424ccec47a32023e6f4d4e76e32b048f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

424ccec47a32023e6f4d4e76e32b048f_JaffaCakes118
Size

39KB
MD5

424ccec47a32023e6f4d4e76e32b048f
SHA1

5d5f424156ae6e63c41e56a4c03f6164a5985504
SHA256

0701c5620132328174f5d11ec7d334b49e3c7408a645561223d04e4315f92c35
SHA512

c55e4c00ecddc64773b7e587a676be40cfc4dcedc5489fbc924d989ced46609491acbd3244901d7821bfd49d696e64480e70a2ce7b0e635544292c21e152b4cf
SSDEEP

768:VE6o3Nka4WBOAxnRk6OnpD4ngMiEOoUqvbgB5Ax0QzWhT149jx:GXnYuRkrpD4ngMiEOMUB5mjWV149

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
424ccec47a32023e6f4d4e76e32b048f_JaffaCakes118

Files

424ccec47a32023e6f4d4e76e32b048f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

6b06af0914d24ad48226a710a3ee6fab

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoGetClassObject
StringFromCLSID
OleGetIconOfClass
OleRegGetMiscStatus
OleInitialize
CoDisconnectObject
StgIsStorageFile
OleCreateMenuDescriptor
ReadClassStm
GetRunningObjectTable
OleTranslateAccelerator
OleCreateFromFile
StgCreateDocfileOnILockBytes
CreateDataCache
CoRegisterMessageFilter
CreateBindCtx
OleCreate
CoFreeUnusedLibraries
GetClassFile
OleCreateStaticFromData
OleSetContainedObject
OleIsRunning
CreateFileMoniker
StgCreateDocfile
OleSetClipboard
CreateItemMoniker
CoRevokeClassObject
WriteClassStg
CreateDataAdviseHolder
OleDuplicateData
CoInitialize
OleRegEnumVerbs
OleLoad
ReleaseStgMedium
CreateStreamOnHGlobal
GetHGlobalFromILockBytes
OleLockRunning
OleFlushClipboard
CoTaskMemAlloc
OleCreateLinkToFile
OleSaveToStream
OleQueryCreateFromData
CoRegisterClassObject
OleDestroyMenuDescriptor
StgOpenStorage
OleQueryLinkFromData
ReadFmtUserTypeStg
CreateOleAdviseHolder
CreateILockBytesOnHGlobal
CoGetMalloc
OleCreateFromData
CoUninitialize
RevokeDragDrop
ReadClassStg
OleIsCurrentClipboard
RegisterDragDrop
WriteFmtUserTypeStg
CoLockObjectExternal
OleUninitialize
CreateGenericComposite
CoTreatAsClass
OleSave
IsAccelerator
WriteClassStm
DoDragDrop
OleRegGetUserType
OleCreateLinkFromData
CLSIDFromProgID
CoTaskMemFree
OleLoadFromStream
SetConvertStg
StringFromGUID2
CoCreateInstance
OleSetMenuDescriptor
OleRun
StgOpenStorageOnILockBytes
OleGetClipboard
CLSIDFromString

