3508aa430d53f53576ece382a012a1bd_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3508aa430d53f53576ece382a012a1bd_JaffaCakes118
Size

2.7MB
MD5

3508aa430d53f53576ece382a012a1bd
SHA1

dd7e13d75c1b03b086975ea830e29ced06c30de9
SHA256

c041744d542f32c14d87aa991ab6aa1171183387254a9c1d2b78934e614c722f
SHA512

501bc2b3414b64ac4bb6491639ea2ef6ab78b894c532de52e7a14b93780aaa6ad2f83d2d2591ea70c1ee64ca0536ece6a4b8332b5ce90137a2579a1216605b00
SSDEEP

49152:mOxopmiVrp3bjhdg5TTflKeWJJo4cTocW:Xgm8l3nM5/lWJJo4DcW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3508aa430d53f53576ece382a012a1bd_JaffaCakes118

Files

3508aa430d53f53576ece382a012a1bd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f4f33b4fe46e0665fa1b9d74a6db1c85

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\builds\3.5.0-gm-2\_build\release\standalone.pdb

Imports

winmm

waveOutGetVolume
waveOutOpen
waveOutSetVolume
waveOutWrite
waveOutPrepareHeader
waveOutUnprepareHeader
waveOutReset
mciGetErrorStringA
mciSendStringA
mciSendCommandA
timeEndPeriod
timeKillEvent
timeSetEvent
timeGetTime
timeBeginPeriod
waveOutClose

imm32

ImmReleaseContext
ImmGetContext
ImmSetCandidateWindow
ImmGetProperty
ImmSetCompositionWindow
ImmGetCompositionStringW
ImmGetCompositionStringA
ImmNotifyIME

ws2_32

socket
WSAStartup
select
__WSAFDIsSet
recvfrom
sendto
gethostbyaddr
setsockopt
htonl
listen
WSAGetLastError
ioctlsocket
connect
recv
send
accept
closesocket
WSAAsyncSelect
getpeername
bind
WSAIoctl
gethostbyname
gethostname
getsockname
inet_ntoa
inet_addr
ntohs
ntohl
htons

kernel32

GetTempPathA
GlobalSize
GetModuleHandleA
HeapFree
EnterCriticalSection
LeaveCriticalSection
HeapReAlloc
HeapAlloc
ExitProcess
MapViewOfFile
FileTimeToSystemTime
FileTimeToLocalFileTime
GetDriveTypeA
GetSystemTimeAsFileTime
GetTimeZoneInformation
SetFileAttributesA
GetFileAttributesA
MoveFileA
SetConsoleCtrlHandler
InterlockedIncrement
CreatePipe
GetCurrentProcess
DuplicateHandle
CreateProcessA
CreateThread
SetThreadPriority
RemoveDirectoryA
IsDBCSLeadByteEx
lstrlenA
GetDiskFreeSpaceW
SetFilePointer
FlushFileBuffers
SetEndOfFile
UnmapViewOfFile
GetFileSize
GetLogicalDriveStringsA
InterlockedDecrement
GetCommandLineA
GetProcessHeap
GetStartupInfoA
UnhandledExceptionFilter
SetUnhandledExceptionFilter
TlsGetValue
TlsAlloc
GetExitCodeProcess
Sleep
TerminateThread
PeekNamedPipe
ExitThread
WaitForMultipleObjects
TerminateProcess
FindFirstFileA
ReadFile
OpenProcess
FindNextFileA
FindClose
WriteFile
DeleteFileA
CreateFileA
GetWindowsDirectoryA
CloseHandle
GetCurrentProcessId
CreateDirectoryA
GetCurrentDirectoryA
SetCurrentDirectoryA
GlobalFree
GetSystemDirectoryA
GetProfileStringA
MulDiv
CreateMutexA
Beep
WaitForSingleObject
ReleaseMutex
GetModuleHandleW
GetVersionExA
WideCharToMultiByte
GetLocaleInfoA
FreeLibrary
MultiByteToWideChar
GetACP
CopyFileA
LoadLibraryA
GetProcAddress
GetModuleFileNameA
GetEnvironmentStrings
FreeEnvironmentStringsA
GlobalLock
GlobalUnlock
GlobalAlloc
GetLastError
TlsSetValue
TlsFree
SetLastError
GetCurrentThreadId
HeapDestroy
HeapCreate
VirtualFree
DeleteCriticalSection
VirtualAlloc
GetCPInfo
GetOEMCP
IsValidCodePage
IsDebuggerPresent
SetHandleCount
GetFileType
HeapSize
LCMapStringA
LCMapStringW
InitializeCriticalSection
RaiseException
GetFullPathNameA
CompareStringA
CompareStringW
SetEnvironmentVariableA
SetEnvironmentVariableW
GetStdHandle
lstrcpyA
GetShortPathNameA
GetCommState
BuildCommDCBA
SetCommState
SetCommTimeouts
GetFileInformationByHandle
CreateFileMappingA
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
GetStringTypeA
GetStringTypeW
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetConsoleCP
GetConsoleMode
GetLocaleInfoW
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
RtlUnwind

