24a951b9e644106f100ec9cb45d83f14_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

24a951b9e644106f100ec9cb45d83f14_JaffaCakes118
Size

316KB
MD5

24a951b9e644106f100ec9cb45d83f14
SHA1

5406cac023d12e9576d3317e4470f5a3c0861962
SHA256

0697953b943d7a1456533c40febd7d0249eb3e12e5dc2d345853e172cb1f3c34
SHA512

d9347b2ac7ec85e2389cfff22d75ba841c303bb16709d01105a534a28c17490cf888e12e1e4567aa627c1284ff567455b4b303602bfc7434fed78115c306ea62
SSDEEP

6144:xNrGW3NYPx4p/4Kc6GBPAg0o3/61eddzlWqeV:xNK/upgKcDBPfa1kM9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
24a951b9e644106f100ec9cb45d83f14_JaffaCakes118

Files

24a951b9e644106f100ec9cb45d83f14_JaffaCakes118
.exe windows:4 windows x86 arch:x86

93eaf5324497ab4c57d0ae87db892c72

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetProcessVersion
GetCPInfo
GetOEMCP
GlobalSize
CopyFileA
GetPrivateProfileIntA
WritePrivateProfileStringA
GetCurrentDirectoryA
GetFileAttributesA
GetFileSize
GetFileTime
LocalFileTimeToFileTime
SystemTimeToFileTime
SetFileTime
SetFileAttributesA
SetErrorMode
RtlUnwind
GetStartupInfoA
GetCommandLineA
ExitProcess
HeapAlloc
HeapFree
RaiseException
GetTimeZoneInformation
GetSystemTime
GetLocalTime
CreateThread
ExitThread
TerminateProcess
HeapReAlloc
HeapSize
GetACP
FatalAppExitA
GlobalFlags
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
GetDriveTypeA
Sleep
IsBadReadPtr
IsBadCodePtr
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
SetConsoleCtrlHandler
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetLocaleInfoW
MulDiv
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
GlobalFree
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
GetShortPathNameA
GetThreadLocale
GetStringTypeExA
GetFullPathNameA
GetVolumeInformationA
DeleteFileA
MoveFileA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
GetCurrentProcess
DuplicateHandle
GetModuleFileNameA
GlobalAlloc
GetCurrentThread
lstrcmpA
CreateEventA
SuspendThread
SetThreadPriority
ResumeThread
SetEvent
FileTimeToLocalFileTime
FileTimeToSystemTime
lstrlenW
FindNextFileA
FindFirstFileA
SetLastError
FindClose
FormatMessageA
LocalFree
MultiByteToWideChar
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
FindResourceA
LoadResource
LockResource
GetCurrentThreadId
lstrcmpiA
GlobalFindAtomA
GlobalDeleteAtom
lstrcatA
lstrcpyA
lstrlenA
GlobalLock
lstrcpynA
GlobalUnlock
GlobalGetAtomNameA
GlobalAddAtomA
CreateMutexA
_lopen
_lcreat
_lclose
GetModuleHandleA
GetCurrentProcessId
GetLastError
GetVersion
GetVersionExA
CreateProcessA
WaitForSingleObject
CloseHandle
OutputDebugStringA
LoadLibraryA
GetProcAddress
FreeLibrary
UnhandledExceptionFilter
GetPrivateProfileStringA

user32

LoadBitmapA
GetMenuCheckMarkDimensions
CharToOemA
OemToCharA
LoadStringA
ValidateRect
TranslateMessage
GetMessageA
ShowOwnedPopups
CharUpperA
PtInRect
ClientToScreen
LoadCursorA
GetSysColorBrush
ReleaseDC
GetDC
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
InsertMenuA
AppendMenuA
GetMenuStringA
RemoveMenu
wvsprintfA
SetCapture
WaitMessage
GetWindowThreadProcessId
WindowFromPoint
DeleteMenu
ScrollWindowEx
IsDlgButtonChecked
SetDlgItemTextA
SetDlgItemInt
GetDlgItemTextA
GetDlgItemInt
CheckRadioButton
CheckDlgButton
SendDlgItemMessageA
MapWindowPoints
GetSysColor
DispatchMessageA
AdjustWindowRectEx
ScreenToClient
DeferWindowPos
GetClientRect
BeginDeferWindowPos
EndDeferWindowPos
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
MessageBoxA
GetMenuState
RegisterClassA
SetWindowPlacement
GetWindowTextLengthA
GetWindowTextA
DestroyWindow
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessageTime
GetMessagePos
GetForegroundWindow
OffsetRect
IntersectRect
GetWindowPlacement
GetSystemMetrics
GetLastActivePopup
IsWindowVisible
IsIconic
GetFocus
EqualRect
CopyRect
GetDlgItem
InvalidateRect
SetWindowLongA
GetKeyState
SetWindowPos
GetDlgCtrlID
GetMenuItemCount
UnpackDDElParam
ReuseDDElParam
WinHelpA
SetMenu
GetMenu
DestroyMenu
SetFocus
GetParent
GetActiveWindow
ShowWindow
GetWindowLongA
GetDesktopWindow
GetWindow
IsWindowEnabled
SetCursor
PeekMessageA
GetCapture
ReleaseCapture
TranslateAcceleratorA
LoadAcceleratorsA
SetRectEmpty
UpdateWindow
EnableWindow
RedrawWindow
SetActiveWindow
DrawAnimatedRects
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetNextDlgTabItem
MoveWindow
SetWindowTextA
IsChild
IsDialogMessageA
SetParent
EnumChildWindows
SystemParametersInfoA
GetClassNameA
GetWindowRect
GetCursorPos
ModifyMenuA
SetForegroundWindow
TrackPopupMenu
GetMenuItemID
LoadMenuA
GetSubMenu
SetMenuDefaultItem
IsWindow
LoadImageA
DestroyIcon
PostQuitMessage
SendMessageA
wsprintfA
PostMessageA
FindWindowA
KillTimer
SetTimer
GetClassInfoA
LoadIconA
RegisterWindowMessageA
BringWindowToTop
UnregisterClassA

