35e03dccc89f36fdbc34c8b327afaf6c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

35e03dccc89f36fdbc34c8b327afaf6c_JaffaCakes118
Size

23KB
MD5

35e03dccc89f36fdbc34c8b327afaf6c
SHA1

1b2b25ac162808ae06650b6c65765b51729023f6
SHA256

40a45a19071bebd99615b410d845081308a901651bd4b534b42595d388e1a0a6
SHA512

2793360f680c74b893f56519aff6ac0e441f05f6b0b4ef2913513af11019f969aaddf70397a04e6f3f5633d0e8e5c673997afedeb0b705cc91114f9b57c50b86
SSDEEP

384:r8WPYZ+Ji2/uGRPPkLvQeoyziazQtno5WIZM0XGYwqWh21iJSJD5TRp1U7cXmteO:hwZgWGaXziVtno8QMAVvi4JD3p19Eeyz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
35e03dccc89f36fdbc34c8b327afaf6c_JaffaCakes118

Files

35e03dccc89f36fdbc34c8b327afaf6c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

975958a2782f50ca456bfcccfca7dc7b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

CheckRadioButton
GetNextDlgGroupItem
GetNextDlgTabItem
ShowScrollBar
LoadCursorW
GetParent
LoadBitmapW
SetMenu
UnregisterClassW
UpdateWindow
EqualRect
wsprintfW
SystemParametersInfoA
GetDCEx
BeginPaint
DeleteMenu
MoveWindow
GetMenuCheckMarkDimensions
TranslateMessage
CharUpperW
GetAsyncKeyState
GetClassNameW
DispatchMessageW
SetRect
CreateDialogIndirectParamW
GetTabbedTextExtentW
IsWindowVisible
GetKeyState
DrawEdge
SetCapture
SetWindowTextW
ValidateRect
IsZoomed
GetMessageW
BringWindowToTop
CharNextW
LockWindowUpdate
DeferWindowPos
GetWindowPlacement
InvalidateRgn
GetDC
IsWindow
CheckDlgButton
RedrawWindow
SetWindowLongW
SendMessageW
RegisterWindowMessageW
SetMenuItemBitmaps
MessageBoxA
IsDialogMessageW
TrackPopupMenu
ScreenToClient
GetActiveWindow
CopyRect
InvalidateRect
MessageBoxW
GetWindowLongW
WinHelpW
GetCapture
DrawTextW
GetScrollPos
GetSysColor
DrawFocusRect
GetWindowTextLengthW
SetScrollRange
SetScrollPos
GetTabbedTextExtentA
GetScrollRange
ModifyMenuW
RemovePropW
LoadMenuW
GetFocus
CreateWindowExW
SetActiveWindow
GetMenuState
PtInRect
InflateRect
TranslateMDISysAccel
RemoveMenu
GetMenuStringW
WindowFromDC
GetMenu
SetDlgItemTextW
FindWindowW
GetLastActivePopup
GetSystemMenu
SetFocus
SystemParametersInfoW
AdjustWindowRectEx
PostMessageW
GrayStringW
CopyAcceleratorTableW
EndDeferWindowPos
GetWindowThreadProcessId
BeginDeferWindowPos
SetPropW
GetForegroundWindow
GetMenuItemID
IsChild
SetWindowPlacement
PostQuitMessage
FrameRect
SendDlgItemMessageA
GetScrollInfo
FillRect
MsgWaitForMultipleObjects
SetWindowContextHelpId
MessageBeep
GetMessagePos
DestroyWindow
DefMDIChildProcW
SetDlgItemInt
GetWindowTextW
SetWindowsHookExW
ClientToScreen
ReleaseCapture
CountClipboardFormats
IsWindowEnabled
SetRectEmpty
WaitMessage
KillTimer
OffsetRect
DestroyCursor
GetClientRect
GetTopWindow
EnumChildWindows
PeekMessageW
LoadStringW
DestroyMenu
GetDesktopWindow
InSendMessage
ReuseDDElParam
GetDlgItem
MapDialogRect
SetWindowPos
EndPaint
LoadIconW
ReleaseDC
GetCursorPos
DestroyIcon
EndDialog
SetForegroundWindow
TabbedTextOutW
GetDlgItemTextW
GetClassInfoW
ScrollWindow
RegisterClipboardFormatW
MapWindowPoints
GetWindowDC
EnableMenuItem
IsClipboardFormatAvailable
WindowFromPoint
SetCursorPos
DefFrameProcW
IsRectEmpty
IsIconic
InsertMenuW
DrawMenuBar
ShowWindow
GetPropW
LoadAcceleratorsW
GetWindow
CallWindowProcW
SetScrollInfo
GetMessageTime
GetDlgItemInt
GetSystemMetrics
ScrollWindowEx
IntersectRect
GetMenuItemCount
AppendMenuW
PostThreadMessageW
GetDlgCtrlID
SendDlgItemMessageW
TranslateAcceleratorW
RegisterClassW
SetCursor
CreateMenu
GetWindowRect
ShowOwnedPopups
IsDlgButtonChecked
UnpackDDElParam
InvertRect
GetSubMenu
UnionRect
SetTimer
CheckMenuItem
wvsprintfW
GetSysColorBrush
EnableWindow
SetParent
DefWindowProcW
ClipCursor
CallNextHookEx
UnhookWindowsHookEx
GetDialogBaseUnits

