5ce838803709c17e378bad60659cb728_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

5ce838803709c17e378bad60659cb728_JaffaCakes118
Size

39KB
MD5

5ce838803709c17e378bad60659cb728
SHA1

1f2762f07a8ed345dd35c4d81d6c42fc9a12b911
SHA256

3b554a6a3efb585a3802b3c57cd05b3a5c600389ffc5346dd3b03e3a9ab88931
SHA512

d303a7dabc597a75bc05b8bb4b284e26c69dce74901bb7171af462a7690555e83d7bf0a0a512bbdef91dc381c2bc166484cf18989b4f0d74db5ab11009419770
SSDEEP

768:76xqNT7az6hUmq552TDMf5BWVChzwsm3MmeZpMHbztcgrRvvX:sa7Le55YMc1sbMHbzHr5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5ce838803709c17e378bad60659cb728_JaffaCakes118

Files

5ce838803709c17e378bad60659cb728_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8f56b441ef9c070e12cd13a847741a31

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

adsldpc

ADsEnumClasses

kernel32

LocalLock
DeleteCriticalSection
SetFileTime
GlobalUnlock
GetCurrentDirectoryW
lstrcpyA
VirtualQuery
GetStringTypeExW
MoveFileW
GetTempFileNameW
GlobalFindAtomW
ReadFile
GlobalLock
GlobalAddAtomW
lstrcmpiW
GetFullPathNameW
VirtualAlloc
GetVersionExW
TlsAlloc
CopyFileW
lstrcmpA
WaitForMultipleObjects
lstrcatW
InterlockedDecrement
GetVolumeInformationW
GlobalGetAtomNameW
DuplicateHandle
SetErrorMode
SystemTimeToFileTime
WideCharToMultiByte
OutputDebugStringW
SetFilePointer
IsDBCSLeadByte
GetProcessVersion
CloseHandle
CreateEventW
GlobalAlloc
SetLastError
TlsFree
GetModuleHandleA
InterlockedIncrement
InterlockedCompareExchange
EnterCriticalSection
GlobalFlags
FileTimeToLocalFileTime
GetShortPathNameW
GetVersionExA
TerminateProcess
GlobalHandle
GetSystemTimeAsFileTime
SetEndOfFile
GetLastError
FreeLibrary
DelayLoadFailureHook
QueryPerformanceCounter
GetCurrentProcessId
InitializeCriticalSection
SetEvent
lstrcatA
GetCurrentProcess
TlsSetValue
LocalReAlloc
GlobalFree
WaitForSingleObject
GetTempPathW
lstrcmpiA
LocalFree
DeleteFileW
LeaveCriticalSection
FormatMessageW
LocalAlloc
GlobalSize
SetThreadPriority
LocalUnlock
LoadLibraryW
GetSystemDirectoryA
ResumeThread
MultiByteToWideChar
GlobalReAlloc
CreateFileW
FindFirstFileW
lstrlenA
SetFileAttributesW
Sleep
lstrcpynA
UnhandledExceptionFilter
CreateMutexW
GetCurrentThreadId
WriteFile
LoadResource
VirtualProtect
WritePrivateProfileStringW
SearchPathW
LockResource
FindClose
GetFileAttributesW
lstrcpyW
SizeofResource
GetSystemInfo
GetProcAddress
GetModuleHandleW
lstrcpynW
FreeResource
GetCurrentThread
LocalFileTimeToFileTime
UnlockFile
SuspendThread
TlsGetValue
LoadLibraryExA
LoadLibraryA
FileTimeToSystemTime
ReleaseMutex
lstrcmpW
GetPrivateProfileStringW
GetVersion
GlobalDeleteAtom
FindNextFileW
GetFileTime
FlushFileBuffers
GetDiskFreeSpaceW
MulDiv
FindResourceExW
GetProfileIntW
lstrlenW
GetTickCount
GetUserDefaultLCID
FindResourceW
CreateSemaphoreW
ReleaseSemaphore
GetPrivateProfileIntW
GetModuleFileNameW
SetUnhandledExceptionFilter
GetThreadLocale
GetFileSize
LockFile

