26e913af5f126b49423ea7c969c32b18_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

26e913af5f126b49423ea7c969c32b18_JaffaCakes118
Size

780KB
MD5

26e913af5f126b49423ea7c969c32b18
SHA1

e22a4cd11d2ae756107eedf5fc7c684d0383fec1
SHA256

94b342e45265f8e566bc4e34245ca8f9377957e2f5288541f391678e5c4cb94b
SHA512

ec90c85c74bffa18af9448bcd685bcf765dacc8dd94f8dcd7cfd41e08e0b87da78b94e8d922cef464bb090b8ee91df297e47a8178867c45849d9a88ed045ba8e
SSDEEP

24576:RF8NsobDhnQhuPm28869imkebqal6LSEnGubR4pJHFhI5+0r1WUdmgAA0JxXjicH:uNbDhnQhuPm28869imkebqal6LSEnGu2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
26e913af5f126b49423ea7c969c32b18_JaffaCakes118

Files

26e913af5f126b49423ea7c969c32b18_JaffaCakes118
.exe windows:4 windows x86 arch:x86

86446a490e763b2340e82d63e8ed69d5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

imagehlp

MapFileAndCheckSumA

psapi

GetModuleFileNameExA

winmm

mixerGetLineInfoA
mixerClose
mixerOpen
mixerGetLineControlsA
mixerSetControlDetails

shlwapi

StrStrIA
StrStrA
PathRemoveFileSpecA
PathFindFileNameA

kernel32

GetACP
HeapReAlloc
SetStdHandle
GetFileType
ExitThread
HeapSize
LCMapStringA
LCMapStringW
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
GetLocalTime
CompareStringW
SetEnvironmentVariableA
CloseHandle
DeviceIoControl
CreateFileA
GetLastError
lstrlenA
GetVersionExA
GlobalReAlloc
GlobalUnlock
GlobalLock
GlobalSize
MulDiv
FreeResource
LockResource
LoadResource
SizeofResource
FindResourceA
lstrcpyA
GetCurrentThreadId
Sleep
WaitForSingleObject
GetTickCount
GetCurrentProcess
CreateMutexA
OpenMutexA
WriteFile
GetSystemTime
GetTimeZoneInformation
HeapAlloc
RaiseException
ExitProcess
GetStartupInfoA
HeapFree
RtlUnwind
SetErrorMode
GetFileTime
GetFileSize
GetFileAttributesA
CopyFileA
GetOEMCP
GetCPInfo
GlobalFlags
TlsGetValue
LocalReAlloc
TlsSetValue
TlsFree
GlobalHandle
TlsAlloc
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
LocalAlloc
EnterCriticalSection
GetCurrentThread
GetPrivateProfileStringA
SuspendThread
SetThreadPriority
ResumeThread
GetProfileIntA
GetThreadLocale
GetFullPathNameA
GetVolumeInformationA
SetEndOfFile
SetFilePointer
lstrcatA
SetCurrentDirectoryA
GetLongPathNameA
GetModuleFileNameA
GetCommandLineA
Beep
GetProfileStringA
UnlockFile
LockFile
FlushFileBuffers
DuplicateHandle
FileTimeToLocalFileTime
FileTimeToSystemTime
GlobalFree
GetProcessVersion
SetLastError
WideCharToMultiByte
LoadLibraryA
FreeLibrary
GetVersion
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
GetModuleHandleA
GetProcAddress
FindFirstFileA
FindNextFileA
FindClose
SetFileAttributesA
WritePrivateProfileStringA
lstrcpynA
MultiByteToWideChar
FormatMessageA
ReleaseMutex
LocalFree
CreateProcessA
ResetEvent
SetPriorityClass
CreateThread
GlobalAlloc
InterlockedIncrement
InterlockedDecrement
WaitForMultipleObjects
SetEvent
lstrcmpA
VirtualAllocEx
WriteProcessMemory
ReadProcessMemory
lstrlenW
VirtualFreeEx
CreateEventA
CreateToolhelp32Snapshot
Process32First
GetCurrentProcessId
Process32Next
GetWindowsDirectoryA
OpenProcess
lstrcmpiA
TerminateProcess
ReadFile
CompareStringA