gdi32

PlayMetaFileRecord
GetObjectType
EnumMetaFile
OffsetClipRgn
PlayMetaFile
GetViewportExtEx
GetWindowExtEx
CreatePen
ExtCreatePen
CreateSolidBrush
CreateHatchBrush
CreatePatternBrush
CreateDIBPatternBrushPt
ExtSelectClipRgn
RectVisible
TextOutA
ExtTextOutA
Escape
CopyMetaFileA
CreateDCA
IntersectClipRect
ExcludeClipRect
SelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
OffsetWindowOrgEx
SelectClipPath
CreateRectRgn
GetClipRgn
PolyBezierTo
SetColorAdjustment
PolylineTo
PolyDraw
SetArcDirection
ArcTo
GetCurrentPositionEx
SetMapperFlags
SetTextCharacterExtra
SetTextJustification
SetTextAlign
LineTo
PtVisible
GetDCOrgEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetStretchBltMode
SetROP2
SetPolyFillMode
SetBkMode
SelectPalette
GetStockObject
SelectObject
RestoreDC
SaveDC
StartDocA
DeleteDC
GetDeviceCaps
DeleteObject
CreateBitmap
GetObjectA
SetBkColor
SetTextColor
GetClipBox
MoveToEx

comdlg32

GetFileTitleA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

OpenSCManagerA
RegDeleteKeyA
RegDeleteValueA
RegCreateKeyExA
RegSetValueA
RegOpenKeyA
RegSetValueExA
RegCloseKey
OpenServiceA
CloseServiceHandle
QueryServiceStatus
ControlService
RegOpenKeyExA
RegQueryValueExA

shell32

DragAcceptFiles
DragQueryFileA
DragFinish
SHAppBarMessage
Shell_NotifyIconA
ShellExecuteA
SHGetFileInfoA

comctl32

ord17

ole32

OleRegGetUserType
WriteClassStg
WriteFmtUserTypeStg
SetConvertStg
ReadFmtUserTypeStg
CreateBindCtx
CoTaskMemAlloc
OleDuplicateData
CoCreateInstance
ReadClassStg
StringFromCLSID
CoTreatAsClass
ReleaseStgMedium
CoDisconnectObject
CoTaskMemFree

oleaut32

SysStringLen
SafeArrayDestroyDescriptor
SafeArrayDestroyData
SafeArrayDestroy
SafeArrayUnlock
SafeArrayLock
SafeArrayPutElement
SafeArrayPtrOfIndex
SafeArrayGetElement
SafeArrayAllocDescriptor
SafeArrayAllocData
SafeArrayCopy
VarBstrFromDate
VarDateFromStr
VarBstrFromCy
VarCyFromStr
SysStringByteLen
VariantChangeType
SysAllocStringByteLen
SysAllocString
VariantCopy
SafeArrayUnaccessData
SafeArrayAccessData
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayGetElemsize
SafeArrayGetDim
SafeArrayCreate
VariantClear
SafeArrayRedim

Sections

.text
Size: 188KB - Virtual size: 186KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 44KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

93eaf5324497ab4c57d0ae87db892c72

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

ole32

oleaut32

Sections

.text Size: 188KB - Virtual size: 186KB

.rdata Size: 44KB - Virtual size: 41KB

.data Size: 20KB - Virtual size: 33KB

.rsrc Size: 60KB - Virtual size: 68KB

.text
Size: 188KB - Virtual size: 186KB

.rdata
Size: 44KB - Virtual size: 41KB

.data
Size: 20KB - Virtual size: 33KB

.rsrc
Size: 60KB - Virtual size: 68KB