69f22b3db27191286c11412ec3653392_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

69f22b3db27191286c11412ec3653392_JaffaCakes118
Size

39KB
MD5

69f22b3db27191286c11412ec3653392
SHA1

9466793a6d2cf6f4e5df8e1972887dff7b36352c
SHA256

ca16e8ef13d27c73d75019abdb0154d6c2c237ebcfff53e0d90c495ce3caccb3
SHA512

36a55300a0e17c46546fa848be6640daeac17cc601f9c6cec6404299a71ca6d5a00990e82af229dab798491e3a8401e0b041d7df10fff74f3f0e051b2ab02210
SSDEEP

768:b01JsVal7rRynT0hJAA4xG2BjrlVbNlkp8UQVPgE7sfuPbR/DS:bE6a5rRAAhJAAFmrlVBlSmPd72uPbR/D

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
69f22b3db27191286c11412ec3653392_JaffaCakes118

Files

69f22b3db27191286c11412ec3653392_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9d3164bad113b139fa93ad2a2aabeea2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryExA
GlobalFlags
SystemTimeToFileTime
LoadLibraryW
GetModuleHandleA
LeaveCriticalSection
OutputDebugStringW
lstrcpyW
FileTimeToSystemTime
GlobalFindAtomW
CreateFileW
CreateSemaphoreW
lstrcatW
LockFile
GetStringTypeExW
LocalFree
SuspendThread
InterlockedDecrement
GlobalFree
GetSystemDirectoryA
LocalReAlloc
WriteFile
TlsGetValue
FindResourceW
WideCharToMultiByte
LoadResource
VirtualAlloc
InterlockedIncrement
lstrcpynW
FindClose
TlsAlloc
FileTimeToLocalFileTime
DeleteFileW
GetCurrentDirectoryW
LocalFileTimeToFileTime
GetTempFileNameW
lstrcmpW
WaitForSingleObject
GetFileSize
WaitForMultipleObjects
lstrcpyA
VirtualProtect
GetCurrentProcess
GetDiskFreeSpaceW
GetTempPathW
GetFileTime
CopyFileW
FormatMessageW
lstrcpynA
lstrcatA
InitializeCriticalSection
LocalAlloc
GetVolumeInformationW
SetFileTime
FreeLibrary
SetEvent
GetPrivateProfileIntW
GetProfileIntW
SetErrorMode
GetVersionExW
GetVersion
TerminateProcess
GetUserDefaultLCID
LocalLock
SetFileAttributesW
LocalUnlock
GlobalHandle
GlobalAlloc
VirtualQuery
MulDiv
ReleaseSemaphore
ReleaseMutex
GetCurrentThreadId
TlsFree
IsDBCSLeadByte
GlobalSize
GetThreadLocale
LoadLibraryA
GlobalUnlock
CreateEventW
SearchPathW
GetVersionExA
ResumeThread
lstrcmpA
SetFilePointer
DuplicateHandle
GlobalLock
GetModuleHandleW
GetProcessVersion
FindFirstFileW
GetCurrentProcessId
GlobalDeleteAtom
GetFileAttributesW
lstrlenA
GetPrivateProfileStringW
FreeResource
UnlockFile
FindResourceExW
GetCurrentThread
SetEndOfFile
MoveFileW
FlushFileBuffers
MultiByteToWideChar
SetThreadPriority
GetProcAddress
GetLastError
GetSystemInfo
GetTickCount
GetSystemTimeAsFileTime
CreateMutexW
GetShortPathNameW
GetFullPathNameW
SetLastError
DelayLoadFailureHook
CloseHandle
Sleep
GetModuleFileNameW
lstrlenW
EnterCriticalSection
GlobalGetAtomNameW
GlobalAddAtomW
GlobalReAlloc
ReadFile
DeleteCriticalSection
SizeofResource
WritePrivateProfileStringW
InterlockedCompareExchange
LockResource
QueryPerformanceCounter
FindNextFileW
UnhandledExceptionFilter
lstrcmpiA
TlsSetValue
lstrcmpiW
SetUnhandledExceptionFilter

