5a5e3d2a25170c233621877a415b4d27_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

5a5e3d2a25170c233621877a415b4d27_JaffaCakes118
Size

848KB
MD5

5a5e3d2a25170c233621877a415b4d27
SHA1

f567cfec1ab32dcb3f8d9854db8b8a5529772c7c
SHA256

b13db7598cba6ed0bce0c9f2d3d43d95c2177b3cfe5f989152a3ef7510c513e5
SHA512

d0bea4ea7772a3e11910ea5d893a82888b40f3c7a63a3ca0b21cf5d844fe3d0689cf2e89a82106c35bfe43ccd4a95cd34148becf1be96ad96d812ccfa9d42527
SSDEEP

12288:mRhNpGN83NWOOlYESYmDcM8eIMyqi4O2DJ7Fzf1KUwenefOoDZHdRmPV4FK:uLUoNWOOjSYmDcM8+iYt1l6OUd49v

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5a5e3d2a25170c233621877a415b4d27_JaffaCakes118

Files

5a5e3d2a25170c233621877a415b4d27_JaffaCakes118
.dll windows:5 windows x86 arch:x86

25960f0ad8f44524077cfd0309e8cd3f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

HeapFree
SetUnhandledExceptionFilter
EnterCriticalSection
TlsFree
GetStdHandle
GetNumberFormatW
GlobalGetAtomNameW
GlobalDeleteAtom
GetVolumeInformationW
SetFilePointer
TerminateProcess
TlsAlloc
Sleep
GetLocaleInfoW
GetConsoleOutputCP
VirtualProtectEx
GetCurrentDirectoryA
InitializeCriticalSection
HeapCreate
ReadFile
GetCurrentProcessId
WaitForSingleObject
FindResourceExW
GetEnvironmentStringsW
IsValidCodePage
HeapAlloc
HeapSetInformation
WriteFile
CreateNamedPipeW
FindClose
SetEnvironmentVariableA
GetVersionExW
LockResource
FileTimeToLocalFileTime
GetCommandLineW
SetEvent
GetOEMCP
SetThreadPriority
GetFullPathNameW
GetCurrentThread
GetCurrentDirectoryW
SetHandleCount
HeapSize
GetSystemDirectoryW
DeleteCriticalSection
InterlockedDecrement
WideCharToMultiByte
InitializeCriticalSectionAndSpinCount
GlobalFlags
GetCPInfo
FormatMessageW
GetTimeZoneInformation
lstrlenW
UnhandledExceptionFilter
GlobalAlloc
GetStringTypeW
GetProcessHeap
IsProcessorFeaturePresent
GetSystemInfo
GlobalHandle
GetConsoleCP
GlobalFree
LockFile
lstrlenA
GetFileAttributesExW
GetCurrentThreadId
ResumeThread
InterlockedExchange
GetTempPathW
lstrcmpiW
CloseHandle
GetTempFileNameW
OpenEventW
InterlockedIncrement
FreeEnvironmentStringsW
FindResourceW
GetOverlappedResult
ExitProcess
FlushFileBuffers
GetFileAttributesW
GetModuleFileNameW
ExitThread
SearchPathW
CopyFileW
WaitForMultipleObjects
GetProcAddress
GlobalUnlock
GetFileSize
LocalFree
UnlockFile
HeapQueryInformation
RtlUnwind
SetStdHandle
HeapReAlloc
GetStartupInfoW
GetFileTime
TlsSetValue
SizeofResource
CreateThread
CreateMutexW
GlobalLock
RaiseException
LoadResource
GetCurrentProcess
GetFileType
CreateEventW
CompareStringW
CreateFileW
LoadLibraryW
TlsGetValue
LocalReAlloc
QueryPerformanceCounter
LeaveCriticalSection
GetSystemTimeAsFileTime
GetProfileIntW
IsDebuggerPresent
VirtualAlloc
lstrcmpA
FreeLibrary
MulDiv
DuplicateHandle
LCMapStringW
LoadLibraryExW
InterlockedCompareExchange
GetACP
VirtualQuery
GlobalReAlloc
GetConsoleMode
lstrcmpW
LocalAlloc
lstrcpyW
TerminateThread
GetTickCount
GetUserDefaultUILanguage
GetFileSizeEx
FileTimeToSystemTime
GlobalSize
GlobalFindAtomW
GlobalAddAtomW
DisconnectNamedPipe
FreeResource
GetLastError
MultiByteToWideChar
GetModuleHandleW
FindFirstFileW
SetEndOfFile
SetLastError
WriteConsoleW
HeapDestroy

