69b2a9376a677471b73342c906c93490_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

69b2a9376a677471b73342c906c93490_JaffaCakes118
Size

288KB
MD5

69b2a9376a677471b73342c906c93490
SHA1

aaed3f756182f2ddcbcdfaffd710ba38bae3dbd8
SHA256

c209cef4bc793dd8cc09781cfaafa3116511646160f903660513a00ae634f6e9
SHA512

8e57bc16e61ba26091188050291eff839f06613b8855a2c3b362a579fd3ff5d58f8ec018ea4064413d0fef9f517750c6c2722754d7d3e914efdad322fe13e5a3
SSDEEP

6144:oiwf33S0j7y/8jzqcv18/O4+EJCLKSkHaCDO:A35jrx8/O43PSeD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
69b2a9376a677471b73342c906c93490_JaffaCakes118

Files

69b2a9376a677471b73342c906c93490_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7906cceb5aa204c77c89abdca53bbdac

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

GetObjectA
GetStockObject
GetTextColor
GetViewportExtEx
GetWindowExtEx
LPtoDP
OffsetViewportOrgEx
PtVisible
RectVisible
Rectangle
RemoveFontResourceA
GetDeviceCaps
SaveDC
ScaleViewportExtEx
ScaleWindowExtEx
SetBkColor
SetMapMode
SetTextColor
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
TextOutA
GetClipBox
GetBkColor
ExtTextOutA
ExtCreatePen
Escape
DeleteObject
DeleteDC
RestoreDC
DPtoLP

oledlg

ord8

user32

MessageBoxA
AdjustWindowRectEx
CallNextHookEx
CallWindowProcA
CharNextA
CharUpperA
CheckMenuItem
ClientToScreen
CreateDialogIndirectParamA
CreateWindowExA
DefWindowProcA
DestroyMenu
DestroyWindow
DispatchMessageA
DlgDirListComboBoxA
DrawTextA
EnableMenuItem
EndDialog
GetActiveWindow
GetCapture
GetClassInfoA
GetClassLongA
GetClassNameA
GetClientRect
GetCursorPos
GetDC
GetDlgCtrlID
GetDlgItem
GetFocus
GetForegroundWindow
wsprintfA
WinHelpA
ValidateRect
UpdateWindow
UnregisterClassA
UnhookWindowsHookEx
TranslateMessage
TabbedTextOutA
SystemParametersInfoA
SetWindowsHookExA
SetWindowTextA
SetWindowPos
SetWindowLongA
SetWindowContextHelpId
SetRect
SetPropA
SetMenuItemBitmaps
SetForegroundWindow
SetFocus
SetCursor
SetActiveWindow
SendMessageA
SendDlgItemMessageA
RemovePropA
ReleaseDC
RegisterWindowMessageA
RegisterClassA
RedrawWindow
PtInRect
PostThreadMessageA
PostQuitMessage
PostMessageA
PeekMessageA
OffsetRect
MoveWindow
ModifyMenuA
GetKeyState
MessageBeep
MapWindowPoints
MapDialogRect
LoadStringA
LoadIconA
LoadCursorA
LoadBitmapA
IsWindowEnabled
IsWindow
IsIconic
IsChild
GrayStringA
GetWindowTextA
GetWindowPlacement
GetWindowLongA
GetWindowDC
GetWindow
GetTopWindow
GetSystemMetrics
GetSysColorBrush
GetSysColor
GetSubMenu
GetPropA
GetParent
GetNextDlgTabItem
GetNextDlgGroupItem
GetMessagePos
GetMessageA
GetMenuItemID
GetMenuItemCount
GetMenuCheckMarkDimensions
GetMenu
EnableWindow

advapi32

RegCloseKey
RegCreateKeyExA
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA
LsaGetSystemAccessAccount

