4244a2a78256f160f12ebf4b9c2edf68_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

4244a2a78256f160f12ebf4b9c2edf68_JaffaCakes118
Size

116KB
MD5

4244a2a78256f160f12ebf4b9c2edf68
SHA1

5f1cccd3d224daa135244922da930fe5d09ee5f4
SHA256

49fa2bf6b31a30c34c4af237478a834dfb4f657933e50e9c44f5851ff82bbf74
SHA512

01261ca01311dbcac583ccb984ec0e044eed5544db8a32482741040b75ec64029298014a239da76b179198772cb951ddd91e7464a9105e60b3aceae2c39c9ade
SSDEEP

3072:auXFH83lvQ4rCynrENURgLKbaqlkmXeT83eh9KcaeXEmgTA:4lv33WGeVmuTBycOC

Score

1^/10

Malware Config

Signatures

Files

4244a2a78256f160f12ebf4b9c2edf68_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b90936ec39f9ad19ac6adeb4a71e13bd

Code Sign

06:e2:bc:62:8e:28:f4:7d:b8:fd:0e:ea:7f:f3:37:50
Certificate

Issuer

CN=5r6Io0OJu3L2

Not Before

16-03-2012 07:53

Not After

31-12-2039 23:59

Subject

CN=5r6Io0OJu3L2

Extended Key Usages

ExtKeyUsageCodeSigning

8a:d0:9f:a2:bf:9c:0e:9c:79:8a:13:5c:d5:59:5c:65:d9:07:c7:d0
Signer

Actual PE Digest

8a:d0:9f:a2:bf:9c:0e:9c:79:8a:13:5c:d5:59:5c:65:d9:07:c7:d0

Digest Algorithm

sha1

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryW
CreateFileA
GetWindowsDirectoryA
lstrlenA
lstrcpyA
VirtualAlloc

user32

GetDoubleClickTime
RegisterClassW
ChangeDisplaySettingsA
SetFocus
ValidateRect
CharPrevExA
OpenInputDesktop
AllowSetForegroundWindow
OpenIcon
GetMenuInfo
GetGUIThreadInfo
GetDlgItemTextA
DrawStateA
DefMDIChildProcA
CreateDialogParamA
LoadCursorW
FindWindowA
UnregisterClassW
DrawFrame
EnumDisplaySettingsW
EnumDisplayDevicesA
GetScrollBarInfo
CreateMenu
UnhookWindowsHookEx
GetScrollRange
IsClipboardFormatAvailable
GetWindow
DestroyAcceleratorTable
OpenWindowStationA
ClientToScreen
SetWindowPos
InsertMenuA
EnumDisplaySettingsA
ActivateKeyboardLayout
EnumDesktopsA
DrawFrameControl
ChangeClipboardChain
InvertRect
CallMsgFilter
OpenWindowStationW
GetAltTabInfo
IMPGetIMEA
OemToCharA
FindWindowExA
GetOpenClipboardWindow
PostQuitMessage
CharPrevW
GetClientRect
GetClipboardFormatNameA
MessageBoxA
PeekMessageA
GetThreadDesktop
GetUpdateRect
GetWindowRgn
GrayStringA
CreateIcon
GetLastInputInfo
GetMenuContextHelpId
RegisterClassA
TranslateMDISysAccel
CreateWindowExA
GetTitleBarInfo
BroadcastSystemMessageA
LoadKeyboardLayoutA
LockSetForegroundWindow
GetKBCodePage
CloseDesktop
IsDialogMessageW
IsWindow
UnhookWinEvent
GetMenuItemInfoW
DdeAddData
SendIMEMessageExA
CreateCursor
LoadCursorA
GetKeyboardLayoutNameA
ToUnicodeEx
GetQueueStatus
SetActiveWindow
SetCursorPos
OpenDesktopA
DdeSetQualityOfService
SetPropA
ExitWindowsEx
MapVirtualKeyExW
GetMessageW
ShowOwnedPopups
LoadIconW
CopyImage
RedrawWindow
CreateMDIWindowA
SetMenuInfo
GetClassLongW
GetCursor

comdlg32

PrintDlgExA
ChooseColorW
PrintDlgExW
ChooseColorA
GetFileTitleA
CommDlgExtendedError
GetSaveFileNameA
FindTextA
PageSetupDlgW
ChooseFontA
PageSetupDlgA
PrintDlgW
GetSaveFileNameW
ReplaceTextA
PrintDlgA
ChooseFontW
GetFileTitleW
GetOpenFileNameA
GetOpenFileNameW
ReplaceTextW
FindTextW

