44d27fbe5a5dc93aa384bd24d5206b4d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

44d27fbe5a5dc93aa384bd24d5206b4d_JaffaCakes118
Size

96KB
MD5

44d27fbe5a5dc93aa384bd24d5206b4d
SHA1

027398ee3f27b477856004395cff4f1a55dc8ffb
SHA256

9681c64c0f9aa37699f8cbc5c130e01828d5f8440edcc0bf04e499b155cb1285
SHA512

6892dfc35fec12233cfd3c9635677a5473619bead917f6591137e4d50fb5e50f2c07d072bdbb89fb6221a86f4de02bfe3ac600e5970dd1ce80133e597f8a130b
SSDEEP

1536:8rDxSD/I1kQVVTnNG++tQwbvxIuQhLAin+s6cFBYvBwAE4ZoysYY1YYdYCO4rxgY:eDxIFcL4drx7QNZ76IYZwAE4ZoMoYYdF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
44d27fbe5a5dc93aa384bd24d5206b4d_JaffaCakes118

Files

44d27fbe5a5dc93aa384bd24d5206b4d_JaffaCakes118
.dll regsvr32 windows:4 windows x86 arch:x86

75a75b6370cd2ad7849113724f52a2e4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

HeapDestroy
LocalFlags
IsValidLocale
CompareFileTime
FileTimeToDosDateTime
RtlUnwind
GetDriveTypeW
IsValidCodePage
HeapLock
HeapReAlloc
GetProfileSectionA
ReadConsoleA
lstrcmpiW
AllocConsole
WaitForSingleObjectEx
OpenSemaphoreW
GetCompressedFileSizeW
GetModuleFileNameW
CreateNamedPipeW
FindResourceA
EnumResourceLanguagesA
IsBadStringPtrA
FreeConsole
SetEnvironmentVariableW
SetConsoleCtrlHandler
IsWow64Process
GetLargestConsoleWindowSize
SwitchToThread
CreateFileMappingW
CreateWaitableTimerW
GetCurrentThread
GetStringTypeExW
GetSystemWindowsDirectoryA
LockResource
SetVolumeLabelW
FindAtomW
CreateJobObjectW
TransactNamedPipe
SetFileApisToOEM
PeekNamedPipe
GetEnvironmentVariableA
GetConsoleCP
WriteProfileStringW
IsBadHugeWritePtr
GetVolumeNameForVolumeMountPointW
ReplaceFileW
GetQueuedCompletionStatus
SetLastError
OpenEventW
CreateProcessW
ConvertDefaultLocale
FindNextFileW
GetTempPathA
PeekConsoleInputA
HeapValidate
lstrlenA
GlobalHandle
OpenThread
GetCommandLineA
LocalUnlock
VirtualAllocEx
FileTimeToLocalFileTime
WaitForMultipleObjectsEx
PostQueuedCompletionStatus
HeapCreate
FindNextVolumeMountPointW
GetLogicalDrives
GetLocaleInfoA
UnlockFile
FindFirstFileA
SetFilePointerEx
GetThreadPriority
LCMapStringW
GlobalFlags
AssignProcessToJobObject
FindFirstChangeNotificationA
WriteProfileStringA
EnumSystemLocalesA
SetConsoleCursorPosition
GetFileType
SystemTimeToFileTime
GetConsoleOutputCP
SetFileAttributesA
GetAtomNameA
lstrcpynA
SetWaitableTimer
GetDefaultCommConfigW
GetComputerNameExW
FreeEnvironmentStringsW
WaitForMultipleObjects
lstrcpynW
RemoveDirectoryA
GetCommandLineW
FileTimeToSystemTime
LocalReAlloc
CallNamedPipeA
SetComputerNameExW
lstrcpyA
GetNumberFormatW
GetSystemDirectoryA
QueueUserAPC
RaiseException
CreateRemoteThread
GetNumberFormatA
GetDriveTypeA
SetCurrentDirectoryA
SetCurrentDirectoryW
GetLogicalDriveStringsA
GetVolumePathNamesForVolumeNameW
GetStringTypeExA
CreateMailslotW
GetProcessAffinityMask
DeleteTimerQueueEx
WriteConsoleA
ExitProcess
LoadResource
FlushViewOfFile
GetStdHandle
SetFileTime
GetShortPathNameW
GlobalFindAtomA
GetFileAttributesExW
GetSystemTimeAsFileTime
WriteFile
CreateMutexA
DeleteFileA
EnterCriticalSection
CreateProcessA
GlobalAlloc
CloseHandle
LoadLibraryA
CopyFileA
MapViewOfFile
GetModuleHandleA
GetTickCount
VirtualQuery
InterlockedExchange
LocalFree
GetComputerNameA
InterlockedIncrement
GetLastError
VirtualProtect
InterlockedDecrement
GetProcAddress
HeapAlloc
WaitForSingleObject
ExpandEnvironmentStringsA
GetProcessHeap
GetUserDefaultUILanguage

