2a0f73eeeb6ae9b6253ffbd75f802974_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2a0f73eeeb6ae9b6253ffbd75f802974_JaffaCakes118
Size

676KB
MD5

2a0f73eeeb6ae9b6253ffbd75f802974
SHA1

daa08fe562b3bf6355a0d0661a41f77f47765aff
SHA256

cedf2cb49cbfd9f6fd453544ea209ba7bbba9c8b617db7f5853f60537f21a0a3
SHA512

2641dc9f0338c37b2149ad6d2435607208b6c84d857d395febd04c096b0fa5a5f6c22fc5d2579a4f1ebac8e7a2f0dd47cb6bdd4800e9914ebcc0aec84a539d4d
SSDEEP

12288:TN08Ni74yLys72BlaecrqN/6KWjP2D5BVE32+KG2efuw34VNSTK1y3+MouKjo+Oh:J03heEKWjM3G2efQVNgouKjo+OGNgKD+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2a0f73eeeb6ae9b6253ffbd75f802974_JaffaCakes118

Files

2a0f73eeeb6ae9b6253ffbd75f802974_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1875f91cb5c1ce36a3389600e1f7d6d7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeGetTime

rpcrt4

UuidFromStringA

setupapi

SetupDiGetDeviceRegistryPropertyA
SetupDiGetClassDevsA
SetupDiEnumDeviceInfo

kernel32

GetShortPathNameA
lstrlenW
GetFileTime
SystemTimeToFileTime
GlobalSize
RtlUnwind
GetTimeZoneInformation
GetSystemTime
GetFileType
HeapAlloc
HeapFree
GetStartupInfoA
GetCommandLineA
ExitProcess
RaiseException
TerminateProcess
ExitThread
HeapReAlloc
HeapSize
FatalAppExitA
GetDriveTypeA
LCMapStringA
LCMapStringW
SetStdHandle
SetHandleCount
GetStdHandle
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
IsBadReadPtr
GetStringTypeExA
IsValidLocale
IsValidCodePage
EnumSystemLocalesA
GetUserDefaultLCID
SetConsoleCtrlHandler
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetLocaleInfoW
CloseHandle
GetCurrentDirectoryA
CreateDirectoryA
SetCurrentDirectoryA
CreateFileA
DeviceIoControl
WriteFile
GetLastError
GetLocalTime
ReadFile
SetFilePointer
GetProcAddress
GetModuleHandleA
FindClose
FindNextFileA
DeleteFileA
FindFirstFileA
RemoveDirectoryA
GetTempFileNameA
GetTempPathA
ResetEvent
WaitForSingleObject
CreateEventA
CreateProcessA
SetEvent
GetTickCount
CreateMutexA
FlushFileBuffers
OutputDebugStringA
InterlockedExchange
GetFullPathNameA
GetVolumeInformationA
MoveFileA
SetEndOfFile
UnlockFile
LockFile
DuplicateHandle
SetErrorMode
GetThreadLocale
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
GetOEMCP
GetCPInfo
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
GlobalFlags
GetProcessVersion
FindResourceExA
SizeofResource
SuspendThread
GetProfileStringA
ResumeThread
GlobalAlloc
lstrcmpA
GetCurrentThread
FormatMessageA
LocalFree
FileTimeToLocalFileTime
FileTimeToSystemTime
lstrcpynA
GetModuleFileNameA
MulDiv
SetLastError
MultiByteToWideChar
WideCharToMultiByte
lstrlenA
InterlockedDecrement
InterlockedIncrement
GetVersion
lstrcatA
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcpyA
GlobalLock
GetCurrentThreadId
GlobalUnlock
VirtualProtect
FindResourceA
LoadResource
LockResource
GlobalFree
CreateThread
SetThreadPriority
GetLocaleInfoA
GetACP
GetFileSize
GetVersionExA
GetCurrentProcess
LoadLibraryA
FreeLibrary
DosDateTimeToFileTime
LocalFileTimeToFileTime
SetFileTime
Sleep
GetFileAttributesA
SetFileAttributesA
CopyFileA
GetWindowsDirectoryA
IsBadCodePtr

