5f9fec0c71128993e03c19e0922a388b_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

5f9fec0c71128993e03c19e0922a388b_JaffaCakes118
Size

2.2MB
MD5

5f9fec0c71128993e03c19e0922a388b
SHA1

f77e71c3b8b4a4088476fac947f83fcf02081a3e
SHA256

f12cb2aa73930515a449b4f4133621dff0eaf8df8316b91d4c2357b4d108af6d
SHA512

d9cb0203551843c8f54c024d9f84f30fb8c95d3ce046e1ca400ac22aec64175e03e685ca9fa0755cdd1cf97d59eb3f8f12c18591e91e6f873b8f497643091833
SSDEEP

49152:p1KunSh+G9wyEW6jYJnC6vYvcCeEcn7DPeoKDSLQYxaNYXP:p1KuQ+KwnWWYRC6vYUpEcn7DPeoK+txv

Score

1^/10

Malware Config

Signatures

Files

5f9fec0c71128993e03c19e0922a388b_JaffaCakes118
.exe windows:6 windows x86 arch:x86

50f52f5f8cc3867cf3ac13ed4592cbcd

Code Sign

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

Issuer

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

01-01-2021 00:00

Not After

06-01-2031 00:00

Subject

CN=DigiCert Timestamp 2021,O=DigiCert\, Inc.,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

Issuer

CN=DigiCert Assured ID Root CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Not Before

07-01-2016 12:00

Not After

07-01-2031 12:00

Subject

CN=DigiCert SHA2 Assured ID Timestamping CA,OU=www.digicert.com,O=DigiCert Inc,C=US

Extended Key Usages

ExtKeyUsageTimeStamping

Key Usages

KeyUsageDigitalSignature
KeyUsageCertSign
KeyUsageCRLSign

74:92:43:83:8b:04:a4:e7:1d:cf:0b:f0:de:d1:4e:b1:3d:7d:96:dc:79:aa:2d:92:dd:11:d3:46:16:ac:54:80
Signer

Actual PE Digest

74:92:43:83:8b:04:a4:e7:1d:cf:0b:f0:de:d1:4e:b1:3d:7d:96:dc:79:aa:2d:92:dd:11:d3:46:16:ac:54:80

