39a12ef94f8709d577581da6568addcc_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

39a12ef94f8709d577581da6568addcc_JaffaCakes118
Size

444KB
MD5

39a12ef94f8709d577581da6568addcc
SHA1

e0f75af3e68ef2e6f5b8e82e2344cd9ea025819f
SHA256

153950080a0c969361934e1868dd3807f4398fe590c3009b39358f9d9ba0c388
SHA512

7dcff869d512537c1913d98a0ec8db8c2a98f6d1e401200c1ff300491778b52414581092de76bd5b332c693259e7993493c86367089dba5b5be5d9f19885f469
SSDEEP

6144:VZO2679oqfZZEgJgh3jfbCIVHzZ594rIvdeDLO6WV1jAk3x4DdC:VP2RjQZ9j4MvdRVSkhSE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
39a12ef94f8709d577581da6568addcc_JaffaCakes118

Files

39a12ef94f8709d577581da6568addcc_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1156b037f69d7ded9ef61ca3677a9d22

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

lz32

LZOpenFileA
LZCopy
LZClose

kernel32

SetCurrentDirectoryA
GetFileType
HeapAlloc
HeapFree
GetStartupInfoA
GetCommandLineA
ExitProcess
RaiseException
SetStdHandle
HeapReAlloc
HeapSize
GetTimeZoneInformation
LCMapStringA
LCMapStringW
UnhandledExceptionFilter
GetDriveTypeA
SetHandleCount
GetStdHandle
GetEnvironmentVariableA
HeapDestroy
SetEnvironmentVariableA
VirtualFree
VirtualAlloc
IsBadWritePtr
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetStringTypeA
GetStringTypeW
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
CompareStringA
CompareStringW
ExitThread
GetProfileStringA
InterlockedExchange
CreateThread
RtlUnwind
FileTimeToLocalFileTime
FileTimeToSystemTime
SetErrorMode
GetCurrentDirectoryA
WritePrivateProfileStringA
GetFileTime
GetFullPathNameA
GetVolumeInformationA
MoveFileA
SetEndOfFile
UnlockFile
LockFile
SetFilePointer
DuplicateHandle
GetOEMCP
GetCPInfo
GetProcessVersion
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
LocalAlloc
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GlobalFlags
GetCurrentThread
lstrcmpA
lstrcpynA
SetLastError
GetVersion
lstrcatA
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcpyA
GetModuleHandleA
MultiByteToWideChar
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
GetFileSize
ReadFile
GetCurrentProcess
DosDateTimeToFileTime
LocalFileTimeToFileTime
SetFileTime
GlobalUnlock
GlobalFree
GlobalAlloc
GlobalLock
OpenProcess
TerminateProcess
Thread32First
Thread32Next
CreateToolhelp32Snapshot
Process32First
Process32Next
FindResourceA
SizeofResource
LoadResource
LockResource
MulDiv
GetCurrentThreadId
OutputDebugStringA
WriteFile
FlushFileBuffers
MoveFileExA
ReleaseMutex
GetTickCount
RemoveDirectoryA
CreateProcessA
CreateFileA
DeviceIoControl
GetSystemDirectoryA
GetShortPathNameA
lstrlenA
CreateEventA
WaitForSingleObject
SetEvent
GetTempPathA
GetTempFileNameA
CreateDirectoryA
CreateMutexA
CloseHandle
FindClose
GetFileAttributesA
SetFileAttributesA
DeleteFileA
CopyFileA
FormatMessageA
LocalFree
GetLastError
Sleep
GetWindowsDirectoryA
GetProcAddress
FreeLibrary
LoadLibraryA
GetLocaleInfoA
GetACP
GetModuleFileNameA
GetVersionExA
GetPrivateProfileStringA
FindFirstFileA
FindNextFileA
HeapCreate

