25d04f6e869c873c52fa26b4f816761d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

25d04f6e869c873c52fa26b4f816761d_JaffaCakes118
Size

388KB
MD5

25d04f6e869c873c52fa26b4f816761d
SHA1

19ca140f73fac0f53c15400def363b8b4cbfb347
SHA256

3886c176d11725c9bd52c9b422eb39976bd242c9171649ec225e6aaafac6bf45
SHA512

00ef6469471acdf3128536ead2d0747eecb01ddbfa71a6fb0776574d5f5129ea2dee8e8c42eb43f2274177ee7c7a66e9db86113e905f76367be0dce592bbf526
SSDEEP

6144:48/UhHrbO2Y2UEZSnSIM7Z9Gfsqt11kxpr5D7AqP:48/GrbO2qsvnNYD+/

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
25d04f6e869c873c52fa26b4f816761d_JaffaCakes118

Files

25d04f6e869c873c52fa26b4f816761d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a3fc98bf8ef2b0534fdb8bc626efee16

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStdHandle
LCMapStringA
InterlockedExchange
ExitProcess
GetLocaleInfoA
DuplicateHandle
LeaveCriticalSection
SystemTimeToFileTime
GetCurrentThreadId
WideCharToMultiByte
HeapValidate
HeapAlloc
TlsGetValue
GetFileType
lstrcmpiA
LCMapStringW
InterlockedIncrement
SizeofResource
RemoveDirectoryA
IsBadReadPtr
VirtualFree
InterlockedDecrement
GetSystemInfo
LoadLibraryA
FreeEnvironmentStringsA
VirtualAlloc
GetDateFormatA
GetCPInfo
TerminateProcess
HeapReAlloc
InitializeCriticalSection
GetStringTypeA
lstrlenW
GetLocalTime
GlobalDeleteAtom
IsBadWritePtr
IsBadCodePtr
GlobalReAlloc
GetOEMCP
TlsAlloc
FlushFileBuffers
MultiByteToWideChar
GetThreadLocale
GlobalFlags
GetCurrentProcessId
DeleteCriticalSection
RaiseException
MoveFileA
GetStringTypeW
HeapDestroy
GetWindowsDirectoryA
SetFilePointer
GetSystemTimeAsFileTime
CloseHandle
GetVersionExA
SetFileTime
SetLastError
CompareStringW
FreeEnvironmentStringsW
CreateMutexA
GetCurrentDirectoryA
EnterCriticalSection
GetFileTime
DebugBreak
SetStdHandle
QueryPerformanceCounter
CompareStringA
HeapFree
OpenMutexA
GlobalLock
GetShortPathNameA
UnhandledExceptionFilter
VirtualQuery
GetProcAddress
GetModuleHandleA
GetPrivateProfileIntA
GetFileAttributesA
GlobalFree
GetCurrentProcess
CreateEventA
TlsFree
OutputDebugStringA
GetEnvironmentStringsW
GetStartupInfoA
HeapCreate
GetStringTypeExA
lstrcatA
GetTickCount
GetTimeFormatA
LocalFree
ReadFile
GetTimeZoneInformation
GetCommandLineA
SetFileAttributesA
GetLastError
VirtualProtect
LoadResource
CreateFileA
WriteFile
SetUnhandledExceptionFilter
GetEnvironmentStrings
RtlUnwind
SetEnvironmentVariableA
GetVersion
GetModuleFileNameA
LockResource
lstrcpyA
SetHandleCount
TlsSetValue
GetACP

