65492161baa3f98a77044d0a19d71afe_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

65492161baa3f98a77044d0a19d71afe_JaffaCakes118
Size

724KB
MD5

65492161baa3f98a77044d0a19d71afe
SHA1

26cbccf3e34570a2129ea2e6fc05e32d6a4fa833
SHA256

2ca4c76aa4cfc8f9b2eca91d07f729f14f45a3876e0d8cb1d4674bc21b83d495
SHA512

6c6282833d53e3b8c2483ab94f9b8cd13ea6d5a491f922876d09b932846a543389c823702e8dc637b02d619b7545ed4050b310e8d6d9d169bbc96e47855e8b77
SSDEEP

12288:xG8W2XVdW3WX5h71vYRY2uCR1Wjpp2f0W1KRlb61Cl0fp8oCZ:xG/2FwStYRfVAv2fMRl7y8oCZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
65492161baa3f98a77044d0a19d71afe_JaffaCakes118

Files

65492161baa3f98a77044d0a19d71afe_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7ef3bb926887d0cbeecd53f2cb6ce80e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

h:\otvt\tnyxp\ste\lceue\zewer\gksrhe.pdb

Imports

comctl32

InitCommonControlsEx
ImageList_DragMove
ImageList_Write
PropertySheetW
ImageList_ReplaceIcon
ImageList_Replace
ImageList_GetDragImage
ImageList_Add
ImageList_DragEnter
ImageList_Destroy
ImageList_Merge
ImageList_Create
ImageList_GetImageInfo
ImageList_Draw
DestroyPropertySheetPage
ImageList_GetBkColor
ord17
ImageList_Remove
ImageList_LoadImageW
ImageList_GetIcon
ImageList_EndDrag
ImageList_AddMasked
ImageList_GetImageCount
ImageList_LoadImageA
_TrackMouseEvent
ImageList_Read
CreatePropertySheetPageA
ImageList_GetIconSize
ImageList_SetDragCursorImage
ImageList_DragLeave
ImageList_BeginDrag
PropertySheetA
ImageList_SetBkColor

version

VerQueryValueW
VerQueryValueA
GetFileVersionInfoSizeW
GetFileVersionInfoSizeA
GetFileVersionInfoW
GetFileVersionInfoA

gdi32

GetDeviceCaps
SetRectRgn
CreateHalftonePalette
EndPage
SelectObject
GetMapMode
CreateDiscardableBitmap
RectVisible
SetBkColor
CreateEllipticRgn
GetTextCharacterExtra
CreatePen
SelectClipPath
RectInRegion
SetBoundsRect
CreateFontIndirectA
LPtoDP
GetSystemPaletteEntries
RealizePalette
GetArcDirection
CreateDCA
DPtoLP
GetTextMetricsA
CreateEllipticRgnIndirect
CreateSolidBrush
StartPage
EnumMetaFile
CreateDIBSection
TextOutA
CreatePatternBrush
Rectangle
GetCharABCWidthsA
OffsetRgn
SetViewportOrgEx
GetBoundsRect
CreateCompatibleDC
ExtEscape
GetBrushOrgEx
GetTextExtentPointA
Polyline
StrokeAndFillPath
GetViewportExtEx
SetViewportExtEx
MoveToEx
FloodFill
GetTextFaceW
GetBitmapDimensionEx
GetViewportOrgEx
GetTextMetricsW
AnimatePalette
PolyBezierTo
Chord
CreateEnhMetaFileA
CreateRoundRectRgn
SetColorAdjustment
EnumObjects
OffsetViewportOrgEx
ExtCreatePen
SetPolyFillMode
AbortPath
UpdateColors
ExtCreateRegion
PolyPolygon
PlayEnhMetaFile
PtVisible
PatBlt
GetCharWidthA
TextOutW
SetAbortProc
GetTextExtentPoint32W
EnumFontFamiliesExW
CreateDIBitmap
CloseMetaFile
GetCharABCWidthsW
EqualRgn
PolyDraw
SetMiterLimit
SetArcDirection
ResizePalette
Ellipse
PathToRegion
SetBitmapBits
SelectClipRgn
SetTextJustification
GetBkMode
InvertRgn
GetMiterLimit
SetPixel
OffsetWindowOrgEx
Escape
SetStretchBltMode
CombineRgn
GetPixel
SetMapMode
PtInRegion
GetKerningPairsA
SetWorldTransform
IntersectClipRect
GetRgnBox
CreatePolygonRgn
CreatePolyPolygonRgn
SetROP2
SetWindowOrgEx
GetWindowExtEx
SetTextColor
GetBkColor
AngleArc
LineTo
PlgBlt
StretchBlt
SelectPalette
CreateDCW
SetDIBitsToDevice
GetCharABCWidthsFloatA
CopyMetaFileA
SetMapperFlags
ExtTextOutA
CreatePalette
ScaleViewportExtEx
EndPath
ExtTextOutW
StrokePath
GdiFlush
StretchDIBits
GetCharWidthFloatA
CreateFontA
SetTextCharacterExtra
CreatePenIndirect
MaskBlt
GetColorAdjustment
DrawEscape
CreateHatchBrush
Pie
CopyMetaFileW
SetBrushOrgEx
BitBlt
SetTextAlign
SetBitmapDimensionEx
EnumFontFamiliesExA
SetGraphicsMode
SaveDC
ExtSelectClipRgn
PolyPolyline
CreateFontW
Polygon
SetBkMode
WidenPath
Arc
UnrealizeObject
SetWindowExtEx
ArcTo
GetTextColor
GetObjectW
OffsetClipRgn
PlayMetaFileRecord
RoundRect
BeginPath
CreateRectRgnIndirect
GetPaletteEntries
GetNearestColor
GetWindowOrgEx
GetTextExtentPoint32A
GetTextExtentExPointA
GetTextFaceA
CreateMetaFileA
FillRgn
GetClipRgn
FillPath
AbortDoc
CreateRectRgn
DeleteObject
ScaleWindowExtEx
SetPaletteEntries
DeleteDC
CloseFigure
CreateDIBPatternBrushPt
GetObjectA
GetStockObject
RestoreDC
PolyBezier
SetPixelV
CreateBitmap
GetAspectRatioFilterEx
GetBitmapBits
CreateCompatibleBitmap
StartDocW
GetClipBox
PolylineTo
FrameRgn
EndDoc
ExcludeClipRect
ResetDCA
GdiComment
CloseEnhMetaFile
GetGlyphOutlineA
GetRegionData
GetDIBits

