2192a04e8b08ea505c36d2a261384309_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2192a04e8b08ea505c36d2a261384309_JaffaCakes118
Size

2.6MB
MD5

2192a04e8b08ea505c36d2a261384309
SHA1

9db3da2274db5eb2bdf0b3613586c747f1833c03
SHA256

fd553abad8c8ec8a4622a51933fd65d14769e1e69473a6da8fb62439fc3334a8
SHA512

8d8bb69b46acbb67798c73a25e35ba62afb8735d6786b1da58f10f85e4ac079f50c2eb6f4eb328c33f78c2eacecfd61f45b6ea8fc69359944cef152ff9d5ba46
SSDEEP

24576:rYcbN5oxZY2sQYH27r0N//GxKnCTMxjjz7rzy9fOb/Y+V5Js2HOMGeYrizBy/RhN:ffRDxLhrV2RhN24Zai56kwNdaTEDw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2192a04e8b08ea505c36d2a261384309_JaffaCakes118

Files

2192a04e8b08ea505c36d2a261384309_JaffaCakes118
.exe windows:4 windows x86 arch:x86

55124c98a464bdd9599309f909d937b9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_Draw
ImageList_Destroy
ImageList_Create
ImageList_GetIconSize
ImageList_ReplaceIcon

mpr

WNetCloseEnum
WNetOpenEnumA
WNetEnumResourceA

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

winmm

sndPlaySoundA
mciSendStringA
mciGetDeviceIDA
timeEndPeriod
timeSetEvent
timeKillEvent
timeBeginPeriod
timeGetDevCaps
mixerClose
mixerSetControlDetails
mixerGetControlDetailsA
mixerGetLineControlsA
mixerGetLineInfoA
mixerOpen
mciGetErrorStringA

wsock32

socket
listen
inet_addr
WSAAsyncGetHostByAddr
WSAAsyncGetHostByName
ntohs
ntohl
gethostname
recv
send
htons
connect
WSAGetLastError
accept
WSAAsyncSelect
shutdown
closesocket
ioctlsocket
htonl
getservbyname
gethostbyaddr
gethostbyname
bind
getsockname
sendto
WSASetLastError
recvfrom
WSACleanup
setsockopt
WSAStartup
WSACancelAsyncRequest

kernel32

GetLocaleInfoA
GetSystemDefaultLCID
GetWindowsDirectoryA
SetEndOfFile
GetModuleFileNameA
GlobalUnlock
GlobalLock
GlobalFree
GlobalAlloc
lstrcatW
lstrlenW
lstrcpyW
GetVersionExA
QueryPerformanceCounter
QueryPerformanceFrequency
CreateFileA
EnumResourceNamesA
EnumResourceTypesA
LoadLibraryExA
GetDiskFreeSpaceA
GetCurrentProcess
QueryDosDeviceA
GetFileType
GetFileAttributesA
WinExec
FindClose
FindNextFileA
FindFirstFileA
_lwrite
_lclose
_hwrite
GlobalSize
OpenFile
WriteFile
MulDiv
InterlockedIncrement
InterlockedDecrement
SetFilePointer
GetLastError
ReadFile
FlushFileBuffers
GetSystemDefaultLangID
GetDriveTypeA
GetLogicalDriveStringsA
SetFileAttributesA
WritePrivateProfileStringA
GetPrivateProfileStringA
RemoveDirectoryA
CreateDirectoryA
GetLocalTime
GetCurrentThreadId
UnmapViewOfFile
MapViewOfFile
OpenFileMappingA
CreateMutexA
SetErrorMode
FindCloseChangeNotification
FindNextChangeNotification
WaitForMultipleObjects
FindFirstChangeNotificationA
GetEnvironmentVariableA
GetShortPathNameA
CompareFileTime
GetFileTime
ReleaseMutex
GetTimeZoneInformation
LocalAlloc
LocalReAlloc
LocalFree
DeleteFileA
CopyFileA
MoveFileA
SetLastError
GetTempPathA
EnterCriticalSection
SetStdHandle
GetSystemTimeAsFileTime
CreateThread
TlsGetValue
TlsSetValue
ExitThread
RtlUnwind
HeapFree
HeapAlloc
TerminateProcess
GetModuleHandleA
ExitProcess
CreateEventA
WaitForSingleObject
LoadLibraryA
GetProcAddress
FreeLibrary
GetCurrentThread
SetThreadPriority
SetEvent
Sleep
WideCharToMultiByte
CloseHandle
MultiByteToWideChar
GetTickCount
FindResourceA
LoadResource
LockResource
LeaveCriticalSection
HeapReAlloc
FileTimeToSystemTime
FileTimeToLocalFileTime
SetConsoleCtrlHandler
GetACP
GetOEMCP
GetCPInfo
RaiseException
GetTimeFormatA
GetDateFormatA
GetStartupInfoA
GetCommandLineA
TlsFree
TlsAlloc
DeleteCriticalSection
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
UnhandledExceptionFilter
LCMapStringA
LCMapStringW
SetHandleCount
GetStdHandle
InitializeCriticalSection
GetFullPathNameA
GetCurrentDirectoryA
SetCurrentDirectoryA
GetStringTypeA
GetStringTypeW
HeapSize
SetUnhandledExceptionFilter
SetEnvironmentVariableA
SetEnvironmentVariableW
VirtualProtect
GetSystemInfo
VirtualQuery
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetCurrentProcessId
CompareStringA
CompareStringW
IsBadReadPtr
IsBadCodePtr
GetFileInformationByHandle
GetVolumeInformationA
PeekNamedPipe