user32

SendMessageTimeoutA
ScreenToClient
RegisterWindowMessageA
MsgWaitForMultipleObjects
PeekMessageW
DispatchMessageW
BeginPaint
EndPaint
GetFocus
DefWindowProcW
GetMessageTime
SetForegroundWindow
TrackPopupMenu
DestroyMenu
CreatePopupMenu
InsertMenuItemA
GetMenuItemCount
GetMenuItemInfoA
CreateIconIndirect
GetWindowLongA
GetKeyboardState
LoadIconA
RegisterClassA
GetCaretBlinkTime
GetDoubleClickTime
GetDesktopWindow
FindWindowA
FindWindowExA
UpdateWindow
KillTimer
IsWindowVisible
SetActiveWindow
InvalidateRect
AdjustWindowRectEx
TranslateMessage
GetMessageA
WindowFromPoint
DestroyIcon
CreateCursor
ScrollWindowEx
ClientToScreen
MessageBeep
GetWindowLongW
SetWindowTextW
SetWindowTextA
SetWindowPos
GetActiveWindow
BeginDeferWindowPos
DeferWindowPos
GetWindow
EndDeferWindowPos
ReleaseCapture
SetCapture
SetCursor
LoadCursorA
ActivateKeyboardLayout
LoadKeyboardLayoutA
GetKeyboardLayout
SetCursorPos
GetKeyState
GetCursorPos
DispatchMessageA
OffsetRect
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindowRect
RedrawWindow
SetWindowRgn
EnableMenuItem
GetSystemMenu
SetWindowLongA
CreateWindowExW
DefWindowProcA
SetWindowLongW
SetRect
GetClientRect
GetParent
SendMessageA
GetSystemMetrics
GetAsyncKeyState
PeekMessageA
CreateWindowExA
EnableWindow
ShowWindow
SetFocus
MoveWindow
GetDC
ReleaseDC
DestroyWindow
SetParent
PostMessageA
MessageBoxA
RegisterClipboardFormatA
GetClipboardFormatNameA
FillRect
IsWindowUnicode
wsprintfA
RegisterClassW