gdi32

DeleteDC
ScaleWindowExtEx
GetTextExtentPoint32W
GetCharWidthW
GetClipBox
SelectObject
CreateCompatibleBitmap
SelectPalette
EndDoc
CopyMetaFileW
CreateSolidBrush
PatBlt
CreateBitmap
CloseMetaFile
SetBkColor
ExcludeClipRect
GetObjectW
GetBkColor
LPtoDP
GetDeviceCaps
CreateFontIndirectW
SetTextColor
GetStretchBltMode
SetStretchBltMode
CreateCompatibleDC
GetObjectType
PlayMetaFileRecord
GetWindowExtEx
SetAbortProc
StartDocW
GetBkMode
GetTextAlign
Escape
SelectClipRgn
GetNearestColor
CreateFontW
PlayMetaFile
StretchDIBits
SetViewportOrgEx
GetTextMetricsW
OffsetViewportOrgEx
Rectangle
OffsetWindowOrgEx
PtVisible
CreateHatchBrush
GetStockObject
CreatePalette
DeleteMetaFile
CreateDCW
GetWindowOrgEx
CreateMetaFileW
SetMapMode
MoveToEx
SetViewportExtEx
StartPage
CreateDIBPatternBrushPt
SetTextAlign
SetPolyFillMode
GetClipRgn
EnumFontFamiliesW
DeleteObject
RectVisible
PolylineTo
SetROP2
AbortDoc
SetArcDirection
SetTextCharacterExtra
GetTextColor
SetWindowOrgEx
SetRectRgn
RestoreDC
BitBlt
ScaleViewportExtEx
GetCurrentPositionEx
GetPolyFillMode
ExtTextOutW
EnumMetaFile
CreatePen
PolyDraw
IntersectClipRect
ExtCreatePen
CreatePatternBrush
SetBrushOrgEx
LineTo
OffsetClipRgn
CreateRectRgn
CreateRectRgnIndirect
SaveDC
RealizePalette
EnumFontFamiliesExW
GetPixel
GetROP2
SetMapperFlags
GetTextFaceW
SetTextJustification
CombineRgn
DPtoLP
GetTextExtentPoint32A
SetColorAdjustment
GetPaletteEntries
SetBkMode
GetViewportOrgEx
EndPage
ExtSelectClipRgn
PolyBezierTo
OffsetRgn
GetMapMode
SelectClipPath
TextOutW
SetWindowExtEx
GetViewportExtEx
ArcTo
UnrealizeObject

ole32

OleSetContainedObject
OleRun
OleDuplicateData
GetClassFile
CreateOleAdviseHolder
CreateILockBytesOnHGlobal
OleRegGetMiscStatus
WriteFmtUserTypeStg
CoInitialize
DoDragDrop
OleLoadFromStream
OleLockRunning
CLSIDFromString
OleCreateLinkToFile
WriteClassStg
CoTaskMemFree
OleGetIconOfClass
WriteClassStm
ReadClassStm
OleSave
CoRegisterClassObject
OleCreate
OleSetMenuDescriptor
CreateDataAdviseHolder
CLSIDFromProgID
CreateItemMoniker
OleCreateFromFile
OleQueryCreateFromData
StgOpenStorageOnILockBytes
SetConvertStg
StgIsStorageFile
GetRunningObjectTable
ReadClassStg
StgOpenStorage
OleSaveToStream
OleDestroyMenuDescriptor
CoTaskMemAlloc
CreateFileMoniker
ReadFmtUserTypeStg
OleInitialize
CoDisconnectObject
CoLockObjectExternal
CoTreatAsClass
OleLoad
CoCreateInstance
GetHGlobalFromILockBytes
OleQueryLinkFromData
CreateBindCtx
IsAccelerator
OleTranslateAccelerator
CoFreeUnusedLibraries
CoGetMalloc
OleFlushClipboard
OleSetClipboard
OleUninitialize
CoGetClassObject
OleCreateMenuDescriptor
OleIsRunning
StgCreateDocfileOnILockBytes
CreateStreamOnHGlobal
OleRegEnumVerbs
CreateGenericComposite
ReleaseStgMedium
CoRegisterMessageFilter
CoRevokeClassObject
OleCreateStaticFromData
OleGetClipboard
OleIsCurrentClipboard
StgCreateDocfile
OleCreateLinkFromData
OleRegGetUserType
RevokeDragDrop
StringFromCLSID
RegisterDragDrop
CreateDataCache
OleCreateFromData
StringFromGUID2
CoUninitialize