user32

DdeDisconnect
DdeUninitialize
DdeNameService
DdeFreeDataHandle
DdeUnaccessData
DdeAccessData
DdeQueryStringA
DdeCreateDataHandle
DdeClientTransaction
DdeConnect
DdeCreateStringHandleA
DdeInitializeA
CallWindowProcA
GetMessageA
ClipCursor
SetKeyboardState
GetKeyboardState
ToAscii
ScrollDC
GetSystemMetrics
MessageBoxA
FlashWindow
RedrawWindow
ShowScrollBar
CharLowerBuffA
CharLowerA
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
VkKeyScanA
GetKeyboardLayout
CopyAcceleratorTableA
MapVirtualKeyA
CallNextHookEx
GetCapture
CharUpperBuffA
DrawIcon
LoadIconA
GetWindowDC
DefMDIChildProcA
GetScrollInfo
IsMenu
GetMenuState
RemoveMenu
SetMenuItemInfoA
GetMenuItemInfoA
GetMenuItemID
TrackPopupMenu
RegisterWindowMessageA
SetWindowsHookExA
GetWindowThreadProcessId
LoadAcceleratorsA
DispatchMessageA
TranslateMessage
TranslateMDISysAccel
TranslateAcceleratorA
IsDialogMessageA
LoadMenuA
PostQuitMessage
DefFrameProcA
RegisterClassExA
UnhookWindowsHookEx
ValidateRect
InvertRect
DefWindowProcA
DrawFrameControl
RegisterClassA
CopyImage
CreateIconIndirect
GetWindowRgn
SetWindowRgn
IsRectEmpty
OffsetRect
SetScrollInfo
DdeFreeStringHandle
GetWindow
GetWindowPlacement
GetMessagePos
GetAsyncKeyState
GetWindowLongA
IsClipboardFormatAvailable
EmptyClipboard
SetClipboardData
OpenClipboard
EnumClipboardFormats
GetClipboardFormatNameA
CreateWindowExA
GetClipboardData
DestroyWindow
CloseClipboard
LoadStringA
MessageBeep
GetTopWindow
IsZoomed
GetActiveWindow
IsWindow
IsCharAlphaA
IsCharAlphaNumericA
GetDesktopWindow
IsIconic
GetDialogBaseUnits
SetDlgItemInt
GetDlgItemInt
GetSystemMenu
CheckMenuItem
LoadCursorA
SetCursor
CreatePopupMenu
DestroyMenu
GetMenu
GetSubMenu
GetMenuItemCount
DeleteMenu
EnableMenuItem
AppendMenuA
DrawMenuBar
GetWindowTextA
FrameRect
GetParent
DrawFocusRect
GetSysColor
GetKeyState
PeekMessageA
MsgWaitForMultipleObjects
BeginPaint
EndPaint
DrawIconEx
DestroyIcon
LoadImageA
IsWindowVisible
FillRect
DrawEdge
IsDlgButtonChecked
EndDialog
SetFocus
CheckDlgButton
SetWindowPlacement
GetWindowTextLengthA
SetActiveWindow
GetMenuStringA
SetRect
SendMessageA
GetDlgCtrlID
GetCursorPos
ScreenToClient
SetWindowPos
UpdateWindow
PtInRect
SetWindowTextA
EnableWindow
ShowWindow
DialogBoxParamA
IsChild
IntersectRect
ModifyMenuA
GetNextDlgTabItem
ChildWindowFromPointEx
GetScrollPos
GetScrollRange
SetScrollPos
CreateMenu
SetMenu
SetScrollRange
SetCapture
EqualRect
ReleaseCapture
IsWindowUnicode
CreateDialogParamA
CopyRect
FindWindowExA
ReleaseDC
PostMessageA
MapWindowPoints
GetWindowRect
GetDlgItem
GetDC
SendDlgItemMessageA
wsprintfA
SetForegroundWindow
ClientToScreen
ChildWindowFromPoint
WindowFromPoint
BringWindowToTop
SetWindowLongA
GetClassNameA
GetFocus
GetIconInfo
WinHelpA
SystemParametersInfoA
GetForegroundWindow
DrawTextA
FindWindowA
MoveWindow
GetClientRect
SetTimer
KillTimer
IsWindowEnabled
InvalidateRect
InsertMenuA

