2d28304f90b527c9205823b4d6431773_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2d28304f90b527c9205823b4d6431773_JaffaCakes118
Size

300KB
MD5

2d28304f90b527c9205823b4d6431773
SHA1

556ffa1ab760552763a7e21cc60eb950c05d7a94
SHA256

40ba62c979d501d660679b9c98dc0a4451046d9a88bc1c87f47b4758e207fc53
SHA512

dcbfdbfe55377fc3f4c285dd349e9cb72ad097d45924d2578443e2c7a2523ae7262a6c5cf6f1b6b34bb70bb6a0bf1222b5189cb36e5730d13e90df7173e39a06
SSDEEP

6144:J1cZmSqchhTaD5wzN5ZeoR4W08ldOChOiN1k+FSAarZLSaKSav:7cZmTcfuFS5ZeoRH0AZfDkAyddK9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2d28304f90b527c9205823b4d6431773_JaffaCakes118

Files

2d28304f90b527c9205823b4d6431773_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f0fca05ad1a4166f9326c1195d23e83c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

user32

InvalidateRect
SetRect
DestroyMenu
SetScrollPos
GetWindowPlacement
CloseClipboard
GetParent
MessageBeep
EnableMenuItem
SendMessageW
PostMessageW
GetPropA
SetCursor
IsIconic
LoadCursorW
SetRectEmpty
DefWindowProcW
GetSysColor
GetDlgCtrlID
SetWinEventHook
GetWindowTextW
DeleteMenu
GetDC
CheckMenuItem
GetMenuItemID
GetSystemMenu
EndPaint
GetDesktopWindow
DestroyIcon
SystemParametersInfoA
GetSubMenu
UpdateWindow
GetWindowLongW
CopyRect
CharUpperW
CreateWindowExW
IsDialogMessageW
SetForegroundWindow
GetMessageW
SendDlgItemMessageW
MessageBoxW
SetWindowTextW
RegisterWindowMessageA
SetDlgItemTextW
GetCursorPos
LoadStringW
GetClassInfoExW
LoadCursorA
RegisterWindowMessageW
PostQuitMessage
SetWindowLongW
RegisterClassExW
SetWindowPlacement
DestroyWindow
IsClipboardFormatAvailable
SetFocus
DrawTextExW
GetDlgItem
EnableWindow
EndDialog
PeekMessageW
WinHelpW
GetKeyState
CharNextW
wsprintfW
TranslateAcceleratorW
SetActiveWindow
LoadIconW
GetMenu
GetMenuState
CreateDialogParamW
DispatchMessageW
UnhookWinEvent
GetMessageA
GetSystemMetrics
ShowWindow
DialogBoxParamW
GetForegroundWindow
IsWindowVisible
LoadImageW
ScreenToClient
ReleaseDC
CallWindowProcA
MoveWindow
GetDlgItemTextW
SetParent
AdjustWindowRectEx
LoadAcceleratorsW
RegisterClassA
PtInRect
CharLowerW
GetClientRect
TranslateMessage
ChildWindowFromPoint
OpenClipboard
GetFocus
PostMessageA
GetKeyboardLayout

gdi32

SetAbortProc
DeleteDC
GetTextFaceW
StartPage
GetObjectW
SetBkMode
SetWindowExtEx
StartDocW
LPtoDP
EndDoc
CreateDCW
DeleteObject
GetTextExtentPoint32W
EnumFontsW
GetTextMetricsW
GetDeviceCaps
AbortDoc
SetViewportExtEx
TextOutW
SelectObject
EndPage
SetMapMode
GetStockObject
CreateFontIndirectW

