3168b19a2d5c659927fc2b27b8541052_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3168b19a2d5c659927fc2b27b8541052_JaffaCakes118
Size

469KB
MD5

3168b19a2d5c659927fc2b27b8541052
SHA1

fbd47453090020f85360300947789b4111ee4db8
SHA256

4410db25e2b51ff5c1cd64296e2fa5c4a9e536722b2e80b69036f1be1bdc2739
SHA512

74610d94b3ddbb9de582e789dd690c20c29941c12750740a17643c3fe3f6724c770cdc7af7a0c735067c8554907fc54b273d004b66b464c4536d4cba31178343
SSDEEP

12288:FTqfFG6AOifU/jqY6ui0PrS/v89YV31gEvK:eB6u1Pr7YV31/v

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3168b19a2d5c659927fc2b27b8541052_JaffaCakes118

Files

3168b19a2d5c659927fc2b27b8541052_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8764d3bc07393dd309108acf01a7cbc7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx
CreateToolbarEx
ord6
ord17
PropertySheetA

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

kernel32

GetTimeFormatA
GetDateFormatA
GetCurrentDirectoryA
GetSystemTime
SetFilePointer
GetProcAddress
lstrcpynA
SetCurrentDirectoryA
WinExec
ClearCommError
InterlockedDecrement
FormatMessageA
LocalSize
GetFileAttributesA
GetFullPathNameA
LoadLibraryA
FindNextFileA
LoadResource
FindResourceA
EscapeCommFunction
GetCommModemStatus
PurgeComm
PeekNamedPipe
GetCommTimeouts
SetFileTime
DosDateTimeToFileTime
GetTimeZoneInformation
WriteFile
GetLastError
WaitForSingleObject
GetOverlappedResult
ResetEvent
FlushFileBuffers
SetLastError
FileTimeToDosDateTime
DeleteFileA
GetTempPathA
GlobalReAlloc
GetProfileStringA
LocalUnlock
LocalLock
GetFileSize
LocalAlloc
LocalFree
FindFirstFileA
GetVersionExA
lstrcmpiA
FreeResource
FindClose
lstrlenA
ExitProcess
GetModuleFileNameA
GetModuleHandleA
lstrcmpA
FreeLibrary
lstrcpyA
_lread
lstrcatA
_lwrite
GlobalAlloc
OpenFile
_llseek
GlobalFree
GlobalLock
GlobalUnlock
GetCommMask
_lclose
TransmitCommChar
CreateFileA
CloseHandle
SetCommTimeouts
SetCommState
SetupComm
GetCommState
GetLocalTime
SetCommMask
CreateEventA
ClearCommBreak
ReadFile
SetCommBreak
GetTempFileNameA
GetTickCount
LockResource
GetCurrentProcess
CopyFileA
HeapReAlloc
HeapDestroy
GetStdHandle
HeapCreate
GetOEMCP
GetACP
SetHandleCount
VirtualFree
GetCPInfo
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
LCMapStringW
LCMapStringA
MultiByteToWideChar
GetStringTypeW
GetStringTypeA
WideCharToMultiByte
GetFileType
SetStdHandle
GetDriveTypeA
FileTimeToLocalFileTime
FileTimeToSystemTime
HeapFree
HeapAlloc
GetVersion
GetCommandLineA
GetStartupInfoA
RtlUnwind
TerminateProcess
HeapSize
VirtualAlloc
SetUnhandledExceptionFilter
SetEndOfFile
IsBadReadPtr
IsBadWritePtr
IsBadCodePtr
RaiseException
CompareStringA
CompareStringW
SetEnvironmentVariableA
lstrlenW

