2b0b02149fdae00887d249dccff83b78_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2b0b02149fdae00887d249dccff83b78_JaffaCakes118
Size

233KB
MD5

2b0b02149fdae00887d249dccff83b78
SHA1

03311af36524905a3ec0023c0709efbcad83b9ae
SHA256

1136ad773aff9b62f0d90bec27b47950d4906135323670b3371c9c51013d2c67
SHA512

ce7c833e4807b07a95d7212f38c09e554b444ff549cf661b061a826fcebec8d9ae8ea6f08f3e6ca000a5ccafe33db96d0d3a2b4d847a1278fcfe790236457357
SSDEEP

3072:gUi6+69WD4mnn/JL07V+oR/VPU/dH0L50Vzqu8d0AYheVJqkxThIMOwx+J:gml9WEmnBY7TR/S/dUL58herqkxlIC+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2b0b02149fdae00887d249dccff83b78_JaffaCakes118

Files

2b0b02149fdae00887d249dccff83b78_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a4f8f131cb1d03d15eef94288c2a032c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

shell32

Shell_NotifyIconA
SHGetSpecialFolderLocation
SHGetDesktopFolder
SHFileOperationA
SHGetDiskFreeSpaceA
SHGetDesktopFolder
SHGetFolderPathA
SHGetDiskFreeSpaceA
SHGetDesktopFolder
DragQueryFileA
SHGetDiskFreeSpaceA
SHFileOperationA
Shell_NotifyIconA
SHGetDesktopFolder

msvcrt

rand
wcschr
memcpy
memset
srand
wcscspn
clock
atol
_acmdln
exit
wcscspn
memmove
rand
memcpy
time
atol
clock
mbstowcs
tolower
time
memcpy
_acmdln
memset
wcsncmp
mbstowcs
swprintf
memset
wcsncmp
exit
swprintf
atol
wcschr
_acmdln
sprintf
rand
wcscspn
malloc
srand
calloc
sqrt
mbstowcs
wcschr
exit
swprintf
time
rand
sqrt

comdlg32

GetFileTitleA
FindTextA
GetOpenFileNameA
ChooseColorA
GetSaveFileNameA
GetOpenFileNameA
GetFileTitleA
GetFileTitleA
GetSaveFileNameA

ole32

ReleaseStgMedium
CLSIDFromProgID
StringFromIID
CoGetObjectContext
CoCreateInstanceEx
PropVariantClear
CoGetMalloc
CoTaskMemFree
CLSIDFromString
OleCreateStaticFromData
CoGetContextToken
CoRevokeClassObject
CoCreateFreeThreadedMarshaler
OleRun
CoTaskMemFree
CoReleaseMarshalData
CLSIDFromString
CreateBindCtx
CoUninitialize
PropVariantClear
CoTaskMemFree
CoRegisterClassObject
CoCreateInstanceEx

shlwapi

SHGetValueA
SHQueryInfoKeyA
SHGetValueA
PathIsContentTypeA
PathGetCharTypeA
SHQueryValueExA
PathIsDirectoryA
SHDeleteValueA
SHStrDupA
PathFileExistsA
SHDeleteKeyA
SHQueryInfoKeyA
SHSetValueA
PathIsDirectoryA
PathFileExistsA
SHDeleteKeyA
PathGetCharTypeA
SHSetValueA
PathIsDirectoryA

gdi32

GetCurrentPositionEx
CreateBrushIndirect
SetBkMode
GetClipBox
CreateDIBSection
SaveDC
CreateCompatibleBitmap
GetDCOrgEx
SelectPalette
GetObjectA
CreateFontIndirectA
SetBkColor
GetBitmapBits
CreatePenIndirect
GetCurrentPositionEx
GetPixel
SelectPalette
GetDIBColorTable
GetClipBox
SetPixel
GetObjectA
GetBitmapBits
CreateCompatibleDC
LineTo
GetDCOrgEx

oleaut32

GetErrorInfo
SafeArrayGetUBound
VariantCopyInd
OleLoadPicture
SysFreeString
SafeArrayGetElement
VariantChangeType
SafeArrayGetUBound
VariantCopyInd
SafeArrayCreate
SysStringLen
SafeArrayGetUBound
SysReAllocStringLen
VariantChangeType
SysFreeString
RegisterTypeLib
OleLoadPicture
GetErrorInfo
VariantChangeType
SafeArrayPtrOfIndex

comctl32

ImageList_Write
ImageList_Draw
ImageList_Create
ImageList_DragShowNolock
ImageList_DrawEx
ImageList_Remove
ImageList_Destroy
ImageList_DragShowNolock
ImageList_Destroy
ImageList_GetBkColor
ImageList_DrawEx
ImageList_Read
ImageList_Draw
ImageList_Create
ImageList_Read
ImageList_Write
ImageList_DrawEx
ImageList_Remove
ImageList_Destroy
ImageList_DragShowNolock
ImageList_Create
ImageList_DragShowNolock
ImageList_Remove
ImageList_Draw
ImageList_Write
ImageList_Create
ImageList_DrawEx
ImageList_Draw
ImageList_Add
ImageList_Draw
ImageList_GetBkColor