ole32

CreateGenericComposite
OleRegGetUserType
CoFreeUnusedLibraries
CoTaskMemFree
OleIsRunning
SetConvertStg
OleQueryLinkFromData
OleRegEnumVerbs
OleSaveToStream
CoLockObjectExternal
CoGetMalloc
ReadClassStg
CoGetClassObject
OleCreateLinkFromData
WriteFmtUserTypeStg
StringFromCLSID
CreateStreamOnHGlobal
OleGetClipboard
CreateBindCtx
CoRevokeClassObject
ReadClassStm
OleSetContainedObject
WriteClassStm
OleLoad
DoDragDrop
CoRegisterClassObject
OleQueryCreateFromData
OleCreateFromFile
StgOpenStorageOnILockBytes
CreateILockBytesOnHGlobal
GetClassFile
OleSave
CreateItemMoniker
GetRunningObjectTable
StgOpenStorage
OleIsCurrentClipboard
OleCreateLinkToFile
ReadFmtUserTypeStg
OleInitialize
CLSIDFromString
OleDuplicateData
WriteClassStg
CoTreatAsClass
CoInitialize
OleGetIconOfClass
OleTranslateAccelerator
OleRun
GetHGlobalFromILockBytes
StgCreateDocfile
CoCreateInstance
OleUninitialize
OleSetMenuDescriptor
CreateDataAdviseHolder
OleSetClipboard
OleLoadFromStream
StgIsStorageFile
OleCreateMenuDescriptor
CLSIDFromProgID
CoDisconnectObject
OleCreateFromData
CoTaskMemAlloc
ReleaseStgMedium
CoUninitialize
StringFromGUID2
IsAccelerator
OleDestroyMenuDescriptor
OleCreateStaticFromData
OleFlushClipboard
RevokeDragDrop
OleRegGetMiscStatus
CreateOleAdviseHolder
RegisterDragDrop
CoRegisterMessageFilter
OleLockRunning
CreateFileMoniker
CreateDataCache
StgCreateDocfileOnILockBytes
OleCreate