user32

BringWindowToTop
CharNextA
CopyAcceleratorTableA
GetNextDlgGroupItem
MessageBeep
RegisterClipboardFormatA
EndDialog
CreateDialogIndirectParamA
LoadStringA
GetSysColorBrush
GetWindowDC
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
IsWindowEnabled
IsDialogMessageA
LoadIconA
SendDlgItemMessageA
MapWindowPoints
PeekMessageA
DispatchMessageA
SetActiveWindow
AdjustWindowRectEx
GetScrollInfo
SetScrollInfo
GetScrollRange
GetScrollPos
GetTopWindow
IsChild
WinHelpA
RegisterClassA
GetMenu
GetMenuItemCount
GetMenuItemID
GetWindowTextLengthA
DestroyWindow
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetLastActivePopup
GetWindow
GetWindowPlacement
GetWindowModuleFileNameA
SetCursorPos
WaitForInputIdle
DeleteMenu
CreateDesktopA
SetLayeredWindowAttributes
MsgWaitForMultipleObjects
CloseDesktop
DrawIcon
FindWindowA
IsIconic
FindWindowExA
OpenDesktopA
SwitchDesktop
EnumThreadWindows
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
GetMessageExtraInfo
SendInput
EnumWindows
ValidateRect
SendMessageTimeoutA
RegisterWindowMessageA
MessageBoxA
IsWindowVisible
IsRectEmpty
GetDoubleClickTime
LoadBitmapA
EnableMenuItem
ExcludeUpdateRgn
DefDlgProcA
IsWindowUnicode
EndPaint
BeginPaint
GetDlgCtrlID
MoveWindow
TrackPopupMenu
wsprintfA
SetForegroundWindow
GetForegroundWindow
GetWindowThreadProcessId
AttachThreadInput
SetWindowLongA
PostQuitMessage
GetCapture
SetTimer
ClipCursor
InvertRect
PtInRect
PostMessageA
KillTimer
GetMessagePos
GrayStringA
TabbedTextOutA
IsClipboardFormatAvailable
IntersectRect
GetCursorPos
GetKeyState
GetClassInfoA
DefWindowProcA
LoadCursorA
DrawEdge
SetRect
DrawTextA
SystemParametersInfoA
PostThreadMessageA
MapDialogRect
GetDlgItem
SetWindowPos
ShowWindow
SetFocus
GetDC
SetWindowTextA
ReleaseDC
ShowScrollBar
GetWindowTextA
GetClassNameA
GetWindowLongA
WindowFromPoint
GetNextDlgTabItem
GetActiveWindow
ClientToScreen
DrawFocusRect
DrawStateA
FrameRect
OffsetRect
CopyRect
LoadMenuA
GetIconInfo
GetSubMenu
TrackPopupMenuEx
SetCursor
DestroyIcon
DestroyCursor
DestroyMenu
EnableWindow
GetParent
GetFocus
SetCapture
RedrawWindow
InvalidateRect
UpdateWindow
ScreenToClient
GetClientRect
GetWindowRect
SendMessageA
FillRect
ReleaseCapture
GetSystemMetrics
SetRectEmpty
IsWindow
MapVirtualKeyA
InflateRect
GetSysColor
LoadImageA
SetWindowContextHelpId
GetMessageA
EqualRect
TranslateMessage
ShowCaret
HideCaret
UnregisterClassA
GetDesktopWindow
CharUpperA
GetAncestor

gdi32

SetBkMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
MoveToEx
LineTo
RestoreDC
ExtSelectClipRgn
GetViewportExtEx
GetWindowExtEx
GetMapMode
DPtoLP
CopyMetaFileA
GetTextColor
LPtoDP
SaveDC
GetClipBox
StretchDIBits
SetStretchBltMode
SetDIBitsToDevice
PatBlt
StretchBlt
SetBrushOrgEx
SetRectRgn
CreateRectRgn
CreatePatternBrush
CreateFontA
EndDoc
AbortDoc
EndPage
StartPage
StartDocA
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
GetBkColor
CreatePen
GetCurrentObject
GetDeviceCaps
GetTextExtentPoint32A
Rectangle
CreateCompatibleBitmap
CreateBitmap
CreateCompatibleDC
SelectObject
SetBkColor
BitBlt
SetTextColor
DeleteDC
GetStockObject
DeleteObject
GetTextMetricsA
SetPixel
GetNearestColor
GetObjectA
CreateFontIndirectA
GetTextExtentPointA
CreateDIBitmap
CreateSolidBrush

