21965d75bb9cc77d9769c8e49624db83_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

21965d75bb9cc77d9769c8e49624db83_JaffaCakes118
Size

352KB
MD5

21965d75bb9cc77d9769c8e49624db83
SHA1

db7f9753103dee9e71cd6be0aac7bf51af3c09de
SHA256

0ed0afc12b7faf9e15a6ef472fb33d6201cbbbaa345272a25a7c47d2c965a67a
SHA512

9944062b1dc176145b16bfb6b20d6b68ebbeb93d32637195f27531aae048899b42afc736242d7635911a8a9407263fe0ed493fad84a57346f2f2f3453f111735
SSDEEP

6144:YBi8kzSvBXWP2KfuaOaDWOZPBDLk9zyuG3GRgdSI8XBR4dZ+cs+S4jebATR641yV:2NcW4M9zyR3bdSI8XB6bSZbAv0ldOo5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
21965d75bb9cc77d9769c8e49624db83_JaffaCakes118

Files

21965d75bb9cc77d9769c8e49624db83_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7c51c4c7ca71ffdc28bd07a62b0b33c7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

SHFormatDrive
SHFileOperationW
DragFinish
DragQueryFile
RealShellExecuteW
SHGetSpecialFolderPathA
SHAddToRecentDocs
SHChangeNotify
SHGetDataFromIDListW
SHLoadInProc
SHGetPathFromIDListA
FreeIconList
SHQueryRecycleBinW
SHGetFileInfo
SHGetSettings
InternalExtractIconListA
SHFileOperation
FindExecutableA
ShellExecuteW
DoEnvironmentSubstW
SHGetSpecialFolderLocation
SHGetPathFromIDListW
DoEnvironmentSubstA
SHEmptyRecycleBinW
SHBrowseForFolderW
SHGetDesktopFolder
SHFreeNameMappings
SheGetDirA
DragAcceptFiles
CheckEscapesW
SHGetFileInfoW
ExtractIconExW
SHGetInstanceExplorer
SHAppBarMessage
SHGetPathFromIDList
SHGetMalloc
ShellAboutA
RealShellExecuteExW
SheChangeDirA
RealShellExecuteA
ExtractIconExA
SHGetDiskFreeSpaceA
SHUpdateRecycleBinIcon
SHGetFileInfoA
ExtractIconEx
SheChangeDirExW
SHInvokePrinterCommandW
DragQueryFileAorW
DragQueryFileA
InternalExtractIconListW
SHBrowseForFolderA
ExtractIconW
ExtractAssociatedIconExW
SheSetCurDrive
ShellExecuteExA
CommandLineToArgvW
ShellExecuteExW
ExtractAssociatedIconW
ShellExecuteA
ShellExecuteEx
SHGetSpecialFolderPathW
ExtractAssociatedIconExA
SHFileOperationA
DragQueryFileW
SHGetNewLinkInfo
ExtractAssociatedIconA
DuplicateIcon
SHGetDataFromIDListA
SHInvokePrinterCommandA
FindExecutableW
SHQueryRecycleBinA
ShellHookProc

