3ef79824f34e8195c64f57affee25c46_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

3ef79824f34e8195c64f57affee25c46_JaffaCakes118
Size

861KB
MD5

3ef79824f34e8195c64f57affee25c46
SHA1

f2be2e070dd522102840767589408400a603f0a5
SHA256

976ceae5566c5f77b4d440229d13dc10fe94ec86cfcf6fe4ecc01aad9e4a6aed
SHA512

9adc24b01875c3458d00b473bc77a599fb4895a4c523c3f728be03e3a199128198f295e165fe1d28427de760de4307716050e06ae92b17bd6f40f547947ed8ca
SSDEEP

24576:feVyyucjuKybpZufCwT+Pr7URqnfhDnEnO01hE:GlYpEf7q5fZEnO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3ef79824f34e8195c64f57affee25c46_JaffaCakes118

Files

3ef79824f34e8195c64f57affee25c46_JaffaCakes118
.dll windows:5 windows x86 arch:x86

c543bc95442908755e5b0e7eae5ffaa8

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

GetFileType
IsDebuggerPresent
SizeofResource
GetModuleFileNameA
LoadLibraryW
LCMapStringW
LeaveCriticalSection
GetCommandLineW
EnterCriticalSection
GetFileSize
MulDiv
OutputDebugStringW
SetErrorMode
SetEndOfFile
lstrcpynW
ConvertDefaultLocale
FileTimeToLocalFileTime
InterlockedDecrement
GlobalDeleteAtom
GetTickCount
LockResource
GlobalFindAtomW
SetLastError
lstrlenA
GetStartupInfoA
InterlockedExchange
GetTimeFormatW
FreeResource
GlobalReAlloc
WriteConsoleW
SetUnhandledExceptionFilter
CreateThread
TlsSetValue
HeapReAlloc
ResumeThread
GetProcessHeap
ReadFile
CreateFileA
lstrcmpA
GetStdHandle
LoadLibraryA
WideCharToMultiByte
GetCurrentProcess
GetCPInfo
GetFullPathNameW
VirtualQuery
GetStartupInfoW
FindClose
SetHandleCount
LoadResource
FlushFileBuffers
GetFileAttributesW
RaiseException
GetDriveTypeA
EnumResourceLanguagesW
GetProcAddress
WriteFile
SetFilePointer
GetDateFormatW
GetCurrentThread
lstrcatA
VirtualProtect
ResetEvent
UnhandledExceptionFilter
GetVolumeInformationW
FreeLibrary
GetFileTime
CreateEventW
SetEnvironmentVariableA
GlobalHandle
GetEnvironmentStrings
GetStringTypeA
LCMapStringA
TerminateProcess
GetWindowsDirectoryW
FindFirstFileW
GetVersion
GlobalFree
GetStringTypeW
GetCommandLineA
GetSystemTimeAsFileTime
MultiByteToWideChar
FreeEnvironmentStringsW
GetModuleHandleA
LocalReAlloc
FindNextFileW
VirtualFree
GetUserDefaultUILanguage
UnlockFile
FindResourceExW
CreateProcessW
GetPrivateProfileStringW
QueryPerformanceCounter
HeapCreate
lstrcmpW
CreateFileW
HeapDestroy
GetCurrentThreadId
VirtualProtectEx
SetStdHandle
GetCurrentDirectoryA
GetLastError
WaitForSingleObject
FindResourceW
GetEnvironmentStringsW
GlobalAddAtomW
GetPrivateProfileIntW
GlobalLock
GetConsoleCP
CloseHandle
GetLocalTime
GetConsoleOutputCP
GlobalUnlock
DeviceIoControl
CompareStringW
GetThreadLocale
GetSystemDirectoryA
lstrlenW
InitializeCriticalSection
HeapFree
HeapAlloc
SetThreadPriority
InterlockedIncrement
LocalFree
TlsFree
GetModuleFileNameW
GlobalAlloc
GetACP
EnumUILanguagesW
CompareStringA
ExitProcess
HeapSize
GetSystemDefaultLangID
DeleteCriticalSection
SuspendThread
GetModuleHandleW
VirtualAlloc
GetOEMCP
TlsGetValue
FileTimeToSystemTime
WaitForMultipleObjects
FormatMessageW
FreeEnvironmentStringsA
DuplicateHandle
GetTimeZoneInformation
GetVersionExW
GetVersionExA
GetLocaleInfoA
GetCurrentProcessId
GlobalFlags
RtlUnwind
LocalAlloc
TlsAlloc
GetSystemInfo
Sleep
WritePrivateProfileStringW