Digest Algorithm

sha256

PE Digest Matches

true

35:f7:32:6e:e5:dd:01:08:c0:25:78:b8:12:51:25:b7:09:a4:12:ac
Signer

Actual PE Digest

35:f7:32:6e:e5:dd:01:08:c0:25:78:b8:12:51:25:b7:09:a4:12:ac

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FileTimeToSystemTime
GetSystemDirectoryW
ResumeThread
GetCurrentProcessId
CreateThread
GetOEMCP
GetWindowsDirectoryW
GetCommandLineA
GetPrivateProfileStringW
HeapFree
HeapAlloc
MapViewOfFileEx
FormatMessageW
SizeofResource
LeaveCriticalSection
QueryThreadCycleTime
lstrcpyW
ResetEvent
DecodePointer
ReadFile
GetFileAttributesExW
SetErrorMode
SetEvent
LCMapStringW
DuplicateHandle
EnumSystemLocalesA
Process32NextW
GlobalSize
GetPrivateProfileIntW
GetSystemTimes
CompareStringA
GetCommandLineW
VirtualProtect
FreeLibrary
SetLocaleInfoW
GlobalLock
GetCompressedFileSizeTransactedA
FindFirstFileW
SetFirmwareEnvironmentVariableA
IsValidCodePage
AllocateUserPhysicalPagesNuma
InitializeCriticalSection
lstrcmpiW
GetStdHandle
HeapSize
HeapQueryInformation
GetProfileIntW
GetCPInfo
OpenPrivateNamespaceA
Sleep
InitializeSListHead
GlobalReAlloc
LocalAlloc
FindResourceExW
GlobalFree
RaiseException
GetFileTime
TlsFree
OutputDebugStringA
GetStartupInfoW
CloseHandle
WideCharToMultiByte
LoadLibraryExW
EnterCriticalSection
GetProcAddress
GetTickCount
GetTempPathW
VirtualQuery
DeleteFileW
CreateFileW
GlobalHandle
GetFileSize
GetEnvironmentStringsW
GetVolumePathNamesForVolumeNameW
GetSystemInfo
SetEndOfFile
InitializeCriticalSectionEx
LoadResource
GetModuleHandleExW
CopyFileW
GetUserDefaultUILanguage
CloseThreadpoolCleanupGroup
InitializeCriticalSectionAndSpinCount
TlsSetValue
GetVersionExW
TlsAlloc
LocalFree
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GlobalFlags
GetFileSizeEx
WritePrivateProfileStructW
GetVolumeInformationW
FindFirstFileExW
GetConsoleMode
FindClose
GetLocaleInfoW
FileTimeToLocalFileTime
HeapReAlloc
IsDebuggerPresent
GetCurrentThreadId
FindFirstFileTransactedW
CompareStringW
GetFileType
TlsGetValue
AddSIDToBoundaryDescriptor
EncodePointer
FreeLibraryAndExitThread
VerSetConditionMask
GetTempFileNameW
FreeEnvironmentStringsW
GetCurrentThread
SearchPathW
SetStdHandle
WaitForSingleObject
GlobalDeleteAtom
GetConsoleCP
OutputDebugStringW
GetCurrencyFormatEx
GetModuleFileNameW
SetTimeZoneInformation
GetLastError
SetLastError
VerifyVersionInfoW
SystemTimeToTzSpecificLocalTime
GetFileAttributesW
GetExitCodeProcess
GlobalGetAtomNameW
GetCurrentProcess
SetThreadPriority
QueryPerformanceFrequency
lstrcmpW
GetProcessHeap
FindNextFileW
MultiByteToWideChar
VirtualAlloc
GetCurrentDirectoryW
RtlUnwind
QueryPerformanceCounter
SetConsoleActiveScreenBuffer
FlushFileBuffers
FindResourceW
UnlockFile
ExitThread
WriteConsoleW
WritePrivateProfileStringW
GetTimeZoneInformation
GetFullPathNameW
GlobalFindAtomW
GetSystemTimeAsFileTime
CreateEventW
GlobalAlloc
WaitForSingleObjectEx
TerminateProcess
ExitProcess
GetFileInformationByHandleEx
GetModuleHandleA
SetFilePointerEx
SetEnvironmentVariableW
GetEnvironmentVariableW
LocalReAlloc
GetNumaProximityNode
GlobalAddAtomW
DeleteCriticalSection
IsProcessorFeaturePresent
GetStringTypeW
GlobalUnlock
lstrcmpA
EnumResourceLanguagesExA
MulDiv
GetSystemDefaultUILanguage
Process32FirstW
WriteFile
SetFilePointer
GetModuleHandleW
LoadLibraryA
LoadLibraryW
LockFile
GetLargePageMinimum
GetACP
LockResource

