47944409f4b533aa5833262705b8b053_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

47944409f4b533aa5833262705b8b053_JaffaCakes118
Size

2.2MB
MD5

47944409f4b533aa5833262705b8b053
SHA1

580ffa97add9833ed7e74b05faf2d87558153a85
SHA256

82c5ca6f9fda041084af25eec94f885af4ed52ec0aac7553c46ec4b3bc6fcc0b
SHA512

222d3cc8c1e2e7e4c3444fb0566d28d46a9c1002d630a9f90c111a324636b40b3dcb698fa71a68882310e68dfeefec3bea23f3f472b4bd65a286595cfc916a5e
SSDEEP

49152:mokkYgRfpbJPpoSgbbae2s3RGZzzEv3+K6wa1weBt1YXY:mocmfptPDCbP3BGZzzEv3+K6waVBh

Score

1^/10

Malware Config

Signatures

Files

47944409f4b533aa5833262705b8b053_JaffaCakes118
.exe windows:6 windows x86 arch:x86

e80208306a3714e1b6d7d3192ad75c24

Code Sign

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01/01/2021, 00:00

Not After

06/01/2031, 00:00

Subject

CN=DigiCert Timestamp 2021,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07/01/2016, 12:00

Not After

07/01/2031, 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

c1:69:c2:1c:02:d4:15:b0:73:66:82:9e:e9:8d:05:f4:03:86:76:1b:50:82:2e:60:bf:97:bd:a1:21:f3:c1:2a
Signer

Actual PE Digest

c1:69:c2:1c:02:d4:15:b0:73:66:82:9e:e9:8d:05:f4:03:86:76:1b:50:82:2e:60:bf:97:bd:a1:21:f3:c1:2a