user32

GetSysColor
SetCapture
ReleaseCapture
CreateIconFromResourceEx
LoadImageA
SetRectEmpty
SetForegroundWindow
DestroyCursor
CharUpperBuffW
GetNextDlgGroupItem
MessageBoxIndirectW
SendNotifyMessageW
CreateMenu
GetCapture
ToAscii
CopyImage
SetDlgItemInt
GetSystemMenu
DrawIcon
SetFocus
GetScrollBarInfo
SetCursorPos
EnumWindowStationsW
RedrawWindow
InsertMenuA
ShowCursor
CreateIconIndirect
GetDC
CharLowerBuffA
GetMonitorInfoA
TrackPopupMenuEx
InvertRect
CharNextW
LookupIconIdFromDirectory
DrawEdge
DrawTextA
wsprintfW
SetWindowTextA
CheckRadioButton
PostQuitMessage
TabbedTextOutA
AppendMenuW
ExitWindowsEx
GetWindowTextA
SetWindowPos
GetWindowTextW
SetCursor
ChangeDisplaySettingsA
InternalGetWindowText
LoadImageW
MoveWindow
HideCaret
IsRectEmpty
CharToOemW
MsgWaitForMultipleObjects
MapVirtualKeyExW
CharUpperBuffA
CheckDlgButton
PostMessageA
ClientToScreen
OffsetRect
GetMessagePos
GetWindowContextHelpId
BeginDeferWindowPos
UnregisterClassW
DrawMenuBar
GetComboBoxInfo
RemoveMenu
GetMenuItemInfoA
EnumDisplaySettingsA
CreateAcceleratorTableA
SetWindowLongA
IsZoomed
GrayStringW
DestroyIcon
PostThreadMessageW
GetDlgItemTextA
GetCaretPos
SetScrollInfo
GetClassLongW
ShowScrollBar
GetMenuStringW
GetMonitorInfoW
GetTabbedTextExtentA
SetScrollPos
GetWindowPlacement
DrawTextExW
ModifyMenuA
CallWindowProcW
CharLowerA
DestroyAcceleratorTable
InsertMenuItemA
LoadIconA
WindowFromPoint
DefMDIChildProcA
GetMenuItemInfoW
ShowCaret
EnumChildWindows
SetWindowTextW
CreateDialogParamW
ToAsciiEx
GetClassInfoA
SetMenuItemBitmaps
IsWindow
InSendMessage
CharLowerW
TranslateMessage
SetClassLongA
GetDlgCtrlID
LoadAcceleratorsA
ReleaseDC
GetScrollPos
NotifyWinEvent
AdjustWindowRect
FindWindowExA
EnumWindows
UnhookWindowsHook
RemovePropW
DeferWindowPos
CloseWindowStation
EqualRect
CheckMenuItem
WaitMessage
GetParent
DrawAnimatedRects
DispatchMessageA
FindWindowA
SetWindowsHookExA
GetWindowThreadProcessId
UnhookWindowsHookEx
CallNextHookEx
GetMessageA
GetClassNameA
PostThreadMessageA

shlwapi

UrlCreateFromPathW
StrNCatW
PathFindFileNameA
UrlIsW
PathIsRootW
PathCreateFromUrlW
PathQuoteSpacesW
PathIsPrefixW
PathFindExtensionA
PathRenameExtensionW
StrStrW
SHDeleteValueW
StrRChrW
PathIsRelativeW
PathGetCharTypeW
StrToIntExW
PathCommonPrefixW
StrCmpW
StrChrA
PathAddExtensionW
SHCreateShellPalette
StrToIntA
SHGetValueW
StrCatBuffW
PathFindFileNameW
PathSkipRootW
SHDeleteKeyW
SHRegSetUSValueW
SHStrDupW
PathIsURLW
SHSetValueW
PathMakePrettyW
PathIsUNCServerW
StrCpyW
SHCreateStreamOnFileW
PathRemoveFileSpecW
PathGetArgsW
SHDeleteKeyA

gdi32

GetWindowExtEx
InvertRgn
GetSystemPaletteUse
CreateMetaFileA
GetCharWidth32W
SetMapperFlags
SelectPalette
SetROP2
SetBitmapBits
CreateDCW
ExtCreateRegion
CreateRectRgn
SetMagicColors
ResetDCA
StartDocW
SetPixel
Ellipse
CreateICA
GetCurrentObject
GetOutlineTextMetricsA
EnumFontsA
TranslateCharsetInfo
SetGraphicsMode
SetDIBColorTable
OffsetViewportOrgEx
CreateDIBPatternBrushPt
EndPage
CreateMetaFileW
CreatePenIndirect
SetRectRgn
EnumFontFamiliesExW
CreateBitmapIndirect
GetMapMode
CreateDIBitmap
GetPaletteEntries
GetRandomRgn
ScaleWindowExtEx
GetBitmapBits
AddFontResourceA
SetViewportExtEx
GetTextAlign
PolyPolyline
GetROP2
SetTextCharacterExtra
SetSystemPaletteUse
PlayMetaFile
PlayMetaFileRecord
GetRegionData
GetTextCharsetInfo
UnrealizeObject
GetRgnBox
GetEnhMetaFileA
GetTextMetricsW
GetStockObject
SwapBuffers
GetObjectW
GetMetaFileA
Escape
PtInRegion
GetWindowOrgEx
DeleteDC
GetBkColor
SetArcDirection
ExtTextOutA
GetTextExtentPoint32A
GetTextExtentPoint32W
DPtoLP
GetTextFaceA
GetPixelFormat
GetObjectA
GetBrushOrgEx
CopyMetaFileA
GetCharABCWidthsA
GetGlyphOutlineW
CreateFontA

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 68KB - Virtual size: 65KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

75a75b6370cd2ad7849113724f52a2e4

Headers

File Characteristics

Imports

kernel32

user32

shlwapi

gdi32

Exports

Exports

Sections

.text Size: 68KB - Virtual size: 65KB

.rdata Size: 12KB - Virtual size: 10KB

.data Size: 8KB - Virtual size: 6KB

.reloc Size: 4KB - Virtual size: 2KB

.text
Size: 68KB - Virtual size: 65KB

.rdata
Size: 12KB - Virtual size: 10KB

.data
Size: 8KB - Virtual size: 6KB

.reloc
Size: 4KB - Virtual size: 2KB