kernel32

lstrcpynA
GlobalDeleteAtom
GetProcessVersion
GetProfileIntW
ReleaseMutex
FlushFileBuffers
MulDiv
FindResourceExW
MultiByteToWideChar
WaitForSingleObject
GetSystemInfo
SetEvent
GetFileTime
FindResourceW
UnhandledExceptionFilter
lstrcmpiW
LockResource
GlobalSize
SetEndOfFile
GetCurrentDirectoryW
SearchPathW
GetPrivateProfileStringW
EnterCriticalSection
SetFileTime
VirtualQuery
ReleaseSemaphore
GetPrivateProfileIntW
GetCurrentProcess
SuspendThread
FileTimeToLocalFileTime
GlobalReAlloc
SetUnhandledExceptionFilter
GetThreadLocale
GetSystemDirectoryA
TerminateProcess
InterlockedDecrement
GetVersion
LoadLibraryExA
GetVersionExA
TlsFree
GlobalAlloc
GetModuleFileNameW
InterlockedIncrement
InterlockedCompareExchange
FindNextFileW
GetLastError
GlobalAddAtomW
GlobalUnlock
IsDBCSLeadByte
LoadLibraryA
lstrcatA
GlobalGetAtomNameW
GlobalFree
FindClose
DeleteFileW
WideCharToMultiByte
GetTempFileNameW
LockFile
SizeofResource
lstrcpyW
GetDiskFreeSpaceW
DelayLoadFailureHook
GlobalFlags
TlsAlloc
CreateEventW
FormatMessageW
LocalReAlloc
TlsSetValue
GetShortPathNameW
lstrcatW
SetThreadPriority
lstrlenW
LocalLock
CreateSemaphoreW
WaitForMultipleObjects
WritePrivateProfileStringW
InitializeCriticalSection
WriteFile
CopyFileW
VirtualAlloc
lstrcmpA
SystemTimeToFileTime
GetTempPathW
ReadFile
GetFileAttributesW
CloseHandle
GetUserDefaultLCID
LoadLibraryW
GetStringTypeExW
LoadResource
lstrcmpiA
GetFileSize
SetFileAttributesW
GetTickCount
FindFirstFileW
MoveFileW
LocalAlloc
FreeLibrary
QueryPerformanceCounter
SetLastError
lstrcmpW
GetVolumeInformationW
GetVersionExW
GetSystemTimeAsFileTime
GlobalFindAtomW
GlobalHandle
DuplicateHandle
GetModuleHandleW
FreeResource
lstrcpyA
GetProcAddress
SetFilePointer
LocalFileTimeToFileTime
CreateFileW
GetCurrentThreadId
UnlockFile
GetFullPathNameW
GetCurrentProcessId
DeleteCriticalSection
SetErrorMode
FileTimeToSystemTime
OutputDebugStringW
CreateMutexW
GetModuleHandleA
Sleep
GetCurrentThread
GlobalLock
LocalFree
LeaveCriticalSection
ResumeThread
lstrcpynW
VirtualProtect
LocalUnlock
TlsGetValue
lstrlenA

ws2_32

WSAGetLastError

msvcrt

_ultow
wcsncpy
_wfullpath
wcsspn
wcsncmp
_adjust_fdiv
realloc
fputws
fflush
__wargv
modf
wcsftime
_initterm
ceil
iswspace
fclose
wcscspn
_onexit
memmove
clearerr
__dllonexit
abort
_ltow
__doserrno
fgetws
_get_osfhandle
_beginthreadex
_wcsupr
_open_osfhandle
gmtime
_wtoi
floor
wcsstr
_wcsnicmp
malloc
_wcsrev
__CxxFrameHandler
fwrite
wcspbrk
wcstod
__argc
time
localtime
fseek
_msize
_itow
_fdopen
_wsplitpath
mktime
calloc
fread
wcslen
_expand
iswdigit
wcscmp
_CxxThrowException
_endthreadex
_wcsdup
wcschr
_except_handler3
_wcslwr
wcscpy
_purecall
free
_snwprintf
_wtol
swprintf
vswprintf
ftell
wcstoul
wcstol
wcsrchr

advapi32

RegQueryValueExW
RegEnumKeyW
RegCloseKey
SetFileSecurityW
RegOpenKeyW
RegDeleteKeyW
RegDeleteValueW
RegOpenKeyExW
RegCreateKeyW
RegCreateKeyExW
RegSetValueExW
RegQueryValueW
GetFileSecurityW
RegSetValueW

