63388ac5e7afd4f11afb386fc9207c12_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

63388ac5e7afd4f11afb386fc9207c12_JaffaCakes118
Size

713KB
MD5

63388ac5e7afd4f11afb386fc9207c12
SHA1

2a56981bd571d3f7e30a337615bb9b08f5aa52af
SHA256

751df4240055edf52a0353096bdb4fb24ce0b4ea94b85226bf3b426dc8517c21
SHA512

b841376f0d326a015a0cef9789b99405474eedb7d42af3564df30ec3fcc9a1694ae7f5e9423bceee13842d19b5b1d4d62dc24df3f6aace6385ad1aa8bd3bc338
SSDEEP

12288:Lc3zd7t4Q/SICgZKATGIyEWzkSeymIeK5X1790VY5SwRwV:Y3RJ4AFkAKIjWSSeKR179+3AI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
63388ac5e7afd4f11afb386fc9207c12_JaffaCakes118

Files

63388ac5e7afd4f11afb386fc9207c12_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f9757a1f0df25aff53ffdd08a5c3c0e8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

DragAcceptFiles
DragFinish
SHGetFolderPathW
ord155

gdi32

DeleteObject
FillRgn
ScaleWindowExtEx
StretchBlt
RectVisible
RoundRect
CreateSolidBrush
CreatePatternBrush
SetWindowExtEx
SetDIBitsToDevice
SetViewportOrgEx
CreatePen
SetViewportExtEx
SelectPalette
EndPage
GetTextCharsetInfo
BitBlt
LineTo
CreateCompatibleDC
Rectangle
GetTextMetricsW
CreateCompatibleBitmap
ExtTextOutA
GetDeviceCaps
CreateBitmap
PtVisible
SetStretchBltMode
ExcludeClipRect
ScaleViewportExtEx
StartPage
SelectObject
StretchDIBits
SetBkMode
GetMapMode
TextOutW
SelectClipRgn
OffsetViewportOrgEx
ExtTextOutW
SetDIBits
CreateRoundRectRgn
EndDoc
CreateFontW
CreateRectRgnIndirect
CreatePalette
DeleteDC

oleaut32

LoadTypeLi

comdlg32

GetOpenFileNameA
ChooseFontA

wininet

FtpGetCurrentDirectoryA
InternetWriteFile
InternetReadFile
InternetFindNextFileA
InternetConnectA
FtpDeleteFileA
FtpRenameFileA
FtpRemoveDirectoryA
InternetQueryDataAvailable
FtpFindFirstFileA

kernel32

GetStartupInfoA
FreeEnvironmentStringsW
GetModuleFileNameW
WriteConsoleW
GetCurrentProcess
LoadResource
GetCommandLineA
GetConsoleMode
WriteFile
TlsAlloc
GetTimeZoneInformation
CreateDirectoryW
CreateFileA
InitializeCriticalSection
TerminateProcess
LCMapStringW
lstrcpynW
GetCurrentProcessId
HeapAlloc
RtlUnwind
GetLocaleInfoA
IsValidCodePage
WriteConsoleA
SetLastError
IsDebuggerPresent
FreeEnvironmentStringsA
GlobalLock
RaiseException
ExitProcess
GetTempPathW
VirtualFree
UnhandledExceptionFilter
EnterCriticalSection
InterlockedDecrement
ReadFile
DeleteCriticalSection
InterlockedExchange
GetEnvironmentStringsW
CompareStringA
GetStdHandle
SetUnhandledExceptionFilter
TlsFree
CreateFileMappingW
HeapDestroy
GetOEMCP
GetProcAddress
HeapFree
CreateMutexW
MultiByteToWideChar
FileTimeToSystemTime
GetEnvironmentStrings
HeapSize
GetConsoleCP
FlushFileBuffers
Sleep
GetDateFormatA
CompareStringW
InterlockedIncrement
SetHandleCount
LocalAlloc
LoadLibraryW
GetStartupInfoW
HeapReAlloc
GetStringTypeW
GetCPInfo
GetCurrentThreadId
LoadLibraryExW
GetModuleFileNameA
LeaveCriticalSection
SetEnvironmentVariableA
LCMapStringA
SetStdHandle
GetStringTypeA
GetCommandLineW
GetACP
TlsGetValue
VirtualAlloc
GetSystemTimeAsFileTime
GetModuleHandleW
WideCharToMultiByte
TlsSetValue
GetFileAttributesW
SetFilePointer
GetTickCount
GetLastError
GetFileType
QueryPerformanceCounter
GetModuleHandleA
VirtualQuery
CloseHandle
GetProcessHeap
GetVersionExA
GetTimeFormatA
HeapCreate
GetConsoleOutputCP
LoadLibraryA