advapi32

RegQueryValueExW
RegEnumKeyW
RegSetValueW
RegDeleteKeyW
RegCloseKey
RegSetValueExW
RegOpenKeyW
RegCreateKeyW
SetFileSecurityW
RegDeleteValueW
RegQueryValueW
GetFileSecurityW
RegCreateKeyExW
RegOpenKeyExW

ole32

OleCreateFromFile
OleSetMenuDescriptor
GetRunningObjectTable
OleCreateStaticFromData
ReadFmtUserTypeStg
StgOpenStorageOnILockBytes
CoCreateInstance
RegisterDragDrop
CoLockObjectExternal
CoUninitialize
ReadClassStg
CreateFileMoniker
CLSIDFromString
OleDuplicateData
WriteClassStm
CoInitialize
WriteClassStg
CreateItemMoniker
SetConvertStg
OleDestroyMenuDescriptor
GetClassFile
RevokeDragDrop
CreateBindCtx
OleRun
OleRegGetUserType
CoGetClassObject
CoRegisterMessageFilter
CoTaskMemFree
CreateOleAdviseHolder
OleIsCurrentClipboard
StgIsStorageFile
CoTreatAsClass
CoGetMalloc
OleCreateLinkFromData
StringFromCLSID
OleRegGetMiscStatus
OleLoad
CreateStreamOnHGlobal
CreateDataCache
CreateDataAdviseHolder
OleCreateFromData
StgCreateDocfile
OleGetIconOfClass
OleQueryCreateFromData
StgOpenStorage
OleLoadFromStream
ReleaseStgMedium
CLSIDFromProgID
IsAccelerator
OleInitialize
DoDragDrop
OleCreateLinkToFile
GetHGlobalFromILockBytes
OleCreateMenuDescriptor
OleSetContainedObject
StringFromGUID2
CreateGenericComposite
CoRevokeClassObject
CoDisconnectObject
OleCreate
WriteFmtUserTypeStg
OleSetClipboard
CoFreeUnusedLibraries
OleLockRunning
CreateILockBytesOnHGlobal
OleGetClipboard
OleFlushClipboard
OleSaveToStream
OleSave
OleUninitialize
OleTranslateAccelerator
OleRegEnumVerbs
CoTaskMemAlloc
ReadClassStm
CoRegisterClassObject
OleQueryLinkFromData
OleIsRunning
StgCreateDocfileOnILockBytes

ntdll

NtCreateKey

gdi32

SetWindowExtEx
GetROP2
CreateDIBPatternBrushPt
GetObjectType
GetTextExtentPoint32W
LPtoDP
GetTextMetricsW
PolylineTo
OffsetRgn
CloseMetaFile
CreateSolidBrush
OffsetClipRgn
CreateBitmap
SetTextAlign
PolyDraw
SetTextColor
SetRectRgn
Rectangle
GetWindowOrgEx
GetPixel
AbortDoc
PtVisible
GetCurrentPositionEx
PolyBezierTo
PlayMetaFile
GetStretchBltMode
SetPolyFillMode
SetWindowOrgEx
Escape
CreatePalette
UnrealizeObject
SetTextJustification
CreateCompatibleDC
RestoreDC
SetViewportOrgEx
SelectClipRgn
BitBlt
SetViewportExtEx
GetCharWidthW
GetNearestColor
ScaleWindowExtEx
SelectPalette
MoveToEx
LineTo
ExtTextOutW
CopyMetaFileW
ExtCreatePen
PatBlt
CreateHatchBrush
EndPage
GetTextColor
CreateDCW
SetBkColor
OffsetViewportOrgEx
GetTextAlign
CreateRectRgn
GetDeviceCaps
CreatePen
SetAbortProc
EnumFontFamiliesExW
SetArcDirection
TextOutW
CreatePatternBrush
CreateFontW
StretchDIBits
SetBrushOrgEx
CreateMetaFileW
GetObjectW
RectVisible
CombineRgn
SetStretchBltMode
SetTextCharacterExtra
SetROP2
OffsetWindowOrgEx
StartDocW
SelectClipPath
GetViewportExtEx
SaveDC
GetMapMode
EndDoc
SetMapMode
GetStockObject
EnumFontFamiliesW
GetPaletteEntries
SetMapperFlags
GetWindowExtEx
DeleteObject
DeleteDC
GetBkMode
ArcTo
CreateCompatibleBitmap
ExcludeClipRect
CreateRectRgnIndirect
SetColorAdjustment
GetViewportOrgEx
ExtSelectClipRgn
GetBkColor
SelectObject
IntersectClipRect
GetClipBox
StartPage
RealizePalette
GetClipRgn
CreateFontIndirectW
ScaleViewportExtEx
DeleteMetaFile
GetTextExtentPoint32A
PlayMetaFileRecord
SetBkMode
GetPolyFillMode
EnumMetaFile
DPtoLP
GetTextFaceW

