41620d1c46ddf765f3001e4d4ca527b8_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

41620d1c46ddf765f3001e4d4ca527b8_JaffaCakes118
Size

127KB
MD5

41620d1c46ddf765f3001e4d4ca527b8
SHA1

fb4b4f0ed433ea7202b289a136b3ac89e5bfebf2
SHA256

dfe6b3744e4f12cd382226475032b709ba35b8b3b763d9790cac2afe977a5919
SHA512

7d975b212cf0219549ba73307674b69de8a4ceedc07c40c3cf034c6a47b45911a3b9d7aad086ec1c1c1b8151efb34c375a78cc4aaadc1ca5d2b76b0aeac6b4b8
SSDEEP

3072:YzlNa9A3a5TV1PcJ5qZPjubuSzbLqVPTmFgM:YzlNaX5RYqR6bu+yLm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
41620d1c46ddf765f3001e4d4ca527b8_JaffaCakes118

Files

41620d1c46ddf765f3001e4d4ca527b8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

17c54a562bc6e49c2b9c9304e909ede2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

AdjustWindowRectEx
MessageBoxW
InvalidateRgn
PostThreadMessageW
GetWindowDC
GetMessageTime
IntersectRect
SetWindowsHookExW
CallNextHookEx
GetCursorPos
GetMenuState
GetPropW
GetWindowThreadProcessId
LoadIconW
DestroyMenu
GetClientRect
SetMenu
SystemParametersInfoA
MapDialogRect
IsWindow
InvalidateRect
SetTimer
SetWindowPos
SetWindowLongW
GetForegroundWindow
MoveWindow
GetDlgCtrlID
UnhookWindowsHookEx
GetDesktopWindow
CopyAcceleratorTableW
EnableMenuItem
SetPropW
UnregisterClassW
RemovePropW
GetSysColor
TranslateMessage
IsWindowVisible
OffsetRect
SetWindowContextHelpId
DrawIcon
DestroyWindow
IsWindowEnabled
GetClassInfoExW
PostQuitMessage
IsIconic
PostMessageW
MapWindowPoints
ValidateRect
GetWindow
GetClassNameW
SetActiveWindow
UpdateWindow
EnableWindow
PeekMessageW
GetTopWindow
GetKeyState
IsDialogMessageW
SendMessageW
EndPaint
TabbedTextOutW
IsChild
RegisterClassW
EndDialog
GetParent
GetLastActivePopup
IsRectEmpty
SetRect
RegisterWindowMessageW
ReleaseCapture
GetMenuItemCount
GetMenuItemID
GetWindowTextW
CallWindowProcW
DrawTextExW
GetWindowLongW
GetSysColorBrush
DefWindowProcW
SetCursor
GetClassLongW
CopyRect
GetSystemMetrics
SendDlgItemMessageA
LoadBitmapW
ModifyMenuW
MessageBeep
ClientToScreen
GetSubMenu
DispatchMessageW
CreateDialogIndirectParamW
SetForegroundWindow
GetFocus
WinHelpW
SetWindowTextW
BeginPaint
GetCapture
GetWindowPlacement
DrawTextW
ReleaseDC
GetActiveWindow
SetFocus
GetDlgItem
GetDC
LoadCursorW
SetMenuItemBitmaps
GetWindowRect
GetNextDlgGroupItem
CharUpperW
GetMessageW
CreateWindowExW
GetMessagePos
SetCapture
GetMenu
AppendMenuW
GetSystemMenu
SendDlgItemMessageW
GetClassInfoW
GetMenuCheckMarkDimensions
GetNextDlgTabItem
CharNextW
EqualRect
ShowWindow
CheckMenuItem
PtInRect
GrayStringW
RegisterClipboardFormatW