wininet

DeleteUrlCacheEntryA
GopherCreateLocatorW
FtpGetFileW
RunOnceUrlCache
FindNextUrlCacheEntryExA
InternetAutodialHangup
CreateUrlCacheEntryW
FtpOpenFileA
DeleteUrlCacheGroup
InternetOpenW
FtpCreateDirectoryA
InternetGoOnlineA
FtpDeleteFileA
RetrieveUrlCacheEntryStreamW
InternetFortezzaCommand
FtpPutFileW
HttpSendRequestW
FtpPutFileA
UrlZonesDetach
DetectAutoProxyUrl
DeleteIE3Cache
InternetGetCookieA
InternetGoOnlineW
InternetConfirmZoneCrossingA
InternetGetCookieW
UnlockUrlCacheEntryFileW
InternetQueryOptionW
InternetOpenUrlA
FreeUrlCacheSpaceA
HttpEndRequestW
InternetConfirmZoneCrossing
GetUrlCacheEntryInfoA
FtpRenameFileA
GopherGetLocatorTypeA
ShowSecurityInfo
FtpSetCurrentDirectoryA
HttpQueryInfoW
InternetInitializeAutoProxyDll
FtpGetCurrentDirectoryA
InternetSetOptionExA
InternetSecurityProtocolToStringW
FtpRemoveDirectoryW
InternetCreateUrlW
InternetReadFileExA
FtpCommandA
InternetGetConnectedStateExA
InternetOpenA
InternetCheckConnectionA
InternetReadFileExW
InternetSetOptionW
InternetQueryDataAvailable
FtpGetCurrentDirectoryW
InternetSetOptionExW
HttpCheckDavCompliance
GetUrlCacheEntryInfoW
FtpSetCurrentDirectoryW
FindFirstUrlCacheGroup
LoadUrlCacheContent
HttpOpenRequestW
InternetShowSecurityInfoByURL
InternetSetFilePointer
InternetSetDialStateA
InternetSetCookieA
InternetErrorDlg
GopherOpenFileW
FindFirstUrlCacheContainerA
InternetShowSecurityInfoByURLA
HttpSendRequestExW
ReadUrlCacheEntryStream
RetrieveUrlCacheEntryStreamA
SetUrlCacheGroupAttributeA
FindNextUrlCacheEntryA
InternetAlgIdToStringW
InternetDial
CommitUrlCacheEntryA
InternetTimeToSystemTimeW
IncrementUrlCacheHeaderData
GetUrlCacheConfigInfoW
GetUrlCacheHeaderData
HttpSendRequestA
InternetSecurityProtocolToStringA
InternetOpenUrlW
RetrieveUrlCacheEntryFileW
FtpRemoveDirectoryA
InternetConfirmZoneCrossingW
FtpOpenFileW
SetUrlCacheEntryGroupW
FtpCreateDirectoryW
ShowX509EncodedCertificate
InternetCreateUrlA
GetUrlCacheEntryInfoExW
FindFirstUrlCacheEntryExW
FtpGetFileSize
InternetHangUp
CreateUrlCacheContainerA
FindNextUrlCacheEntryW
FindFirstUrlCacheContainerW

