469faa36dfcf80305d303dfde112743e_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

469faa36dfcf80305d303dfde112743e_JaffaCakes118
Size

508KB
MD5

469faa36dfcf80305d303dfde112743e
SHA1

ad2cb97b3e3d882852cc5160e814b71179acf196
SHA256

13158ad38c86e5d05f614ba560396f1a4948519cc7598cd06dc3be3ea7393b6e
SHA512

37117b1b3ad0f12ebdb8c17a2f959d1ae09a8c9ec2d401366cc05b59f211611e4eb9942e079972519deb38ff1cc2e23bfc01f24df19ffd6bbf8527ffe908737f
SSDEEP

12288:mRCDLeA9XP8V/KKiMMMnMMMMM0/DAHM4KzVG2H6rLlyl9z2DzjDkHG:mQB96CLMMMnMMMMMYDAezV5OMDKHjz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
469faa36dfcf80305d303dfde112743e_JaffaCakes118

Files

469faa36dfcf80305d303dfde112743e_JaffaCakes118
.exe .ps1 windows:4 windows x86 arch:x86 polyglot

a17305e9c9841b4ff80d97923c1c9c3d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsBadReadPtr
GetCommandLineA
ResetEvent
GetTickCount
CreateEventA
_lwrite
ExitProcess
DeleteCriticalSection
ResumeThread
MulDiv
CreateThread
lstrcpyA
LCMapStringA
lstrcmpA
GetSystemDirectoryA
GetLocalTime
CloseHandle
lstrcmpiA
EnterCriticalSection
LoadResource
GlobalLock
GetExitCodeProcess
WinExec
CreateFileA
GetWindowsDirectoryA
TlsGetValue
GetShortPathNameA
GetModuleFileNameW
SizeofResource
GetTimeZoneInformation
lstrcatA
GetVersionExA
SetStdHandle
HeapAlloc
WaitForSingleObject
MultiByteToWideChar
lstrlenA
GetSystemDefaultLCID
GlobalSize
CreateDirectoryA
VirtualAlloc
GetCurrentProcess
LockFile
GetSystemInfo
GetACP
HeapReAlloc
FreeResource
GetCurrentProcessId
LoadLibraryExA
FileTimeToSystemTime
HeapFree
GetSystemTime
SetEvent
UnhandledExceptionFilter
GetCurrentDirectoryA
GetTempPathA
SetEndOfFile
GetStringTypeA
GetProfileStringA
InterlockedDecrement
GetOEMCP
HeapCreate
GetUserDefaultLangID
WideCharToMultiByte
SetEnvironmentVariableA
GetSystemDefaultLangID
GetDriveTypeA
SystemTimeToFileTime
RemoveDirectoryA
DuplicateHandle
_lread
GlobalAlloc
_llseek
GetUserDefaultLCID
CreateSemaphoreA
GetFileType
GetStartupInfoA
TlsAlloc
FlushInstructionCache
_lclose
GetDateFormatA
CreateProcessW
FileTimeToLocalFileTime
IsDBCSLeadByte
SetHandleCount
GetTempFileNameA
GetStdHandle
GetProcAddress
FreeLibrary
GetFullPathNameA
LeaveCriticalSection
GetFileAttributesA
FreeEnvironmentStringsW
GlobalDeleteAtom
LoadLibraryA
FreeEnvironmentStringsA
HeapSize
GetStringTypeW
GetFileTime
FormatMessageW
GlobalAddAtomA
TerminateProcess
GetEnvironmentStringsW
HeapDestroy
UnlockFile
GlobalFree
SetErrorMode
RtlUnwind
MoveFileA
SetFileTime
GetEnvironmentStrings
CompareStringA
SearchPathA
SetLastError
GetModuleFileNameA
SetCurrentDirectoryA
GetVersion
GlobalReAlloc
GetModuleHandleA
VirtualProtect
FormatMessageA
GetCurrentThreadId
GlobalUnlock
FindFirstFileA
SetFileAttributesA
CreateProcessA
GetLastError
DeleteFileA
WriteFile
CompareStringW
FindResourceA
TlsSetValue
ExitThread
IsBadCodePtr
SetLocalTime
GlobalHandle
VirtualQuery
GetStringTypeExA
FlushFileBuffers
InitializeCriticalSection
Sleep
InterlockedIncrement
VirtualFree
FindNextFileA
lstrcpynA
GetLocaleInfoA
GetVolumeInformationA
lstrcmpiW
FindClose
TlsFree
SetFilePointer
LCMapStringW
GetCPInfo
ReleaseSemaphore
LockResource
RaiseException
ReadFile

