2f6bcd4714a9f355eb2f180df43901b0_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

2f6bcd4714a9f355eb2f180df43901b0_JaffaCakes118
Size

416KB
MD5

2f6bcd4714a9f355eb2f180df43901b0
SHA1

f57a312e16727253fb295eaca2d10e45af0637d8
SHA256

ac35704aac96d6c3f24f7e5e2ac8dbae43135b9e6e18116dce3beeafcd2d8ce8
SHA512

31e82bb09bde1cb992b8f53381e74caca4612fc3643f156a3075d8c09a2acaef6e2685d40368e58434f9c73edaf3d7be2d5a050c79f79acecd575d43916e9bb3
SSDEEP

6144:m/GzBKRBM7s3mRr+ol8B55sc+IDpKo/AAODMQ7Mp4ZlJAKEI/q5Dj8QJIF7:LbwWRS5sc+ID9NODMQ7XJAK4NJIF7

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2f6bcd4714a9f355eb2f180df43901b0_JaffaCakes118

Files

2f6bcd4714a9f355eb2f180df43901b0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

63891b14c9e835ce68f40823373fe185

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetStringTypeExA
GetFileSize
DeleteFileA
MoveFileA
GetShortPathNameA
LocalFileTimeToFileTime
GetDriveTypeA
RtlUnwind
SystemTimeToFileTime
HeapAlloc
SetErrorMode
SetEndOfFile
GetLocalTime
GetStartupInfoA
GetCommandLineA
HeapFree
GetACP
RaiseException
UnlockFile
HeapReAlloc
HeapDestroy
SetFilePointer
GetSystemTime
GetTimeZoneInformation
ExitProcess
LCMapStringA
LCMapStringW
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
HeapSize
DeleteCriticalSection
GetStringTypeW
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
LockFile
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
FlushFileBuffers
CreateFileA
WriteFile
ReadFile
GetOEMCP
DuplicateHandle
GetProcessVersion
GetCPInfo
GlobalFlags
GetDiskFreeSpaceA
GetThreadLocale
GetLastError
GetFullPathNameA
GetFileTime
SetFileTime
LocalReAlloc
GetFileAttributesA
TlsGetValue
GlobalReAlloc
TlsSetValue
EnterCriticalSection
GlobalHandle
LeaveCriticalSection
TlsFree
HeapCreate
TlsAlloc
GetProcAddress
GetProfileStringA
WriteProfileStringA
GetVolumeInformationA
GetTickCount
_llseek
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
lstrcatA
lstrlenA
GetWindowsDirectoryA
GetSystemDirectoryA
lstrcpyA
GetTempPathA
GetTempFileNameA
GetModuleFileNameA
_lopen
_lread
GetCurrentProcess
TerminateProcess
SetFileAttributesA
CopyFileA
_lcreat
_lwrite
InitializeCriticalSection
LocalAlloc
GlobalAlloc
GetCurrentThread
GlobalFree
GlobalLock
GlobalUnlock
MulDiv
SetLastError
FindResourceA
LoadResource
LockResource
GetVersion
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
GetModuleHandleA
FileTimeToLocalFileTime
FileTimeToSystemTime
lstrlenW
GetCurrentThreadId
FormatMessageA
LocalFree
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
RemoveDirectoryA
GetCurrentDirectoryA
SetCurrentDirectoryA
CreateDirectoryA
WinExec
OpenMutexA
CloseHandle
CreateMutexA
Sleep
ReleaseMutex
MultiByteToWideChar
FindFirstFileA
FindNextFileA
FindClose
lstrcpynA
lstrcmpA
lstrcmpiA
OutputDebugStringA
LoadLibraryA
FreeLibrary
GetFileType
GetStringTypeA
VirtualFree
VirtualAlloc
IsBadWritePtr
_lclose

