6129a5e8f6fc9e2676d676c2f2d84fd9_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

6129a5e8f6fc9e2676d676c2f2d84fd9_JaffaCakes118
Size

968KB
MD5

6129a5e8f6fc9e2676d676c2f2d84fd9
SHA1

ab0cc7ef672095006f80ee3c854c196a4b7f50f6
SHA256

85951047e7e2d0fd8f61a281bf2929a60c6b96110a578c0f4c191d19c534f531
SHA512

cb32d17a890c3c11d3113a2e44f28d30628cb70b215c8c0e60e98ddd19fb60222b6c9ce23f459708c30857bdfca3a867b06e68bd13938aa6524d64b345859c5e
SSDEEP

12288:ljPZpiMRUYy6bWQR+li1CQqHuyVBS+TU8mtOX4XB/LAK+sTlKfxICHfyREwB/Cw:9PfiMR8q+0CQHynjO9Ld+sZLsyB/Cw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6129a5e8f6fc9e2676d676c2f2d84fd9_JaffaCakes118

Files

6129a5e8f6fc9e2676d676c2f2d84fd9_JaffaCakes118
.exe windows:5 windows x86 arch:x86

72684b8f4fa1335bf004cd99ba35829a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

DoDragDrop
OleInitialize
CoCreateInstance
OleUninitialize
OleSetClipboard

advapi32

SetFileSecurityW
RegDeleteValueA
RegQueryValueExW
RegOpenKeyExA
RegDeleteKeyA
RegSetValueExA
RegEnumKeyExA
GetFileSecurityA
RegQueryValueExA
GetFileSecurityW
RegCreateKeyExA
SetFileSecurityA
AdjustTokenPrivileges
LookupPrivilegeValueA
GetSecurityDescriptorLength
OpenProcessToken
RegCloseKey
RegEnumValueA
RegSetValueExW

shell32

ShellExecuteExA
SHGetMalloc
DragAcceptFiles
SHGetDesktopFolder
ShellExecuteA
DragQueryFileA
ExtractIconExA
SHChangeNotify
FindExecutableA
SHFileOperationA
SHGetPathFromIDListA
DragFinish
SHGetFileInfoA
DragQueryFileW
Shell_NotifyIconA
SHGetSpecialFolderLocation
SHBrowseForFolderA

kernel32

FindFirstFileW
FreeEnvironmentStringsA
InterlockedIncrement
WideCharToMultiByte
ExitThread
FindNextChangeNotification
FindCloseChangeNotification
LoadResource
SetFileAttributesW
InitializeCriticalSectionAndSpinCount
RaiseException
BeginUpdateResourceA
SetCurrentDirectoryA
HeapFree
GetLastError
DeviceIoControl
EnumResourceNamesA
FindFirstFileA
CreateDirectoryA
SetFilePointer
GetCommandLineA
GetACP
FreeEnvironmentStringsW
ResetEvent
SizeofResource
GetCPInfo
GetCurrentProcessId
GlobalFree
ExitProcess
TerminateProcess
lstrlenA
InterlockedDecrement
SystemTimeToFileTime
SuspendThread
ResumeThread
GetSystemTime
GetFileTime
DeleteCriticalSection
WritePrivateProfileStringA
GlobalSize
UpdateResourceA
SetCurrentDirectoryW
SetEnvironmentVariableA
LoadLibraryA
CompareStringA
GetCommandLineW
GetEnvironmentStringsW
WriteConsoleA
SetUnhandledExceptionFilter
GetLocalTime
FileTimeToSystemTime
VirtualFree
GlobalMemoryStatus
GetFullPathNameW
LeaveCriticalSection
GlobalUnlock
GetFileType
LocalFileTimeToFileTime
TlsSetValue
ExpandEnvironmentStringsW
GetPrivateProfileIntA
LCMapStringW
FileTimeToLocalFileTime
GetDiskFreeSpaceA
GetFileAttributesA
UnhandledExceptionFilter
GetVersion
ReadFile
GetCurrentDirectoryW
CreateEventA
SetHandleCount
GetDateFormatA
GetStdHandle
WriteConsoleW
MultiByteToWideChar
GetPrivateProfileStringA
SetLastError
CopyFileA
Sleep
TlsGetValue
SetFileTime
GetSystemTimeAsFileTime
RtlUnwind
GetCurrentThreadId
GetLogicalDriveStringsA
SetEndOfFile
CreateDirectoryW
IsValidCodePage
GetStringTypeA
QueryPerformanceCounter
GetModuleFileNameA
GetLocaleInfoA
GetFullPathNameA
UnmapViewOfFile
MoveFileA
FindClose
DeleteFileW
MoveFileW
WaitForSingleObject
GetProcessAffinityMask
GetConsoleOutputCP
CloseHandle
SetPriorityClass
GetModuleHandleA
GetTimeFormatA
GetLogicalDrives
GetTempPathA
IsDBCSLeadByte
MulDiv
GetProfileStringA
FreeLibrary
GetNumberFormatA
BackupRead
lstrcpyA
GetStartupInfoA
ExpandEnvironmentStringsA
GetCurrentDirectoryA
RemoveDirectoryW
GetCurrentThread
GlobalLock
HeapAlloc
GlobalAlloc
WaitForMultipleObjects
EnumResourceLanguagesA
WriteFile
GetProcessHeap
CreateFileMappingA
IsDebuggerPresent
GetDriveTypeA
CompareFileTime
SetThreadPriority
GetThreadPriority
FindNextFileW
GetOEMCP
GetVersionExA
OpenFileMappingA
GetCurrentProcess
GetModuleHandleW
GetEnvironmentStrings
LocalFree
BackupSeek
CreateFileA
EnterCriticalSection
FindFirstChangeNotificationA
SetEvent
FindNextFileA
HeapReAlloc
lstrcmpiA
EndUpdateResourceA
GetProcAddress
FormatMessageA
CreateFileW
TlsAlloc
HeapCreate
GetPriorityClass
DosDateTimeToFileTime
GetCompressedFileSizeA
DeleteFileA
FlushFileBuffers
TlsFree
SetStdHandle
FindResourceA
VirtualAlloc
CreateThread
GetStringTypeW
SetFileAttributesA
GetConsoleMode
FileTimeToDosDateTime
CreateMutexA
GetTickCount
MapViewOfFile
LoadLibraryExA
GetConsoleCP
ReleaseMutex
LCMapStringA
CompareStringW
RemoveDirectoryA
HeapSize
GetFileAttributesW
SetErrorMode