msvcrt

_wsplitpath
malloc
wcsrchr
_except_handler3
time
_beginthreadex
vswprintf
_adjust_fdiv
mktime
_ltow
fgetws
_wfullpath
__dllonexit
_msize
iswdigit
fclose
wcstod
clearerr
wcsspn
modf
_purecall
__wargv
_wcsdup
fseek
_open_osfhandle
floor
ftell
localtime
_expand
fflush
free
_wtol
wcsstr
wcsncpy
wcsftime
wcscpy
memmove
abort
wcscmp
_initterm
fwrite
wcslen
calloc
wcspbrk
realloc
_fdopen
_wcsrev
__CxxFrameHandler
wcstol
wcsncmp
_wcsnicmp
wcstoul
_snwprintf
__argc
_wcslwr
_CxxThrowException
fputws
fread
wcschr
_ultow
__doserrno
gmtime
_get_osfhandle
_onexit
swprintf
wcscspn
_wtoi
_wcsupr
iswspace
_itow
ceil
_endthreadex

advapi32

RegSetValueExW
RegDeleteValueW
SetFileSecurityW
RegSetValueW
RegQueryValueExW
RegOpenKeyW
RegQueryValueW
RegCreateKeyExW
GetFileSecurityW
RegEnumKeyW
RegOpenKeyExW
RegDeleteKeyW
RegCloseKey
RegCreateKeyW

adsldpc

ADsEnumClasses

wininet

GopherOpenFileW
FtpSetCurrentDirectoryW
HttpSendRequestW
InternetSetStatusCallbackW
HttpOpenRequestW
InternetSetFilePointer
InternetConnectW
InternetGetLastResponseInfoW
FtpGetFileW
FtpDeleteFileW
InternetQueryOptionW
InternetCloseHandle
HttpAddRequestHeadersW
FtpRenameFileW
InternetWriteFile
FtpGetCurrentDirectoryW
GopherGetAttributeW
InternetGetCookieW
InternetOpenUrlW
InternetReadFile
FtpFindFirstFileW
GopherFindFirstFileW
FtpCreateDirectoryW
InternetErrorDlg
FtpRemoveDirectoryW
GopherCreateLocatorW
InternetSetCookieW
InternetFindNextFileW
HttpEndRequestW
InternetCanonicalizeUrlW
InternetSetOptionExW
FtpOpenFileW
HttpSendRequestExW
InternetOpenW
InternetQueryDataAvailable
FtpPutFileW
HttpQueryInfoW
InternetCrackUrlW