user32

ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
ShowWindow
SetWindowTextA
IsDialogMessageA
IsDlgButtonChecked
SetDlgItemTextA
CheckRadioButton
LoadIconA
UpdateWindow
SendDlgItemMessageA
MapWindowPoints
GetSysColor
PeekMessageA
DispatchMessageA
GetFocus
SetFocus
AdjustWindowRectEx
ScreenToClient
CopyRect
IsWindowVisible
GetTopWindow
GetCapture
WinHelpA
wsprintfA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetMenuState
GetWindowTextA
GetDlgCtrlID
DefWindowProcA
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
RegisterClipboardFormatA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetSystemMetrics
UnregisterClassA
HideCaret
GrayStringA
ExcludeUpdateRgn
DrawFocusRect
DefDlgProcA
CharNextA
GetWindow
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
OffsetRect
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindowRect
GetNextDlgTabItem
EndDialog
IsWindow
CreateDialogIndirectParamA
DestroyWindow
GetParent
GetWindowLongA
GetDlgItem
IsWindowEnabled
ExitWindowsEx
EnumThreadWindows
SendMessageTimeoutA
InflateRect
PtInRect
SetCapture
ReleaseCapture
LoadBitmapA
GetMenuCheckMarkDimensions
ClientToScreen
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
GetWindowTextLengthA
DrawTextA
SetActiveWindow
GetKeyState
GetDC
SendMessageA
ReleaseDC
GetActiveWindow
PostMessageA
RedrawWindow
MessageBoxA
EnableWindow
IsWindowUnicode
GetClientRect
InvalidateRect
PostQuitMessage
SetCursor
GetCursorPos
CharUpperA
PostThreadMessageA
DestroyMenu
GetSysColorBrush
LoadCursorA
LoadStringA
ShowCaret
GetClassNameA
GetMessageA
TranslateMessage
GetClassLongA
ValidateRect

gdi32

IntersectClipRect
MoveToEx
LineTo
ScaleWindowExtEx
CreateSolidBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
PatBlt
CreateFontIndirectA
DPtoLP
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetBkMode
GetStockObject
RestoreDC
SaveDC
DeleteDC
CreateBitmap
GetObjectA
SetBkColor
SetTextColor
GetClipBox
SetPixel
CreateHalftonePalette
SelectPalette
SetStretchBltMode
SetBrushOrgEx
RealizePalette
DeleteObject
GetDeviceCaps
GetTextExtentPoint32A
CreateCompatibleBitmap
CreateCompatibleDC
BitBlt
SelectObject
CreatePen
CreateDIBitmap
GetTextExtentPointA
CreateFontA

comdlg32

GetFileTitleA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegOpenKeyA
RegQueryValueExA
RegOpenKeyExA
CloseServiceHandle
DeleteService
ControlService
OpenServiceA
OpenSCManagerA
RegDeleteKeyA
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
QueryServiceStatus
StartServiceA
CreateServiceA
RegDeleteValueA
RegCloseKey
RegCreateKeyA
RegEnumValueA
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
RegSetKeySecurity
RegSetValueExA
RegCreateKeyExA
RegEnumKeyA
RegEnumKeyExA

shell32

SHFileOperationA

comctl32

ord17

oledlg

ord8

ole32

OleIsCurrentClipboard
OleFlushClipboard
CoRevokeClassObject
CoRegisterMessageFilter
CoFreeUnusedLibraries
OleUninitialize
OleInitialize

Sections

.text
Size: 296KB - Virtual size: 292KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 69KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1156b037f69d7ded9ef61ca3677a9d22

Headers

File Characteristics

Imports

lz32

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

Sections

.text Size: 296KB - Virtual size: 292KB

.rdata Size: 44KB - Virtual size: 40KB

.data Size: 28KB - Virtual size: 54KB

.rsrc Size: 72KB - Virtual size: 69KB

.text
Size: 296KB - Virtual size: 292KB

.rdata
Size: 44KB - Virtual size: 40KB

.data
Size: 28KB - Virtual size: 54KB

.rsrc
Size: 72KB - Virtual size: 69KB