wininet

GopherOpenFileW
InternetQueryOptionW
HttpQueryInfoW
InternetSetStatusCallbackW
GopherFindFirstFileW
InternetCloseHandle
FtpRenameFileW
InternetGetLastResponseInfoW
FtpGetFileW
HttpSendRequestW
HttpAddRequestHeadersW
InternetCanonicalizeUrlW
InternetQueryDataAvailable
InternetOpenW
FtpCreateDirectoryW
InternetReadFile
FtpGetCurrentDirectoryW
GopherCreateLocatorW
InternetGetCookieW
GopherGetAttributeW
InternetWriteFile
FtpPutFileW
FtpRemoveDirectoryW
InternetConnectW
HttpEndRequestW
FtpFindFirstFileW
InternetCrackUrlW
InternetSetOptionExW
InternetOpenUrlW
InternetErrorDlg
HttpOpenRequestW
FtpSetCurrentDirectoryW
FtpDeleteFileW
FtpOpenFileW
HttpSendRequestExW
InternetFindNextFileW
InternetSetCookieW
InternetSetFilePointer

gdi32

UnrealizeObject
SelectObject
CombineRgn
GetPixel
DeleteMetaFile
OffsetWindowOrgEx
SetBkColor
SetTextCharacterExtra
GetBkColor
SetPolyFillMode
SaveDC
GetBkMode
StartPage
CreateSolidBrush
SetWindowExtEx
ExtCreatePen
GetROP2
SetBkMode
OffsetViewportOrgEx
Rectangle
CreateBitmap
SetMapMode
GetTextExtentPoint32A
CreateDIBPatternBrushPt
ArcTo
StartDocW
CreateRectRgnIndirect
GetObjectW
SetMapperFlags
GetTextExtentPoint32W
StretchDIBits
GetStretchBltMode
CopyMetaFileW
EndDoc
GetPaletteEntries
EnumFontFamiliesExW
CreatePalette
SetTextAlign
PolyDraw
SelectPalette
EndPage
SetColorAdjustment
ExtTextOutW
PolyBezierTo
GetStockObject
CreateCompatibleBitmap
PolylineTo
BitBlt
SelectClipPath
ExtSelectClipRgn
GetTextAlign
CreatePen
ScaleViewportExtEx
LineTo
ScaleWindowExtEx
SetAbortProc
PtVisible
CloseMetaFile
GetWindowExtEx
SetBrushOrgEx
RestoreDC
RectVisible
Escape
PatBlt
CreateFontW
GetCharWidthW
PlayMetaFile
OffsetClipRgn
GetObjectType
CreateDCW
SetStretchBltMode
SetTextJustification
CreateMetaFileW
SetROP2
CreateCompatibleDC
DPtoLP
CreateFontIndirectW
GetWindowOrgEx
GetTextFaceW
SelectClipRgn
GetMapMode
SetWindowOrgEx
CreateHatchBrush
SetTextColor
SetViewportExtEx
AbortDoc
ExcludeClipRect
MoveToEx
OffsetRgn
GetViewportOrgEx
LPtoDP
CreateRectRgn
GetTextColor
GetNearestColor
EnumFontFamiliesW
EnumMetaFile
GetPolyFillMode
DeleteObject
SetArcDirection
TextOutW
SetRectRgn
GetClipBox
GetTextMetricsW
GetCurrentPositionEx
RealizePalette
IntersectClipRect
DeleteDC
GetViewportExtEx
CreatePatternBrush
GetClipRgn
SetViewportOrgEx
GetDeviceCaps
PlayMetaFileRecord

ntdll

NtCreateKey

adsldpc

ADsEnumClasses

Sections

.textbss
Size: 512B - Virtual size: 1.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 512B - Virtual size: 444B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 59KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

975958a2782f50ca456bfcccfca7dc7b

Headers

File Characteristics

Imports

user32

ole32

kernel32

ws2_32

msvcrt

advapi32

wininet

gdi32

ntdll

adsldpc

Sections

.textbss Size: 512B - Virtual size: 1.3MB

.text Size: 512B - Virtual size: 444B

.rdata Size: 512B - Virtual size: 32B

.idata Size: 59KB - Virtual size: 58KB

.textbss
Size: 512B - Virtual size: 1.3MB

.text
Size: 512B - Virtual size: 444B

.rdata
Size: 512B - Virtual size: 32B

.idata
Size: 59KB - Virtual size: 58KB