user32

InflateRect
RegisterClipboardFormatA
AppendMenuA
RemoveMenu
PostThreadMessageA
GetDesktopWindow
PtInRect
GetClassNameA
GetSysColorBrush
LoadCursorA
GetDialogBaseUnits
LoadStringA
SetWindowContextHelpId
GetMessageA
TranslateMessage
ValidateRect
ShowOwnedPopups
PostQuitMessage
DestroyMenu
GetCursorPos
WindowFromPoint
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
ClientToScreen
OemToCharA
CharToOemA
wvsprintfA
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
MoveWindow
SetWindowTextA
IsDialogMessageA
ScrollWindowEx
IsDlgButtonChecked
SetDlgItemTextA
SetDlgItemInt
GetDlgItemTextA
GetDlgItemInt
CheckRadioButton
CheckDlgButton
UpdateWindow
SendDlgItemMessageA
MapWindowPoints
GetSysColor
PeekMessageA
DispatchMessageA
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
BeginDeferWindowPos
CharUpperA
EndDeferWindowPos
IsWindowVisible
ScrollWindow
SetScrollInfo
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
IsChild
WinHelpA
wsprintfA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
CopyAcceleratorTableA
GetMenuItemID
TrackPopupMenu
SetWindowPlacement
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
GetKeyState
DefWindowProcA
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
DefDlgProcA
IsWindowUnicode
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetNextDlgTabItem
EndDialog
CreateDialogIndirectParamA
DestroyWindow
MapDialogRect
SetWindowPos
GetCapture
GetActiveWindow
SetActiveWindow
GetAsyncKeyState
GetFocus
BringWindowToTop
UnpackDDElParam
ReuseDDElParam
TranslateAcceleratorA
LoadAcceleratorsA
SetRectEmpty
MessageBeep
GetNextDlgGroupItem
CopyRect
SetRect
SetFocus
GetDlgItem
IsWindowEnabled
GetParent
ExitWindowsEx
ShowWindow
GetWindowRect
IsIconic
GetSystemMenu
DrawMenuBar
SetMenu
LoadMenuA
InsertMenuA
DrawIcon
GetSystemMetrics
RegisterWindowMessageA
FindWindowA
GetDC
SetCursor
DestroyCursor
DestroyIcon
InvalidateRect
GetClientRect
PostMessageA
IsWindow
LoadImageA
GetWindowLongA
SetWindowLongA
RedrawWindow
LoadIconA
KillTimer
SetTimer
MessageBoxA
SendMessageA
EnableWindow
CharNextA
GetMenuStringA
GetWindowThreadProcessId
DeleteMenu
WaitMessage
ReleaseCapture
GetSubMenu
SetCapture
GetScrollInfo

gdi32

ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
OffsetClipRgn
SetTextAlign
SetTextJustification
SetTextCharacterExtra
SetMapperFlags
GetCurrentPositionEx
ArcTo
SetArcDirection
PolyDraw
PolylineTo
SetColorAdjustment
PolyBezierTo
GetClipRgn
CreateRectRgn
SelectClipPath
ExtSelectClipRgn
PlayMetaFileRecord
GetObjectType
EnumMetaFile
SetViewportExtEx
GetDeviceCaps
GetViewportExtEx
GetWindowExtEx
ExtCreatePen
CreateSolidBrush
CreateHatchBrush
CreatePatternBrush
CreateDIBPatternBrushPt
PtVisible
RectVisible
ExtTextOutA
Escape
GetTextExtentPoint32A
GetTextMetricsA
CreateFontIndirectA
EnumFontFamiliesExA
GetTextColor
GetBkColor
DPtoLP
LPtoDP
GetMapMode
PatBlt
SetRectRgn
CombineRgn
CreateRectRgnIndirect
CopyMetaFileA
CreateDCA
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetStretchBltMode
SetROP2
SetPolyFillMode
SelectPalette
GetStockObject
RestoreDC
SaveDC
StartDocA
DeleteDC
CreateBitmap
SetBkColor
SetTextColor
GetClipBox
GetDCOrgEx
MoveToEx
LineTo
CreatePen
CreateFontA
SetBkMode
TextOutA
StretchBlt
BitBlt
CreateCompatibleDC
SelectObject
GetObjectA
GetTextExtentPointA
PlayMetaFile
CreateDIBitmap
DeleteObject