winspool.drv

OpenPrinterA
DocumentPropertiesA

user32

GetWindowPlacement
IsWindowEnabled
KillTimer
LoadIconW
SystemParametersInfoW
InvalidateRect
EnableMenuItem
BringWindowToTop
AppendMenuW
GetClientRect
GetParent
CreateDialogIndirectParamW
DispatchMessageW
PostQuitMessage
CopyImage
SetParent
GetWindowLongW
SendDlgItemMessageA
GetMenuItemID
MoveWindow
IsWindowVisible
ScreenToClient
ChildWindowFromPoint
BeginDeferWindowPos
GetScrollInfo
ShowScrollBar
DrawIconEx
DeferWindowPos
GetForegroundWindow
GetDesktopWindow
GetIconInfo
IsIconic
OpenClipboard
GetSubMenu
LockWindowUpdate
UnhookWindowsHookEx
GetLastActivePopup
GetDoubleClickTime
SetMenuItemInfoW
SetMenu
EmptyClipboard
GetAsyncKeyState
CallNextHookEx
DestroyCursor
UpdateWindow
GetDlgCtrlID
DrawEdge
SetDlgItemInt
TrackPopupMenu
RegisterWindowMessageW
DestroyMenu
SetCursor
SetClipboardData
EndDialog
RedrawWindow
DrawMenuBar
DefWindowProcW
GetCursorPos
RegisterClipboardFormatW
CheckMenuItem
DestroyAcceleratorTable
EndDeferWindowPos
BeginPaint
DefFrameProcW
InflateRect
LoadCursorW
GetMessageTime
GetClipboardData
IsChild
DrawFocusRect
GetKeyboardLayout
FillRect
CreatePopupMenu
SetTimer
GetMenu
LoadStringW
GetMenuState
SetCursorPos
LoadMenuW
IsDialogMessageW
DrawFrameControl
EqualRect
ShowWindow
CopyRect
RegisterClassW
SetWindowLongW
SetMenuDefaultItem
LoadBitmapW
MessageBoxW
OffsetRect
EndPaint
SendMessageA
GetActiveWindow
IsMenu
EnumChildWindows
SetWindowRgn
GetScrollPos
MessageBeep
WaitForInputIdle
DeleteMenu
ReuseDDElParam
SetCapture
GetMenuItemCount
ShowOwnedPopups
EnableWindow
PostMessageW
SetActiveWindow
InsertMenuItemW
ClientToScreen
GetSysColorBrush
SetWindowTextW
SystemParametersInfoA
CreateWindowExW
SetWindowsHookExW
SendMessageW
IntersectRect
GetMenuStringW
SetFocus
PeekMessageW
CloseClipboard
IsClipboardFormatAvailable
RegisterClassExW
GetSystemMenu
GetCapture
GetMessagePos
GetFocus
SetForegroundWindow
DrawStateW
PtInRect
GetWindow
SetRectEmpty
SetWindowPos
WindowFromPoint
GetWindowThreadProcessId
GetWindowDC
ModifyMenuW
IsZoomed
UnpackDDElParam
GetClassLongW
GetDlgItem
DestroyWindow
GetTopWindow
GetNextDlgTabItem
ReleaseDC
GetKeyState
AttachThreadInput
SetScrollInfo
ScrollWindow
GetSysColor
DestroyIcon
GetSystemMetrics
GetWindowTextW

advapi32

RegCloseKey
RegEnumValueA
RegSetValueExA
AdjustTokenPrivileges
RegEnumKeyA
RegQueryValueExA
RegCreateKeyA
RegDeleteKeyA
RegOpenKeyExA

comctl32

ord17
ImageList_Draw
ImageList_Destroy
InitCommonControlsEx
ImageList_LoadImageA

Sections

.text
Size: 115KB - Virtual size: 114KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 471KB - Virtual size: 471KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 17KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f9757a1f0df25aff53ffdd08a5c3c0e8

Headers

File Characteristics

Imports

shell32

gdi32

oleaut32

comdlg32

wininet

kernel32

winspool.drv

user32

advapi32

comctl32

Sections

.text Size: 115KB - Virtual size: 114KB

.rdata Size: 471KB - Virtual size: 471KB

.data Size: 108KB - Virtual size: 107KB

.rsrc Size: 17KB - Virtual size: 17KB

.text
Size: 115KB - Virtual size: 114KB

.rdata
Size: 471KB - Virtual size: 471KB

.data
Size: 108KB - Virtual size: 107KB

.rsrc
Size: 17KB - Virtual size: 17KB