user32

SetFocus
EnableMenuItem
GetSysColorBrush
CopyRect
SendDlgItemMessageA
GetDlgItem
InflateRect
GetTopWindow
LoadMenuIndirectW
CharNextW
GetCursorPos
UnhookWindowsHookEx
IntersectRect
GetMenuItemCount
GetLastActivePopup
SetCapture
OffsetRect
IsIconic
GetMessageTime
GrayStringW
GetWindowThreadProcessId
MoveWindow
GetMenuCheckMarkDimensions
SetWindowsHookExW
ModifyMenuW
DrawFocusRect
SetCursor
InsertMenuW
GetCapture
EqualRect
SystemParametersInfoA
TabbedTextOutW
CallNextHookEx
SetActiveWindow
CheckMenuItem
GetWindowDC
GetSystemMenu
PtInRect
GetMessagePos
PostQuitMessage
LoadBitmapW
InvalidateRgn
EnableWindow
GetNextDlgTabItem
IsChild
RemoveMenu
KillTimer
WinHelpW
SetWindowContextHelpId
ShowWindow
ClientToScreen
IsDialogMessageW
DestroyMenu
IsWindow
SendMessageW
UnregisterClassW
AdjustWindowRectEx
ScreenToClient
MapWindowPoints
RedrawWindow
MsgWaitForMultipleObjects
GetWindowInfo
GetClassInfoExW
GetDlgCtrlID
GetWindowTextW
SetWindowLongW
CallWindowProcW
SetForegroundWindow
DefWindowProcW
GetForegroundWindow
GetSubMenu
RegisterClassW
UpdateWindow
DestroyWindow
GetSysColor
CreateWindowExW
LoadMenuW
GetDC
SetMenuItemBitmaps
SetWindowPlacement
GetMessageW
DispatchMessageW
GetWindow
MessageBoxW
MessageBeep
AppendMenuW
ExitWindowsEx
GetParent
CharUpperW
GetActiveWindow
SetTimer
MapDialogRect
CopyAcceleratorTableW
GetWindowTextLengthW
ReleaseCapture
PostMessageW
BeginPaint
SendDlgItemMessageW
SetPropW
GetWindowLongW
GetNextDlgGroupItem
ReleaseDC
GetPropW
SetWindowTextW
IsRectEmpty
RegisterClipboardFormatW
TrackPopupMenu
ValidateRect
SetWindowPos
PostThreadMessageW
GetMenuItemID
AllowSetForegroundWindow
TrackMouseEvent
DrawTextW
SetCursorPos
SetRectEmpty
GetFocus
GetClassInfoW
CreateDialogIndirectParamW
InvalidateRect
GetSystemMetrics
LoadIconW
UnregisterClassA
GetClassLongW
GetMenu
RegisterWindowMessageW
RemovePropW
WindowFromPoint
GetWindowRect
IsWindowEnabled
GetDesktopWindow
EndPaint
EndDialog
GetWindowPlacement
TranslateMessage
GetClassNameW
GetMenuState
IsWindowVisible
SetMenuDefaultItem
GetClientRect
SetRect
FindWindowW
GetKeyState
LoadCursorW
PeekMessageW
DrawTextExW

gdi32

SelectPalette
GetPixel
RectVisible
CreatePen
StretchBlt
LineTo
CreateSolidBrush
GetObjectW
CreateCompatibleDC
GetBkColor
TextOutW
SetViewportOrgEx
MoveToEx
CreateBitmapIndirect
PatBlt
GetMapMode
Polyline
SaveDC
GetDeviceCaps
SelectObject
GetWindowExtEx
RestoreDC
CreateRectRgnIndirect
GetStockObject
SetStretchBltMode
ScaleWindowExtEx
ScaleViewportExtEx
ExtSelectClipRgn
ExcludeClipRect
SetWindowExtEx
SetMapMode
SetPixel
OffsetViewportOrgEx
DPtoLP
SetViewportExtEx
GetRgnBox
CreateCompatibleBitmap
DeleteObject
DeleteDC
ExtTextOutW
SetBkColor
Escape
StretchDIBits
PtVisible
GetClipBox
CreateBitmap
GetTextColor
CreateFontIndirectW
SetTextColor
GetTextExtentPoint32W
BitBlt
SetBkMode
GetViewportExtEx

comdlg32

GetFileTitleW

advapi32

RegOpenKeyExW
StartServiceW
RegCloseKey
OpenProcessToken
RegSetValueExW
RegDeleteValueW
RegQueryValueExW
RegEnumKeyW
RegQueryValueW
RegEnumKeyExW
CloseServiceHandle
OpenServiceW
RegCreateKeyExW
RegCreateKeyW
AdjustTokenPrivileges
RegDeleteKeyW
OpenSCManagerW
LookupPrivilegeValueW
RegOpenKeyW
RegNotifyChangeKeyValue