kernel32

GlobalDeleteAtom
GetSystemTimeAsFileTime
GetFileSizeEx
SetEndOfFile
GlobalAlloc
TlsGetValue
GlobalFlags
LoadResource
RtlUnwind
GetVersionExW
GlobalReAlloc
LockFile
GetCurrentThread
GetConsoleCP
GetFileSize
CreateFileW
TlsGetValue
RaiseException
LoadLibraryW
GetModuleFileNameA
GetVersionExA
SetEnvironmentVariableA
GetEnvironmentStringsW
TlsFree
lstrcmpW
SetFilePointer
GlobalHandle
CreateFileA
Sleep
FindResourceW
GetFileTime
GetFileType
FindVolumeClose
ConvertDefaultLocale
GetModuleHandleA
InterlockedIncrement
GetConsoleMode
WriteConsoleA
DuplicateHandle
GetVolumeInformationW
ReadFile
FreeLibrary
QueryPerformanceCounter
lstrcmpA
WritePrivateProfileStringW
VirtualQuery
GetCurrentProcess
TlsSetValue
GetLocaleInfoW
TerminateProcess
MulDiv
SizeofResource
LocalFree
lstrlenA
GetFileAttributesW
InterlockedExchange
WriteConsoleW
TlsAlloc
LCMapStringA
SetCurrentDirectoryW
EnumResourceLanguagesA
GetSystemInfo
SetErrorMode
HeapSize
WideCharToMultiByte
EnterCriticalSection
GetTickCount
EnumResourceLanguagesW
InitializeCriticalSectionAndSpinCount
WaitForSingleObject
InitializeCriticalSection
LeaveCriticalSection
GetStartupInfoA
LocalReAlloc
FileTimeToSystemTime
VirtualProtect
GetCommandLineW
IsDebuggerPresent
DeleteCriticalSection
InterlockedDecrement
GetStringTypeA
LocalAlloc
FreeEnvironmentStringsW
GetStringTypeW
HeapReAlloc
GetCPInfo
CreateProcessW
GetCurrentProcessId
UnlockFile
GetThreadLocale
GlobalFindAtomW
CloseHandle
CompareStringA
IsValidCodePage
GetLocaleInfoA
SetStdHandle
CreateMutexW
GetConsoleOutputCP
GetStdHandle
GetTimeZoneInformation
GetCurrentThreadId
LockResource
ExitProcess
FreeResource
FormatMessageW
GetLastError
ExitProcess
HeapCreate
SetUnhandledExceptionFilter
WriteFile
VirtualAlloc
SetHandleCount
GlobalAddAtomW
lstrlenW
GetStartupInfoW
GetUserDefaultUILanguage
VirtualFree
LCMapStringW
FindClose
GetProcAddress
FileTimeToLocalFileTime
CompareStringW
GlobalUnlock
MultiByteToWideChar
GetFullPathNameW
GetModuleFileNameW
GlobalFree
GetPrivateProfileStringW
UnhandledExceptionFilter
SetLastError
GetACP
GetOEMCP
LoadLibraryA
FindFirstFileW
FlushFileBuffers
HeapFree
GlobalLock
GetModuleHandleW
ExpandEnvironmentStringsW
HeapAlloc

winspool.drv

OpenPrinterW
ClosePrinter
DocumentPropertiesW

shlwapi

PathIsUNCW
PathStripToRootW
PathFindExtensionW
PathFindFileNameW

ole32

CoTaskMemFree
OleIsCurrentClipboard
OleUninitialize
OleInitialize
StgOpenStorageOnILockBytes
CoTaskMemAlloc
CoRegisterMessageFilter
CreateILockBytesOnHGlobal
CLSIDFromString
CoFreeUnusedLibraries
OleFlushClipboard
CLSIDFromProgID
StgCreateDocfileOnILockBytes
CoGetClassObject
CoRevokeClassObject

comdlg32

GetFileTitleW

comctl32

InitCommonControlsEx

oledlg

OleUIBusyW

advapi32

RegCreateKeyW
RegQueryValueExW
RegDeleteKeyW
RegEnumKeyW
RegCreateKeyExW
RegCloseKey
RegOpenKeyExW
RegOpenKeyW
RegQueryValueW

gdi32

GetStockObject
GetDeviceCaps
ScaleWindowExtEx
SaveDC
SetBkColor
GetClipBox
TextOutW
SetTextColor
SetViewportExtEx
GetRgnBox
DeleteObject
GetWindowExtEx
PtVisible
SetViewportOrgEx
CreateRectRgnIndirect
GetViewportExtEx
SetWindowExtEx
DeleteDC
Escape
SetMapMode
RectVisible
CreateBitmap
GetMapMode
RestoreDC
GetObjectW
ScaleViewportExtEx
ExtTextOutW
OffsetViewportOrgEx
GetTextColor
GetBkColor
SelectObject
ExtSelectClipRgn

Sections

.text
Size: 100KB - Virtual size: 100KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

17c54a562bc6e49c2b9c9304e909ede2

Headers

File Characteristics

Imports

user32

kernel32

winspool.drv

shlwapi

ole32

comdlg32

comctl32

oledlg

advapi32

gdi32

Sections

.text Size: 100KB - Virtual size: 100KB

.rdata Size: 9KB - Virtual size: 8KB

.data Size: 16KB - Virtual size: 15KB

.rsrc Size: 1024B - Virtual size: 56KB

.text
Size: 100KB - Virtual size: 100KB

.rdata
Size: 9KB - Virtual size: 8KB

.data
Size: 16KB - Virtual size: 15KB

.rsrc
Size: 1024B - Virtual size: 56KB