advapi32

RegOpenKeyExW

ole32

CreateDataCache
GetDocumentBitStg
BindMoniker
CreateGenericComposite
OleTranslateAccelerator
SNB_UserUnmarshal
HENHMETAFILE_UserUnmarshal
HBRUSH_UserFree
HWND_UserFree
StgOpenPropStg
StgCreateStorageEx
StgOpenStorageEx
HICON_UserUnmarshal
CLSIDFromProgID
CoLoadLibrary
OleCreateLinkToFile
HMETAFILE_UserFree
HPALETTE_UserFree
HDC_UserUnmarshal
OleIsRunning
StgIsStorageFile
CoTestCancel
CoGetApartmentID
CoQueryAuthenticationServices
CoEnableCallCancellation
CoGetTreatAsClass
HBRUSH_UserUnmarshal
OleCreateFromFile
CoReactivateObject
CreateObjrefMoniker
StgSetTimes
CoIsOle1Class
CoLockObjectExternal
CoGetCancelObject
GetClassFile
StgPropertyLengthAsVariant
HBRUSH_UserSize
OleDoAutoConvert
OleSetAutoConvert
CoRegisterMessageFilter
CoMarshalInterThreadInterfaceInStream
CoCreateInstance
CreatePointerMoniker
CoAllowSetForegroundWindow
CoRegisterSurrogate
HACCEL_UserMarshal
DllGetClassObjectWOW
HDC_UserFree
HDC_UserMarshal
WdtpInterfacePointer_UserFree
HMENU_UserMarshal
CoCreateFreeThreadedMarshaler
CoUnloadingWOW
CoQueryReleaseObject
CoRegisterChannelHook
WdtpInterfacePointer_UserMarshal
StgGetIFillLockBytesOnFile
IsEqualGUID
STGMEDIUM_UserMarshal
CoMarshalHresult
WdtpInterfacePointer_UserUnmarshal
CoMarshalInterface
CoFreeLibrary
CLIPFORMAT_UserUnmarshal
HWND_UserSize
ReadOleStg
STGMEDIUM_UserSize
StringFromIID
UtGetDvtd32Info
CoFileTimeNow
HMETAFILE_UserMarshal
OleNoteObjectVisible
CoGetClassVersion
GetConvertStg
WriteClassStm
HBITMAP_UserSize
CreateILockBytesOnHGlobal
MkParseDisplayName
WdtpInterfacePointer_UserSize
CoDisableCallCancellation
HWND_UserUnmarshal
WriteOleStg
CoTaskMemAlloc
CoGetCallerTID

comctl32

ImageList_GetIcon
ImageList_DrawIndirect
DestroyPropertySheetPage
ImageList_AddMasked
ImageList_SetIconSize
ImageList_DrawEx
UninitializeFlatSB
ImageList_LoadImage
ImageList_ReplaceIcon
ImageList_SetBkColor
GetMUILanguage
FlatSB_SetScrollProp
DrawStatusTextW
CreateStatusWindow
ImageList_DragLeave
ImageList_LoadImageW
ord13
InitMUILanguage
ImageList_SetFilter
FlatSB_SetScrollPos
ImageList_Destroy
PropertySheetA
FlatSB_SetScrollInfo
ImageList_Replace
ImageList_GetDragImage
ord2
ImageList_Merge
InitializeFlatSB
ImageList_Read
CreatePropertySheetPageW
ImageList_DragEnter
ord17
ImageList_GetImageRect
ImageList_SetDragCursorImage
ImageList_Create
ImageList_EndDrag
CreateToolbarEx
FlatSB_GetScrollProp
ord8
PropertySheet
ImageList_GetBkColor
FlatSB_GetScrollPos
FlatSB_SetScrollRange
CreatePropertySheetPage
CreatePropertySheetPageA
ImageList_BeginDrag
ord7
ImageList_DragShowNolock
ImageList_AddIcon
FlatSB_GetScrollInfo
ord15
ImageList_SetImageCount
DrawStatusText
ImageList_Remove
ord6
ord3

Sections

.text
Size: 95KB - Virtual size: 94KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b90936ec39f9ad19ac6adeb4a71e13bd

Code Sign

06:e2:bc:62:8e:28:f4:7d:b8:fd:0e:ea:7f:f3:37:50Certificate

Extended Key Usages

8a:d0:9f:a2:bf:9c:0e:9c:79:8a:13:5c:d5:59:5c:65:d9:07:c7:d0Signer

Headers

File Characteristics

Imports

kernel32

user32

comdlg32

advapi32

ole32

comctl32

Sections

.text Size: 95KB - Virtual size: 94KB

.data Size: 8KB - Virtual size: 7KB

.rsrc Size: 9KB - Virtual size: 9KB

.reloc Size: 1KB - Virtual size: 1KB

06:e2:bc:62:8e:28:f4:7d:b8:fd:0e:ea:7f:f3:37:50
Certificate

8a:d0:9f:a2:bf:9c:0e:9c:79:8a:13:5c:d5:59:5c:65:d9:07:c7:d0
Signer

.text
Size: 95KB - Virtual size: 94KB

.data
Size: 8KB - Virtual size: 7KB

.rsrc
Size: 9KB - Virtual size: 9KB

.reloc
Size: 1KB - Virtual size: 1KB