5c938d165840c35c177cff6f7c745302_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

5c938d165840c35c177cff6f7c745302_JaffaCakes118
Size

527KB
MD5

5c938d165840c35c177cff6f7c745302
SHA1

94a120af13cdd8dc0f40ece2bb82e8a73679b170
SHA256

fefc80fc9abcdaf8130585d40e3ac48fb50ce3fd99dc0a9dbf28a997e9fa5cbb
SHA512

776274db5f6a0c44ca8c5949726531e18a48f0e3c7f6e475fbfc0e890598e342223853211f956ca7da4e9a48c6882df57dc6a9173036374ef2a0819490a7e92f
SSDEEP

6144:gDcOGoLbvxE+kJaIoxsJ1Txtx/nMc34YHdYE6KFxg7BWPvVSkwefn9ZMpoJVk0KL:gfxExJGxsTZB4qdYE6KFx2Byc61bq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5c938d165840c35c177cff6f7c745302_JaffaCakes118

Files

5c938d165840c35c177cff6f7c745302_JaffaCakes118
.exe windows:5 windows x86 arch:x86

6df7fd11bf9e0c66cc1551bab39d0c3e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

E:\Program Files\Microsoft Visual Studio\MyProjects\GetSoftCpa\Release\GetSoftCpa.pdb

Imports

kernel32

InitializeCriticalSectionAndSpinCount
SetHandleCount
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
HeapCreate
VirtualFree
QueryPerformanceCounter
GetSystemTimeAsFileTime
GetACP
IsValidCodePage
GetTimeZoneInformation
GetStringTypeA
GetStringTypeW
GetStdHandle
GetConsoleCP
GetConsoleMode
LCMapStringA
LCMapStringW
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CompareStringW
SetEnvironmentVariableA
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
Sleep
GetFileType
SetStdHandle
HeapSize
HeapReAlloc
VirtualQuery
GetSystemInfo
VirtualAlloc
VirtualProtect
RaiseException
RtlUnwind
HeapFree
HeapAlloc
GetStartupInfoA
GetCommandLineA
SetErrorMode
GetFileSizeEx
LocalFileTimeToFileTime
SystemTimeToFileTime
GetModuleHandleW
GetOEMCP
GetCPInfo
InterlockedIncrement
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
GlobalReAlloc
TlsGetValue
GetCurrentDirectoryA
InterlockedDecrement
GetModuleFileNameW
GlobalFlags
GetDiskFreeSpaceA
GetTempFileNameA
GetFileTime
SetFileTime
CreateFileA
GetShortPathNameA
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
GetCurrentProcess
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
lstrcmpiA
GetThreadLocale
GetStringTypeExA
MoveFileA
LocalAlloc
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
FileTimeToLocalFileTime
FileTimeToSystemTime
FormatMessageA
LocalFree
MulDiv
GlobalGetAtomNameA
GlobalFindAtomA
MultiByteToWideChar
lstrcmpW
GetVersionExA
WaitForSingleObject
CloseHandle
GlobalAddAtomA
GetPrivateProfileStringA
WritePrivateProfileStringA
GetPrivateProfileIntA
FreeResource
GlobalFree
GetCurrentProcessId
lstrlenA
GlobalDeleteAtom
GetCurrentThread
GetCurrentThreadId
ConvertDefaultLocale
EnumResourceLanguagesA
GetModuleFileNameA
GetLocaleInfoA
WideCharToMultiByte
CompareStringA
FindResourceA
LoadResource
LockResource
SizeofResource
InterlockedExchange
GlobalAlloc
FreeLibrary
GlobalUnlock
GlobalLock
lstrcmpA
SetLastError
GetProcAddress
GetModuleHandleA
LoadLibraryA
CreateThread
DeleteFileA
GetTickCount
ExitProcess
CreateDirectoryA
GetFileAttributesA
GetLastError
CreateMutexA

user32

WindowFromPoint
KillTimer
SetTimer
GetMenuItemInfoA
InflateRect
GetSysColorBrush
DestroyIcon
GetNextDlgGroupItem
SetCapture
InvalidateRgn
CopyAcceleratorTableA
CharNextA
PostThreadMessageA
EndPaint
BeginPaint
GetWindowDC
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
ClientToScreen
FillRect
LoadCursorA
DestroyCursor
SetRect
CharUpperA
GetMenuStringA
InsertMenuA
RemoveMenu
SetParent
GetSystemMenu
AppendMenuA
DeleteMenu
IsRectEmpty
UnpackDDElParam
ReuseDDElParam
ReleaseCapture
InsertMenuItemA
CreatePopupMenu
InvalidateRect
GetDC
ReleaseDC
SetRectEmpty
IsZoomed
RedrawWindow
TranslateAcceleratorA
TranslateMDISysAccel
BringWindowToTop
DrawMenuBar
DefMDIChildProcA
DefFrameProcA
RegisterWindowMessageA
LoadIconA
WinHelpA
IsChild
GetCapture
GetClassLongA
GetClassNameA
SetPropA
GetPropA
RemovePropA
GetForegroundWindow
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
GetMessageTime
GetMessagePos
MapWindowPoints
ScrollWindow
TrackPopupMenu
SetMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
SetForegroundWindow
ShowScrollBar
GetClientRect
GetSubMenu
GetMenuItemID
GetMenuItemCount
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
GetSysColor
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
CopyRect
PtInRect
DefWindowProcA
CallWindowProcA
GetMenu
OffsetRect
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindowRect
GetSystemMetrics
ShowOwnedPopups
SetCursor
SetWindowsHookExA
CallNextHookEx
GetMessageA
UpdateWindow
EnableWindow
PostQuitMessage
PostMessageA
TranslateMessage
DispatchMessageA
IsWindowVisible
GetKeyState
PeekMessageA
GetCursorPos
ValidateRect
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapA
ModifyMenuA
GetMenuState
EnableMenuItem
CheckMenuItem
GetDesktopWindow
UnregisterClassA
GetTabbedTextExtentA
CreateMenu
GetActiveWindow
SetActiveWindow
SetWindowRgn
DrawIcon
LockWindowUpdate
GetDCEx
UnhookWindowsHookEx
RegisterClipboardFormatA
MessageBoxA
IsWindowEnabled
GetLastActivePopup
GetWindowLongA
GetParent
SendMessageA
GetWindowThreadProcessId
SetWindowPos
MapDialogRect
SetWindowContextHelpId
GetWindow
DestroyMenu
LoadAcceleratorsA
LoadMenuA
GetDlgItem
SendDlgItemMessageA
SetDlgItemTextA
IsDialogMessageA
SetWindowTextA
IsWindow
GetDlgCtrlID
SetWindowLongA
MoveWindow
ShowWindow
SetFocus
GetFocus
GetWindowTextA
GetWindowTextLengthA
EndDialog
GetNextDlgTabItem
DestroyWindow
CreateDialogIndirectParamA
MessageBeep