user32

SystemParametersInfoA
CharToOemA
IsCharLowerW
UnregisterClassW
DrawTextA
CascadeChildWindows
ReplyMessage
CharLowerW
GetSystemMenu
InvalidateRgn
UnregisterDeviceNotification
FlashWindowEx
ValidateRect
ChildWindowFromPointEx
DdeQueryNextServer
EnumClipboardFormats
BroadcastSystemMessageW
GetDlgItemTextW
TrackMouseEvent
SetWindowContextHelpId
GetMenuStringA
RegisterClassExA
ToUnicodeEx
GetLastActivePopup
ScrollWindow
ChangeDisplaySettingsW
CreateIconIndirect
DrawStateW
RedrawWindow
SendIMEMessageExW
BringWindowToTop
GetSystemMetrics
SetWindowsHookExA
SetDlgItemTextA
WinHelpW
CreateAcceleratorTableA
SetMessageQueue
ToUnicode
ShowScrollBar
EndTask
AnimateWindow
GetKBCodePage
SetUserObjectInformationA
WaitMessage
InternalGetWindowText
DdeImpersonateClient
GetClipboardOwner
DdeInitializeW
GetWindowLongW
DrawEdge
CloseWindow
SetWindowLongW
GetCaretBlinkTime
LoadMenuIndirectW
SetCaretPos
GetWindowWord
GetNextDlgGroupItem
GetMenuStringW
SetDeskWallpaper
SetDlgItemInt
EndDialog
ReleaseDC
wsprintfW
GetQueueStatus
CharLowerBuffW
DdeInitializeA
IsRectEmpty
DefMDIChildProcA
MapVirtualKeyExA
GetCursorPos
CharNextExA
GetOpenClipboardWindow
GetGUIThreadInfo
LoadAcceleratorsA
CopyImage
GetWindowInfo
TrackPopupMenu
BlockInput
SetCapture
GetMenuItemCount
MessageBoxIndirectA
DefDlgProcW
GetMenuContextHelpId
DlgDirSelectExA
SetWindowsHookExW
ChangeDisplaySettingsA
DrawFrame
DdeNameService
SendMessageA
SetWindowPos
DdeKeepStringHandle
ShowWindow
TabbedTextOutW
FrameRect
FindWindowA
MapVirtualKeyW
ModifyMenuW
AttachThreadInput
ActivateKeyboardLayout
EditWndProc
EnumPropsW
DestroyIcon
CallMsgFilter
GetForegroundWindow
CreateWindowExW
EnumPropsA
CharUpperBuffW
DragObject
GetClassInfoA
LoadImageA
GetWindowTextW
ArrangeIconicWindows
SetClassWord
MessageBoxExA
VkKeyScanW
LoadIconW
CharToOemBuffA
LoadImageW
GetUserObjectSecurity
GetDlgItemInt
RegisterWindowMessageW
DefFrameProcW
GetWindowModuleFileNameW
GetDialogBaseUnits
GetMonitorInfoA
PostMessageW
SetUserObjectInformationW
DispatchMessageW
DrawIconEx
SetDoubleClickTime
InsertMenuW
DestroyAcceleratorTable
RealGetWindowClass
SendMessageTimeoutA
IsDlgButtonChecked
ImpersonateDdeClientWindow
IsDialogMessage
GetWindowTextA
SendMessageTimeoutW
CharUpperW
BroadcastSystemMessageA
SetClipboardViewer
GetProcessDefaultLayout
DdeConnect
wsprintfA
OemToCharA
IsCharUpperW
CountClipboardFormats
CharPrevW
SendNotifyMessageA
GetAsyncKeyState
TranslateAcceleratorA
ClientToScreen
RegisterClassA
PaintDesktop
GetCursorInfo
UnhookWindowsHookEx
PackDDElParam
SetProcessWindowStation
SetRect
DdeDisconnect
CreateMDIWindowW
GetWindowThreadProcessId
GetKeyboardLayoutNameW
SetWindowsHookA
AdjustWindowRect
DrawTextW
GetPropA
ShowCursor
SetWindowPlacement
DdeCreateStringHandleW
SetScrollPos
DlgDirListComboBoxW
GetAncestor
IsWindowUnicode
EnumDisplaySettingsW
GetClassLongW
GetSubMenu
GetDlgItemTextA
LoadKeyboardLayoutW
LoadStringA
UnhookWindowsHook
DdeQueryStringA
GetWindowRect
GetClipboardSequenceNumber
GetClassInfoW
InvertRect
AppendMenuW
GrayStringA
GetClassNameW
DrawFrameControl
KillTimer
GetTitleBarInfo
SetMenuItemInfoW
CreateDialogParamA
GetSysColorBrush
IsCharAlphaNumericW
CreateWindowStationW
SendInput
ExitWindowsEx
GetMenuItemInfoA
ChangeClipboardChain
RegisterDeviceNotificationA
AnyPopup
EnableMenuItem
SendIMEMessageExA
EnumDisplayMonitors
ShowOwnedPopups
SetProcessDefaultLayout
ToAscii
ExcludeUpdateRgn
DlgDirSelectExW
CheckRadioButton
DialogBoxIndirectParamW
GetMenuItemRect
DdeClientTransaction
RemovePropW
SetWindowTextA
PostQuitMessage
CallWindowProcA
DestroyCursor
IsIconic
GetWindowTextLengthW
LoadCursorA
SetCursorPos
GetCursor
TranslateMessage
SendDlgItemMessageA
DdeSetUserHandle
SetCaretBlinkTime
GetClassInfoExA
PostThreadMessageA
CreateIconFromResource
TrackPopupMenuEx
DlgDirSelectComboBoxExW
SwapMouseButton
ToAsciiEx
RegisterHotKey
GetClipboardFormatNameW
EndPaint
GetTabbedTextExtentW
SetMenuItemBitmaps
LoadMenuIndirectA
GetIconInfo
GetMonitorInfoW
CreateDesktopA
LockWindowUpdate
CopyRect
OpenDesktopW
SubtractRect
GetKeyboardState
LoadStringW
SetSysColors
UnregisterClassA
DialogBoxParamA

comdlg32

FindTextA
LoadAlterBitmap
PageSetupDlgW
GetOpenFileNameA
GetSaveFileNameW
ChooseFontW
ChooseFontA
GetFileTitleW
FindTextW

Sections

.text
Size: 274KB - Virtual size: 274KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 144KB - Virtual size: 143KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

7c51c4c7ca71ffdc28bd07a62b0b33c7

Headers

File Characteristics

Imports

shell32

wininet

user32

comdlg32

Sections

.text Size: 274KB - Virtual size: 274KB

.data Size: 144KB - Virtual size: 143KB

.text
Size: 274KB - Virtual size: 274KB

.data
Size: 144KB - Virtual size: 143KB