Digest Algorithm

sha256

PE Digest Matches

true

7e:6d:2e:63:83:af:88:b3:61:be:8b:75:d4:87:59:2f:62:2c:ad:6c
Signer

Actual PE Digest

7e:6d:2e:63:83:af:88:b3:61:be:8b:75:d4:87:59:2f:62:2c:ad:6c

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalAlloc
SystemTimeToTzSpecificLocalTime
HeapAlloc
GetStdHandle
GlobalAddAtomW
GetErrorMode
lstrcpyW
GetCommConfig
FindFirstFileW
CreateEventW
ResetEvent
GetStringTypeW
EnterCriticalSection
CreateThread
IsProcessorFeaturePresent
CloseHandle
IsDebuggerPresent
GetVolumeInformationW
FreeLibrary
GetSystemDirectoryW
CreateThreadpoolWait
CompareStringW
GetCommandLineA
CreateFileW
DecodePointer
FreeLibraryAndExitThread
OutputDebugStringW
LocalFree
FreeEnvironmentStringsW
OutputDebugStringA
GlobalGetAtomNameW
GetConsoleCP
WaitNamedPipeW
FlushFileBuffers
LoadLibraryExW
GetTickCount
GetSystemDefaultUILanguage
GetEnvironmentVariableW
GetLocaleInfoW
DeleteFileW
SetFilePointerEx
LoadLibraryW
DisconnectNamedPipe
LeaveCriticalSection
SearchPathW
TlsFree
LocalReAlloc
FindClose
InitializeCriticalSection
GetLongPathNameTransactedA
GetFileAttributesW
SetEvent
GetCurrentThread
FormatMessageW
SetErrorMode
SetThreadpoolThreadMinimum
GetFullPathNameW
RequestDeviceWakeup
QueryPerformanceFrequency
lstrcmpA
SetEnvironmentVariableW
GetConsoleMode
GlobalDeleteAtom
FileTimeToLocalFileTime
HeapSize
SizeofResource
UnregisterApplicationRecoveryCallback
LockFile
UnhandledExceptionFilter
GetModuleHandleA
FindFirstFileExW
TlsGetValue
MultiByteToWideChar
IsValidCodePage
GetPrivateProfileIntW
InitializeCriticalSectionEx
CopyFileW
GlobalAddAtomA
GlobalReAlloc
ClosePrivateNamespace
GlobalHandle
PulseEvent
WriteConsoleW
GetCommandLineW
CompareStringA
RaiseException
GetProfileIntW
GetStartupInfoW
LoadLibraryA
FindNextFileW
GetCurrentThreadId
VerSetConditionMask
WaitForThreadpoolWorkCallbacks
GetFileAttributesExW
FileTimeToSystemTime
lstrcmpW
VirtualProtect
GetOEMCP
DeleteCriticalSection
GetDynamicTimeZoneInformation
GetSystemTimeAsFileTime
TlsAlloc
GetProcessHeap
SetThreadPriority
ReadFile
GetModuleHandleW
GetFileSizeEx
lstrcmpiW
GetEnvironmentStringsW
SetProcessAffinityMask
SetUnhandledExceptionFilter
WideCharToMultiByte
LeaveCriticalSectionWhenCallbackReturns
GetCurrentDirectoryW
SetCommState
VerifyVersionInfoW
GetSystemInfo
WriteFile
SetStdHandle
GlobalFindAtomW
GlobalAlloc
GetFileTime
GlobalLock
LCMapStringW
GetProcAddress
GetFileType
QueryPerformanceCounter
GetModuleHandleExW
ResumeThread
InitializeSListHead
LockResource
TlsSetValue
GetTempFileNameW
ExitThread
GetTempPathW
GetWindowsDirectoryW
GetCPInfo
FindResourceW
GetFileSize
WaitForSingleObjectEx
VirtualFree
GetCurrentProcess
SetEndOfFile
WaitForSingleObject
GlobalUnlock
ExitProcess
VirtualQuery
HeapReAlloc
GlobalFlags
GlobalFree
SetLastError
GetVersionExW
EnumResourceTypesExW
GetConsoleOriginalTitleA
GetCommProperties
RtlUnwind
GetUserDefaultUILanguage
FindResourceExW
HeapFree
TerminateProcess
MulDiv
GetACP
DuplicateHandle
InitializeCriticalSectionAndSpinCount
GetModuleFileNameW
GetTimeZoneInformation
Sleep
GlobalSize
EncodePointer
GetCurrentProcessId
Process32NextW
VirtualAlloc
HeapQueryInformation
GetPrivateProfileStringW
GetLastError
LoadResource
UnlockFile
WritePrivateProfileStringW
GetConsoleAliasExesLengthA
SetFilePointer