gdi32

SetWinMetaFileBits
SetEnhMetaFileBits
PlayEnhMetaFile
EnumEnhMetaFile
DeleteEnhMetaFile
PlayEnhMetaFileRecord
SetROP2
SetViewportOrgEx
GetObjectA
ExcludeClipRect
BitBlt
SelectClipRgn
CreateCompatibleDC
DeleteDC
DeleteObject
CreateMetaFileA
SetWindowOrgEx
SetWindowExtEx
SetBkMode
SetStretchBltMode
SaveDC
SelectObject
RestoreDC
CloseMetaFile
CreateSolidBrush
GetRgnBox
OffsetRgn
StretchBlt
UnrealizeObject
SetBrushOrgEx
Polyline
PolyPolyline
Polygon
RoundRect
TextOutW
TextOutA
GetTextMetricsA
GetTextExtentPoint32W
GetTextExtentPoint32A
MaskBlt
ExtCreateRegion
GetTextExtentPointA
CreateDIBSection
GetDCOrgEx
GetClipBox
GetTextCharset
CreateFontIndirectA
GetTextFaceA
TranslateCharsetInfo
GetDeviceCaps
RealizePalette
SetDIBColorTable
SetDIBitsToDevice
GetDIBits
CreateRectRgnIndirect
SelectPalette
CreatePalette
GetSystemPaletteEntries
CreateCompatibleBitmap
CreateDIBitmap
GetCharWidth32A
EnumFontFamiliesA
CreateICA
SetViewportExtEx
SetMapMode
LineTo
MoveToEx
CreateBrushIndirect
GetObjectW
GetWindowExtEx
GetViewportExtEx
LPtoDP
GetRegionData
GetWindowOrgEx
StartDocA
EndDoc
EndPage
AbortDoc
StartPage
CreateDCA
GetEnhMetaFileHeader
CreateEnhMetaFileA
GetEnhMetaFileBits
CloseEnhMetaFile
Arc
Pie
Ellipse
SetTextAlign
GetStockObject
SetTextColor
SetBkColor
Rectangle
CreateRectRgn
ExtSelectClipRgn
CombineRgn
GdiFlush
ExtCreatePen
CreateBitmap
SetPaletteEntries
DeleteMetaFile
CreatePatternBrush

winspool.drv

ClosePrinter
DeviceCapabilitiesA
DocumentPropertiesA
EnumPrintersA
OpenPrinterA
ord203
ord201

comdlg32

PrintDlgA
ChooseColorA
GetOpenFileNameA
GetSaveFileNameA
CommDlgExtendedError
PageSetupDlgA

advapi32

RegDeleteValueA
RegSetValueExA
RegQueryValueExA
RegOpenKeyExA
RegEnumKeyExA
RegCloseKey
RegDeleteKeyA
RegCreateKeyExA

shell32

ShellExecuteA
SHGetSpecialFolderLocation
Shell_NotifyIconA
SHGetMalloc
SHBrowseForFolderA
SHGetPathFromIDListA
DragQueryFileA

ole32

CoCreateInstance
OleFlushClipboard
OleIsCurrentClipboard
OleSetClipboard
OleGetClipboard
DoDragDrop
CoUninitialize
CLSIDFromProgID
CoInitialize
OleUninitialize
ProgIDFromCLSID
OleInitialize
RegisterDragDrop
CoLockObjectExternal
RevokeDragDrop
ReleaseStgMedium
CoTaskMemFree

oleaut32

VariantChangeType
VariantClear
SysStringLen
SysAllocStringLen
VariantInit

version

GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA

Sections

.text
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 176KB - Virtual size: 174KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 92KB - Virtual size: 169KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 56KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f4f33b4fe46e0665fa1b9d74a6db1c85

Headers

File Characteristics

PDB Paths

Imports

winmm

imm32

ws2_32

kernel32

user32

gdi32

winspool.drv

comdlg32

advapi32

shell32

ole32

oleaut32

version

Sections

.text Size: 1.6MB - Virtual size: 1.6MB

.rdata Size: 176KB - Virtual size: 174KB

.data Size: 92KB - Virtual size: 169KB

.rsrc Size: 56KB - Virtual size: 52KB

.text
Size: 1.6MB - Virtual size: 1.6MB

.rdata
Size: 176KB - Virtual size: 174KB

.data
Size: 92KB - Virtual size: 169KB

.rsrc
Size: 56KB - Virtual size: 52KB