user32

SetWindowTextA
SetDlgItemTextA
SetFocus
CheckDlgButton
SetActiveWindow
GetDlgItemTextA
SendDlgItemMessageA
IsWindowVisible
SendMessageA
GetDlgItem
EnableWindow
GetFocus
CheckRadioButton
PostMessageA
EndDialog
OemToCharA
LoadAcceleratorsA
LoadIconA
LoadCursorA
RegisterClassA
MessageBoxA
GetMenu
CreatePopupMenu
AppendMenuA
IsDlgButtonChecked
SetWindowPos
MessageBeep
DrawIcon
SetScrollPos
IsDialogMessageA
TranslateMessage
DispatchMessageA
GetDC
DrawTextA
PeekMessageA
ScrollDC
InvalidateRect
ReleaseDC
BeginPaint
GetClientRect
GetParent
GetDesktopWindow
GetTopWindow
SetDlgItemInt
SetRect
FillRect
FrameRect
EndPaint
GetActiveWindow
LoadStringA
GetWindow
GetWindowThreadProcessId
MoveWindow
GetSystemMetrics
DefWindowProcA
DialogBoxParamA
GetScrollPos
CreateWindowExA
GetWindowWord
FindWindowA
IsWindow
SetTimer
wsprintfA
GetWindowTextA
IsIconic
wvsprintfA
GetMessageA
TranslateAcceleratorA
ScreenToClient
PtInRect
ClientToScreen
TrackPopupMenu
CallNextHookEx
UnhookWindowsHook
SetWindowsHookA
SetForegroundWindow
GetKeyState
GetClassWord
PostQuitMessage
GetMenuState
LoadMenuA
ReleaseCapture
CallWindowProcA
DeleteMenu
SetScrollRange
SetWindowLongA
ValidateRect
SetCapture
SetCursor
CreateDialogParamA
DestroyWindow
IsWindowEnabled
CharToOemA
CharLowerA
ChangeMenuA
GetWindowRect
UpdateWindow
EnableMenuItem
ScrollWindow
ShowWindow
SetWindowWord
IsZoomed
GetSystemMenu
GetWindowLongA

gdi32

SetBkMode
CreateEllipticRgn
LineTo
FrameRgn
SelectObject
DeleteObject
MoveToEx
CreatePolygonRgn
GetStockObject
FillRgn
SetViewportExtEx
SetWindowExtEx
SetWindowOrgEx
TextOutA
SetTextColor
SetMapMode
CreateSolidBrush
CreatePatternBrush
GetTextExtentPoint32A
DeleteDC
BitBlt
CreateBitmap
RealizePalette
SelectPalette
SetBkColor
GetDeviceCaps
PatBlt
CreatePalette
CreateCompatibleDC
AnimatePalette
CreateCompatibleBitmap
DPtoLP
LPtoDP
GetBkColor
CreateFontIndirectA
SetTextAlign
GetTextMetricsA
StartDocA
SetAbortProc
CreatePen
EndDoc
EndPage
AbortDoc
CreateDCA
Rectangle
StartPage
SetStretchBltMode
GetObjectA
StretchBlt
CreateDIBitmap
CreateFontA

comdlg32

CommDlgExtendedError
GetSaveFileNameA
PrintDlgA
GetOpenFileNameA

advapi32

RegDeleteValueA
RegDeleteKeyA
RegEnumValueA
RegQueryValueExA
RegCloseKey
RegSetValueExA
RegCreateKeyExA
RegQueryInfoKeyA
RegOpenKeyExA

shell32

DragQueryFileA
DragFinish
DragAcceptFiles
ShellExecuteA

ole32

CoInitialize
OleRun
CoCreateInstance
CLSIDFromProgID
CLSIDFromString

oleaut32

VariantInit
VariantCopy
VariantClear
SysFreeString
SysStringByteLen
SysAllocStringByteLen
CreateErrorInfo
VariantChangeType
SysAllocString

winmm

PlaySoundA
mciSendStringA

Exports

Exports

DprocAbout
DprocAddEntry
DprocChgEntry
DprocChgUserEntry
DprocComm
DprocMain
DprocModem
DprocPortSettings
DprocPrinting
DprocSend
DprocXmitSumm
FnF1ToHelp
PrAbortProc
SubCancel
WprocAbout
WprocMain
WprocXmitInfo

Sections

.text
Size: 260KB - Virtual size: 259KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 110KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 169KB - Virtual size: 171KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8764d3bc07393dd309108acf01a7cbc7

Headers

File Characteristics

Imports

comctl32

version

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

winmm

Exports

Exports

Sections

.text Size: 260KB - Virtual size: 259KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 27KB - Virtual size: 110KB

.idata Size: 8KB - Virtual size: 7KB

.rsrc Size: 169KB - Virtual size: 171KB

.text
Size: 260KB - Virtual size: 259KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 27KB - Virtual size: 110KB

.idata
Size: 8KB - Virtual size: 7KB

.rsrc
Size: 169KB - Virtual size: 171KB