user32

CopyIcon
DefMDIChildProcW
SetMenuItemBitmaps
CreatePopupMenu
DrawEdge
CreateWindowStationA
TrackPopupMenu
EnumChildWindows
ClientToScreen
LoadCursorW
SetMenuDefaultItem
GetMenuStringW
LoadImageW
GetWindowRgn
DefDlgProcW
InsertMenuItemW
SetWindowLongW
IsIconic
ReleaseCapture
SetScrollRange
UnhookWindowsHookEx
SetWindowRgn
GetTopWindow
TabbedTextOutW
GetWindow
GetWindowTextW
DestroyMenu
GetClientRect
WindowFromPoint
InsertMenuW
GetCursorPos
MessageBeep
GetIconInfo
GetClassInfoExW
GetMenuItemCount
MapDialogRect
LoadMenuW
GetKeyState
FillRect
AdjustWindowRect
IsRectEmpty
GetSysColorBrush
DefRawInputProc
GetMonitorInfoW
EnableMenuItem
UnionRect
GetKeyboardLayout
RemovePropW
GetSysColor
IsChild
FindWindowExW
LoadAcceleratorsW
BeginPaint
GetMenuItemID
ToUnicodeEx
GetActiveWindow
MapWindowPoints
DrawFocusRect
RegisterClassW
CreateAcceleratorTableW
UpdateWindow
SetWindowPlacement
ShowScrollBar
MessageBoxW
CloseClipboard
EnumPropsW
LoadIconW
SetParent
WaitMessage
KillTimer
InflateRect
BringWindowToTop
PostQuitMessage
CharUpperW
GetWindowLongW
GetScrollPos
CheckMenuItem
DrawStateW
PtInRect
GetProcessWindowStation
BeginDeferWindowPos
DrawIcon
CallNextHookEx
CharPrevW
SetCursor
SendDlgItemMessageA
EndDeferWindowPos
RemoveMenu
GetClassInfoW
DrawIconEx
GetDlgItem
CopyImage
CreateWindowExW
UnregisterClassW
FindWindowW
GetDC
SetRectEmpty
SetRect
InvertRect
DialogBoxIndirectParamW
GetMenu
GetWindowTextLengthW
DestroyAcceleratorTable
OpenClipboard
CreateDialogIndirectParamW
IsMenu
BroadcastSystemMessageW
IsWindow
CopyAcceleratorTableW
ScrollWindow
MapVirtualKeyW
IsCharLowerW
MonitorFromPoint
SetDlgItemTextW
GetLastActivePopup
FrameRect
SetFocus
DefFrameProcW
GetSubMenu
SetCursorPos
GetAsyncKeyState
GetQueueStatus
GetMenuState
DrawTextW
DrawFrameControl
CreateMenu
IsDialogMessageW
CharUpperBuffW
DestroyCursor
DrawMenuBar
GetKeyNameTextW
TranslateAcceleratorW
GetMessageW
SetWindowTextW
EnableScrollBar
GrayStringW
ReleaseDC
GetKeyboardState
RegisterClipboardFormatW
OpenIcon
PostMessageW
TrackMouseEvent
GetUpdateRect
UpdateLayeredWindow
EqualRect
GetSystemMenu
GetNextDlgGroupItem
IsWindowVisible
GetMessageTime
ClipCursor
ValidateRect
GetCapture
LockWindowUpdate
PeekMessageW
CheckDlgButton
GetForegroundWindow
AdjustWindowRectEx
DestroyIcon
WinHelpW
IsZoomed
SetLayeredWindowAttributes
LoadBitmapW
GetClassNameW
SetPropW
MapVirtualKeyExW
AppendMenuW
ShowWindow
GetScrollInfo
CopyRect
SetScrollInfo
RealChildWindowFromPoint
IsWindowEnabled
SubtractRect
RedrawWindow
SetWindowPos
SetMenu
SystemParametersInfoW
ShowOwnedPopups
GetPropW
MonitorFromWindow
OffsetRect
GetFocus
SetMenuItemInfoW
SetCapture
SendMessageW
ScreenToClient
GetMenuDefaultItem
EnumDisplayMonitors
DeferWindowPos
EndPaint
GetMenuItemInfoW
GetWindowRect
PostThreadMessageW
DestroyWindow
GetMessagePos
DeleteMenu
TranslateMessage
UnpackDDElParam
GetParent
GetComboBoxInfo
ModifyMenuW
CallWindowProcW
SetActiveWindow
GetDoubleClickTime
DispatchMessageW
GetWindowPlacement
SetTimer
NotifyWinEvent
SetForegroundWindow
EndDialog
IsClipboardFormatAvailable
MoveWindow
SetScrollPos
GetWindowDC
SetClassLongW
GetSystemMetrics
ReuseDDElParam
GetNextDlgTabItem
GetShellWindow
EnableWindow
InvalidateRect
GetScrollRange
HideCaret
GetClassLongW
GetDlgCtrlID
SetClipboardData
GetWindowThreadProcessId
GetDesktopWindow
SetWindowsHookExW
DefWindowProcW
IntersectRect
GetMenuCheckMarkDimensions
DrawTextExW
RegisterWindowMessageW
SendMessageTimeoutW
TranslateMDISysAccel
EmptyClipboard

