27c7144aceb518e5d572c531da30cb08_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

27c7144aceb518e5d572c531da30cb08_JaffaCakes118
Size

320KB
MD5

27c7144aceb518e5d572c531da30cb08
SHA1

00d9ad4103414dc4adff8d8c02d736eb94df5a82
SHA256

d11461bd8c497770a2d27859184053c628c5808ba85fa872efa2a46436acfdaa
SHA512

d33cc4b896a9dd6d0b4e622f8a5634dfcb85ce09d6bd9e11bfc765d7352d6c7a1443fde676be6e570fd1dad49a3836432636f0662c2c7443f1bcbc2b3c69b716
SSDEEP

6144:jLi0b6uhMgxwqt+SVJNtGdU0NGb+Zys5qCB1U:je0+6nxht+OWYb+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
27c7144aceb518e5d572c531da30cb08_JaffaCakes118

Files

27c7144aceb518e5d572c531da30cb08_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a2f50a23658980b61b9ea0b99dc82c8e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetNearestPaletteIndex
GetClipRgn
GetClipBox
SetViewportOrgEx
ScaleViewportExtEx
GetBkMode
Pie
LPtoDP
Ellipse
PolyPolygon
ExtSelectClipRgn
GetCharABCWidthsA
GetTextExtentPointA
GetTextExtentPoint32A
RoundRect
SetViewportExtEx
SetAbortProc
GetDIBits
MoveToEx
GetCurrentObject
SetBkColor
IntersectClipRect
GetROP2
SetWindowExtEx
CreateFontIndirectA
SelectPalette
CreatePen
Rectangle
RestoreDC
RealizePalette
CreateDIBSection
SetRectRgn
SetPaletteEntries
PatBlt
OffsetWindowOrgEx
CreateBrushIndirect
ScaleWindowExtEx
SetBkMode
GetObjectA
StartDocA
CreateSolidBrush
GetRegionData
DeleteDC
DeleteObject
SetStretchBltMode
BitBlt
CreateRectRgnIndirect
StartPage
TextOutA
Polygon
EndPage
CreateCompatibleDC
CreateFontA
GetPaletteEntries
OffsetViewportOrgEx
CreateRectRgn
SelectObject
CreateCompatibleBitmap
GetCharWidthA
FillPath
StretchDIBits
EndDoc
RectInRegion
GetBkColor
DPtoLP
StrokeAndFillPath
OffsetRgn
CreateDCA
BeginPath
GetWindowExtEx
EndPath
GetStockObject
FrameRgn
ExtFloodFill
GetTextFaceA
SaveDC
StretchBlt
GetTextMetricsA
PtInRegion
CreateMetaFileA
GetNearestColor
CreateICA
GetMapMode
GetViewportOrgEx
CreateHatchBrush
StrokePath
CloseMetaFile
SetTextColor
CreateDIBitmap
AbortDoc
GetRgnBox
CreateBitmap
SetTextAlign
PtVisible
CopyMetaFileA
LineTo

kernel32

GetModuleHandleW
SetStdHandle
TerminateProcess
GetConsoleOutputCP
CreateMutexW
TlsAlloc
GetModuleHandleA
UnhandledExceptionFilter
HeapSize
GetDateFormatA
VirtualQuery
VirtualAlloc
LoadLibraryA
CompareStringA
TlsSetValue
GetStringTypeA
ReadFile
GetStartupInfoW
ExitProcess
GetCPInfo
VirtualFree
WaitForSingleObject
HeapCreate
GetCurrentProcess
GetStartupInfoA
GetCurrentProcessId
DeleteCriticalSection
GetTimeZoneInformation
GetLocaleInfoA
SetFilePointer
GetStringTypeW
GetConsoleMode
GetOEMCP
GetTickCount
SetHandleCount
WriteFile
GetCommandLineW
GetEnvironmentStringsW
SetEnvironmentVariableA
GetModuleFileNameW
LoadLibraryW
InterlockedDecrement
GetTimeFormatA
GetModuleFileNameA
WriteConsoleW
RaiseException
MultiByteToWideChar
GetACP
CompareStringW
RtlUnwind
GetSystemTimeAsFileTime
InitializeCriticalSectionAndSpinCount
HeapFree
CloseHandle
LCMapStringW
QueryPerformanceCounter
InterlockedExchange
LeaveCriticalSection
GetConsoleCP
HeapAlloc
InterlockedIncrement
GetCurrentThreadId
TlsGetValue
WideCharToMultiByte
IsDebuggerPresent
FlushFileBuffers
LocalFree
HeapReAlloc
WriteConsoleA
Sleep
FreeEnvironmentStringsW
GetProcAddress
SetLastError
TlsFree
GetStdHandle
CreateFileA
GetLastError
LCMapStringA
GetFileType
EnterCriticalSection
SetUnhandledExceptionFilter
IsValidCodePage

advapi32

RegEnumValueA
RegCreateKeyA
RegOpenKeyA
AdjustTokenPrivileges
RegSetValueExA
RegOpenKeyExA
OpenProcessToken
RegEnumKeyA
RegFlushKey
ControlService
RegDeleteValueA
RegCloseKey

winspool.drv

DocumentPropertiesA
OpenPrinterA
SetPrinterA

user32

GetMenuItemID
LoadCursorW
GetFocus
OpenClipboard
SetRectEmpty
TrackPopupMenuEx
SystemParametersInfoW
RegisterClassW
WindowFromPoint
IsWindowEnabled
EnumWindows
ReleaseDC
GetDlgCtrlID
UnhookWindowsHookEx
PostQuitMessage
LoadStringW
InflateRect
DestroyWindow
MessageBeep
LoadBitmapW
GetDesktopWindow
GetParent
CheckMenuItem
LoadImageW
GetDC
GetClipboardData
ScrollWindow
GetClientRect
GetActiveWindow
UnpackDDElParam
GetSubMenu
TranslateAcceleratorW
MoveWindow
GetTopWindow
GetCapture
BringWindowToTop
ReleaseCapture
ClientToScreen
CloseClipboard
GetClassInfoExW
DialogBoxParamW
EndDialog
GetDoubleClickTime
DrawStateW
DeleteMenu
IsIconic
RemoveMenu
IsZoomed
RegisterClassExW
SetRect
MapVirtualKeyW
SendMessageTimeoutW
GetWindow
GetWindowTextW
ScreenToClient
GetWindowLongW
LoadIconW
DrawEdge
SetWindowPos
PeekMessageW
SetCapture
GetKeyboardLayout

wininet

InternetCloseHandle
InternetCrackUrlA
InternetCanonicalizeUrlA
InternetOpenA
InternetQueryDataAvailable
HttpQueryInfoA

comdlg32

GetFileTitleW
GetOpenFileNameW
GetSaveFileNameW

Sections

.text
Size: 104KB - Virtual size: 101KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 108KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 40KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a2f50a23658980b61b9ea0b99dc82c8e

Headers

File Characteristics

Imports

gdi32

kernel32

advapi32

winspool.drv

user32

wininet

comdlg32

Sections

.text Size: 104KB - Virtual size: 101KB

.rdata Size: 108KB - Virtual size: 105KB

.data Size: 64KB - Virtual size: 74KB

.rsrc Size: 40KB - Virtual size: 36KB

.text
Size: 104KB - Virtual size: 101KB

.rdata
Size: 108KB - Virtual size: 105KB

.data
Size: 64KB - Virtual size: 74KB

.rsrc
Size: 40KB - Virtual size: 36KB