user32

SetScrollPos
SetScrollInfo
GetKeyState
GetMenuItemID
GetDC
RegisterClipboardFormatA
DefMDIChildProcA
GetMenuStringA
ShowScrollBar
ReleaseCapture
SetWindowTextA
GetCapture
SetTimer
InvalidateRect
CreateIcon
LoadIconA
EndPaint
IsWindowVisible
IsDialogMessageW
GetMenu
GetKeyboardLayout
GetTopWindow
PostQuitMessage
WaitMessage
EnableMenuItem
GetKeyboardLayoutList
MapVirtualKeyA
IntersectRect
GetClassLongA
UnhookWindowsHookEx
SetActiveWindow
GetActiveWindow
GetCursor
DestroyCursor
GetSystemMetrics
IsChild
OemToCharA
AdjustWindowRectEx
CharLowerBuffA
GetKeyboardState
GetDesktopWindow
GetFocus
InsertMenuItemA
GetScrollRange
GetScrollPos
CreateMenu
SetScrollRange
GetWindowDC
CallWindowProcA
TranslateMessage
SetCursor
GetClipboardData
GetParent
DrawAnimatedRects
GetForegroundWindow
DestroyIcon
EmptyClipboard
GetMenuState
IsWindowEnabled
wsprintfA
GetDlgItem
ShowOwnedPopups
GetWindowPlacement
GetClientRect
ClientToScreen
SetParent
DefFrameProcA
GetScrollInfo
ScreenToClient
BeginPaint
FrameRect
SendMessageA
KillTimer
DrawIconEx
GetKeyboardLayoutNameA
IsZoomed
SetWindowLongW
MessageBoxA
GetKeyboardType
GetMessagePos
OffsetRect
DrawMenuBar
ScrollWindow
PtInRect
CreatePopupMenu
GetDCEx
RemoveMenu
GetWindowLongW
CloseClipboard
CharUpperBuffA
RegisterWindowMessageA
SetCapture
DispatchMessageA
GetSysColor
SetWindowPlacement
GetMenuItemInfoA
DispatchMessageW
CallNextHookEx
LoadStringA
SetPropA
GetLastActivePopup
OpenClipboard
EnumChildWindows
SetRect
ReleaseDC
SetClipboardData
GetWindowLongA
DrawFrameControl
GetSysColorBrush
GetCursorPos
SetMenu
CheckMenuItem
RedrawWindow
RegisterClassA
GetWindowTextA
GetPropA
FillRect
WindowFromPoint
ChildWindowFromPoint
UnregisterClassA
LoadKeyboardLayoutA
GetWindowRect
GetKeyState
DrawEdge
DefMDIChildProcA
SetTimer
EqualRect
SetClipboardData
CreateIcon
ShowOwnedPopups
GetKeyboardType
GetWindowPlacement
PostMessageA
SendMessageW
GetScrollPos
PtInRect
CallNextHookEx
GetCursor
DrawIconEx
GetDesktopWindow
GetSubMenu
GetKeyNameTextA
DeleteMenu
SetMenuItemInfoA
GetLastActivePopup
SetCursor
GetWindow
GetMessagePos
PostQuitMessage
EnableScrollBar
GetFocus
ChildWindowFromPoint
GetScrollInfo
IsWindow
GetTopWindow
RegisterClipboardFormatA
PeekMessageW
IsWindowEnabled
GetParent
GetSysColorBrush
DispatchMessageW
GetWindowThreadProcessId
EnumChildWindows
GetClipboardData
IsRectEmpty
SetForegroundWindow
GetWindowDC
DrawFrameControl
IsDialogMessageW
GetSystemMenu
AdjustWindowRectEx
GetKeyboardLayoutNameA
GetMenu
SetScrollPos
GetMenuItemCount
CloseClipboard
GetKeyboardState
SetScrollRange
LoadCursorA
ActivateKeyboardLayout
FindWindowA
SetFocus
SetScrollInfo
DrawMenuBar
RegisterClassA
GetMenuItemInfoA
CharLowerBuffA
LoadStringA
CharNextA
IsZoomed
CharLowerA
GetCapture
CheckMenuItem
SetWindowLongW
DrawIcon
TranslateMDISysAccel
GetKeyboardLayoutList
ScrollWindow
InvalidateRect
GetForegroundWindow
DrawTextA
EnumThreadWindows
IsWindowVisible
GetSysColor
MapVirtualKeyA
DispatchMessageA
OemToCharA
GetWindowLongW
DestroyCursor
RedrawWindow
FrameRect
GetCursorPos
MessageBoxA
GetClassInfoA
IsChild
DrawAnimatedRects
GetWindowLongA
UpdateWindow
GetDlgItem
OffsetRect
RegisterWindowMessageA
CreatePopupMenu
IsWindowUnicode
IsIconic
GetClientRect
EnableWindow
DefFrameProcA
SetRect
wsprintfA
DestroyIcon
InsertMenuA
GetWindowTextA
GetSystemMetrics
SetCapture
SetWindowLongA
OpenClipboard
GetActiveWindow
GetIconInfo
SetWindowPlacement
ShowScrollBar
RemovePropA
ClientToScreen
TrackPopupMenu
IntersectRect
SystemParametersInfoA
DestroyMenu
InsertMenuItemA
InsertMenuItemA
GetClassLongA
BeginPaint
SetClassLongA
GetIconInfo
InflateRect
PeekMessageA
GetClientRect
DrawAnimatedRects
GetMenu
EndPaint
GetSystemMetrics
ScreenToClient
GetKeyState
UnhookWindowsHookEx
SetScrollInfo
GetMenuItemCount
GetScrollPos
FrameRect
SetCursor
GetKeyboardLayout
DefMDIChildProcA
GetClipboardData
DefWindowProcA
PtInRect
GetWindow
SetWindowLongA
GetDC
IsIconic
GetKeyNameTextA
SetWindowsHookExA
ReleaseDC
TrackPopupMenu
SetWindowTextA
DrawIconEx
GetKeyboardType
ChildWindowFromPoint
WaitMessage
EnumChildWindows
DrawMenuBar
SetCapture
TranslateMDISysAccel
GetWindowPlacement
GetClassInfoA
LoadCursorA
IsZoomed
MessageBeep
CharToOemA
GetDlgItem
DispatchMessageW
EqualRect
SetMenuItemInfoA
SetClipboardData
IsDialogMessageA
GetParent
GetScrollRange
EnableWindow
IsWindow
GetFocus
SetParent
SetWindowLongW
PostQuitMessage
RedrawWindow
GetCursor
GetMenuItemID
InvalidateRect
SetActiveWindow
GetMessagePos
wsprintfA
IsWindowUnicode
GetSysColorBrush
GetWindowLongW
DestroyMenu
MapVirtualKeyA
GetSystemMenu
GetDCEx
GetCapture
GetTopWindow
GetKeyboardLayoutNameA
CharUpperBuffA
EnumWindows
ScrollWindow
GetClassNameA
CallNextHookEx
LoadStringA
GetForegroundWindow
GetActiveWindow
LoadIconA
CreateWindowExA
RemoveMenu
CloseClipboard
ShowWindow
EmptyClipboard
IsWindowVisible
EnumThreadWindows
PeekMessageW
DrawIcon
CharLowerA
CheckMenuItem
CharLowerBuffA
CreateMenu
IsRectEmpty
SetForegroundWindow
SystemParametersInfoA
GetSysColor
TranslateMessage
OffsetRect
GetWindowDC
GetWindowTextA
IsChild
LoadKeyboardLayoutA
IsDialogMessageW
ActivateKeyboardLayout
MsgWaitForMultipleObjects
DestroyWindow
SetScrollPos
SetMenu
GetPropA
GetLastActivePopup
PostMessageA
SendMessageW
SetTimer
RegisterClipboardFormatA
CharNextW
SetPropA
EnableScrollBar
CallWindowProcA