gdi32

SetWindowExtEx
ScaleViewportExtEx
GetWindowOrgEx
CreateFontIndirectW
SetViewportOrgEx
IntersectClipRect
GetWindowExtEx
GetTextCharsetInfo
ExtFloodFill
SelectClipRgn
SetDIBColorTable
CreateEllipticRgn
GetBoundsRect
CreateRectRgnIndirect
GetRgnBox
CreatePalette
MoveToEx
PatBlt
SetRectRgn
GetClipBox
GetTextMetricsW
Rectangle
SetViewportExtEx
CombineRgn
SetBkMode
SaveDC
CreateCompatibleDC
CreateDIBSection
CreateRectRgn
CreatePolygonRgn
Polygon
SetBkColor
TextOutW
CreateSolidBrush
SetLayout
PtInRegion
CreateDIBitmap
GetObjectType
GetTextExtentPoint32W
CreateCompatibleBitmap
DeleteObject
CreateBitmap
SetPaletteEntries
GetTextFaceW
GetPixel
CreatePen
RealizePalette
GetViewportOrgEx
BitBlt
RestoreDC
OffsetRgn
CreateRoundRectRgn
LPtoDP
GetStockObject
GetDeviceCaps
ExtSelectClipRgn
OffsetWindowOrgEx
FrameRgn
ExcludeClipRect
GetLayout
SetPixelV
LineTo
CopyMetaFileW
SetMapMode
OffsetViewportOrgEx
Ellipse
SetPixel
SelectObject
GetSystemPaletteEntries
GetViewportExtEx
SetROP2
Polyline
EnumFontFamiliesExW
GetTextColor
PtVisible
SetTextAlign
ExtTextOutW
GetObjectW
SetPolyFillMode
DeleteDC
SetWindowOrgEx
RoundRect
GetPaletteEntries
ScaleWindowExtEx
FillRgn
CreateHatchBrush
EnumFontFamiliesW
GetNearestPaletteIndex
GetDIBits
DPtoLP
SelectPalette
Escape
SetTextColor
CreateDCW
RectVisible
CreatePatternBrush
StretchBlt
GetBkColor

msimg32

TransparentBlt
AlphaBlend

winspool.drv

ClosePrinter
DocumentPropertiesW
OpenPrinterW

advapi32

RegCloseKey
RegOpenKeyExW
LookupPrivilegeValueW
RegDeleteValueW
RegLoadMUIStringA
AdjustTokenPrivileges
LookupPrivilegeDisplayNameW
RegQueryValueExW
RegDeleteKeyW
RegSetValueExW
RegCreateKeyExW
RegDeleteKeyValueA
GetCurrentHwProfileW
EventAccessQuery
LookupAccountSidA
PerfStartProvider
AddAccessAllowedAce
RegQueryValueW
ImpersonateNamedPipeClient
CredUnprotectW
RegCreateKeyA
OpenProcessToken
ObjectDeleteAuditAlarmA
RegEnumKeyExW
PerfSetCounterRefValue
RegEnumValueW
RegEnumKeyW
EqualDomainSid
FileEncryptionStatusW
SetSecurityAccessMask

shell32

SHBrowseForFolderW
DragQueryFileW
SHGetPathFromIDListW
SHGetFileInfoW
ShellExecuteW
DragFinish
FindExecutableA
SHGetDesktopFolder
SHGetMalloc
ord174
ord3
ord98
SHGetSpecialFolderLocation
SHAppBarMessage
SHCreateDirectoryExA

comctl32

InitCommonControlsEx

shlwapi

PathFindExtensionW
PathStripToRootW
PathFindFileNameA
PathIsUNCW
SHCopyKeyA
PathRemoveFileSpecW
ord10
PathQuoteSpacesA
PathFindFileNameW
StrRetToBufW
PathCompactPathA
SHDeleteEmptyKeyW
StrFormatKBSizeW
ord152
PathRelativePathToA
StrFormatByteSizeW
PathQuoteSpacesW