user32

MapVirtualKeyExW
GetNextDlgTabItem
FindWindowExW
TranslateAcceleratorW
EnableScrollBar
MessageBeep
PostQuitMessage
GetSysColorBrush
GetKeyboardState
BringWindowToTop
CharUpperW
RegisterWindowMessageW
EqualRect
IsMenu
PtInRect
IsWindowEnabled
DestroyIcon
GetMenuState
GetMenu
DrawFocusRect
GetKeyState
GetWindow
ValidateRect
GetForegroundWindow
GetDoubleClickTime
GetMessageTime
SetLayeredWindowAttributes
SendMessageW
SetParent
GetPropW
IsClipboardFormatAvailable
EndDialog
MonitorFromPoint
SetFocus
ShowWindow
GetCapture
ReuseDDElParam
TrackPopupMenu
UnhookWindowsHookEx
LoadBitmapW
PostThreadMessageW
BeginDeferWindowPos
GetNextDlgGroupItem
TrackMouseEvent
FindWindowW
IsChild
ReleaseCapture
GrayStringW
DispatchMessageW
GetUpdateRect
GetScrollRange
CopyAcceleratorTableW
EnumChildWindows
IsDialogMessageW
CopyRect
SetScrollPos
InsertMenuItemW
GetClassNameW
DrawAnimatedRects
LoadMenuW
MessageBoxW
GetParent
MonitorFromWindow
IsZoomed
SystemParametersInfoW
DestroyMenu
IsWindowVisible
CopyImage
UpdateLayeredWindow
CreateAcceleratorTableW
DefFrameProcW
UnionRect
SetRectEmpty
GetClassLongW
GetCursorPos
WinHelpW
MapVirtualKeyW
UpdateWindow
SetPropW
DrawTextExW
GetAsyncKeyState
LoadAcceleratorsW
OffsetRect
GetMenuItemInfoW
RedrawWindow
LoadIconW
GetWindowTextLengthW
GetIconInfo
ScreenToClient
GetMenuStringW
MoveWindow
MapDialogRect
SetTimer
GetWindowPlacement
DestroyAcceleratorTable
InsertMenuW
DrawFrameControl
EnableMenuItem
LoadAcceleratorsA
TabbedTextOutW
SetActiveWindow
GetLastActivePopup
HideCaret
IsRectEmpty
SetWindowLongW
DeleteMenu
GetMenuItemCount
GetSystemMenu
GetWindowRgn
SendDlgItemMessageA
CallMsgFilterA
ShowScrollBar
CallNextHookEx
CreateWindowExW
GetScrollInfo
GetWindowRect
DrawEdge
SetWindowsHookExW
DeferWindowPos
GetClassInfoExW
CheckMenuItem
KillTimer
GetClassInfoW
SetWindowTextW
GetFocus
DrawStateW
PeekMessageW
SetRect
GetMenuDefaultItem
GetWindowLongW
GetWindowThreadProcessId
DefMDIChildProcW
GetMenuItemID
WindowFromPoint
GetMessagePos
BeginPaint
SetLastErrorEx
TranslateMessage
CopyIcon
EndDeferWindowPos
GetKeyboardLayout
ModifyMenuW
ReleaseDC
DefWindowProcW
SendMessageCallbackW
SetWindowPlacement
GetSystemMetrics
SetMenuItemInfoW
RemoveMenu
CheckDlgButton
GetScrollPos
CallWindowProcW
GetPropA
DestroyWindow
IsWindow
IsCharLowerW
CreatePopupMenu
SetCursor
GetDesktopWindow
GetWindowDC
DrawMenuBar
GetSubMenu
EnableWindow
InflateRect
SetForegroundWindow
SetScrollRange
AppendMenuW
GetSysColor
DrawIconEx
EnumDisplayMonitors
DestroyCursor
DrawTextW
TranslateMDISysAccel
ClientToScreen
AdjustWindowRectEx
SetClipboardData
EndPaint
SetCapture
EnumDisplaySettingsExW
SetClassLongW
GetMessageW
GetUserObjectInformationW
FlashWindow
DrawIcon
InvalidateRect
InvertRect
GetDlgCtrlID
GetWindowTextW
UnpackDDElParam
IntersectRect
RealChildWindowFromPoint
SetMenuDefaultItem
SetCursorPos
GetTopWindow
LockWindowUpdate
IsIconic
SubtractRect
GetMonitorInfoW
GetDlgItem
SetWindowPos
SetWindowRgn
GetActiveWindow
ToUnicodeEx
RegisterClipboardFormatW
CreateDialogIndirectParamW
GetDC
DefRawInputProc
ShowOwnedPopups
OpenClipboard
GetClientRect
SetDlgItemTextW
SetMenu
ScrollWindow
WaitMessage
MapWindowPoints
LoadImageW
GetMenuCheckMarkDimensions
PostMessageW
CloseClipboard
UnregisterClassW
EmptyClipboard
RemovePropW
GetComboBoxInfo
FillRect
NotifyWinEvent
RegisterClassW
FrameRect
SetMenuItemBitmaps
CreateMenu
SetScrollInfo
GetKeyNameTextW
CharUpperBuffW
LoadCursorW

