3144a7e5fff8c887469e833ecc260e3b_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

3144a7e5fff8c887469e833ecc260e3b_JaffaCakes118
Size

391KB
MD5

3144a7e5fff8c887469e833ecc260e3b
SHA1

759d34c5c57f56918bb784b8750dd1a84533f584
SHA256

015f14f0076f308ea0a57bcb25ef3a39ed8614541afe7d57c51934f2f96a067e
SHA512

4d495c6e55a9e22429b28ac85414bfc57256b5e1fa392c854f4b9660d9f557a7f5fa7fdb5e8503f02fbbd26f9da5732fb3fd336f5ee5323c973fa2743d1fa518
SSDEEP

6144:DSL9zP2pvXadDtpxQrjjMzghg6OE38i1qsKj64yYq:DShKi7xQ7Mz6/pkj64

Score

1^/10

Malware Config

Signatures

Files

3144a7e5fff8c887469e833ecc260e3b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9779c13f4ed8d373db458ce355fb476a

Code Sign

3a:db:3d:b1:a9:03:4e:45:b8:41:47:0b:ed:13:f0:d1
Certificate

Issuer

CN=7Tltl41ROBKK

Not Before

17-03-2012 06:09

Not After

31-12-2039 23:59

Subject

CN=7Tltl41ROBKK

Extended Key Usages

ExtKeyUsageCodeSigning

74:e0:56:db:33:c6:cd:0d:bd:f0:66:31:18:ba:88:68:09:44:fb:e3
Signer

Actual PE Digest

74:e0:56:db:33:c6:cd:0d:bd:f0:66:31:18:ba:88:68:09:44:fb:e3

Digest Algorithm

sha1

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GetProcAddress
GetLogicalDriveStringsA
LoadLibraryW
lstrcpyA
DeleteTimerQueueTimer
GetConsoleDisplayMode
GlobalMemoryStatus
GetOverlappedResult
WriteProfileStringA
SleepEx
SearchPathA
VirtualLock
RequestDeviceWakeup
GetWindowsDirectoryW
GetNamedPipeHandleStateA
ReadConsoleW
GetThreadSelectorEntry
LocalUnlock
GetConsoleTitleW
lstrcpy
ConnectNamedPipe
EnumUILanguagesA
SetConsoleCursor
WideCharToMultiByte
GetWriteWatch
GetDiskFreeSpaceExA
GetComputerNameExW
FindNextChangeNotification
GetSystemPowerStatus
CallNamedPipeW
ReadFileEx
CreateProcessA
GetFileAttributesExA
SetEndOfFile
DuplicateHandle
Process32FirstW
FillConsoleOutputCharacterA
WriteProcessMemory
lstrcpynW
ResetWriteWatch
WritePrivateProfileSectionW
GetVolumeNameForVolumeMountPointW
FindResourceExW
GetPrivateProfileSectionA
SetFileApisToANSI
GetSystemTime
LocalAlloc
GetConsoleAliasExesA
GetConsoleTitleA
ExitThread
GetConsoleAliasesLengthW
GetCommandLineA
GetConsoleAliasExesLengthW
_hwrite
LoadLibraryExW
SetPriorityClass
lstrlenW
SetProcessWorkingSetSize
FoldStringW
Thread32Next
OpenMutexA
IsBadCodePtr
IsBadWritePtr
DeviceIoControl
SetLocaleInfoA
GetCommandLineW
GetOEMCP
OpenThread
UnmapViewOfFile
WriteConsoleOutputA
SetThreadIdealProcessor
WritePrivateProfileStringA
SetTapeParameters
lstrcmpi
GetComputerNameA
EnumTimeFormatsA
GetThreadPriorityBoost
DnsHostnameToComputerNameW
GetPrivateProfileIntW
GetTapeStatus
GetSystemDefaultUILanguage
TransmitCommChar
CallNamedPipeA
InitializeCriticalSection
GetFileInformationByHandle
BackupSeek
LocalSize
CopyFileW
FileTimeToLocalFileTime
SetCommMask
