5ddabb27b7711f4f28d11c8757a00bfa_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

5ddabb27b7711f4f28d11c8757a00bfa_JaffaCakes118
Size

573KB
MD5

5ddabb27b7711f4f28d11c8757a00bfa
SHA1

1d00c4965dc6753c63c8811ac7954302920b2e9a
SHA256

8f632700579cacf7ba4c62c2e3130879874f0cf08b9284abea42cb7b0cb1b409
SHA512

24c14f1f5de5402fbb64c15b8a45e8522d804846f1bf1ca123f2ce3c792789803279428f0244690ac42d48eee2db134e9326ce63313588c292a2895de294f9fc
SSDEEP

6144:V/7nNXdzkj+v8aG+D7Qm7QofvKnGic79B8oUAqfT7joFNrP01zDnWIslslTe9IYE:V/T8B47QmHfN9SUq3EfP01zJOsla9o5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5ddabb27b7711f4f28d11c8757a00bfa_JaffaCakes118

Files

5ddabb27b7711f4f28d11c8757a00bfa_JaffaCakes118
.exe windows:5 windows x86 arch:x86

91c80dd84e2ed41a9a62bc533e37b819

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

iphlpapi

GetAdaptersInfo

imagehlp

MakeSureDirectoryPathExists

shlwapi

PathFindExtensionA
PathFindFileNameA
PathStripToRootA
PathIsUNCA
PathFileExistsA

kernel32

GlobalHandle
InitializeCriticalSection
TlsAlloc
TlsSetValue
LocalReAlloc
DeleteCriticalSection
TlsFree
GlobalFlags
SetErrorMode
GetCPInfo
GetOEMCP
RtlUnwind
GetSystemTimeAsFileTime
RaiseException
GetCommandLineA
GetStartupInfoA
VirtualProtect
VirtualAlloc
VirtualQuery
HeapReAlloc
ExitProcess
SetStdHandle
GetFileType
HeapSize
VirtualFree
HeapCreate
GetStdHandle
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetACP
IsValidCodePage
GetStringTypeA
GetStringTypeW
LCMapStringA
LCMapStringW
CompareStringW
GetTimeZoneInformation
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
QueryPerformanceCounter
InitializeCriticalSectionAndSpinCount
GlobalReAlloc
GetConsoleMode
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetEnvironmentVariableA
SizeofResource
LockResource
LoadResource
FindResourceA
WideCharToMultiByte
GetSystemInfo
GetModuleHandleA
GetProcAddress
GetVersionExA
HeapFree
HeapAlloc
GetProcessHeap
CreateDirectoryA
DeleteFileA
GetTempPathA
GetTickCount
Sleep
CopyFileA
GetCurrentDirectoryA
GetSystemDirectoryA
WritePrivateProfileStringA
GetPrivateProfileStringA
FreeLibrary
LoadLibraryA
GetWindowsDirectoryA
MultiByteToWideChar
InterlockedDecrement
GetModuleFileNameA
SetFileAttributesA
GetFileAttributesA
lstrlenA
MulDiv
LocalFree
FormatMessageA
GlobalUnlock
GlobalLock
GlobalAlloc
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
LocalAlloc
InterlockedIncrement
GetModuleHandleW
GetFileTime
GetFileSizeEx
SetFileTime
SystemTimeToFileTime
LocalFileTimeToFileTime
FileTimeToLocalFileTime
FileTimeToSystemTime
GlobalGetAtomNameA
GlobalFindAtomA
lstrcmpW
GetModuleFileNameW
CreateFileA
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
GetCurrentProcess
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
GetThreadLocale
FreeResource
GetCurrentProcessId
GlobalAddAtomA
CloseHandle
GlobalDeleteAtom
GetCurrentThread
GetCurrentThreadId
ConvertDefaultLocale
EnumResourceLanguagesA
GetLocaleInfoA
CompareStringA
InterlockedExchange
lstrcmpA
GetLastError
SetLastError
GlobalFree
GetConsoleCP