version

VerFindFileA
VerInstallFileA
VerQueryValueA
GetFileVersionInfoSizeA
VerFindFileA
VerInstallFileA
GetFileVersionInfoA
VerFindFileA
VerInstallFileA
VerFindFileA

kernel32

LoadLibraryExA
GetDiskFreeSpaceA
ExitProcess
VirtualAlloc
LocalAlloc
ExitThread
GetStartupInfoA
VirtualAllocEx
GetCurrentProcessId
GlobalAlloc
GetLocaleInfoA
Sleep
GetModuleHandleA
LoadResource
RaiseException
SetHandleCount
MoveFileA
GetStringTypeW
GetFileAttributesA
CreateEventA
SetFilePointer
GlobalAlloc
GetCurrentThread
GetDiskFreeSpaceA

advapi32

RegOpenKeyExA
RegDeleteKeyA
RegOpenKeyA
RegDeleteValueA

Sections

.text
Size: 68KB - Virtual size: 68KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 25KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 62KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 45KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

text
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

CODE
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 16KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 12KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a4f8f131cb1d03d15eef94288c2a032c

Headers

File Characteristics

Imports

shell32

msvcrt

comdlg32

ole32

shlwapi

gdi32

oleaut32

comctl32

user32

version

kernel32

advapi32

Sections

.text Size: 68KB - Virtual size: 68KB

.rdata Size: 25KB - Virtual size: 28KB

.tls Size: 62KB - Virtual size: 64KB

INIT Size: 45KB - Virtual size: 48KB

.edata Size: 512B - Virtual size: 44KB

text Size: 512B - Virtual size: 4KB

CODE Size: 512B - Virtual size: 4KB

DATA Size: 16KB - Virtual size: 20KB

.rsrc Size: 12KB - Virtual size: 16KB

.text
Size: 68KB - Virtual size: 68KB

.rdata
Size: 25KB - Virtual size: 28KB

.tls
Size: 62KB - Virtual size: 64KB

INIT
Size: 45KB - Virtual size: 48KB

.edata
Size: 512B - Virtual size: 44KB

text
Size: 512B - Virtual size: 4KB

CODE
Size: 512B - Virtual size: 4KB

DATA
Size: 16KB - Virtual size: 20KB

.rsrc
Size: 12KB - Virtual size: 16KB