SetTimerQueueTimer
QueryPerformanceFrequency
SetVolumeLabelA
GlobalUnfix
SetThreadAffinityMask
GetProcessHeap
GetWindowsDirectoryA
GetLocalTime
SetConsoleCP
GetConsoleOutputCP
Module32NextW
GetStringTypeA
DisableThreadLibraryCalls
SetCurrentDirectoryA
EraseTape
CreateNamedPipeA
CreateHardLinkA
GetVersionExA
WriteConsoleA
GetModuleFileNameW
LocalShrink
CreateFileA
CreateConsoleScreenBuffer
HeapDestroy
TransactNamedPipe
RtlZeroMemory
CancelIo
GetCompressedFileSizeA
VerifyVersionInfoW
EnumDateFormatsW
ReplaceFileA
RtlMoveMemory
HeapFree
FindFirstChangeNotificationA
GlobalFindAtomW
LCMapStringW
GetCurrencyFormatA
OpenEventA
GetFileAttributesW
Process32NextW
EnumDateFormatsA
SetHandleInformation
DefineDosDeviceA
InitAtomTable
WaitForMultipleObjectsEx
SetCommConfig
Sleep
WriteConsoleOutputAttribute
IsBadReadPtr
ReadFile
BackupWrite
SetEnvironmentVariableW
FindResourceW
WriteFileGather
EnumSystemCodePagesA
GetCurrentThread
GetProfileStringW
GetTimeFormatW
OpenSemaphoreA
DosDateTimeToFileTime
GetExitCodeThread
HeapUnlock
GetPrivateProfileStructW
IsBadStringPtrW
IsSystemResumeAutomatic
GetProcessAffinityMask
SetConsoleCursorInfo
GlobalUnlock
GetConsoleMode
SetNamedPipeHandleState
FormatMessageA
SetDefaultCommConfigW
LockFile
SizeofResource
VerSetConditionMask
EndUpdateResourceW
GetFileSizeEx
IsValidLanguageGroup
CreateMutexA
QueryInformationJobObject
FindFirstVolumeW
GetFileSize
AddConsoleAliasW
Process32First
SetConsoleWindowInfo
AddAtomA
SetTimeZoneInformation
CreateJobObjectW
GetNumberOfConsoleInputEvents
BuildCommDCBW
MapViewOfFileEx
GetDateFormatA
CancelTimerQueueTimer
DeleteVolumeMountPointA
SetSystemPowerState
EnumSystemLocalesA
CreateFileMappingA
GetCalendarInfoA
GetStringTypeExW
GlobalGetAtomNameA
TerminateJobObject
FindNextVolumeMountPointA
CreateEventA
AllocateUserPhysicalPages
FindAtomA
GetDevicePowerState
GetBinaryType
IsProcessorFeaturePresent
PostQueuedCompletionStatus
GetHandleInformation
VirtualProtectEx
GlobalSize
VerLanguageNameA
GetCommMask
FlushInstructionCache
FindNextVolumeA
GetCurrentDirectoryA
CreateMailslotA
GetStringTypeW
GetDriveTypeA
GetLargestConsoleWindowSize
SwitchToThread
DisconnectNamedPipe
GetAtomNameA
FindFirstVolumeMountPointA
AssignProcessToJobObject
HeapCompact
GetDiskFreeSpaceW
SetComputerNameA
GetUserDefaultLCID
ResumeThread
EnumResourceTypesW
DefineDosDeviceW
CommConfigDialogA
ConvertDefaultLocale
SearchPathW
MultiByteToWideChar
GetVolumeInformationW
TryEnterCriticalSection
SystemTimeToTzSpecificLocalTime
GetBinaryTypeA
PulseEvent
GlobalDeleteAtom
CreateTapePartition
lstrcmpiW
SetErrorMode
GetModuleHandleW
ReadConsoleOutputAttribute
CreateMutexW
ExpandEnvironmentStringsW
InterlockedIncrement
GetProcessHeaps
PeekNamedPipe
SetHandleCount