user32

EnableWindow
SetWindowTextA
CharToOemA
DefFrameProcA
RemovePropA
ScrollWindow
TrackPopupMenu
ReleaseDC
IsDlgButtonChecked
DrawFocusRect
TranslateMessage
SetDlgItemInt
GetWindow
SetWindowLongA
GetMenuItemCount
CreateDialogIndirectParamW
DlgDirSelectComboBoxExA
SetCursorPos
GetSystemMenu
ReleaseCapture
GetDlgItem
GetMenuCheckMarkDimensions
GetClassInfoW
GetWindowDC
WindowFromPoint
SetCapture
GetWindowLongA
DrawMenuBar
GetKeyboardLayoutList
GetSysColorBrush
LoadBitmapA
GetMenuStringA
GetActiveWindow
GetKeyState
TranslateMDISysAccel
GetParent
EqualRect
GetClassLongW
GetMessageW
CopyRect
MapDialogRect
DrawFrameControl
IsWindow
GetMessageTime
GetMessageA
ArrangeIconicWindows
SetForegroundWindow
RegisterWindowMessageA
GetMenuContextHelpId
TranslateAcceleratorA
RedrawWindow
SendDlgItemMessageW
GetScrollPos
GetWindowContextHelpId
CheckMenuItem
WaitForInputIdle
IsIconic
LoadCursorA
SetPropA
GetClassLongA
AppendMenuW
DeleteMenu
DefWindowProcA
DefFrameProcW
ClipCursor
InsertMenuItemA
GetMenuItemInfoW
RemovePropW
FindWindowW
IsWindowVisible
GetScrollInfo
SetTimer
MapWindowPoints
IsClipboardFormatAvailable
CharUpperA
PostThreadMessageA
CallWindowProcA
DrawTextA
DrawEdge
ShowOwnedPopups
LoadMenuIndirectA
MapVirtualKeyA
GetNextDlgTabItem
TrackPopupMenuEx
FillRect
GetDialogBaseUnits
IsDialogMessageA
DrawIcon
AppendMenuA
CreateDialogIndirectParamA
TabbedTextOutA
PeekMessageW
GetClientRect
CopyAcceleratorTableA
GetDoubleClickTime
CopyImage
VkKeyScanA
IsWindowUnicode
SendDlgItemMessageA
GetClipboardData
SetWindowTextW
GetWindowLongW
GetPropA
SendMessageTimeoutW
GetMessagePos
DrawStateA
ShowWindow
UnionRect
CallNextHookEx
EnumWindows
GetWindowRect
GetWindowTextA
EndPaint
ValidateRgn
BeginPaint
DragDetect
GetClassNameW
DeferWindowPos
GetWindowTextW
GetMenu
GetForegroundWindow
GetSystemMetrics
SetMenu
IsMenu
SetFocus
InsertMenuA
IsZoomed
SetCursor
ValidateRect
DlgDirSelectExA
DestroyWindow
SetWindowRgn
PostMessageA
SetRectEmpty
GetClassInfoA
mouse_event
InflateRect
GetTopWindow
RegisterClassW
BeginDeferWindowPos
AdjustWindowRectEx
DlgDirListComboBoxA
UnhookWindowsHookEx
SetRect
IsRectEmpty
EnableMenuItem
GetMenuState
CreateIconFromResourceEx
SetCaretPos
DestroyMenu
GetIconInfo
GetDC
CheckDlgButton
OpenClipboard
SetMenuItemInfoA
RegisterClassExA
GetCursorPos
SetMenuItemBitmaps
CreatePopupMenu
EnumChildWindows
InvalidateRect
GetClassNameA
GetDlgCtrlID
LoadAcceleratorsA
OffsetRect
wsprintfA
GetWindowPlacement
WaitMessage
GetLastActivePopup
MessageBoxW
EmptyClipboard
GetNextDlgGroupItem
SendInput
CharNextA
HideCaret
GetTabbedTextExtentA
LoadStringA
LoadImageW
GetSysColor
GetAsyncKeyState
MessageBoxA
KillTimer
UpdateWindow
SetMenuDefaultItem
IsWindowEnabled
EndDeferWindowPos
DlgDirListA
DrawIconEx
SetPropW
LoadBitmapW
UnregisterClassA
DestroyCursor
PostQuitMessage
GetDCEx
GetDlgItemInt
GetFocus
ShowScrollBar
CreateWindowExA
GetScrollRange
PostMessageW
LoadStringW
SetScrollPos
PeekMessageA
SetParent
IsChild
BringWindowToTop
RegisterClassA
SetActiveWindow
SendMessageA
PtInRect
GetCapture
LoadMenuW
ScrollWindowEx
ExitWindowsEx
MessageBeep
ClientToScreen
RegisterClipboardFormatA
LoadMenuA
EndDialog
DefDlgProcA
SystemParametersInfoA
GetDesktopWindow
ModifyMenuA
DestroyAcceleratorTable
SetClipboardData
CopyIcon
keybd_event
IntersectRect
InvertRect
MoveWindow
GetWindowThreadProcessId
ExcludeUpdateRgn
SetWindowPos
DispatchMessageA
CreateWindowExW
GetMenuItemID
SetWindowLongW
ScreenToClient
RemoveMenu
DdeConnect
TrackMouseEvent
GetSubMenu
DrawTextW
SetDlgItemTextA