user32

GetSystemMetrics
IsZoomed
GetDlgItemInt
SetWindowPlacement
wsprintfW
DrawMenuBar
UnregisterClassW
DefMDIChildProcW
SetFocus
RemoveMenu
SetPropW
LoadIconW
WaitMessage
GetKeyState
IsChild
InvertRect
SetScrollInfo
MessageBeep
GetWindowTextLengthW
GetCursorPos
EndPaint
GetSysColorBrush
InvalidateRect
DefWindowProcW
ReleaseCapture
EnumChildWindows
GetWindowRect
ReleaseDC
GetWindowLongW
SetActiveWindow
GetClientRect
GetLastActivePopup
MapDialogRect
TranslateMDISysAccel
SetMenu
GetMessagePos
IsClipboardFormatAvailable
BeginPaint
ScrollWindowEx
SetScrollPos
RegisterWindowMessageW
IntersectRect
SetWindowTextW
IsWindowEnabled
GetDlgItem
WindowFromPoint
GetMenuCheckMarkDimensions
GetActiveWindow
SetParent
InvalidateRgn
LoadAcceleratorsW
PostQuitMessage
SetWindowContextHelpId
CountClipboardFormats
ShowOwnedPopups
EndDeferWindowPos
DestroyWindow
UnpackDDElParam
CheckMenuItem
ReuseDDElParam
wvsprintfW
GetScrollInfo
GetMessageTime
GetDCEx
KillTimer
GetClassInfoW
GetWindow
RedrawWindow
GetDialogBaseUnits
GetMenuItemCount
SystemParametersInfoA
IsIconic
DispatchMessageW
MessageBoxA
SendMessageW
FrameRect
IsDialogMessageW
SetDlgItemTextW
TabbedTextOutW
GetScrollRange
DrawTextW
GetParent
OffsetRect
FindWindowW
MapWindowPoints
GetWindowDC
GetDlgCtrlID
DefFrameProcW
DeleteMenu
EnableMenuItem
WinHelpW
GetSysColor
SetMenuItemBitmaps
SetWindowPos
MsgWaitForMultipleObjects
GetMenuItemID
GetAsyncKeyState
GetSubMenu
GetTabbedTextExtentA
IsWindow
CopyAcceleratorTableW
GetForegroundWindow
CheckRadioButton
SetDlgItemInt
RemovePropW
IsRectEmpty
MoveWindow
ModifyMenuW
GetSystemMenu
CallNextHookEx
SetScrollRange
DrawEdge
GetClassNameW
CheckDlgButton
PeekMessageW
CopyRect
DestroyCursor
SetCursor
SetCapture
MessageBoxW
CharNextW
ScrollWindow
TrackPopupMenu
SetRectEmpty
InflateRect
GetFocus
GetWindowThreadProcessId
DestroyIcon
DestroyMenu
GetMenu
GetWindowTextW
GrayStringW
ClipCursor
IsDlgButtonChecked
SendDlgItemMessageW
CreateMenu
SetTimer
BeginDeferWindowPos
TranslateAcceleratorW
UpdateWindow
GetMessageW
SetWindowsHookExW
GetWindowPlacement
PtInRect
GetDC
RegisterClassW
WindowFromDC
PostThreadMessageW
GetMenuState
RegisterClipboardFormatW
FillRect
AdjustWindowRectEx
GetScrollPos
EqualRect
DrawFocusRect
CreateWindowExW
EndDialog
BringWindowToTop
InSendMessage
SetWindowLongW
TranslateMessage
GetPropW
GetTabbedTextExtentW
GetDlgItemTextW
GetNextDlgTabItem
CallWindowProcW
ValidateRect
LoadCursorW
LockWindowUpdate
UnionRect
SystemParametersInfoW
GetCapture
SetForegroundWindow
SetRect
SendDlgItemMessageA
ShowScrollBar
GetNextDlgGroupItem
ScreenToClient
LoadMenuW
CreateDialogIndirectParamW
UnhookWindowsHookEx
GetTopWindow
LoadStringW
InsertMenuW
GetMenuStringW
EnableWindow
IsWindowVisible
AppendMenuW
ShowWindow
PostMessageW
LoadBitmapW
DeferWindowPos
CharUpperW
SetCursorPos
GetDesktopWindow
ClientToScreen