user32

GetClipboardData
CharUpperA
GetDlgItemInt
KillTimer
SetForegroundWindow
IsWindowVisible
SetScrollPos
InsertMenuA
SendMessageA
SetMenuItemInfoA
CreateDialogParamA
IsCharUpperW
GetMenuItemCount
RegisterClassA
TrackPopupMenu
DialogBoxParamA
GetDialogBaseUnits
FindWindowA
GetWindowTextW
SetMenu
PeekMessageA
CallWindowProcA
AppendMenuW
GetParent
GetClientRect
PostMessageA
RegisterClipboardFormatA
IsCharUpperA
FlashWindow
CreateIconIndirect
SetWindowLongA
RemovePropA
CloseClipboard
EndPaint
CreateIcon
IntersectRect
TranslateAcceleratorA
GetMenuItemInfoA
CharLowerA
IsIconic
CopyIcon
GetLastActivePopup
MapWindowPoints
ScreenToClient
FillRect
EnumChildWindows
PtInRect
CopyImage
GetSystemMenu
BeginPaint
FindWindowExA
DestroyIcon
DeleteMenu
SetDlgItemTextA
SetScrollRange
IsDlgButtonChecked
DispatchMessageA
GetMenuState
LoadMenuA
EnumWindows
SetPropA
RedrawWindow
SetTimer
GetPropA
OemToCharA
LoadBitmapA
ReleaseDC
MoveWindow
LoadAcceleratorsA
SetDlgItemInt
CheckMenuItem
GetWindowRect
SetWindowTextA
EndDialog
IsChild
CreateDialogIndirectParamA
GetFocus
SetClipboardData
SendDlgItemMessageA
CharToOemBuffA
IsWindowEnabled
InsertMenuItemA
BringWindowToTop
IsDialogMessageA
MessageBeep
GetSystemMetrics
DefWindowProcA
OemToCharBuffA
GetIconInfo
WindowFromPoint
GetSysColor
GetWindowPlacement
GetMenu
GetKeyState
InvalidateRect
DrawIconEx
PostThreadMessageA
SetCursor
GetDesktopWindow
GetSubMenu
GetMessageA
SetWindowPos
GetDlgItem
GetWindowThreadProcessId
SetWindowTextW
LoadCursorA
GetCursorPos
SendMessageW
GetMenuItemID
GetDlgItemTextA
MessageBoxA
GetDC
RegisterWindowMessageA
SetWindowPlacement
AppendMenuA
SetFocus
EmptyClipboard
ClientToScreen
CharToOemA
OpenClipboard
GetWindow
GetWindowLongA
CharLowerW
LoadStringA
PostQuitMessage
CreateWindowExA
CheckDlgButton
ExitWindowsEx
IsCharAlphaW
CreatePopupMenu
SetDlgItemTextW
EnableWindow
LoadImageA
DestroyMenu
TranslateMessage
CharUpperW
GetClassNameA
GetWindowTextA
IsCharAlphaA
DrawMenuBar
ValidateRect
GetWindowTextLengthA
IsWindow
DestroyWindow
UpdateWindow
ScrollWindowEx
ShowWindow
LoadIconA
EnableMenuItem

comctl32

ImageList_Create
ImageList_AddMasked
ImageList_Remove
ImageList_Destroy
ImageList_ReplaceIcon
ImageList_Add
PropertySheetA

gdi32

TextOutA
SetMapMode
Rectangle
StretchBlt
ExtTextOutA
SelectObject
CreateBitmap
DeleteObject
Polyline
MoveToEx
GetPixel
CreateCompatibleDC
CreatePen
DeleteDC
GetTextMetricsA
CreatePatternBrush
CreateSolidBrush
SetTextColor
BitBlt
DPtoLP
GetMapMode
GetTextFaceA
LineTo
CreateFontA
CreateCompatibleBitmap
Polygon
GetTextExtentPoint32A
GetDeviceCaps
GetObjectA
SetBkColor
SetPixel

comdlg32

ChooseFontA
GetSaveFileNameA
GetOpenFileNameW
GetOpenFileNameA
CommDlgExtendedError

msvfw32

DrawDibSetPalette
ICRemove

Sections

.text
Size: 516KB - Virtual size: 515KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 406KB - Virtual size: 3.7MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

72684b8f4fa1335bf004cd99ba35829a

Headers

File Characteristics

Imports

ole32

advapi32

shell32

kernel32

user32

comctl32

gdi32

comdlg32

msvfw32

Sections

.text Size: 516KB - Virtual size: 515KB

.rdata Size: 11KB - Virtual size: 10KB

.data Size: 406KB - Virtual size: 3.7MB

.rsrc Size: 34KB - Virtual size: 34KB

.text
Size: 516KB - Virtual size: 515KB

.rdata
Size: 11KB - Virtual size: 10KB

.data
Size: 406KB - Virtual size: 3.7MB

.rsrc
Size: 34KB - Virtual size: 34KB