

comdlg32

GetFileTitleW

advapi32

RegOpenKeyW
RegCreateKeyW
RegEnumKeyExW
RegEnumKeyW
LookupPrivilegeValueW
StartServiceW
OpenProcessToken
OpenSCManagerW
CloseServiceHandle
RegDeleteValueW
RegOpenKeyExW
RegCreateKeyExW
RegSetValueExW
RegDeleteKeyW
OpenServiceW
RegCloseKey
RegQueryValueW
RegNotifyChangeKeyValue
RegQueryValueExW
AdjustTokenPrivileges

shell32

SHGetFolderPathW
ShellExecuteW
Shell_NotifyIconW

ole32

OleUninitialize
CoTaskMemAlloc
CoGetClassObject
StgOpenStorageOnILockBytes
CoUninitialize
OleFlushClipboard
PropVariantClear
OleInitialize
OleIsCurrentClipboard
StgCreateDocfileOnILockBytes
CLSIDFromProgID
CreateILockBytesOnHGlobal
CoRevokeClassObject
CoFreeUnusedLibraries
CoRegisterMessageFilter
CoCreateInstance
CreateStreamOnHGlobal
CoInitialize
CLSIDFromString
CoTaskMemFree

oleaut32

OleCreateFontIndirect
SafeArrayDestroy
SysFreeString
VariantCopy
SystemTimeToVariantTime
SysStringLen
SysAllocStringLen
VariantInit
VariantTimeToSystemTime
VariantChangeType
SysAllocString
VariantClear

comctl32

_TrackMouseEvent

shlwapi

PathIsUNCW
PathFindFileNameW
PathStripToRootW
PathFindExtensionW

winmm

waveInClose
waveInAddBuffer
PlaySoundW
waveInReset
waveInStop
waveInOpen
waveInPrepareHeader
waveInGetDevCapsW
waveInUnprepareHeader
waveInStart
waveInGetNumDevs

rpcrt4

UuidCreate

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

setupapi

SetupDiGetDeviceInterfaceDetailW
SetupDiEnumDeviceInterfaces
SetupDiDestroyDeviceInfoList
SetupDiGetClassDevsW

gdiplus

GdipDeleteFont
GdipFlush
GdipSetTextRenderingHint
GdipCreateBitmapFromResource
GdipDrawImageRectI
GdipCreateSolidFill
GdipDrawImageRect
GdiplusStartup
GdipGetImageWidth
GdipFillRectangle
GdipGetImageBounds
GdipCreateBitmapFromScan0
GdipDrawString
GdipCreateFontFamilyFromName
GdipCreateBitmapFromStream
GdipCloneBrush
GdipCloneImage
GdipDeleteFontFamily
GdipCreateBitmapFromHBITMAP
GdipDrawImageRectRect
GdipGetGenericFontFamilySansSerif
GdipCreateBitmapFromGraphics
GdipGetImageHeight
GdipDrawImagePointRectI
GdipFillRectangleI
GdipMeasureString
GdipCreateFont
GdipFree
GdipGetFontSize
GdipDeleteGraphics
GdipCreateFromHDC
GdipDisposeImage
GdipDrawImageI
GdipCreateHBITMAPFromBitmap
GdipImageRotateFlip
GdipGetImageGraphicsContext
GdipAlloc
GdipDeleteBrush

msvcrt

fclose
fread
fopen
exit

esent

JetTerm

Sections

.text
Size: 508KB - Virtual size: 507KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.11
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.22
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.55
Size: - Virtual size: 187KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 824B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.33
Size: 51KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zx
Size: 216KB - Virtual size: 216KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.44
Size: 49KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.66
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2afd18e9d5ce554cf465ba523b33a2a6

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

comctl32

shlwapi

winmm

rpcrt4

version

setupapi

gdiplus

msvcrt

esent

Sections

.text Size: 508KB - Virtual size: 507KB

.11 Size: 6KB - Virtual size: 5KB

.22 Size: 2KB - Virtual size: 2KB

.55 Size: - Virtual size: 187KB

.rdata Size: 13KB - Virtual size: 12KB

.data Size: 512B - Virtual size: 824B

.33 Size: 51KB - Virtual size: 50KB

.zx Size: 216KB - Virtual size: 216KB

.44 Size: 49KB - Virtual size: 49KB

.66 Size: 6KB - Virtual size: 5KB

.rsrc Size: 3KB - Virtual size: 3KB

.reloc Size: 5KB - Virtual size: 4KB

.text
Size: 508KB - Virtual size: 507KB

.11
Size: 6KB - Virtual size: 5KB

.22
Size: 2KB - Virtual size: 2KB

.55
Size: - Virtual size: 187KB

.rdata
Size: 13KB - Virtual size: 12KB

.data
Size: 512B - Virtual size: 824B

.33
Size: 51KB - Virtual size: 50KB

.zx
Size: 216KB - Virtual size: 216KB

.44
Size: 49KB - Virtual size: 49KB

.66
Size: 6KB - Virtual size: 5KB

.rsrc
Size: 3KB - Virtual size: 3KB

.reloc
Size: 5KB - Virtual size: 4KB