kernel32

GetCurrentThreadId
VirtualQuery
GetLocalTime
GetModuleHandleA
LoadLibraryA
CloseHandle
GetProcessTimes
GetEnvironmentStringsW
GetACP
VirtualProtect
GetLocaleInfoA
GetModuleFileNameA
GetStringTypeExA
GetUserDefaultLCID
GetFileInformationByHandle
lstrcmpA
ExpandEnvironmentStringsW
GetProcessHeap
EnterCriticalSection
FindClose
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GlobalDeleteAtom
MulDiv
GetProcessVersion
MultiByteToWideChar
OutputDebugStringA
HeapDestroy
ReadFile
RaiseException
CreateMutexW
CreateFileA
lstrcpynW
GetCommandLineA
FindFirstFileW
SetErrorMode
VirtualFree
FlushFileBuffers
LCMapStringA
CompareFileTime
FreeLibrary
GetExitCodeProcess
WriteConsoleW
ExitProcess
TlsAlloc
GetFileSize
CreateMutexA
HeapCreate
GetSystemTime
Sleep
FindResourceExW
LocalFileTimeToFileTime
GetCurrentThread
GetVersionExW
GetCPInfo
SetStdHandle
IsBadReadPtr
GetVersion
FatalAppExitA
TlsGetValue
ReleaseMutex
GetSystemInfo
GetNumberFormatA
CreateEventW
GlobalAlloc
CompareStringW
IsBadCodePtr
GetConsoleCP
QueryPerformanceCounter
HeapReAlloc
HeapSize
GlobalMemoryStatus
GetWindowsDirectoryA
GetTickCount
SetFilePointer
GetCurrentProcess
GetProcAddress
GetFileTime
GetPrivateProfileStringA
GetStartupInfoA
WaitForSingleObject
FindFirstFileA
GetVersionExA
WinExec
GetModuleHandleW
lstrcpynA
LeaveCriticalSection
GetVolumeInformationA
GetStringTypeW
UnmapViewOfFile
TerminateProcess
GetLastError
GetCommandLineW
QueryDosDeviceA
HeapAlloc
CompareStringA
GetTimeZoneInformation
LoadResource
GetStringTypeExW
GetSystemDefaultLangID
CreateEventA
lstrcmpiA
OpenProcess
_lclose
SetFileTime
CopyFileW
GlobalFindAtomA
InterlockedExchange
SetUnhandledExceptionFilter
GetStringTypeA
SetEnvironmentVariableA
FileTimeToSystemTime
FileTimeToLocalFileTime
DeleteFileA
GetConsoleOutputCP
ResetEvent
SetLastError
SetFilePointerEx
IsValidLocale
WideCharToMultiByte
GetDriveTypeA
ConvertDefaultLocale
TlsFree
SuspendThread
WriteFile
GetFullPathNameA
OpenMutexA
CreateProcessA
LoadLibraryW
GlobalReAlloc
RemoveDirectoryW
GlobalFree
GlobalUnlock
GlobalLock
ExpandEnvironmentStringsA
SetEvent
FindResourceA
DuplicateHandle
MoveFileA
GetUserDefaultUILanguage
GetPrivateProfileIntA
SystemTimeToFileTime
RtlUnwind
InterlockedCompareExchange
lstrlenA
GetThreadLocale
SetHandleCount
GetFileAttributesW
GetTimeFormatA
GetStdHandle
WritePrivateProfileSectionA
GetExitCodeThread
GetFileType
WaitForMultipleObjects
CreateThread
CreateDirectoryA
GetCurrentDirectoryA
TlsSetValue
GetTempFileNameA
LCMapStringW
VirtualAlloc
IsDebuggerPresent
SetEndOfFile
SetThreadPriority
LocalReAlloc
InitializeCriticalSection
GetLocaleInfoW
lstrcatA
OpenFileMappingW
GetSystemDefaultLCID
FindResourceW
FormatMessageA
GetSystemTimeAsFileTime
WritePrivateProfileStringA
UnhandledExceptionFilter
SetCurrentDirectoryA
HeapFree
DeleteCriticalSection
GetSystemDirectoryA
IsValidCodePage
EnumSystemLocalesA
GetShortPathNameA
InterlockedDecrement
SizeofResource
ReleaseSemaphore
InterlockedIncrement
IsBadWritePtr
GlobalFlags
GetEnvironmentStrings
GetLogicalDriveStringsA
ResumeThread
GetTempPathA
GetOEMCP
GetCurrentProcessId
AreFileApisANSI
GetThreadTimes
LocalAlloc
LockResource
LocalFree
lstrcpyA
DeviceIoControl
ExitThread
GetFileAttributesA