uxtheme

GetCurrentThemeName
IsAppThemed
DrawThemeBackground
GetThemePartSize
GetWindowTheme
GetThemeSysColor
CloseThemeData
DrawThemeParentBackground
DrawThemeText
GetThemeColor
IsThemeBackgroundPartiallyTransparent
OpenThemeData

ole32

CoInitializeSecurity
DoDragDrop
OleDuplicateData
CoCreateGuid
ReleaseStgMedium
OleCreateMenuDescriptor
CoInitializeEx
CoInitialize
CreateStreamOnHGlobal
OleTranslateAccelerator
CoCreateInstance
IsAccelerator
CoTaskMemAlloc
CoDisconnectObject
RevokeDragDrop
CoLockObjectExternal
OleDestroyMenuDescriptor
CoUninitialize
CoTaskMemFree
OleGetClipboard
OleLockRunning
RegisterDragDrop

oleaut32

VarBstrFromDate
VariantCopy
VariantTimeToSystemTime
LoadTypeLi
SysStringLen
VariantChangeType
VariantClear
VariantInit
SysAllocStringLen
SysFreeString
SysAllocString
SystemTimeToVariantTime

gdiplus

GdipGetImagePalette
GdipBitmapUnlockBits
GdipGetImageGraphicsContext
GdipCreateBitmapFromScan0
GdiplusShutdown
GdipCloneImage
GdiplusStartup
GdipSetInterpolationMode
GdipBitmapLockBits
GdipCreateFromHDC
GdipGetImageWidth
GdipAlloc
GdipFree
GdipGetImagePaletteSize
GdipDrawImageI
GdipCreateBitmapFromHBITMAP
GdipGetImageHeight
GdipGetImagePixelFormat
GdipCreateBitmapFromStream
GdipDisposeImage
GdipDeleteGraphics
GdipDrawImageRectI

oleacc

LresultFromObject
AccessibleObjectFromWindow
CreateStdAccessibleObject

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

winmm

PlaySoundW

Sections

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.inhu
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.hemjo
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 332KB - Virtual size: 332KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 184KB - Virtual size: 183KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 136KB - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e80208306a3714e1b6d7d3192ad75c24

Code Sign

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:ddCertificate

Extended Key Usages

Key Usages

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15Certificate

Extended Key Usages

Key Usages

c1:69:c2:1c:02:d4:15:b0:73:66:82:9e:e9:8d:05:f4:03:86:76:1b:50:82:2e:60:bf:97:bd:a1:21:f3:c1:2aSigner

7e:6d:2e:63:83:af:88:b3:61:be:8b:75:d4:87:59:2f:62:2c:ad:6cSigner

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

gdiplus

oleacc

imm32

winmm

Sections

.text Size: 1.5MB - Virtual size: 1.5MB

.inhu Size: 1KB - Virtual size: 1KB

.hemjo Size: 4KB - Virtual size: 4KB

.rdata Size: 332KB - Virtual size: 332KB

.data Size: 21KB - Virtual size: 39KB

.rsrc Size: 184KB - Virtual size: 183KB

.reloc Size: 136KB - Virtual size: 136KB

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

c1:69:c2:1c:02:d4:15:b0:73:66:82:9e:e9:8d:05:f4:03:86:76:1b:50:82:2e:60:bf:97:bd:a1:21:f3:c1:2a
Signer

7e:6d:2e:63:83:af:88:b3:61:be:8b:75:d4:87:59:2f:62:2c:ad:6c
Signer

.text
Size: 1.5MB - Virtual size: 1.5MB

.inhu
Size: 1KB - Virtual size: 1KB

.hemjo
Size: 4KB - Virtual size: 4KB

.rdata
Size: 332KB - Virtual size: 332KB

.data
Size: 21KB - Virtual size: 39KB

.rsrc
Size: 184KB - Virtual size: 183KB

.reloc
Size: 136KB - Virtual size: 136KB