gdi32

GetTextExtentPoint32W
ExtTextOutW
CreateHatchBrush
GetPolyFillMode
OffsetViewportOrgEx
MoveToEx
ScaleWindowExtEx
ScaleViewportExtEx
EnumFontFamiliesExW
GetMapMode
StartDocW
GetBkMode
SetRectRgn
CreatePen
GetStockObject
CreateCompatibleDC
PatBlt
IntersectClipRect
SetViewportOrgEx
CreateFontIndirectW
RectVisible
GetTextMetricsW
RealizePalette
SelectPalette
CreatePalette
GetViewportOrgEx
SetColorAdjustment
PolylineTo
PolyDraw
EnumFontFamiliesW
StartPage
ExtSelectClipRgn
SetBrushOrgEx
SetTextJustification
SaveDC
LineTo
GetObjectType
GetTextColor
CreateCompatibleBitmap
GetCharWidthW
CreateMetaFileW
CreateSolidBrush
ExtCreatePen
GetNearestColor
GetTextExtentPoint32A
StretchDIBits
GetClipBox
SelectClipPath
SetTextCharacterExtra
CloseMetaFile
SetROP2
DeleteObject
SelectClipRgn
GetWindowOrgEx
GetTextFaceW
SetTextAlign
AbortDoc
GetClipRgn
OffsetRgn
GetROP2
SetWindowExtEx
SetBkColor
GetBkColor
GetPixel
CreateDCW
SetMapperFlags
DPtoLP
PtVisible
SelectObject
EnumMetaFile
DeleteDC
EndPage
SetPolyFillMode
OffsetClipRgn
CreateDIBPatternBrushPt
BitBlt
SetTextColor
SetWindowOrgEx
PolyBezierTo
CreateRectRgn
GetStretchBltMode
GetCurrentPositionEx
Rectangle
GetPaletteEntries
CreatePatternBrush
RestoreDC
GetTextAlign
GetViewportExtEx
LPtoDP
TextOutW
CopyMetaFileW
CreateRectRgnIndirect
EndDoc
ArcTo
ExcludeClipRect
UnrealizeObject
SetAbortProc
PlayMetaFile
SetViewportExtEx
GetWindowExtEx
CreateBitmap
GetDeviceCaps
GetObjectW
Escape
CombineRgn
SetBkMode
CreateFontW
SetStretchBltMode
SetArcDirection
SetMapMode
PlayMetaFileRecord
DeleteMetaFile
OffsetWindowOrgEx

ws2_32

WSAGetLastError

kernel32

GetShortPathNameW
FileTimeToSystemTime
LocalLock
SetFileAttributesW
DelayLoadFailureHook
InterlockedDecrement
GetProcessVersion
InitializeCriticalSection
lstrcpynA
CreateFileW
GetDiskFreeSpaceW
TlsFree
GlobalFlags
LoadLibraryExA
GlobalUnlock
lstrcatA
SetEndOfFile
LocalAlloc
FindClose
GetVersionExA
GetSystemTimeAsFileTime
FindFirstFileW
WriteFile
FreeResource
FindResourceW
FileTimeToLocalFileTime
LocalFileTimeToFileTime
GetCurrentProcess
GlobalAlloc
GetModuleHandleW
lstrcmpiW
DeleteCriticalSection
GetVolumeInformationW
GlobalReAlloc
lstrcmpW
lstrcatW
SetThreadPriority
GetVersionExW
MoveFileW
LoadLibraryA
OutputDebugStringW
TlsAlloc
GetFileTime
EnterCriticalSection
Sleep
GetProcAddress
LockFile
lstrcmpiA
DuplicateHandle
ReleaseMutex
WritePrivateProfileStringW
GlobalAddAtomW
GetUserDefaultLCID
LocalUnlock
GlobalFindAtomW
FormatMessageW
CopyFileW
LoadLibraryW
GetFullPathNameW
FindResourceExW
ReleaseSemaphore
SetFileTime
MultiByteToWideChar
lstrlenW
InterlockedIncrement
GetThreadLocale
GetFileAttributesW
LocalFree
GetTickCount
SetErrorMode
SuspendThread
GetLastError
CloseHandle
ResumeThread
lstrcpyA
TlsGetValue
GetCurrentThreadId
GetSystemInfo
lstrcmpA
QueryPerformanceCounter
GlobalDeleteAtom
WideCharToMultiByte
GetModuleHandleA
IsDBCSLeadByte
LocalReAlloc
VirtualAlloc
TlsSetValue
DeleteFileW
LeaveCriticalSection
GetProfileIntW
SetEvent
lstrlenA
CreateMutexW
GetTempPathW
GlobalLock
GetCurrentThread
GetTempFileNameW
UnlockFile
SetUnhandledExceptionFilter
GetPrivateProfileIntW
FlushFileBuffers
SearchPathW
SystemTimeToFileTime
CreateEventW
WaitForMultipleObjects
CreateSemaphoreW
SizeofResource
lstrcpynW
GlobalFree
GetSystemDirectoryA
GetStringTypeExW
GetCurrentDirectoryW
lstrcpyW
GetVersion
WaitForSingleObject
GetFileSize
FindNextFileW
SetLastError
MulDiv
GlobalSize
UnhandledExceptionFilter
VirtualProtect
GlobalGetAtomNameW
GetCurrentProcessId
VirtualQuery
LoadResource
TerminateProcess
FreeLibrary
GetPrivateProfileStringW
InterlockedCompareExchange
ReadFile
SetFilePointer
LockResource
GlobalHandle
GetModuleFileNameW