user32

ReuseDDElParam
GetTopWindow
DestroyAcceleratorTable
MonitorFromWindow
GetMonitorInfoW
SetScrollPos
SetWindowLongW
MapVirtualKeyExW
CheckMenuItem
DestroyIcon
SetLayeredWindowAttributes
MessageBoxW
RealChildWindowFromPoint
GetForegroundWindow
GetKeyboardLayout
SetMenuDefaultItem
EnableMenuItem
SetMenu
GetWindow
UpdateWindow
DrawEdge
IsWindowEnabled
GetMenuItemCount
SystemParametersInfoW
SetTimer
InvertRect
TranslateAcceleratorW
MonitorFromPoint
GetActiveWindow
RegisterClipboardFormatW
SetParent
IsMenu
ToUnicodeEx
CopyRect
GetKeyboardState
PostThreadMessageW
WinHelpW
ValidateRect
LoadMenuW
EqualRect
GetCursorPos
NotifyWinEvent
DestroyMenu
GetWindowRect
OpenClipboard
HideCaret
GetDesktopWindow
SendMessageW
MoveWindow
GetAsyncKeyState
DrawMenuBar
RedrawWindow
GetWindowPlacement
InflateRect
CharUpperBuffW
FrameRect
GetNextDlgGroupItem
DestroyWindow
SetWindowTextW
GetMenuCheckMarkDimensions
AppendMenuW
DeleteMenu
GetParent
SendDlgItemMessageW
DrawIcon
UnpackDDElParam
SetCapture
IsWindow
GetClientRect
EnableScrollBar
EmptyClipboard
RegisterClassW
DefFrameProcW
LoadBitmapW
GetSystemMetrics
GetSysColorBrush
MapVirtualKeyW
BringWindowToTop
RegisterWindowMessageW
EndDeferWindowPos
GetMessageTime
LockWindowUpdate
SetMenuItemBitmaps
IsIconic
CheckDlgButton
InsertMenuItemW
PostQuitMessage
GetScrollInfo
IsWindowVisible
UnionRect
ShowScrollBar
EnumWindows
ScrollWindow
SetScrollRange
FillRect
EnumDisplayMonitors
GetMenuStringW
GetCapture
TranslateMessage
LoadIconW
SetFocus
IsCharLowerW
GetMessagePos
SubtractRect
SendDlgItemMessageA
GetWindowDC
GrayStringW
BeginPaint
ModifyMenuW
GetDC
GetIconInfo
LoadImageW
WindowFromPoint
EndPaint
SetActiveWindow
GetLastActivePopup
CopyImage
CharUpperW
GetFocus
SetCursor
GetSubMenu
DispatchMessageW
ShowWindow
UpdateLayeredWindow
CreateMenu
SetClipboardData
GetScrollPos
TabbedTextOutW
GetMenuItemInfoW
IsRectEmpty
LoadAcceleratorsW
GetClassInfoW
ClientToScreen
CloseClipboard
GetMenuDefaultItem
EndDialog
DestroyCursor
GetNextDlgTabItem
GetWindowTextW
GetClassInfoExW
ScreenToClient
WaitMessage
AdjustWindowRectEx
IsDialogMessageW
GetKeyNameTextW
GetSystemMenu
SetWindowsHookExW
GetPropW
DrawFocusRect
DrawStateW
IsChild
DrawTextExW
GetUpdateRect
KillTimer
ShowOwnedPopups
SetWindowRgn
GetWindowLongW
PostMessageW
DrawTextW
CreateDialogIndirectParamW
SetWindowPos
GetClassLongW
GetWindowThreadProcessId
IsClipboardFormatAvailable
SetCursorPos
MapDialogRect
GetDlgItem
SetRect
CopyAcceleratorTableW
CallWindowProcW
GetMenu
DialogBoxParamW
SetRectEmpty
GetMenuItemID
CreateWindowExW
SetPropW
GetMenuState
RemoveMenu
IsZoomed
MapWindowPoints
SetWindowPlacement
PeekMessageW
CreatePopupMenu
GetKeyState
GetWindowTextLengthW
UnhookWindowsHookEx
GetScrollRange
LoadCursorW
BeginDeferWindowPos
EnableWindow
ReleaseDC
TranslateMDISysAccel
MessageBeep
InsertMenuW
SetScrollInfo
OffsetRect
GetDoubleClickTime
GetDlgCtrlID
CreateAcceleratorTableW
GetClassNameW
CopyIcon
GetWindowRgn
InvalidateRect
RemovePropW
ReleaseCapture
DefWindowProcW
DeferWindowPos
IntersectRect
TrackPopupMenu
DrawIconEx
DefMDIChildProcW
CallNextHookEx
SetForegroundWindow
DrawFrameControl
GetMessageW
PtInRect
GetSysColor
SetClassLongW