ntdll

NtCreateKey

ws2_32

WSAGetLastError

user32

ShowOwnedPopups
SetScrollPos
SetDlgItemTextW
SetTimer
SetParent
IsRectEmpty
GetSysColor
GetLastActivePopup
GetDlgItemInt
DispatchMessageW
InSendMessage
MsgWaitForMultipleObjects
IsDlgButtonChecked
BeginDeferWindowPos
PostThreadMessageW
InvalidateRect
SystemParametersInfoA
GetWindowRect
GetActiveWindow
IsClipboardFormatAvailable
ScrollWindow
GetClientRect
DestroyWindow
IsDialogMessageW
GetScrollPos
GetWindowDC
UpdateWindow
IsWindow
CreateMenu
TabbedTextOutW
RemoveMenu
LoadBitmapW
InflateRect
DrawFocusRect
InvertRect
SetCursorPos
ShowWindow
GetTabbedTextExtentW
ClientToScreen
DestroyIcon
UnionRect
LockWindowUpdate
ValidateRect
GetWindowTextW
PostMessageW
GetNextDlgTabItem
RegisterClassW
CreateDialogIndirectParamW
SetWindowPos
GetClassInfoW
InsertMenuW
CopyAcceleratorTableW
RegisterWindowMessageW
DrawMenuBar
GetWindowLongW
GetAsyncKeyState
GetScrollInfo
TranslateMDISysAccel
TranslateAcceleratorW
ModifyMenuW
IsIconic
CallWindowProcW
GetFocus
SetWindowPlacement
MessageBoxA
GetDlgItem
ReleaseCapture
GetTopWindow
SetRect
GetMenuState
SetWindowTextW
SetActiveWindow
SetDlgItemInt
WinHelpW
CheckDlgButton
GetTabbedTextExtentA
BeginPaint
DefWindowProcW
IsWindowVisible
EnableMenuItem
GetCursorPos
wsprintfW
SendDlgItemMessageW
MapWindowPoints
UnpackDDElParam
WindowFromPoint
IsChild
FillRect
WindowFromDC
PtInRect
GetDlgItemTextW
GetMenuItemCount
FrameRect
GetForegroundWindow
wvsprintfW
GetMenuCheckMarkDimensions
GetMenuStringW
CheckRadioButton
MessageBoxW
LoadCursorW
TrackPopupMenu
LoadStringW
ReuseDDElParam
ClipCursor
GetSystemMetrics
SetPropW
GetNextDlgGroupItem
KillTimer
GetSystemMenu
MapDialogRect
GetDC
MoveWindow
RedrawWindow
SetMenuItemBitmaps
UnregisterClassW
SetFocus
GetMenu
GetWindowPlacement
SetWindowLongW
GetSubMenu
GetParent
SystemParametersInfoW
FindWindowW
IsZoomed
GetWindow
GetClassNameW
DefFrameProcW
IntersectRect
LoadIconW
BringWindowToTop
SetRectEmpty
DefMDIChildProcW
EqualRect
CheckMenuItem
CopyRect
GetDesktopWindow
GetWindowTextLengthW
SetMenu
CharUpperW
GetDCEx
AdjustWindowRectEx
RegisterClipboardFormatW
IsWindowEnabled
GetScrollRange
GetMessageW
EndPaint
AppendMenuW
DeferWindowPos
WaitMessage
OffsetRect
UnhookWindowsHookEx
DeleteMenu
GetKeyState
EnableWindow
CharNextW
CountClipboardFormats
GetWindowThreadProcessId
ScrollWindowEx
DestroyCursor
EndDeferWindowPos
DrawEdge
GrayStringW
PostQuitMessage
EndDialog
SendDlgItemMessageA
GetPropW
GetDlgCtrlID
DestroyMenu
InvalidateRgn
SetForegroundWindow
MessageBeep
CallNextHookEx
TranslateMessage
RemovePropW
GetMessageTime
SendMessageW
LoadAcceleratorsW
SetWindowContextHelpId
GetMessagePos
GetCapture
GetDialogBaseUnits
SetScrollRange
LoadMenuW
PeekMessageW
ReleaseDC
SetWindowsHookExW
CreateWindowExW
GetSysColorBrush
SetCursor
ScreenToClient
SetScrollInfo
SetCapture
EnumChildWindows
GetMenuItemID
DrawTextW
ShowScrollBar

Sections

.textbss
Size: 512B - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 512B - Virtual size: 444B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 37KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

9d3164bad113b139fa93ad2a2aabeea2

Headers

File Characteristics

Imports

kernel32

gdi32

ole32

msvcrt

advapi32

adsldpc

wininet

ntdll

ws2_32

user32

Sections

.textbss Size: 512B - Virtual size: 96KB

.text Size: 512B - Virtual size: 444B

.rdata Size: 512B - Virtual size: 32B

.idata Size: 37KB - Virtual size: 36KB

.textbss
Size: 512B - Virtual size: 96KB

.text
Size: 512B - Virtual size: 444B

.rdata
Size: 512B - Virtual size: 32B

.idata
Size: 37KB - Virtual size: 36KB