wininet

InternetGetCookieW
GopherCreateLocatorW
GopherOpenFileW
FtpGetFileW
FtpSetCurrentDirectoryW
InternetOpenW
InternetFindNextFileW
FtpRenameFileW
InternetCloseHandle
InternetSetStatusCallbackW
InternetSetFilePointer
InternetSetCookieW
FtpDeleteFileW
InternetCanonicalizeUrlW
HttpOpenRequestW
FtpRemoveDirectoryW
FtpFindFirstFileW
InternetQueryOptionW
HttpQueryInfoW
FtpCreateDirectoryW
FtpOpenFileW
InternetQueryDataAvailable
HttpAddRequestHeadersW
FtpGetCurrentDirectoryW
HttpEndRequestW
InternetReadFile
InternetConnectW
InternetSetOptionExW
InternetCrackUrlW
InternetErrorDlg
HttpSendRequestW
InternetWriteFile
GopherFindFirstFileW
GopherGetAttributeW
HttpSendRequestExW
FtpPutFileW
InternetGetLastResponseInfoW
InternetOpenUrlW

msvcrt

clearerr
_open_osfhandle
_wcsrev
_get_osfhandle
free
fflush
time
fseek
__CxxFrameHandler
memmove
_beginthreadex
floor
gmtime
_wtol
_onexit
wcslen
_expand
_except_handler3
__dllonexit
fclose
_wfullpath
_wcsupr
wcscspn
_wtoi
swprintf
wcsftime
_wcsnicmp
ftell
__argc
_wcslwr
_purecall
abort
fread
_initterm
modf
wcsrchr
_adjust_fdiv
fgetws
wcsstr
calloc
_CxxThrowException
_msize
wcstod
fputws
fwrite
ceil
__wargv
_snwprintf
wcscpy
mktime
iswspace
wcspbrk
_endthreadex
wcscmp
wcstoul
_fdopen
wcschr
malloc
wcsncmp
_wsplitpath
_ltow
_wcsdup
localtime
wcsncpy
__doserrno
vswprintf
realloc
wcsspn
iswdigit
_ultow
wcstol
_itow

ntdll

NtCreateKey

advapi32

RegOpenKeyW
RegSetValueW
GetFileSecurityW
RegCreateKeyExW
RegOpenKeyExW
RegCreateKeyW
RegQueryValueExW
RegEnumKeyW
RegCloseKey
RegDeleteKeyW
RegSetValueExW
RegDeleteValueW
RegQueryValueW
SetFileSecurityW

adsldpc

ADsEnumClasses

Sections

.textbss
Size: 512B - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 512B - Virtual size: 444B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 37KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

6b06af0914d24ad48226a710a3ee6fab

Headers

File Characteristics

Imports

ole32

user32

gdi32

ws2_32

kernel32

wininet

msvcrt

ntdll

advapi32

adsldpc

Sections

.textbss Size: 512B - Virtual size: 96KB

.text Size: 512B - Virtual size: 444B

.rdata Size: 512B - Virtual size: 32B

.idata Size: 37KB - Virtual size: 36KB

.textbss
Size: 512B - Virtual size: 96KB

.text
Size: 512B - Virtual size: 444B

.rdata
Size: 512B - Virtual size: 32B

.idata
Size: 37KB - Virtual size: 36KB