2d29e51e87cb0ec21af5dd9d9e085b4e_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

2d29e51e87cb0ec21af5dd9d9e085b4e_JaffaCakes118
Size

1.2MB
MD5

2d29e51e87cb0ec21af5dd9d9e085b4e
SHA1

4acdc2d30e398e1f166768f9924437392fca2fc0
SHA256

ebc6e96389f91bdc1e797b25529da0fab683390ab652345e41a996cbab3bfc02
SHA512

713f38ef057f26df48d9ff0734bee0d1ba31c3fc44b972e3b3e0e513616952a3093b73b7f9a824dac418193e2d73be98d8c0259706442e1871a24b35d3b14477
SSDEEP

24576:PCVb2r6kSVQa/fkHts9Iec24/psBreyx98:PuC7SFkH4qiBSO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2d29e51e87cb0ec21af5dd9d9e085b4e_JaffaCakes118

Files

2d29e51e87cb0ec21af5dd9d9e085b4e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e71e05ae0f51cf1c7626e59674e96be5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LCMapStringW
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
LCMapStringA
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetStdHandle
SetHandleCount
SetUnhandledExceptionFilter
IsBadWritePtr
VirtualAlloc
GetProfileStringA
InterlockedExchange
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
GetLastError
GetFileType
SetStdHandle
GetACP
GetStartupInfoA
HeapSize
HeapReAlloc
ExitThread
CreateThread
TerminateProcess
RaiseException
HeapFree
HeapAlloc
GetSystemTime
GetTimeZoneInformation
RtlUnwind
SetErrorMode
GlobalSize
GetOEMCP
GetCPInfo
GetProcessVersion
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
GlobalFlags
lstrcmpA
GetCurrentThread
GetProfileIntA
GetFullPathNameA
GetVolumeInformationA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
DuplicateHandle
ResumeThread
lstrlenW
GetThreadLocale
LocalFree
LoadLibraryA
FreeLibrary
GetVersion
lstrcatA
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcpyA
GetProcAddress
SetLastError
InterlockedIncrement
GetFileTime
lstrcpynA
GetCommandLineA
lstrlenA
WideCharToMultiByte
lstrcmpiA
FormatMessageA
GetCurrentProcess
QueryPerformanceFrequency
QueryPerformanceCounter
FileTimeToLocalFileTime
FileTimeToSystemTime
LocalAlloc
GetLocalTime
CreateMutexA
GetVersionExA
WaitForSingleObject
CopyFileA
CreateProcessA
GetSystemDirectoryA
SetThreadPriority
GetTickCount
ExitProcess
GlobalFree
MultiByteToWideChar
WritePrivateProfileStringA
GetPrivateProfileStringA
GetModuleHandleA
GetModuleFileNameA
SetCurrentDirectoryA
GlobalAlloc
GlobalLock
GlobalUnlock
SetFilePointer
GetFileSize
ReadDirectoryChangesW
EnterCriticalSection
LeaveCriticalSection
CreateDirectoryA
FindFirstFileA
FindNextFileA
FindClose
GetDiskFreeSpaceExA
DeleteCriticalSection
InitializeCriticalSection
FindResourceA
LoadResource
LockResource
SizeofResource
WriteFile
CreateFileA
ReadFile
CloseHandle
GetFileAttributesA
MulDiv
Sleep
DeleteFileA
InterlockedDecrement

user32

IsClipboardFormatAvailable
IsRectEmpty
CharUpperA
GetMessageA
ValidateRect
DestroyMenu
CharNextA
EndDialog
GetActiveWindow
CreateDialogIndirectParamA
GetMenuCheckMarkDimensions
GetMenuState
SetMenuItemBitmaps
CheckMenuItem
GetNextDlgTabItem
IsWindowEnabled
MoveWindow
SetWindowTextA
IsDialogMessageA
SendDlgItemMessageA
MapWindowPoints
IsWindow
SetFocus
AdjustWindowRectEx
ScrollWindow
GetScrollInfo
SetScrollInfo
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
MessageBoxA
IsChild
GetCapture
WinHelpA
GetClassInfoA
RegisterClassA
GetMenu
GetDlgItem
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
DestroyWindow
CreateWindowExA
PostQuitMessage
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
RemovePropA
GetMessageTime
GetMessagePos
GetForegroundWindow
GetWindow
SetWindowPos
RegisterWindowMessageA
IntersectRect
SystemParametersInfoA
GetWindowPlacement
EndPaint
BeginPaint
GetWindowDC
OffsetRect
InflateRect
GetClientRect
ScreenToClient
SendMessageA
UnregisterClassA
HideCaret
ExcludeUpdateRgn
DefDlgProcA
IsWindowUnicode
ReleaseDC
PtInRect
GetDesktopWindow
GetFocus
IsIconic
GetSystemMetrics
DrawIcon
GetSystemMenu
ShowWindow
ReleaseCapture
SetCapture
SetCursorPos
MonitorFromWindow
MonitorFromRect
GetMonitorInfoA
wsprintfA
PeekMessageA
DispatchMessageA
TranslateMessage
FindWindowA
SetCursor
UpdateWindow
GetClassInfoExA
DefWindowProcA
RegisterClassExA
OpenClipboard
EmptyClipboard
SetWindowContextHelpId
MapDialogRect
LoadStringA
GetClassNameA
GetSysColorBrush
CopyAcceleratorTableA
SetWindowsHookExA
SetClipboardData
RegisterClipboardFormatA
CloseClipboard
GetPropA
CallWindowProcA
GetMenuItemInfoA
GetMenuItemID
SetMenuItemInfoA
FillRect
CreatePopupMenu
TrackPopupMenu
GrayStringA
TabbedTextOutA
DestroyIcon
MessageBoxExA
GetLastActivePopup
GetNextDlgGroupItem
GetDC
GetParent
GetWindowRect
InvalidateRect
EnableWindow
DrawFocusRect
SetRect
SetWindowRgn
LoadBitmapA
SetTimer
KillTimer
CopyRect
LoadCursorA
SetForegroundWindow
SetWindowLongA
GetWindowLongA
ShowScrollBar
IsWindowVisible
LoadMenuA
GetSubMenu
ModifyMenuA
WaitForInputIdle
SetActiveWindow
PostMessageA
GetSysColor
GetMenuItemCount
DeleteMenu
EnableMenuItem
ClientToScreen
LoadIconA
GetKeyState
AppendMenuA
GetMenuStringA
GetCursorPos
mouse_event
DrawTextA
MessageBeep
PostThreadMessageA
ShowCaret