user32

SetMenu
ReleaseDC
LoadIconW
GetNextDlgTabItem
TabbedTextOutW
GetWindowTextW
InvertRect
BeginDeferWindowPos
GetSubMenu
GetMenu
IsChild
IsWindowVisible
TranslateAcceleratorW
CreateDialogIndirectParamW
UnhookWindowsHookEx
GetDCEx
EqualRect
EnableMenuItem
ShowWindow
WinHelpW
RegisterClipboardFormatW
KillTimer
RemovePropW
LoadBitmapW
GetMessageTime
SetWindowTextW
GetMenuState
SetRectEmpty
TranslateMDISysAccel
IsWindowEnabled
CallNextHookEx
InvalidateRect
ScreenToClient
GetNextDlgGroupItem
SetMenuItemBitmaps
ScrollWindowEx
SetTimer
DeleteMenu
CheckMenuItem
TrackPopupMenu
UnionRect
MessageBoxW
IsIconic
LoadStringW
IsRectEmpty
CallWindowProcW
DestroyMenu
SetDlgItemTextW
DestroyCursor
GetSystemMenu
GetTabbedTextExtentW
ShowScrollBar
PtInRect
GetActiveWindow
GetParent
GetMessagePos
UnregisterClassW
GrayStringW
InflateRect
GetTabbedTextExtentA
GetTopWindow
GetDlgItemInt
AppendMenuW
GetScrollRange
MessageBeep
IsWindow
IsClipboardFormatAvailable
RedrawWindow
SetCursorPos
IsDlgButtonChecked
GetWindowTextLengthW
GetAsyncKeyState
CountClipboardFormats
CreateWindowExW
SystemParametersInfoW
DrawFocusRect
GetCursorPos
MessageBoxA
IsZoomed
GetForegroundWindow
WindowFromPoint
GetWindowDC
SetForegroundWindow
UnpackDDElParam
GetSysColorBrush
CreateMenu
ModifyMenuW
GetDlgItem
DrawTextW
InSendMessage
RegisterClassW
GetFocus
MapWindowPoints
GetScrollPos
GetClassNameW
CheckRadioButton
GetWindow
DispatchMessageW
DestroyWindow
InvalidateRgn
GetWindowLongW
OffsetRect
CheckDlgButton
SetScrollRange
ClipCursor
SetWindowPos
FillRect
GetWindowPlacement
GetMessageW
GetLastActivePopup
SystemParametersInfoA
PostThreadMessageW
ReuseDDElParam
ReleaseCapture
SetCursor
MapDialogRect
DefWindowProcW
ShowOwnedPopups
ClientToScreen
WaitMessage
FindWindowW
GetWindowThreadProcessId
SetActiveWindow
MsgWaitForMultipleObjects
TranslateMessage
LoadCursorW
GetMenuItemCount
IsDialogMessageW
GetCapture
ValidateRect
SendMessageW
SetCapture
RegisterWindowMessageW
LoadAcceleratorsW
GetSystemMetrics
SetFocus
DrawEdge
GetDialogBaseUnits
EnumChildWindows
GetPropW
GetClassInfoW
SetRect
CopyAcceleratorTableW
PostQuitMessage
GetClientRect
SetPropW
CopyRect
LockWindowUpdate
AdjustWindowRectEx
FrameRect
GetDlgCtrlID
SendDlgItemMessageW
SetWindowsHookExW
EnableWindow
DefFrameProcW
WindowFromDC
GetScrollInfo
CharUpperW
InsertMenuW
GetDesktopWindow
DefMDIChildProcW
LoadMenuW
SetWindowContextHelpId
SetDlgItemInt
DeferWindowPos
SetScrollInfo
GetSysColor
ScrollWindow
DestroyIcon
SetWindowLongW
EndDialog
EndPaint
wsprintfW
GetDlgItemTextW
DrawMenuBar
IntersectRect
EndDeferWindowPos
GetWindowRect
SetScrollPos
GetKeyState
CharNextW
BeginPaint
wvsprintfW
GetMenuItemID
GetMenuStringW
PeekMessageW
MoveWindow
PostMessageW
RemoveMenu
SendDlgItemMessageA
GetDC
BringWindowToTop
GetMenuCheckMarkDimensions
SetWindowPlacement
SetParent
UpdateWindow