gdi32

PlayMetaFile
GetRandomRgn
DrawEscape
GdiGetPageHandle
SetMapperFlags
DeleteDC
GdiIsMetaPrintDC
SetDIBColorTable
SetBkColor
SetBrushOrgEx
XLATEOBJ_iXlate
GetRasterizerCaps
LineTo
FillRgn
GdiSetServerAttr
GetEnhMetaFileBits
CopyMetaFileW
GdiGetBatchLimit
SetWorldTransform
OffsetViewportOrgEx
ExtCreateRegion
SetPaletteEntries
GetClipBox
cGetTTFFromFOT
RectInRegion
GetViewportOrgEx
GetStringBitmapA
GdiQueryTable
Arc
CreateDiscardableBitmap
GdiConsoleTextOut
GetMetaFileBitsEx
GetCharWidthW
EngAssociateSurface
FONTOBJ_vGetInfo
FONTOBJ_pfdg
GetGlyphOutlineW
CopyEnhMetaFileA
SelectClipPath
StretchDIBits
GetTextColor
GdiResetDCEMF
FONTOBJ_pvTrueTypeFontFile
GdiCreateLocalMetaFilePict
ExtCreatePen
ExtFloodFill
GdiConvertBitmapV5
EudcUnloadLinkW
PATHOBJ_bEnum
GdiConvertBrush
GetPixelFormat
ModifyWorldTransform
EngLockSurface
SetStretchBltMode
GdiPlayDCScript
CreatePolygonRgn
GetBkMode
CreateHalftonePalette
GetTextExtentPoint32W
GetCharWidthFloatW
GdiConvertToDevmodeW
EngFreeModule
SetPixel
GdiSetPixelFormat
CreateDCW
AbortDoc
GetGlyphOutlineA
GetStockObject
RemoveFontResourceExA
CreateEnhMetaFileA
CreateICW
GetLogColorSpaceW
TranslateCharsetInfo
PolyTextOutA
EngCreatePalette
CreateFontA
FlattenPath
GdiArtificialDecrementDriver
EngUnlockSurface
CreateFontIndirectExW
NamedEscape
CreateScalableFontResourceA
ChoosePixelFormat
PatBlt
GdiInitSpool
GetGlyphIndicesA
CreateEllipticRgn
GetWorldTransform
SetICMProfileA
ExtTextOutW
GetGlyphIndicesW
PaintRgn
BRUSHOBJ_ulGetBrushColor
GetEUDCTimeStampExW
UpdateICMRegKeyA
CLIPOBJ_ppoGetPath
GdiEntry6
GetTextMetricsA
BitBlt
GetStringBitmapW
GdiFixUpHandle
EngGradientFill
EnumEnhMetaFile
GetMetaFileA
FontIsLinked
RealizePalette
GetLayout
SetRelAbs
GetBoundsRect
EngStretchBltROP
GdiAlphaBlend
CreateSolidBrush
GdiEntry13
RemoveFontResourceTracking
FillPath
PATHOBJ_vGetBounds
PolyPolyline
GdiEntry3
CopyEnhMetaFileW
GdiAddFontResourceW
SetROP2
GetNearestColor
GetPaletteEntries
GetEnhMetaFileDescriptionA
GetMiterLimit
GdiConvertPalette
FONTOBJ_pQueryGlyphAttrs
SetBitmapDimensionEx
AnimatePalette
GetMetaRgn
GetCharABCWidthsW
GdiEntry12
GetOutlineTextMetricsW
FONTOBJ_pifi
GdiConvertRegion
GdiEntry14
CreatePatternBrush
SetLayoutWidth
RemoveFontResourceA
GdiGetDC
RemoveFontResourceW
EqualRgn
UnrealizeObject
GdiSetAttrs
PolyDraw
EngEraseSurface
CreateColorSpaceW
SetDeviceGammaRamp
EngCheckAbort
GdiDeleteLocalDC
GetTextExtentExPointW
EngAlphaBlend
GetTextExtentExPointWPri
PathToRegion
GetEUDCTimeStamp
CreatePalette
bMakePathNameW
SetICMProfileW
GetDCOrgEx
GdiEntry16
GetSystemPaletteEntries
SelectObject
FONTOBJ_cGetAllGlyphHandles
DeleteObject
PolyBezier
GdiGetCharDimensions
IntersectClipRect
EngGetCurrentCodePage
GetObjectW
GetStretchBltMode
AddFontResourceExW
EndPage
RoundRect
SetMetaRgn
SaveDC
SelectClipRgn
CreatePenIndirect
CreateFontW
EngMarkBandingSurface
GetNearestPaletteIndex
EngCreateSemaphore
EnumICMProfilesA
XLATEOBJ_cGetPalette
SetTextColor
InvertRgn
GetAspectRatioFilterEx
PolylineTo
HT_Get8BPPMaskPalette
GetTextExtentPointW
GetGlyphOutline
DeviceCapabilitiesExW
SetFontEnumeration
RemoveFontMemResourceEx
SetMagicColors
PlayEnhMetaFile
Pie
GdiEntry7
GetTextExtentExPointA
GetETM
SetColorSpace
GdiStartPageEMF
EngStrokeAndFillPath
StartPage
StartDocA
GetTextCharset
UnloadNetworkFonts
GetRelAbs
GetViewportExtEx
GdiEntry2
GetKerningPairs
EngWideCharToMultiByte
GetEnhMetaFilePaletteEntries
PlayEnhMetaFileRecord
GdiGetLocalFont
EngTextOut
EnumFontFamiliesA
GdiConvertBitmap
EngFillPath
GetCurrentPositionEx
PlayMetaFileRecord
XLATEOBJ_piVector
GdiConvertEnhMetaFile
EngPlgBlt
Chord
GdiGetCodePage
SwapBuffers
SetWindowExtEx
PolyPolygon
GetWinMetaFileBits
PolyPatBlt
SetWindowOrgEx
EngCreateClip
GetEnhMetaFileW
EudcLoadLinkW