user32

RegisterClipboardFormatA
PostThreadMessageA
IsRectEmpty
CopyAcceleratorTableA
CharNextA
GetSysColorBrush
WindowFromPoint
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
SetDlgItemTextA
RegisterWindowMessageA
SendDlgItemMessageA
WinHelpA
IsChild
GetCapture
GetClassLongA
GetClassNameA
SetPropA
GetPropA
RemovePropA
GetForegroundWindow
GetTopWindow
GetMessageTime
GetMessagePos
MapWindowPoints
SetMenu
SetForegroundWindow
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
AdjustWindowRectEx
EqualRect
CopyRect
GetDlgCtrlID
DefWindowProcA
CallWindowProcA
GetMenu
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
GetSysColor
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
ClientToScreen
ScreenToClient
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
GetWindowTextA
SetFocus
UnhookWindowsHookEx
GetWindow
SetWindowContextHelpId
MapDialogRect
SetWindowPos
CharUpperA
GetDesktopWindow
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
IsWindow
GetDlgItem
GetNextDlgTabItem
EndDialog
GetWindowThreadProcessId
GetWindowLongA
GetLastActivePopup
IsWindowEnabled
SetWindowsHookExA
CallNextHookEx
GetMessageA
TranslateMessage
DestroyMenu
UnregisterClassA
MessageBeep
GetNextDlgGroupItem
InvalidateRgn
UpdateWindow
SetRect
MessageBoxA
PostMessageA
DrawIcon
SendMessageA
IsIconic
GetClientRect
LoadIconA
GetSystemMetrics
EnableWindow
SetCursor
PtInRect
InvalidateRect
RedrawWindow
SetCapture
GetParent
ReleaseCapture
LoadCursorA
SetWindowLongA
GetSubMenu
GetMenuItemCount
GetMenuItemID
GetMenuState
PostQuitMessage
CheckMenuItem
EnableMenuItem
ModifyMenuA
GetFocus
LoadBitmapA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
ValidateRect
DispatchMessageA
GetActiveWindow
IsWindowVisible
GetKeyState
PeekMessageA
GetCursorPos

gdi32

SetMapMode
GetClipBox
DeleteObject
GetViewportExtEx
GetWindowExtEx
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
SelectObject
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetTextColor
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
DeleteDC
GetBkColor
GetTextColor
CreateRectRgnIndirect
GetRgnBox
GetMapMode
SetBkMode
SetBkColor
RestoreDC
SaveDC
CreateBitmap
GetDeviceCaps
GetObjectA
CreateFontIndirectA
GetStockObject

comdlg32

GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegEnumKeyA
RegDeleteKeyA
GetUserNameA
RegOpenKeyA
RegDeleteValueA
RegCreateKeyExA
RegSetValueExA
RegQueryValueExA
RegOpenKeyExA
RegCloseKey
RegQueryValueA

shell32

ShellExecuteA
SHGetSpecialFolderPathA

oledlg

ord8

ole32

OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
CoRevokeClassObject
CoTaskMemFree
CoInitialize
CoInitializeEx
CoCreateInstance
CoUninitialize
OleIsCurrentClipboard
OleFlushClipboard
CoRegisterMessageFilter
CoTaskMemAlloc

oleaut32

SysFreeString
VariantInit
VariantClear
SysAllocStringLen
SysStringLen
SysAllocStringByteLen
VariantChangeType
VariantCopy
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
OleCreateFontIndirect
SysAllocString

urlmon

URLOpenStreamA
URLDownloadToFileA

Sections

.text
Size: 264KB - Virtual size: 263KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 61KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 231KB - Virtual size: 230KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

91c80dd84e2ed41a9a62bc533e37b819

Headers

DLL Characteristics

File Characteristics

Imports

iphlpapi

imagehlp

shlwapi

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

oledlg

ole32

oleaut32

urlmon

Sections

.text Size: 264KB - Virtual size: 263KB

.rdata Size: 61KB - Virtual size: 61KB

.data Size: 16KB - Virtual size: 31KB

.rsrc Size: 231KB - Virtual size: 230KB

.text
Size: 264KB - Virtual size: 263KB

.rdata
Size: 61KB - Virtual size: 61KB

.data
Size: 16KB - Virtual size: 31KB

.rsrc
Size: 231KB - Virtual size: 230KB