user32

KillTimer
WindowFromPoint
UnionRect
InflateRect
RegisterClipboardFormatA
LoadStringA
SetTimer
GetSysColorBrush
DestroyIcon
CharUpperA
GetDCEx
LockWindowUpdate
SetCapture
PostThreadMessageA
SetParent
TranslateAcceleratorA
LoadAcceleratorsA
IsRectEmpty
FindWindowA
GetDesktopWindow
SetRect
CopyAcceleratorTableA
MapDialogRect
SetWindowContextHelpId
GetNextDlgGroupItem
SetCursor
ShowOwnedPopups
PostQuitMessage
MoveWindow
SetWindowTextA
IsDialogMessageA
EndDialog
CreateDialogIndirectParamA
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
ClientToScreen
SendDlgItemMessageA
MapWindowPoints
GetSysColor
SetActiveWindow
ScreenToClient
EqualRect
DeferWindowPos
CharNextA
PtInRect
EndDeferWindowPos
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
IsChild
GetCapture
WinHelpA
GetClassInfoA
RegisterClassA
GetMenuItemCount
GetSubMenu
ReleaseCapture
TrackPopupMenu
GetDlgItem
GetWindowTextLengthA
GetWindowTextA
DefWindowProcA
GetClassLongA
SetPropA
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetForegroundWindow
GetWindow
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
IntersectRect
SystemParametersInfoA
GetWindowPlacement
OffsetRect
IsZoomed
SetRectEmpty
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
wsprintfA
UnhookWindowsHookEx
AdjustWindowRectEx
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
CallNextHookEx
ValidateRect
PeekMessageA
SetWindowsHookExA
GetLastActivePopup
IsWindowEnabled
GetWindowLongA
LoadImageA
UnpackDDElParam
ReuseDDElParam
LoadMenuA
DestroyMenu
CopyRect
BeginDeferWindowPos
GetMenuItemID
FindWindowExA
IsWindowVisible
ShowWindow
BringWindowToTop
SetForegroundWindow
LoadCursorA
GetClassNameA
LoadIconA
IsClipboardFormatAvailable
IsIconic
OpenClipboard
EmptyClipboard
CloseClipboard
ChangeClipboardChain
SetClipboardViewer
GetMenu
SetMenuItemInfoA
GetDlgCtrlID
CreatePopupMenu
AppendMenuA
GetCursorPos
InvalidateRect
GetKeyState
GetClientRect
SetMenu
MessageBeep
PostMessageA
MessageBoxA
EnableWindow
CreateWindowExA
UpdateWindow
GetParent
DestroyWindow
SendMessageA
GetSystemMetrics
IsWindow
GetWindowRect
SetWindowPlacement
SetFocus
UnregisterClassA

gdi32

DeleteObject
CreateRectRgn
GetDeviceCaps
GetViewportExtEx
GetWindowExtEx
CreatePatternBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
DPtoLP
LPtoDP
GetTextColor
GetBkColor
StretchDIBits
CreateCompatibleBitmap
GetCharWidthA
CreateFontA
GetMapMode
PatBlt
SetRectRgn
CombineRgn
CreateRectRgnIndirect
CreateFontIndirectA
IntersectClipRect
ExcludeClipRect
SelectClipRgn
ScaleWindowExtEx
SetViewportExtEx
OffsetViewportOrgEx
ScaleViewportExtEx
SetMapMode
SetViewportOrgEx
GetStockObject
RestoreDC
DeleteDC
SaveDC
SetTextColor
GetClipBox
SetBkColor
SelectObject
CreateBitmap
BitBlt
GetObjectA
CreateCompatibleDC
GetTextMetricsA
SetWindowExtEx
GetTextExtentPoint32A

comdlg32

CommDlgExtendedError
GetOpenFileNameA
PrintDlgA
GetFileTitleA
GetSaveFileNameA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegQueryValueA
RegCloseKey
RegOpenKeyA
SetFileSecurityA
GetFileSecurityA
RegQueryValueExA
RegOpenKeyExA
RegCreateKeyExA
RegSetValueExA
RegCreateKeyA
RegSetValueA

shell32

SHGetFileInfoA
ExtractIconA
DragQueryFileA
DragFinish
ShellExecuteA

comctl32

ord17

oledlg

ord8

ole32

CoFreeUnusedLibraries
OleUninitialize
CoRegisterMessageFilter
CoRevokeClassObject
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoCreateInstance
OleIsCurrentClipboard
OleFlushClipboard
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
OleInitialize
CoTaskMemAlloc
CoTaskMemFree

olepro32

ord253

oleaut32

SysStringLen
SafeArrayUnaccessData
VariantChangeType
SysAllocStringByteLen
VariantCopy
SafeArrayGetDim
SafeArrayGetElemsize
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayAccessData
VariantInit
VariantTimeToSystemTime
SysAllocStringLen
SysFreeString
SafeArrayCreate
SysAllocString
VariantClear
SafeArrayDestroy
SafeArrayPutElement

wininet

DeleteUrlCacheEntry

Exports

Exports

?interfaceMap@CCustomControlSite@@1UAFX_INTERFACEMAP@@B
AEB_HostGetFunc

Sections

.rdata
Size: 72KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 322KB - Virtual size: 1.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

63891b14c9e835ce68f40823373fe185

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

wininet

Exports

Exports

Sections

.rdata Size: 72KB - Virtual size: 71KB

.data Size: 322KB - Virtual size: 1.6MB

.rsrc Size: 3KB - Virtual size: 2KB

.rdata
Size: 72KB - Virtual size: 71KB

.data
Size: 322KB - Virtual size: 1.6MB

.rsrc
Size: 3KB - Virtual size: 2KB