comdlg32

PrintDlgA
GetFileTitleA
GetOpenFileNameA
GetSaveFileNameA

winspool.drv

OpenPrinterA
ClosePrinter
DocumentPropertiesA

advapi32

RegEnumValueA
RegQueryInfoKeyA
RegSetValueExA
RegDeleteKeyA
RegQueryValueExA
RegOpenKeyExA
RegQueryValueA
RegDeleteValueA
RegCreateKeyExA
RegOpenCurrentUser
AdjustTokenPrivileges
LookupPrivilegeValueA
OpenProcessToken
QueryServiceStatus
CloseServiceHandle
OpenServiceA
OpenSCManagerA
RegCloseKey

shell32

ShellExecuteA
SHGetFileInfoA
SHChangeNotify
ShellExecuteExA
SHGetFolderPathA
Shell_NotifyIconA

comctl32

_TrackMouseEvent
ImageList_Draw
ImageList_GetImageInfo
ImageList_AddMasked
ImageList_GetIconSize
ImageList_GetIcon
FlatSB_EnableScrollBar
InitializeFlatSB
ord17
ImageList_GetImageCount
ImageList_Remove
ImageList_ReplaceIcon
ImageList_Destroy
ImageList_Create
ImageList_Duplicate

oledlg

ord8

ole32

CoInitialize
CoCreateInstance
CoUninitialize
OleInitialize
OleUninitialize
CoFreeUnusedLibraries
ReleaseStgMedium
CoTaskMemFree
OleSetClipboard
OleFlushClipboard
OleIsCurrentClipboard
OleGetClipboard
DoDragDrop
RegisterDragDrop
CoLockObjectExternal
RevokeDragDrop
CLSIDFromProgID
CLSIDFromString
CoRegisterMessageFilter
CoGetClassObject
CoRevokeClassObject
OleDuplicateData
CoTaskMemAlloc
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CreateStreamOnHGlobal

olepro32

ord253
ord251

oleaut32

SysStringLen
VariantTimeToSystemTime
SysAllocStringLen
SysFreeString
VariantChangeType
SysAllocStringByteLen
SysAllocString
VariantCopy
VariantClear

iphlpapi

GetAdaptersInfo

msimg32

GradientFill
TransparentBlt

vism

DLL_SubTaskBar
U_InstallMsgHook
DLL_SetUpdate
SetMT_Vista
DLL_SetQuitFlag
U_SetHook

wininet

InternetConnectA
InternetOpenA
InternetGetLastResponseInfoA
HttpQueryInfoA
HttpSendRequestA
HttpOpenRequestA
InternetCloseHandle
InternetQueryDataAvailable
InternetReadFile
InternetWriteFile
InternetSetFilePointer
InternetSetStatusCallback

Sections

.text
Size: 500KB - Virtual size: 498KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 88KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 44KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.v-lizer
Size: 144KB - Virtual size: 144KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

86446a490e763b2340e82d63e8ed69d5

Headers

File Characteristics

Imports

imagehlp

psapi

winmm

shlwapi

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

iphlpapi

msimg32

vism

wininet

Sections

.text Size: 500KB - Virtual size: 498KB

.rdata Size: 88KB - Virtual size: 84KB

.data Size: 44KB - Virtual size: 65KB

.v-lizer Size: 144KB - Virtual size: 144KB

.text
Size: 500KB - Virtual size: 498KB

.rdata
Size: 88KB - Virtual size: 84KB

.data
Size: 44KB - Virtual size: 65KB

.v-lizer
Size: 144KB - Virtual size: 144KB