gdi32

SetPixel
Ellipse
Polygon
OffsetRgn
GetTextColor
PatBlt
SelectPalette
SetWindowExtEx
CreateEllipticRgn
Rectangle
CreateRectRgnIndirect
GetTextMetricsW
CreatePen
BitBlt
SetTextColor
SetWindowOrgEx
RestoreDC
Polyline
GetClipBox
CreateSolidBrush
GetDeviceCaps
FrameRgn
CreateFontIndirectW
FillRgn
SetTextAlign
CreateRectRgn
GetObjectType
DeleteObject
ExcludeClipRect
SetBkColor
SetMapMode
ScaleViewportExtEx
SelectObject
CreateHatchBrush
SetBkMode
GetSystemPaletteEntries
GetTextExtentPoint32W
SetPaletteEntries
GetNearestPaletteIndex
SaveDC
GetDIBits
GetTextFaceW
CreateCompatibleBitmap
SetPixelV
SetROP2
CreatePolygonRgn
ExtSelectClipRgn
CreatePatternBrush
CreateBitmap
RealizePalette
DeleteDC
CombineRgn
CreateCompatibleDC
GetLayout
RectVisible
CreatePalette
CreateDIBSection
LineTo
SetViewportOrgEx
GetViewportOrgEx
DPtoLP
CreateDCW
RoundRect
StretchBlt
GetViewportExtEx
SetRectRgn
GetObjectW
SetDIBColorTable
EnumFontFamiliesExW
GetWindowExtEx
SetLayout
PtVisible
PtInRegion
OffsetViewportOrgEx
LPtoDP
CopyMetaFileW
CreateDIBitmap
OffsetWindowOrgEx
SelectClipRgn
GetTextCharsetInfo
CreateRoundRectRgn
ScaleWindowExtEx
TextOutW
EnumFontFamiliesW
GetPixel
GetBoundsRect
GetWindowOrgEx
Escape
GetBkColor
SetViewportExtEx
ExtFloodFill
GetPaletteEntries
GetRgnBox
IntersectClipRect
SetPolyFillMode
MoveToEx
GetStockObject
ExtTextOutW

msimg32

TransparentBlt
AlphaBlend

winspool.drv

DocumentPropertiesW
ClosePrinter
OpenPrinterW

advapi32

CreateRestrictedToken
RegSaveKeyExA
AllocateLocallyUniqueId
FileEncryptionStatusA
ObjectCloseAuditAlarmW
CredWriteA
BackupEventLogW
EventWriteString
RegQueryValueExW
RegCloseKey
RegEnumKeyExW
RegDeleteTreeW
RegEnumValueW
MakeAbsoluteSD
RegDeleteValueW
RegOpenKeyExW
GetManagedApplications
FileEncryptionStatusW
AdjustTokenPrivileges
GetSecurityDescriptorControl
AccessCheckByTypeResultList
LookupPrivilegeValueW
AccessCheckByTypeAndAuditAlarmA
RegCreateKeyExW
RegQueryValueW
RegDeleteKeyTransactedW
RegDeleteKeyW
RegUnLoadKeyA
RegDeleteKeyValueW
RegEnumKeyW
RegSetValueExW
RegUnLoadKeyW
AreAllAccessesGranted
OpenProcessToken

shell32

SHAppBarMessage
DragQueryFileW
SHGetSpecialFolderLocation
SHGetPathFromIDListW
SHGetMalloc
SHGetDesktopFolder
DragFinish
SHGetFileInfoW
SHBrowseForFolderW
SHGetFolderLocation
SHGetPathFromIDListEx
ShellExecuteW
ord23
SHCreateDataObject
SHGetFolderPathAndSubDirW

comctl32

InitCommonControlsEx

shlwapi

PathMakeSystemFolderA
PathFindFileNameA
SHSetValueA
PathIsUNCW
PathFindExtensionW
PathRemoveFileSpecW
ord432
StrFormatKBSizeW
PathRemoveBlanksW
SHIsLowMemoryMachine
PathRemoveArgsA
PathFindFileNameW
PathIsContentTypeW
PathStripToRootW
ord155
PathUndecorateW