ole32

OleSave
OleLoad

ddraw

DirectDrawEnumerateA

samlib

SamConnect
SamConnectWithCreds
SamLookupNamesInDomain

user32

DdeCreateStringHandleA
RemovePropA
InvalidateRect
CharUpperBuffW
ShowCaret
GetUpdateRect
InflateRect
EnableMenuItem
CreateWindowExA
DdeFreeStringHandle
CharNextA
keybd_event
HideCaret
CreateMenu
CharUpperA
CallNextHookEx
CallWindowProcA
ToAscii
ShowWindow
GetWindowRgn
DdeGetData
SetCaretPos
AdjustWindowRect
GetMenuItemID
DefFrameProcA
GetDlgItem
DispatchMessageA
LoadImageA
GetLastActivePopup
BeginPaint
TabbedTextOutA
CharToOemBuffA
GetCursor
SetWindowsHookExA
SetCursorPos
SetWindowRgn
LockWindowUpdate
SetPropA
GetWindowThreadProcessId
GetIconInfo
CreateCaret
GetKeyboardState
GetMenu
WaitForInputIdle
DestroyWindow
SetParent
SetRect
ClientToScreen
GetWindowLongA
DdeSetUserHandle
VkKeyScanA
ShowScrollBar
KillTimer
PtInRect
EndDeferWindowPos
IsWindowVisible
MessageBoxIndirectA
DestroyMenu
DestroyCursor
SetFocus
ShowCursor
ReleaseCapture
SetClipboardData
DdeCreateDataHandle
PostMessageW
EnumThreadWindows
GetCaretBlinkTime
DdeClientTransaction
SetWindowPos
CreateCursor
CreatePopupMenu
IsRectEmpty
TranslateMDISysAccel
GetCapture
CopyRect
GetWindow
EnableWindow
EndPaint
GetSystemMenu
GetPropA
IsCharAlphaA
UnhookWindowsHookEx
SubtractRect
GetWindowRect
GetSystemMetrics
GetFocus
IsZoomed
SendMessageA
GetParent
SetForegroundWindow
UpdateWindow
DefMDIChildProcA
RemoveMenu
GetClassInfoA
GetClassNameA
BringWindowToTop
TrackPopupMenu
GetMenuItemCount
SetMenuDefaultItem
PostThreadMessageA
CopyAcceleratorTableA
SetWindowContextHelpId
MessageBeep
SetWindowTextA
DrawFocusRect
DdeAbandonTransaction
DdeConnect
SetWindowLongA
DdeFreeDataHandle
CharPrevA
DdeCmpStringHandles
WaitMessage
CloseClipboard
DefWindowProcA
GetClientRect
CharUpperBuffA
ModifyMenuA
GetMessageTime
SetActiveWindow
GetAsyncKeyState
CharLowerBuffW
OemToCharA
IsIconic
DeferWindowPos
GetDCEx
LoadBitmapA
OffsetRect
TranslateMessage
DdeGetLastError
CharToOemA
PeekMessageA
GetCursorPos
FindWindowW
DrawMenuBar
LoadIconA
DrawTextA
GetClipboardFormatNameA
UnregisterClassA
ScreenToClient
CreateIcon
DestroyCaret
EndDialog
InvalidateRgn
SetCapture
GetSubMenu
GetUpdateRgn
RegisterClassExA
SystemParametersInfoA
GetSysColor
DdeDisconnect
GetClassInfoExA
CheckMenuItem
ClipCursor
PostQuitMessage
GetScrollPos
GetForegroundWindow
FrameRect
VkKeyScanW
DrawFrameControl
DdePostAdvise
SetTimer
IsChild
SetMenuItemInfoA
EmptyClipboard
WinHelpA
SetScrollRange
wsprintfA
PostMessageA
DdeQueryConvInfo
IntersectRect
ReleaseDC
GetDoubleClickTime
GetKeyboardLayout
EqualRect
GetQueueStatus
GetWindowTextLengthA
InsertMenuA
DestroyIcon
RegisterClipboardFormatA
GetMenuItemInfoA
GetCaretPos
FillRect
MessageBoxA
GetScrollInfo
DialogBoxParamA
OpenClipboard
AppendMenuA
GetWindowTextA
SetWindowsHookExW
IsWindow
SendDlgItemMessageA
FindWindowA
GetActiveWindow
SetMenu
GetDC
GetTabbedTextExtentA
GetWindowDC
DestroyAcceleratorTable
SetScrollInfo
DdeUninitialize
DrawIcon
DdeQueryStringA
DdeInitializeA
CharLowerBuffA
GetMessagePos
PeekMessageW
LoadAcceleratorsA
SetDlgItemTextA
CreateDialogParamA
GetKeyState
SetCursor
BeginDeferWindowPos
GetClipboardData
MsgWaitForMultipleObjects
DeleteMenu
AdjustWindowRectEx
AttachThreadInput
LoadStringA
SetScrollPos
RegisterClassA
MapWindowPoints
GetDesktopWindow
SetKeyboardState
IsClipboardFormatAvailable
IsDialogMessageA
CharLowerA
IsWindowEnabled
GetMenuState
LoadCursorA
DdeNameService
WindowFromPoint
CreateAcceleratorTableA
MoveWindow
GetMenuStringA
EnumClipboardFormats

ws2_32

WSAConnect
setsockopt

advapi32

RegOpenKeyExA
RegCreateKeyA
RegOpenKeyW
RegisterEventSourceA
RegCloseKey
RegSetValueExA
RegSetValueA
RegEnumValueW
RegEnumKeyW
LookupPrivilegeValueA
OpenProcessToken
InitializeSecurityDescriptor
RegDeleteKeyW
RegEnumKeyA
RegDeleteKeyA
RegQueryValueA
RegQueryValueExA
RegDeleteValueA
RegCreateKeyW
RegDeleteValueW
RegQueryValueExW
RegQueryInfoKeyA
RegEnumValueA
DeregisterEventSource
ReportEventA
AdjustTokenPrivileges
SetSecurityDescriptorDacl
RegOpenKeyA
RegSetValueExW

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 155KB - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 132KB - Virtual size: 131KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 207KB - Virtual size: 207KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a17305e9c9841b4ff80d97923c1c9c3d

Headers

File Characteristics

Imports

kernel32

ole32

ddraw

samlib

user32

ws2_32

advapi32

Sections

.text Size: 1KB - Virtual size: 1KB

.idata Size: 11KB - Virtual size: 10KB

.data Size: 155KB - Virtual size: 1.0MB

.rsrc Size: 132KB - Virtual size: 131KB

.rdata Size: 207KB - Virtual size: 207KB

.text
Size: 1KB - Virtual size: 1KB

.idata
Size: 11KB - Virtual size: 10KB

.data
Size: 155KB - Virtual size: 1.0MB

.rsrc
Size: 132KB - Virtual size: 131KB

.rdata
Size: 207KB - Virtual size: 207KB