ws2_32

WSAGetLastError

wininet

InternetSetStatusCallbackW
HttpSendRequestExW
FtpRenameFileW
FtpPutFileW
InternetConnectW
HttpOpenRequestW
HttpAddRequestHeadersW
InternetSetCookieW
InternetQueryDataAvailable
FtpRemoveDirectoryW
FtpGetCurrentDirectoryW
FtpCreateDirectoryW
InternetOpenW
InternetSetOptionExW
FtpDeleteFileW
InternetCanonicalizeUrlW
InternetWriteFile
InternetReadFile
InternetCrackUrlW
InternetGetCookieW
InternetErrorDlg
InternetOpenUrlW
GopherFindFirstFileW
InternetCloseHandle
FtpOpenFileW
FtpFindFirstFileW
InternetQueryOptionW
FtpGetFileW
GopherGetAttributeW
FtpSetCurrentDirectoryW
InternetSetFilePointer
GopherOpenFileW
InternetFindNextFileW
InternetGetLastResponseInfoW
GopherCreateLocatorW
HttpEndRequestW
HttpQueryInfoW
HttpSendRequestW

msvcrt

malloc
_wcsrev
_wcsnicmp
mktime
_fdopen
__doserrno
fclose
_get_osfhandle
wcsftime
realloc
_itow
wcscspn
wcscpy
_wtol
_open_osfhandle
__CxxFrameHandler
__wargv
_expand
wcstol
wcsrchr
wcschr
_snwprintf
fflush
iswdigit
fwrite
_wtoi
_ltow
_onexit
time
floor
__argc
fgetws
wcsspn
_except_handler3
swprintf
free
fread
wcstod
_adjust_fdiv
wcslen
gmtime
_msize
vswprintf
fseek
_beginthreadex
fputws
_wsplitpath
_endthreadex
ceil
localtime
clearerr
wcstoul
modf
abort
_wfullpath
__dllonexit
ftell
_wcslwr
_wcsupr
wcspbrk
_initterm
_wcsdup
calloc
_purecall
iswspace
_CxxThrowException
_ultow
wcsstr
wcsncmp
wcsncpy
memmove
wcscmp

Sections

.textbss
Size: 512B - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 512B - Virtual size: 444B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 37KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

8f56b441ef9c070e12cd13a847741a31

Headers

File Characteristics

Imports

adsldpc

kernel32

advapi32

ole32

ntdll

gdi32

user32

ws2_32

wininet

msvcrt

Sections

.textbss Size: 512B - Virtual size: 96KB

.text Size: 512B - Virtual size: 444B

.rdata Size: 512B - Virtual size: 32B

.idata Size: 37KB - Virtual size: 36KB

.textbss
Size: 512B - Virtual size: 96KB

.text
Size: 512B - Virtual size: 444B

.rdata
Size: 512B - Virtual size: 32B

.idata
Size: 37KB - Virtual size: 36KB