shell32

SHBrowseForFolderA
SHGetSpecialFolderLocation
SHGetDataFromIDListW
Shell_NotifyIconA
SHGetMalloc
SHGetFileInfoA
ShellExecuteExA
SHGetPathFromIDListW
DragQueryFileW
Shell_NotifyIconW
DragQueryFileA
SHFileOperationA
SHBrowseForFolderW
ord155
ShellExecuteW
ExtractIconExW
SHAppBarMessage
ShellExecuteExW
SHGetPathFromIDListA

comdlg32

ReplaceTextA
CommDlgExtendedError
GetFileTitleA
GetOpenFileNameA
ChooseFontA
PrintDlgA
PageSetupDlgA
GetSaveFileNameA
ChooseColorA

winmm

mixerGetDevCapsA
mciSendStringA
waveOutGetPosition
mixerSetControlDetails
waveInGetDevCapsA
waveInPrepareHeader
timeBeginPeriod
waveInOpen
mixerGetDevCapsW
waveInClose
waveOutClose
PlaySoundW
waveInReset
timeSetEvent
mixerClose
waveInUnprepareHeader
mciGetErrorStringA
waveInGetDevCapsW
mixerGetLineControlsA
mixerGetLineInfoA
PlaySoundA
mixerOpen
waveInAddBuffer
waveInGetNumDevs
waveOutGetDevCapsA
waveOutUnprepareHeader
timeKillEvent
mixerGetNumDevs
mixerGetControlDetailsA
waveOutOpen
waveInStart
timeGetTime
mmioAscend

shlwapi

PathIsDirectoryW
PathRemoveExtensionW
AssocQueryStringW
PathIsDirectoryEmptyW
PathFileExistsW
PathIsNetworkPathW
PathRemoveFileSpecW
PathIsFileSpecW
StrCmpW

oleaut32

LoadTypeLi

Sections

.text
Size: 68KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 460KB - Virtual size: 459KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 120KB - Virtual size: 137KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7ef3bb926887d0cbeecd53f2cb6ce80e

Headers

File Characteristics

PDB Paths

Imports

comctl32

version

gdi32

user32

kernel32

shell32

comdlg32

winmm

shlwapi

oleaut32

Sections

.text Size: 68KB - Virtual size: 66KB

.rdata Size: 460KB - Virtual size: 459KB

.data Size: 120KB - Virtual size: 137KB

.rsrc Size: 72KB - Virtual size: 70KB

.text
Size: 68KB - Virtual size: 66KB

.rdata
Size: 460KB - Virtual size: 459KB

.data
Size: 120KB - Virtual size: 137KB

.rsrc
Size: 72KB - Virtual size: 70KB