comdlg32

GetSaveFileNameA
GetFileTitleA
GetOpenFileNameA

winspool.drv

ClosePrinter
OpenPrinterA
DocumentPropertiesA

advapi32

StartServiceA
RegOpenKeyExA
RegSetValueExA
RegCloseKey
RegCreateKeyA
RegEnumKeyA
RegQueryValueA
RegSetValueA
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
OpenSCManagerA
ControlService
QueryServiceStatus
RegQueryValueExA
DeleteService
CreateServiceA
OpenServiceA
CloseServiceHandle
RegDeleteValueA
RegDeleteKeyA
RegEnumKeyExA
RegEnumValueA
RegOpenKeyA
RegCreateKeyExA

shell32

SHGetFileInfoA
DragQueryFileA
DragFinish
DragAcceptFiles
SHBrowseForFolderA
SHGetPathFromIDListA
ShellExecuteExA
SHGetSpecialFolderPathA
ExtractIconA

comctl32

DestroyPropertySheetPage
CreatePropertySheetPageA
PropertySheetA
ord17

oledlg

ord8

ole32

StringFromCLSID
ReadClassStg
ReadFmtUserTypeStg
OleRegGetUserType
WriteClassStg
WriteFmtUserTypeStg
SetConvertStg
CreateBindCtx
OleDuplicateData
CoFreeUnusedLibraries
OleUninitialize
CoTreatAsClass
CoDisconnectObject
OleRun
CoCreateInstance
CoTaskMemAlloc
CoTaskMemFree
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
ReleaseStgMedium
CoRegisterMessageFilter
CoRegisterClassObject
CoRevokeClassObject
OleSetClipboard
OleFlushClipboard
OleIsCurrentClipboard
CreateStreamOnHGlobal
OleInitialize

olepro32

ord253

oleaut32

LoadTypeLi
SysStringLen
SafeArrayDestroyDescriptor
SafeArrayDestroyData
SafeArrayDestroy
SafeArrayUnlock
SafeArrayLock
SafeArrayPutElement
SafeArrayPtrOfIndex
SafeArrayGetElement
SafeArrayAllocDescriptor
SafeArrayAllocData
SafeArrayCopy
VarBstrFromDate
VarDateFromStr
VarBstrFromCy
VarCyFromStr
SysStringByteLen
SysAllocStringByteLen
SafeArrayRedim
SafeArrayCreate
SafeArrayGetDim
SafeArrayGetElemsize
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayAccessData
SafeArrayUnaccessData
SysAllocString
SysReAllocStringLen
VariantChangeType
VariantCopy
VariantTimeToSystemTime
VariantClear
SysFreeString
SysAllocStringLen

Sections

.text
Size: 476KB - Virtual size: 474KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 84KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 60KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 52KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1875f91cb5c1ce36a3389600e1f7d6d7

Headers

File Characteristics

Imports

winmm

rpcrt4

setupapi

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

Sections

.text Size: 476KB - Virtual size: 474KB

.rdata Size: 84KB - Virtual size: 80KB

.data Size: 60KB - Virtual size: 86KB

.rsrc Size: 52KB - Virtual size: 50KB

.text
Size: 476KB - Virtual size: 474KB

.rdata
Size: 84KB - Virtual size: 80KB

.data
Size: 60KB - Virtual size: 86KB

.rsrc
Size: 52KB - Virtual size: 50KB