2deca14720264606501cee9ec284fb94_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2deca14720264606501cee9ec284fb94_JaffaCakes118
Size

896KB
MD5

2deca14720264606501cee9ec284fb94
SHA1

baa79edfb0c305e093927646d2ea97d51937ab28
SHA256

8ea7d5a7f52b1ae69e1510371c32aaeecdfed01cc9d6db786af4cf24a54d3ffc
SHA512

9081eba84706122cd64a64a273b8dac58b3bfbcf15a017a7becabd50c05e012fc4657df8aeae68db3c0f0a6a3eddeaf33fec7d74a842b75592ff9840fd90b852
SSDEEP

12288:e1id03U+3NwxFUMOXHqtlRxqBzSUK5mnUSjHxh:eUB2NwxmF3qtlRxqKcrjP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2deca14720264606501cee9ec284fb94_JaffaCakes118

Files

2deca14720264606501cee9ec284fb94_JaffaCakes118
.exe windows:4 windows x86 arch:x86

47ada204026dffbb777eceb29d6581b4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

imm32

ImmReleaseContext
ImmGetCompositionStringW
ImmGetContext

kernel32

HeapCreate
VirtualFree
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
VirtualAlloc
IsBadWritePtr
GetStringTypeA
GetStringTypeW
GetDriveTypeA
IsBadReadPtr
IsBadCodePtr
SetStdHandle
CompareStringA
SetEnvironmentVariableA
lstrcpyA
GlobalFree
HeapDestroy
GetEnvironmentStringsW
GetProfileStringA
GlobalUnlock
GetEnvironmentStrings
GlobalLock
GlobalAlloc
GetVersionExA
MultiByteToWideChar
CompareStringW
InterlockedDecrement
InterlockedIncrement
GetLocaleInfoA
GetTimeZoneInformation
GetProcAddress
LoadLibraryA
FormatMessageA
GetLastError
GetACP
WideCharToMultiByte
CreateMutexA
GetFileAttributesA
LockResource
LoadResource
FindResourceA
FindClose
FindFirstFileA
GetSystemTime
lstrlenW
SetCurrentDirectoryA
GetCurrentDirectoryA
GetModuleFileNameA
CreateDirectoryA
IsValidCodePage
GetModuleHandleA
GlobalDeleteAtom
GlobalFindAtomA
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetFileType
GetStdHandle
SetHandleCount
HeapReAlloc
HeapSize
TerminateProcess
HeapFree
HeapAlloc
RaiseException
ExitProcess
GetCommandLineA
GetStartupInfoA
GetLocalTime
RtlUnwind
SystemTimeToFileTime
LocalFileTimeToFileTime
GetFileSize
GetShortPathNameA
GetThreadLocale
GetStringTypeExA
GetVolumeInformationA
DeleteFileA
MoveFileA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
GetCurrentProcess
DuplicateHandle
SetErrorMode
SizeofResource
GetOEMCP
GetCPInfo
GetProcessVersion
GlobalFlags
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
GetDiskFreeSpaceA
GetFileTime
SetFileTime
GetFullPathNameA
GetProfileIntA
SearchPathA
GetTempPathA
GetTempFileNameA
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
CloseHandle
GetCurrentThread
FindNextFileA
FileTimeToLocalFileTime
FileTimeToSystemTime
lstrcmpA
lstrcpynA
LocalFree
lstrlenA
MulDiv
SetLastError
FreeLibrary
GetVersion
lstrcatA
GetCurrentThreadId
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA

user32

DestroyIcon
CharUpperA
FindWindowA
GetTabbedTextExtentA
GetMessageA
TranslateMessage
ValidateRect
ShowOwnedPopups
PostQuitMessage
GetSystemMenu
DeleteMenu
SetParent
InvertRect
BringWindowToTop
UnpackDDElParam
ReuseDDElParam
SetMenu
LoadMenuA
DestroyMenu
GetDesktopWindow
TranslateAcceleratorA
LoadAcceleratorsA
WindowFromPoint
KillTimer
SetTimer
LoadStringA
wvsprintfA
EndDialog
GetActiveWindow
CreateDialogIndirectParamA
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetNextDlgTabItem
IsWindowEnabled
ShowWindow
MoveWindow
IsDialogMessageA
SetDlgItemTextA
LoadIconA
SendDlgItemMessageA
MapWindowPoints
PeekMessageA
DispatchMessageA
SetActiveWindow
SetFocus
AdjustWindowRectEx
EqualRect
DeferWindowPos
GetDCEx
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
MessageBoxA
IsChild
WinHelpA
wsprintfA
GetClassInfoA
RegisterClassA
TrackPopupMenu
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
DefWindowProcA
SetWindowsHookExA
CallNextHookEx
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetLastActivePopup
SetWindowLongA
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetSystemMetrics
GetCaretPos
GetMessagePos
GetForegroundWindow
GetWindow
IsZoomed
IsIconic
RedrawWindow
ReleaseDC
GetDC
SendMessageA
UnregisterClassA
ExcludeUpdateRgn
DrawFocusRect
DefDlgProcA
CharNextA
LoadBitmapA
IsWindowUnicode
GetParent
SetRectEmpty
RegisterWindowMessageA
GetDlgItem
SetWindowPos
CreateWindowExA
SetWindowTextA
DestroyWindow
PostMessageA
GetMenu
GetMenuItemCount
GetMenuStringA
GetSubMenu
GetMenuItemID
SendMessageTimeoutA
EnumWindows
GetClassNameA
DestroyCursor
RemoveMenu
DefMDIChildProcA
DrawMenuBar
TranslateMDISysAccel
DefFrameProcA
IsWindowVisible
InsertMenuA
SetForegroundWindow
UpdateWindow
CreatePopupMenu
AppendMenuA
SetMenuDefaultItem
InvalidateRect
GetWindowLongA
CopyRect
GetClassLongA
GetCursorPos
BeginDeferWindowPos
EndDeferWindowPos
GetFocus
GetClientRect
IsWindow
HideCaret
ShowCaret
SetCaretPos
CreateCaret
FillRect
InflateRect
OffsetRect
GetSysColor
GetKeyState
SetCapture
PtInRect
GetCapture
ReleaseCapture
CharUpperW
CharLowerW
CloseClipboard
IsRectEmpty
GetSysColorBrush
LockWindowUpdate
GetWindowRect
SetRect
LoadCursorA
SetCursor
ClientToScreen
ScreenToClient
EnableWindow
IsClipboardFormatAvailable
GetClipboardData
OpenClipboard
EmptyClipboard
SetClipboardData

gdi32

RestoreDC
SelectObject
SetBkMode
SetPolyFillMode
SetROP2
SetStretchBltMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
MoveToEx
LineTo
SetTextAlign
GetCurrentPositionEx
CreateRectRgn
SaveDC
GetViewportExtEx
GetWindowExtEx
CreatePatternBrush
PtVisible
RectVisible
ExtTextOutA
Escape
PatBlt
SetRectRgn
CombineRgn
CreateRectRgnIndirect
GetTextMetricsA
StretchDIBits
GetCharWidthA
Rectangle
GetViewportOrgEx
AbortDoc
EndDoc
EndPage
StartPage
SetAbortProc
CreateDCA
LPtoDP
GetBkColor
GetNearestColor
GetTextColor
GetStretchBltMode
GetPolyFillMode
GetTextAlign
GetBkMode
GetROP2
GetTextFaceA
GetWindowOrgEx
StartDocA
CreateBitmap
SetBkColor
SetTextColor
GetClipBox
CreateSolidBrush
CreatePen
DeleteObject
TextOutW
TextOutA
GetStockObject
GetTextExtentPoint32W
CreateICA
GetDeviceCaps
DeleteDC
DPtoLP
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt
CreateFontIndirectA
GetTextExtentPoint32A
GetTextExtentPointA
GetObjectA
CreateDIBitmap

comdlg32

GetOpenFileNameA
CommDlgExtendedError
ChooseFontA
PrintDlgA
GetFileTitleA
GetSaveFileNameA

winspool.drv

ClosePrinter
OpenPrinterA
DocumentPropertiesA

advapi32

RegSetValueA
RegQueryValueExA
RegOpenKeyExA
RegQueryValueA
RegEnumKeyA
RegOpenKeyA
RegDeleteKeyA
RegCreateKeyExA
RegSetValueExA
RegDeleteValueA
SetFileSecurityA
RegCreateKeyA
RegCloseKey
GetFileSecurityA

shell32

ExtractIconA
DragQueryFileA
DragFinish
DragAcceptFiles
SHGetSpecialFolderLocation
SHGetPathFromIDListA
SHGetMalloc
SHAddToRecentDocs
ShellExecuteA
SHGetFileInfoA

comctl32

ImageList_Draw
ImageList_GetImageInfo
ord17
ImageList_Destroy
ImageList_LoadImageA

ole32

CoCreateInstance
OleRun
CoUninitialize
CoInitialize

oleaut32

SysAllocString
SysFreeString
VariantClear
GetErrorInfo

wsock32

WSACleanup
WSAStartup

Sections

.text
Size: 532KB - Virtual size: 529KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 88KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 56KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 212KB - Virtual size: 211KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.hhqg
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

47ada204026dffbb777eceb29d6581b4

Headers

File Characteristics

Imports

imm32

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

ole32

oleaut32

wsock32

Sections

.text Size: 532KB - Virtual size: 529KB

.rdata Size: 88KB - Virtual size: 86KB

.data Size: 56KB - Virtual size: 71KB

.rsrc Size: 212KB - Virtual size: 211KB

.hhqg Size: 4KB - Virtual size: 4KB

.text
Size: 532KB - Virtual size: 529KB

.rdata
Size: 88KB - Virtual size: 86KB

.data
Size: 56KB - Virtual size: 71KB

.rsrc
Size: 212KB - Virtual size: 211KB

.hhqg
Size: 4KB - Virtual size: 4KB