3cf369cd469422b3897cb3484c6538e7_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

3cf369cd469422b3897cb3484c6538e7_JaffaCakes118
Size

21KB
MD5

3cf369cd469422b3897cb3484c6538e7
SHA1

9cd889c4bd5957f24c034ecc3aac7b94895cfdd9
SHA256

6f88d502dc8bb887cdc2bb7a57c7a5a509ad6b686193ede2d58c7798e69cea54
SHA512

39e2794032f0d7cf8db9323e68f5cf260afd0da17d5099a60b49c3d2bda67567e32a859ba269e5553416c3e7a58f688f35cebc0adb2a64805f1b1d7e1a039152
SSDEEP

384:M7IudRmWqAgW5VaMcXVJymIuWGPZhh4WWieZWO9:M7IuLmWPLg0uWGPZhhde9

Score

1^/10

Malware Config

Signatures

Files

3cf369cd469422b3897cb3484c6538e7_JaffaCakes118
.exe windows:5 windows x86 arch:x86

59c188aed971bd231e021609f43c2f49

Code Sign

60:29:be:36:38:c4:8a:74:bb:5e:b2:8f:90:0a:7f:8c
Certificate

Issuer

CN=yFfJFQjZS5cVSsx

Not Before

20/03/2012, 06:07

Not After

31/12/2039, 23:59

Subject

CN=yFfJFQjZS5cVSsx

Extended Key Usages

ExtKeyUsageCodeSigning

e2:7c:bf:1b:1d:e3:b7:b4:8a:2c:59:32:c9:6a:80:70:2e:71:61:e9
Signer

Actual PE Digest

e2:7c:bf:1b:1d:e3:b7:b4:8a:2c:59:32:c9:6a:80:70:2e:71:61:e9

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTempPathA
GetProcAddress
GetModuleHandleA

msvcrt

memset

user32

wsprintfW
WINNLSEnableIME
VkKeyScanW
VkKeyScanExW
UnloadKeyboardLayout
UnionRect
SubtractRect
SetWindowsHookExW
SetWindowLongA
SetMessageExtraInfo
SetMenuDefaultItem
SetMenu
SetKeyboardState
SetDebugErrorLevel
SetClassWord
SendNotifyMessageW
SendMessageCallbackW
SendMessageCallbackA
SendMessageA
ScreenToClient
RemovePropW
RemovePropA
RegisterShellHookWindow
RegisterDeviceNotificationW
PostQuitMessage
PeekMessageW
PackDDElParam
OpenClipboard
OemToCharW
OemToCharBuffA
NotifyWinEvent
MonitorFromWindow
MessageBoxW
MessageBoxA
MapWindowPoints
LookupIconIdFromDirectory
IsRectEmpty
IsHungAppWindow
GetWindowThreadProcessId
GetWindowPlacement
GetWindowInfo
GetWindowDC
GetUserObjectInformationA
GetUpdateRgn
GetSystemMenu
GetShellWindow
GetPriorityClipboardFormat
GetMouseMovePointsEx
GetMonitorInfoW
GetMenuStringW
GetMenuState
GetMenuDefaultItem
GetLastActivePopup
GetIconInfo
GetComboBoxInfo
GetClipboardViewer
GetClassLongW
GetCaretPos
GetAncestor
EnumPropsW
EnumPropsExA
EnumPropsA
EnumDisplaySettingsW
EnumDisplayDevicesA
EnumDesktopsW
EnumClipboardFormats
EnableScrollBar
DrawEdge
DrawAnimatedRects
DispatchMessageW
DialogBoxIndirectParamW
DestroyMenu
DefWindowProcA
DdeQueryStringA
DdeKeepStringHandle
DdeInitializeW
DdeImpersonateClient
DdeAbandonTransaction
CreateWindowStationW
CreateWindowExA
CreatePopupMenu
CreateDialogParamA
CreateCursor
CloseDesktop
CheckMenuRadioItem
ChangeMenuA
ChangeDisplaySettingsExW
CascadeChildWindows
CallMsgFilterW
CallMsgFilterA
BlockInput
WinHelpW

gdi32

CombineTransform
CloseEnhMetaFile
Arc
XLATEOBJ_iXlate
UpdateColors
UnloadNetworkFonts
SetWindowExtEx
SetTextCharacterExtra
SetMagicColors
SetICMProfileW
SetColorAdjustment
SetBitmapDimensionEx
SetBitmapBits
SelectObject
SelectFontLocal
SaveDC
STROBJ_vEnumStart
STROBJ_bGetAdvanceWidths
RoundRect
ResetDCW
RemoveFontResourceTracking
PlgBlt
PATHOBJ_vEnumStart
OffsetRgn
NamedEscape
InvertRgn
HT_Get8BPPFormatPalette
GetTextExtentPointA
GetTextColor
GetTextAlign
GetRelAbs
GetRegionData
GetPixelFormat
GetObjectType
GetMetaFileBitsEx
GetKerningPairsA
GetGlyphOutlineW
GetGlyphOutline
GetDeviceGammaRamp
GetCurrentObject
GetCharacterPlacementA
GetCharWidthA
GetCharABCWidthsI
GetCharABCWidthsFloatA
GetBitmapBits
GdiSwapBuffers
GdiSetLastError
GdiSetAttrs
GdiPlayScript
GdiPlayPrivatePageEMF
GdiGetDevmodeForPage
GdiFixUpHandle
GdiEntry8
GdiConvertRegion
GdiConvertFont
GdiConvertBitmap
GdiConvertAndCheckDC
GdiAddGlsBounds
FillRgn
FONTOBJ_vGetInfo
ExtTextOutA
ExtFloodFill
ExtCreatePen
EnumFontsA
EnumFontFamiliesW
EnumFontFamiliesExA
EnumEnhMetaFile
EngWideCharToMultiByte
EngUnlockSurface
EngUnicodeToMultiByteN
EngQueryEMFInfo
EngFreeModule
EngCreateSemaphore
EnableEUDC
Ellipse
DeviceCapabilitiesExW
DeviceCapabilitiesExA
DeleteEnhMetaFile
DeleteDC
DeleteColorSpace
CreatePolygonRgn
CreatePolyPolygonRgn
CreatePenIndirect
CreateFontW
CreateEnhMetaFileW
CreateEllipticRgnIndirect
CreateDIBitmap
CreateColorSpaceW
CopyEnhMetaFileW
AddFontResourceExA

advapi32

RegOpenKeyExW

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

59c188aed971bd231e021609f43c2f49

Code Sign

60:29:be:36:38:c4:8a:74:bb:5e:b2:8f:90:0a:7f:8cCertificate

Extended Key Usages

e2:7c:bf:1b:1d:e3:b7:b4:8a:2c:59:32:c9:6a:80:70:2e:71:61:e9Signer

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

gdi32

advapi32

Sections

.text Size: 14KB - Virtual size: 13KB

.data Size: 2KB - Virtual size: 1KB

.rsrc Size: 3KB - Virtual size: 2KB

60:29:be:36:38:c4:8a:74:bb:5e:b2:8f:90:0a:7f:8c
Certificate

e2:7c:bf:1b:1d:e3:b7:b4:8a:2c:59:32:c9:6a:80:70:2e:71:61:e9
Signer

.text
Size: 14KB - Virtual size: 13KB

.data
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 3KB - Virtual size: 2KB