comdlg32

GetFileTitleA
GetFileTitleW
FindTextW
PrintDlgExA
ChooseFontW
ChooseColorW
ChooseColorA
GetOpenFileNameA
FindTextA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

ole32

StringFromCLSID
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
OleUninitialize
OleIsCurrentClipboard
OleInitialize
OleFlushClipboard
CreateILockBytesOnHGlobal
CoTaskMemFree
CoTaskMemAlloc
CoRevokeClassObject
CoRegisterMessageFilter
CoGetClassObject
CoFreeUnusedLibraries
CLSIDFromString
CLSIDFromProgID

comctl32

ord17

kernel32

GlobalFlags
CloseHandle
lstrlenW
lstrlenA
lstrcpynA
lstrcpyA
lstrcmpiA
lstrcmpA
WritePrivateProfileStringA
WinExec
WideCharToMultiByte
VirtualFree
VirtualAlloc
UnlockFile
TlsSetValue
TlsGetValue
TlsFree
TlsAlloc
TerminateProcess
SetUnhandledExceptionFilter
SetStdHandle
SetLastError
SetHandleCount
SetErrorMode
SetEndOfFile
RtlUnwind
ReadFile
RaiseException
Process32Next
MultiByteToWideChar
MulDiv
LockResource
LockFile
LocalFree
LocalAlloc
LoadResource
CompareStringA
LeaveCriticalSection
LCMapStringW
LCMapStringA
IsBadCodePtr
InterlockedIncrement
InterlockedDecrement
InitializeCriticalSection
HeapSize
HeapReAlloc
HeapFree
HeapDestroy
HeapCreate
HeapAlloc
GlobalUnlock
GlobalReAlloc
GlobalLock
GlobalHandle
GlobalGetAtomNameA
GlobalFree
LoadLibraryA
GlobalFindAtomA
GlobalDeleteAtom
GlobalAlloc
GlobalAddAtomA
GetVersion
GetTimeZoneInformation
GetThreadLocale
GetTempPathA
GetStringTypeW
GetStringTypeA
GetStartupInfoA
GetShortPathNameA
GetProcessVersion
GetProcAddress
GetOEMCP
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameA
GetFileType
GetFileTime
GetFileAttributesA
GetEnvironmentStringsW
GetCurrentThreadId
GetCurrentThread
GetCurrentProcessId
GetCurrentProcess
GetComputerNameA
GetCommandLineA
GetCPInfo
GetACP
FreeLibrary
FreeEnvironmentStringsW
FreeEnvironmentStringsA
FormatMessageA
FlushFileBuffers
FindResourceA
CompareStringW
CreateFileA
DeleteCriticalSection
DeleteFileA
DuplicateHandle
EnterCriticalSection
ExitProcess
FindClose
FileTimeToSystemTime

oleaut32

VariantCopy
VariantClear
VariantChangeType
VarBstrFromDate
SysStringLen
SysFreeString
SysAllocStringLen
SysAllocStringByteLen
OleCreateFontIndirect
VariantTimeToSystemTime
SysAllocString

Sections

.text
Size: 52KB - Virtual size: 56KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 148KB - Virtual size: 148KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 152KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 43KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7906cceb5aa204c77c89abdca53bbdac

Headers

File Characteristics

Imports

gdi32

oledlg

user32

advapi32

comdlg32

winspool.drv

ole32

comctl32

kernel32

oleaut32

Sections

.text Size: 52KB - Virtual size: 56KB

.rdata Size: 148KB - Virtual size: 148KB

.data Size: 36KB - Virtual size: 152KB

.idata Size: 7KB - Virtual size: 7KB

.rsrc Size: 43KB - Virtual size: 43KB

.text
Size: 52KB - Virtual size: 56KB

.rdata
Size: 148KB - Virtual size: 148KB

.data
Size: 36KB - Virtual size: 152KB

.idata
Size: 7KB - Virtual size: 7KB

.rsrc
Size: 43KB - Virtual size: 43KB