uxtheme

GetCurrentThemeName
GetThemeColor
DrawThemeParentBackground
GetWindowTheme
GetThemeSysColor
IsThemeBackgroundPartiallyTransparent
IsAppThemed
DrawThemeText
DrawThemeBackground
CloseThemeData
GetThemePartSize
OpenThemeData

ole32

CreateStreamOnHGlobal
CoLockObjectExternal
CoDisconnectObject
OleTranslateAccelerator
ReleaseStgMedium
CoInitializeSecurity
OleLockRunning
DoDragDrop
OleGetClipboard
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
CoTaskMemFree
CoUninitialize
CoTaskMemAlloc
CoInitializeEx
RegisterDragDrop
OleDuplicateData
IsAccelerator
CoCreateInstance
RevokeDragDrop
CoCreateGuid
CoInitialize

oleaut32

VarBstrFromDate
VariantCopy
VariantTimeToSystemTime
LoadTypeLi
SysStringLen
VariantChangeType
VariantClear
VariantInit
SysAllocStringLen
SysFreeString
SysAllocString
SystemTimeToVariantTime

gdiplus

GdipDrawImageI
GdipAlloc
GdipFree
GdipDrawImageRectI
GdipCreateBitmapFromStream
GdiplusShutdown
GdipCreateFromHDC
GdipCloneImage
GdipCreateBitmapFromHBITMAP
GdiplusStartup
GdipDeleteGraphics
GdipCreateBitmapFromScan0
GdipGetImagePaletteSize
GdipGetImagePalette
GdipGetImagePixelFormat
GdipGetImageGraphicsContext
GdipDisposeImage
GdipBitmapUnlockBits
GdipBitmapLockBits
GdipGetImageWidth
GdipGetImageHeight
GdipSetInterpolationMode

oleacc

AccessibleObjectFromWindow
CreateStdAccessibleObject
LresultFromObject

imm32

ImmGetContext
ImmGetOpenStatus
ImmReleaseContext

winmm

PlaySoundW

Sections

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.text1
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 332KB - Virtual size: 332KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 21KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 184KB - Virtual size: 183KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 136KB - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

50f52f5f8cc3867cf3ac13ed4592cbcd

Code Sign

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:ddCertificate

Extended Key Usages

Key Usages

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15Certificate

Extended Key Usages

Key Usages

74:92:43:83:8b:04:a4:e7:1d:cf:0b:f0:de:d1:4e:b1:3d:7d:96:dc:79:aa:2d:92:dd:11:d3:46:16:ac:54:80Signer

35:f7:32:6e:e5:dd:01:08:c0:25:78:b8:12:51:25:b7:09:a4:12:acSigner

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

gdiplus

oleacc

imm32

winmm

Sections

.text Size: 1.5MB - Virtual size: 1.5MB

.text1 Size: 9KB - Virtual size: 8KB

.rdata Size: 332KB - Virtual size: 332KB

.data Size: 21KB - Virtual size: 39KB

.rsrc Size: 184KB - Virtual size: 183KB

.reloc Size: 136KB - Virtual size: 136KB

0d:42:4a:e0:be:3a:88:ff:60:40:21:ce:14:00:f0:dd
Certificate

0a:a1:25:d6:d6:32:1b:7e:41:e4:05:da:36:97:c2:15
Certificate

74:92:43:83:8b:04:a4:e7:1d:cf:0b:f0:de:d1:4e:b1:3d:7d:96:dc:79:aa:2d:92:dd:11:d3:46:16:ac:54:80
Signer

35:f7:32:6e:e5:dd:01:08:c0:25:78:b8:12:51:25:b7:09:a4:12:ac
Signer

.text
Size: 1.5MB - Virtual size: 1.5MB

.text1
Size: 9KB - Virtual size: 8KB

.rdata
Size: 332KB - Virtual size: 332KB

.data
Size: 21KB - Virtual size: 39KB

.rsrc
Size: 184KB - Virtual size: 183KB

.reloc
Size: 136KB - Virtual size: 136KB