gdi32

SetBkMode
GetStockObject
GetTextMetricsA
MoveToEx
Polygon
DeleteObject
GetTextCharsetInfo
CreateFontA
GetViewportExtEx
GetTextExtentPoint32W
SelectClipRgn
CreateFontIndirectA
SetTextAlign
ExtSelectClipRgn
RoundRect
GetDIBits
CreateHatchBrush
SetBkColor
GetMapMode
GetClipBox
CreateCompatibleBitmap
GetWindowExtEx
CombineRgn
SetAbortProc
EnumFontFamiliesExA
CreateDIBSection
SetDIBitsToDevice
SetPixel
SelectObject
RectVisible
GetTextAlign
GetObjectA
FrameRgn
GetRgnBox
CreateSolidBrush
SelectPalette
CreateCompatibleDC
SetWindowExtEx
ExtCreatePen
SetMapMode
RealizePalette
GetViewportOrgEx
PatBlt
GetTextColor
SetPolyFillMode
ExcludeClipRect
GetDeviceCaps
SetViewportExtEx
OffsetViewportOrgEx
EndPage
GetPixel
OffsetWindowOrgEx
LPtoDP
CreateDIBitmap
GetTextExtentPoint32A
CreateRectRgnIndirect
Polyline
UnrealizeObject
EndDoc
PtInRegion
LineTo
DeleteDC
TextOutA
OffsetRgn
CreateRectRgn
PtVisible
GetTextFaceA
SetTextColor
BitBlt
IntersectClipRect
GetSystemPaletteEntries
Rectangle
SetViewportOrgEx
GetBkColor
CreateBitmap
StartPage
GetPaletteEntries
SetROP2
DPtoLP

winmm

mmioSeek
mmioWrite
mmioDescend
mmioOpenA
mmioClose
mmioRead

comctl32

ImageList_Draw
ImageList_Destroy
InitCommonControlsEx
ord17

user32

LoadAcceleratorsA
EndDialog
LoadStringA
PostQuitMessage
BeginDeferWindowPos
ClientToScreen
ScreenToClient
ModifyMenuA
GetWindowTextA
GetForegroundWindow
SetDlgItemTextA
CreateWindowExA
SetCursor
CallNextHookEx
CheckMenuItem
LoadCursorA
IsChild
GetSysColorBrush
GetDlgItemTextA
MessageBoxA
GetActiveWindow
DestroyMenu
DestroyCursor
InsertMenuItemA
DeferWindowPos
EmptyClipboard
GetSystemMetrics
ShowWindow
GetDlgItem
GetSubMenu
GetMenuItemInfoA
DestroyWindow
DefWindowProcA
RegisterClassExA
SendDlgItemMessageA
EndDeferWindowPos
SetScrollInfo
UnregisterClassA
ValidateRect
FindWindowA
DestroyIcon
GetCursorPos
GetDlgCtrlID
LoadIconA
PtInRect
LoadBitmapA
GetWindowTextLengthA
UpdateWindow
SetWindowLongA
FillRect
GetWindowRect
SetMenuItemBitmaps
SetParent
SetFocus
FrameRect
GetKeyState
wsprintfA
EnableWindow
PeekMessageA
LoadMenuA
GetClipboardData
GetSysColor
LoadImageA
TranslateAcceleratorA
RegisterClassA
GrayStringA
GetWindow
SetClipboardData
DispatchMessageA
SendMessageA
DrawTextA
GetMenuItemID
CreatePopupMenu
MoveWindow
KillTimer
GetScrollPos

ole32

OleCreateMenuDescriptor
IsAccelerator
OleCreateStaticFromData
CoGetMalloc
OleTranslateAccelerator
GetClassFile
DoDragDrop
StgIsStorageILockBytes
OleDestroyMenuDescriptor

advapi32

RegCreateKeyExA
RegQueryInfoKeyA
DuplicateTokenEx
RegSetValueExA
GetSidLengthRequired

Sections

.text
Size: 111KB - Virtual size: 110KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 104KB - Virtual size: 103KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 57KB - Virtual size: 62KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 114KB - Virtual size: 114KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a3fc98bf8ef2b0534fdb8bc626efee16

Headers

File Characteristics

Imports

kernel32

gdi32

winmm

comctl32

user32

ole32

advapi32

Sections

.text Size: 111KB - Virtual size: 110KB

.rdata Size: 104KB - Virtual size: 103KB

.data Size: 57KB - Virtual size: 62KB

.rsrc Size: 114KB - Virtual size: 114KB

.text
Size: 111KB - Virtual size: 110KB

.rdata
Size: 104KB - Virtual size: 103KB

.data
Size: 57KB - Virtual size: 62KB

.rsrc
Size: 114KB - Virtual size: 114KB