Sections

.text
Size: 366KB - Virtual size: 365KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text4
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text3
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text2
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9779c13f4ed8d373db458ce355fb476a

Code Sign

3a:db:3d:b1:a9:03:4e:45:b8:41:47:0b:ed:13:f0:d1Certificate

Extended Key Usages

74:e0:56:db:33:c6:cd:0d:bd:f0:66:31:18:ba:88:68:09:44:fb:e3Signer

Headers

File Characteristics

Imports

kernel32

gdi32

Sections

.text Size: 366KB - Virtual size: 365KB

.text4 Size: 1024B - Virtual size: 1000B

.text3 Size: 1024B - Virtual size: 1000B

.text2 Size: 2KB - Virtual size: 2KB

.data Size: 13KB - Virtual size: 13KB

.rsrc Size: 2KB - Virtual size: 2KB

.reloc Size: 2KB - Virtual size: 2KB

3a:db:3d:b1:a9:03:4e:45:b8:41:47:0b:ed:13:f0:d1
Certificate

74:e0:56:db:33:c6:cd:0d:bd:f0:66:31:18:ba:88:68:09:44:fb:e3
Signer

.text
Size: 366KB - Virtual size: 365KB

.text4
Size: 1024B - Virtual size: 1000B

.text3
Size: 1024B - Virtual size: 1000B

.text2
Size: 2KB - Virtual size: 2KB

.data
Size: 13KB - Virtual size: 13KB

.rsrc
Size: 2KB - Virtual size: 2KB

.reloc
Size: 2KB - Virtual size: 2KB