gdi32

Escape
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
GetCurrentPositionEx
ExtSelectClipRgn
CreatePatternBrush
CreateSolidBrush
ExtTextOutA
GetBkColor
GetTextColor
CreateRectRgnIndirect
GetRgnBox
CreateFontIndirectA
SetRectRgn
CombineRgn
GetMapMode
CreateEllipticRgn
LPtoDP
Ellipse
GetNearestColor
GetBkMode
GetPolyFillMode
GetROP2
GetStretchBltMode
GetTextAlign
GetTextFaceA
GetTextExtentPointA
GetWindowOrgEx
RectVisible
TextOutA
PtVisible
GetPixel
BitBlt
GetWindowExtEx
GetViewportExtEx
CreateRectRgn
SelectClipRgn
SetTextAlign
CreateBitmap
LineTo
IntersectClipRect
ExcludeClipRect
SetMapMode
SetStretchBltMode
SetROP2
SetPolyFillMode
SetBkMode
RestoreDC
SaveDC
GetStockObject
PatBlt
Rectangle
GetViewportOrgEx
CreatePen
EndDoc
AbortDoc
SetAbortProc
EndPage
StartPage
StartDocA
DPtoLP
CreateDCA
GetDeviceCaps
CreateCompatibleBitmap
CreateCompatibleDC
StretchDIBits
DeleteDC
CreateFontA
GetCharWidthA
DeleteObject
GetTextExtentPoint32A
GetTextMetricsA
SelectObject
GetObjectA
SetBkColor
SetTextColor
GetClipBox
MoveToEx

comdlg32

GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter
GetJobA

advapi32

RegDeleteValueA
GetFileSecurityA
SetFileSecurityA
RegSetValueA
RegQueryValueA
RegEnumKeyA
RegDeleteKeyA
RegOpenKeyA
RegSetValueExA
RegCreateKeyExA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
RegCreateKeyA

shell32

ShellExecuteA
DragQueryFileA
SHGetFileInfoA
ExtractIconA
DragFinish

comctl32

InitCommonControlsEx

shlwapi

PathFindFileNameA
UrlUnescapeA
PathStripToRootA
PathRemoveFileSpecW
PathFindExtensionA
PathIsUNCA

oledlg

ord8

ole32

StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoRegisterMessageFilter
OleFlushClipboard
OleIsCurrentClipboard
CoRevokeClassObject
CoGetClassObject
CoTaskMemAlloc
CreateILockBytesOnHGlobal
CoTaskMemFree
CLSIDFromString
CLSIDFromProgID
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CoCreateInstance
CoInitializeEx
CoUninitialize
OleTranslateAccelerator
IsAccelerator
OleCreateMenuDescriptor
OleDestroyMenuDescriptor

oleaut32

SysFreeString
SysAllocStringLen
VariantClear
VariantChangeType
VariantInit
SysStringLen
SysAllocStringByteLen
OleCreateFontIndirect
VariantTimeToSystemTime
SystemTimeToVariantTime
SafeArrayDestroy
SysAllocString
VariantCopy

wininet

InternetReadFile
InternetWriteFile
InternetSetFilePointer
InternetSetStatusCallback
InternetGetLastResponseInfoA
InternetQueryDataAvailable
InternetQueryOptionA
InternetCanonicalizeUrlA
InternetCrackUrlA
InternetCloseHandle
InternetOpenUrlA
InternetOpenA

Sections

.text
Size: 329KB - Virtual size: 328KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 86KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 51KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 47KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6df7fd11bf9e0c66cc1551bab39d0c3e

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

wininet

Sections

.text Size: 329KB - Virtual size: 328KB

.rdata Size: 86KB - Virtual size: 86KB

.data Size: 12KB - Virtual size: 27KB

.rsrc Size: 51KB - Virtual size: 51KB

.reloc Size: 47KB - Virtual size: 46KB

.text
Size: 329KB - Virtual size: 328KB

.rdata
Size: 86KB - Virtual size: 86KB

.data
Size: 12KB - Virtual size: 27KB

.rsrc
Size: 51KB - Virtual size: 51KB

.reloc
Size: 47KB - Virtual size: 46KB