gdi32

BitBlt
GetObjectA
CreateCompatibleDC
SetBrushOrgEx
SetStretchBltMode
StretchBlt
CreateCompatibleBitmap
GetDIBits
CreateDIBSection
CombineRgn
LineTo
MoveToEx
CreatePen
SelectClipRgn
CreateRectRgn
GetNearestColor
GetDeviceCaps
GetTextExtentPointA
CreateFontIndirectA
PtInRegion
CreatePolygonRgn
DeleteDC
CreatePatternBrush
Rectangle
RoundRect
Ellipse
GetStockObject
SetROP2
SetBkMode
IntersectClipRect
GetClipRgn
ExtTextOutW
GetBkColor
GetTextColor
GetCurrentObject
EnumFontFamiliesExA
GetTextCharset
GetTextExtentPointW
Polyline
ExcludeClipRect
GetObjectType
CreateBitmap
Polygon
FrameRgn
CreateRoundRectRgn
CreateRectRgnIndirect
RectInRegion
CreateFontA
CreateHatchBrush
GetTextMetricsA
ExtTextOutA
CreateSolidBrush
DeleteObject
SelectObject
SetTextColor
SetBkColor
GetPixel
ExtFloodFill
SetPixelV

comdlg32

ChooseColorA
CommDlgExtendedError
ChooseFontA

advapi32

RegSetValueA
RegCreateKeyA
RegQueryValueA
RegOpenKeyA
RegDeleteKeyA
RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA
RegEnumKeyA
RegCloseKey

shell32

SHBrowseForFolderA
SHGetDesktopFolder
SHGetMalloc
SHFileOperationA
SHGetSpecialFolderLocation
SHGetPathFromIDListA
DragQueryFileA
FindExecutableA
SHAppBarMessage
ShellExecuteExA
ShellExecuteA
ExtractIconExA
ExtractIconA
Shell_NotifyIconA

ole32

ReleaseStgMedium
RegisterDragDrop
CoTaskMemFree
CoGetInterfaceAndReleaseStream
RevokeDragDrop
CoCreateInstance
ProgIDFromCLSID
OleSetContainedObject
CoGetClassObject
CoLockObjectExternal
OleInitialize
CLSIDFromProgID
OleUninitialize

oleaut32

DispGetParam
VarR8FromCy
VarR8FromDate
VarCyFromR8
VariantCopy
VariantChangeType
SysAllocString
VariantClear
VariantInit
LoadRegTypeLi
SetErrorInfo
VarDateFromR8
SysFreeString

Sections

.text
Size: 1.9MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 141KB - Virtual size: 140KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 316KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 581KB - Virtual size: 580KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

55124c98a464bdd9599309f909d937b9

Headers

File Characteristics

Imports

comctl32

mpr

version

winmm

wsock32

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

Sections

.text Size: 1.9MB - Virtual size: 1.9MB

.rdata Size: 141KB - Virtual size: 140KB

.data Size: 16KB - Virtual size: 316KB

.rsrc Size: 581KB - Virtual size: 580KB

.text
Size: 1.9MB - Virtual size: 1.9MB

.rdata
Size: 141KB - Virtual size: 140KB

.data
Size: 16KB - Virtual size: 316KB

.rsrc
Size: 581KB - Virtual size: 580KB