kernel32

ReadFile
LocalLock
GetStringTypeW
LocalReAlloc
GetSystemDirectoryW
DeleteCriticalSection
lstrcmpW
SetEvent
GetFileType
QueryPerformanceCounter
FindResourceW
GetCurrentProcessId
FreeEnvironmentStringsW
IsDebuggerPresent
GetFileTime
SetUnhandledExceptionFilter
lstrcatW
GetTickCount
GlobalDeleteAtom
GetLastError
GlobalLock
LoadLibraryExW
VirtualAlloc
GetFileInformationByHandle
ResumeThread
GetTimeFormatW
CompareStringW
GlobalReAlloc
GlobalFree
VirtualFree
GetUserDefaultUILanguage
GetStdHandle
FreeLibrary
MulDiv
HeapFree
IsDBCSLeadByte
GetModuleFileNameW
InterlockedIncrement
LocalAlloc
GetLocalTime
CreateDirectoryA
GetCommandLineW
GetVersion
lstrcpynW
GetSystemTimeAsFileTime
GetCurrentThreadId
FindNextFileW
FreeResource
CompareFileTime
LeaveCriticalSection
FormatMessageW
VirtualProtect
UnmapViewOfFile
MapViewOfFile
GetEnvironmentStrings
GetSystemDirectoryA
GetUserDefaultLCID
GetFileSize
SetConsoleCtrlHandler
LocalSize
GetFileAttributesA
lstrlenA
GetFileAttributesW
UnhandledExceptionFilter
InitializeCriticalSection
GetModuleHandleA
DeleteFileW
TlsSetValue
GetProcessHeap
lstrcpyW
ExpandEnvironmentStringsW
lstrcmpiW
FileTimeToSystemTime
FoldStringW
SetFileAttributesA
CloseHandle
OpenMutexA
TerminateProcess
CreateFileW
GetModuleHandleW
WideCharToMultiByte
ReleaseSemaphore
SystemTimeToFileTime
InterlockedCompareExchange
FindClose
SetEndOfFile
GetOEMCP
FindFirstFileW
WaitForMultipleObjects
GetACP
WriteConsoleW
GetStartupInfoA
SetLastError
SetHandleCount
DisableThreadLibraryCalls
HeapAlloc
GetProcAddress
VirtualQuery
RaiseException
CreateFileMappingW
SetThreadPriority
HeapReAlloc
GetSystemInfo
IsProcessorFeaturePresent
lstrlenW
InitializeCriticalSectionAndSpinCount
LoadLibraryA
MultiByteToWideChar
WaitForSingleObject
TlsFree
GetDateFormatW
ExitProcess
LocalUnlock
GetCurrentProcess
InterlockedExchange
IsBadCodePtr
GetLocaleInfoW
GetFullPathNameW
WriteFile
SizeofResource
InterlockedDecrement
GetCommandLineA
SetErrorMode
GetVersionExW
LocalFree
GetTempPathW
IsBadReadPtr
GlobalUnlock
CreateFileA
LCMapStringW

advapi32

RegOpenKeyExA
RegQueryValueExA
IsTextUnicode
RegSetValueExW
RegQueryValueExW
RegCloseKey
RegCreateKeyW

msvcrt

__CxxFrameHandler
__setusermatherr
??2@YAPAXI@Z
wcsncmp
_onexit
__set_app_type
memcpy
malloc
??0exception@@QAE@XZ
_errno
time
wcsncpy
_controlfp
_XcptFilter
_snwprintf
__p__commode
localtime
_initterm
wcsstr
_cexit
exit
_adjust_fdiv
fclose
_acmdln
fflush
_wcsicmp
__getmainargs
iswctype
__p__fmode
_wtol
_exit
_c_exit

comdlg32

GetOpenFileNameW
PageSetupDlgW
GetFileTitleW
FindTextW
ChooseFontW
GetSaveFileNameW
ReplaceTextW
PrintDlgExW
CommDlgExtendedError

winspool.drv

OpenPrinterW
ClosePrinter
GetPrinterDriverW

shell32

ShellAboutW
DragFinish
DragQueryFileW
DragAcceptFiles

comctl32

CreateStatusWindowW

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 252KB - Virtual size: 434KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f0fca05ad1a4166f9326c1195d23e83c

Headers

File Characteristics

Imports

user32

gdi32

kernel32

advapi32

msvcrt

comdlg32

winspool.drv

shell32

comctl32

Sections

.text Size: 9KB - Virtual size: 9KB

.rdata Size: 34KB - Virtual size: 33KB

.idata Size: 252KB - Virtual size: 434KB

.rsrc Size: 3KB - Virtual size: 3KB

.text
Size: 9KB - Virtual size: 9KB

.rdata
Size: 34KB - Virtual size: 33KB

.idata
Size: 252KB - Virtual size: 434KB

.rsrc
Size: 3KB - Virtual size: 3KB