shell32

ShellExecuteW
Shell_NotifyIconW
SHGetFolderPathW

ole32

CLSIDFromProgID
OleIsCurrentClipboard
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CoUninitialize
CreateStreamOnHGlobal
StgOpenStorageOnILockBytes
CoTaskMemFree
CoGetClassObject
CLSIDFromString
CreateILockBytesOnHGlobal
OleFlushClipboard
StgCreateDocfileOnILockBytes
CoCreateInstance
PropVariantClear
CoInitialize
CoRevokeClassObject
CoTaskMemAlloc
CoRegisterMessageFilter

oleaut32

VariantChangeType
SysFreeString
SysStringLen
VariantCopy
VariantTimeToSystemTime
SysAllocString
OleCreateFontIndirect
SystemTimeToVariantTime
VariantClear
VariantInit
SysAllocStringLen
SafeArrayDestroy

shlwapi

PathStripToRootW
PathFindExtensionW
PathIsUNCW
PathFindFileNameW

winmm

waveInReset
waveInOpen
waveInUnprepareHeader
waveInStart
waveInStop
waveInGetNumDevs
waveInClose
waveInGetDevCapsW
waveInPrepareHeader
PlaySoundW
waveInAddBuffer

rpcrt4

UuidCreate

setupapi

SetupDiEnumDeviceInterfaces
SetupDiDestroyDeviceInfoList
SetupDiGetClassDevsW
SetupDiGetDeviceInterfaceDetailW

gdiplus

GdipGetGenericFontFamilySansSerif
GdipCreateBitmapFromScan0
GdipCreateBitmapFromResource
GdipDeleteGraphics
GdipCreateFromHDC
GdipFillRectangleI
GdipAlloc
GdipCreateFontFamilyFromName
GdipSetTextRenderingHint
GdipDrawImageRectRect
GdipFree
GdipDrawImagePointRectI
GdipDisposeImage
GdipCreateFont
GdipCreateBitmapFromGraphics
GdipGetImageHeight
GdipDrawImageRect
GdipDrawString
GdipDrawImageRectI
GdipDeleteBrush
GdipCreateBitmapFromStream
GdipGetImageWidth
GdipDeleteFontFamily
GdipCreateSolidFill
GdipDrawImageI
GdipGetImageBounds
GdipFlush
GdipMeasureString
GdipGetImageGraphicsContext
GdipCloneImage
GdipCloneBrush
GdiplusStartup
GdipDeleteFont
GdipGetFontSize
GdipImageRotateFlip
GdipFillRectangle
GdipCreateHBITMAPFromBitmap
GdipCreateBitmapFromHBITMAP

msvcrt

exit
fclose
fread
fopen

esent

JetTerm

Sections

.text
Size: 484KB - Virtual size: 484KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.11
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.22
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.55
Size: - Virtual size: 203KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 824B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.33
Size: 47KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.zx
Size: 249KB - Virtual size: 248KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.44
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.66
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 512B - Virtual size: 320B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c543bc95442908755e5b0e7eae5ffaa8

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

shlwapi

winmm

rpcrt4

setupapi

gdiplus

msvcrt

esent

Sections

.text Size: 484KB - Virtual size: 484KB

.11 Size: 4KB - Virtual size: 3KB

.22 Size: 4KB - Virtual size: 3KB

.55 Size: - Virtual size: 203KB

.rdata Size: 12KB - Virtual size: 12KB

.data Size: 512B - Virtual size: 824B

.33 Size: 47KB - Virtual size: 46KB

.zx Size: 249KB - Virtual size: 248KB

.44 Size: 45KB - Virtual size: 45KB

.66 Size: 8KB - Virtual size: 7KB

.rsrc Size: 512B - Virtual size: 320B

.reloc Size: 5KB - Virtual size: 4KB

.text
Size: 484KB - Virtual size: 484KB

.11
Size: 4KB - Virtual size: 3KB

.22
Size: 4KB - Virtual size: 3KB

.55
Size: - Virtual size: 203KB

.rdata
Size: 12KB - Virtual size: 12KB

.data
Size: 512B - Virtual size: 824B

.33
Size: 47KB - Virtual size: 46KB

.zx
Size: 249KB - Virtual size: 248KB

.44
Size: 45KB - Virtual size: 45KB

.66
Size: 8KB - Virtual size: 7KB

.rsrc
Size: 512B - Virtual size: 320B

.reloc
Size: 5KB - Virtual size: 4KB