gdi32

SetViewportExtEx
GetViewportOrgEx
FillRgn
CreatePalette
LPtoDP
ExtFloodFill
CreateBitmap
CreateCompatibleBitmap
FrameRgn
SaveDC
GetTextFaceW
CreatePolygonRgn
GetTextMetricsW
SetViewportOrgEx
GetStockObject
ScaleWindowExtEx
CreateRoundRectRgn
ExtTextOutW
GetLayout
GetBkColor
CreateDIBSection
TextOutW
CreateCompatibleDC
GetNearestPaletteIndex
RectVisible
GetSystemPaletteEntries
ScaleViewportExtEx
GetTextCharsetInfo
SetRectRgn
GetPaletteEntries
CreateEllipticRgn
CopyMetaFileW
GetTextExtentPoint32W
PtVisible
RealizePalette
CreatePen
DeleteDC
PtInRegion
GetClipBox
SelectClipRgn
SetBkMode
RestoreDC
SetPolyFillMode
StretchBlt
GetWindowOrgEx
GetWindowExtEx
ExcludeClipRect
Polygon
PatBlt
BitBlt
SetTextAlign
CreateFontIndirectW
SetTextColor
GetBitmapBits
CreateHatchBrush
Rectangle
Polyline
DPtoLP
GetDeviceCaps
OffsetRgn
GetObjectW
GetPixel
GetViewportExtEx
OffsetViewportOrgEx
Ellipse
OffsetWindowOrgEx
EnumFontFamiliesW
DeleteObject
SetDIBColorTable
CreateDCW
GetRgnBox
SetWindowOrgEx
IntersectClipRect
ExtSelectClipRgn
SetPixel
SetPixelV
CreateDIBitmap
SetMapMode
GetBoundsRect
SetLayout
GetTextColor
MoveToEx
SelectObject
SelectPalette
SetBkColor
CreateRectRgnIndirect
LineTo
SetPaletteEntries
Escape
CreateSolidBrush
GetObjectType
SetROP2
EnumFontFamiliesExW
CreatePatternBrush
CreateRectRgn
SetWindowExtEx
CombineRgn