gdi32

GetWindowExtEx
PatBlt
GetTextColor
GetViewportExtEx
CopyMetaFileA
IntersectClipRect
GetClipBox
ScaleWindowExtEx
SetWindowExtEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetROP2
SetBkColor
GetStockObject
RestoreDC
SaveDC
DeleteDC
CreateRoundRectRgn
CreateFontIndirectA
MoveToEx
LineTo
SetBkMode
SetTextColor
StretchBlt
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
LPtoDP
GetMapMode
DPtoLP
GetBitmapBits
CreateBitmap
GetDeviceCaps
GetSystemPaletteEntries
CreatePalette
SelectPalette
RealizePalette
SetStretchBltMode
SetDIBitsToDevice
CreateRectRgnIndirect
SetRectRgn
Rectangle
GetBkColor
GetTextExtentPoint32A
SelectObject
GetPixel
CreateRectRgn
CombineRgn
DeleteObject
GetObjectA
CreateCompatibleBitmap
CreateCompatibleDC
SelectClipRgn
GetTextExtentPointA
CreateDIBitmap
CreateSolidBrush
CreatePen
BitBlt
RoundRect

comdlg32

GetFileTitleA

winspool.drv

DocumentPropertiesA
OpenPrinterA
ClosePrinter

advapi32

RegCreateKeyExA
RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegSetValueExA

shell32

Shell_NotifyIconA
DragQueryFileA
SHFileOperationA
ShellExecuteExA
SHGetDesktopFolder
SHGetSpecialFolderLocation
SHGetPathFromIDListA
SHGetFileInfoA
ShellExecuteA

comctl32

ImageList_Draw
_TrackMouseEvent
ImageList_AddMasked
ImageList_ReplaceIcon
ImageList_Remove
ord17
ImageList_Destroy
ImageList_Create

oledlg

ord8

ole32

CoInitialize
CoUninitialize
RegisterDragDrop
CoLockObjectExternal
RevokeDragDrop
DoDragDrop
OleFlushClipboard
OleIsCurrentClipboard
OleGetClipboard
CLSIDFromProgID
CLSIDFromString
OleSetClipboard
OleDuplicateData
OleInitialize
OleUninitialize
CoGetClassObject
CoFreeUnusedLibraries
CoRegisterMessageFilter
CoRevokeClassObject
ReleaseStgMedium
CoTaskMemAlloc
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
CreateStreamOnHGlobal
CoTaskMemFree
StgOpenStorageOnILockBytes

olepro32

ord253

oleaut32

SysStringLen
SysFreeString
SafeArrayUnaccessData
SafeArrayAccessData
VariantClear
SafeArrayCreateVector
SysAllocString
SysAllocStringLen
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayGetElemsize
SafeArrayGetDim
SafeArrayCreate
VariantCopy
SysAllocStringByteLen
VariantChangeType
VariantTimeToSystemTime

ws2_32

gethostbyname
recv
send
closesocket
inet_ntoa
setsockopt
shutdown
WSAStartup
WSACleanup
inet_addr
bind
htons
connect
select
__WSAFDIsSet
ioctlsocket
socket

wininet

InternetQueryOptionA
InternetOpenA
InternetCrackUrlA
InternetCanonicalizeUrlA
InternetGetLastResponseInfoA
InternetQueryDataAvailable
InternetReadFile
InternetWriteFile
InternetSetFilePointer
InternetOpenUrlA
InternetSetStatusCallback
InternetCloseHandle

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

Sections

.text
Size: 772KB - Virtual size: 770KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 136KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 194KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 328KB - Virtual size: 324KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e71e05ae0f51cf1c7626e59674e96be5

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

ws2_32

wininet

version

Sections

.text Size: 772KB - Virtual size: 770KB

.rdata Size: 136KB - Virtual size: 132KB

.data Size: 40KB - Virtual size: 194KB

.rsrc Size: 328KB - Virtual size: 324KB

.text
Size: 772KB - Virtual size: 770KB

.rdata
Size: 136KB - Virtual size: 132KB

.data
Size: 40KB - Virtual size: 194KB

.rsrc
Size: 328KB - Virtual size: 324KB