comdlg32

GetFileTitleW
GetOpenFileNameW

advapi32

IsValidSid
RegEnumKeyExW
RegDeleteValueW
RegOpenKeyExW
InitializeSecurityDescriptor
SetSecurityDescriptorSacl
RegCreateKeyExW
RegCloseKey
RegDeleteKeyW
GetTokenInformation
ConvertSidToStringSidW
RegQueryValueExW
OpenProcessToken
RegSetValueExW
GetSecurityDescriptorSacl
SetSecurityDescriptorDacl
ConvertStringSecurityDescriptorToSecurityDescriptorW
OpenThreadToken

shell32

ShellExecuteExW
ShellExecuteW
DragFinish
SHGetSpecialFolderLocation
SHBrowseForFolderW
SHGetDesktopFolder
DragQueryFileW
SHAppBarMessage
SHGetFolderLocation
SHGetFileInfoW
SHGetPathFromIDListW

ole32

CoInitializeEx
CLSIDFromString
OleCreateMenuDescriptor
CoInitialize
CoTaskMemFree
CreateStreamOnHGlobal
OleTranslateAccelerator
RegisterDragDrop
OleDuplicateData
OleGetClipboard
CoUninitialize
OleLockRunning
RevokeDragDrop
DoDragDrop
CoLockObjectExternal
CoTaskMemAlloc
CoCreateInstance
IsAccelerator
OleDestroyMenuDescriptor
ReleaseStgMedium

oleaut32

VariantChangeType
SysStringLen
SysAllocStringByteLen
VariantClear
SysFreeString
SysAllocString
SystemTimeToVariantTime
VarBstrFromDate
VariantInit
SysStringByteLen
VariantTimeToSystemTime
SysAllocStringLen

comctl32

ImageList_GetIconSize

shlwapi

SHCopyKeyA
PathIsUNCW
PathRemoveFileSpecW
PathFindFileNameW
PathFindExtensionW
PathStripToRootW
SHDeleteValueA
ord215

winmm

PlaySoundW

msimg32

TransparentBlt
AlphaBlend

imm32

ImmGetOpenStatus
ImmGetContext
ImmReleaseContext

gdiplus

GdipCreateBitmapFromStream
GdipDrawImageRectI
GdipAlloc
GdipDeleteGraphics
GdipCreateFromHDC
GdipCloneImage
GdipGetImageGraphicsContext
GdipGetImagePalette
GdipFree
GdipDrawImageI
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipCreateBitmapFromScan0
GdipGetImageHeight
GdipGetImageWidth
GdipCreateBitmapFromHBITMAP
GdipDisposeImage
GdiplusShutdown
GdipSetInterpolationMode
GdipGetImagePaletteSize
GdipGetImagePixelFormat
GdiplusStartup

oleacc

LresultFromObject
AccessibleObjectFromWindow
CreateStdAccessibleObject

Exports

Exports

MyCopyMemory

Sections

.text
Size: 149KB - Virtual size: 149KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.ffc
Size: - Virtual size: 150KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 20B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.qqw
Size: 525KB - Virtual size: 524KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.vvw
Size: 151KB - Virtual size: 151KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 712B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

25960f0ad8f44524077cfd0309e8cd3f

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

comctl32

shlwapi

winmm

msimg32

imm32

gdiplus

oleacc

Exports

Exports

Sections

.text Size: 149KB - Virtual size: 149KB

.ffc Size: - Virtual size: 150KB

.rdata Size: 15KB - Virtual size: 14KB

.data Size: 512B - Virtual size: 20B

.qqw Size: 525KB - Virtual size: 524KB

.vvw Size: 151KB - Virtual size: 151KB

.rsrc Size: 1024B - Virtual size: 712B

.reloc Size: 5KB - Virtual size: 4KB

.text
Size: 149KB - Virtual size: 149KB

.ffc
Size: - Virtual size: 150KB

.rdata
Size: 15KB - Virtual size: 14KB

.data
Size: 512B - Virtual size: 20B

.qqw
Size: 525KB - Virtual size: 524KB

.vvw
Size: 151KB - Virtual size: 151KB

.rsrc
Size: 1024B - Virtual size: 712B

.reloc
Size: 5KB - Virtual size: 4KB