71bd876217deb1ab69f05ad31572cf37_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

71bd876217deb1ab69f05ad31572cf37_JaffaCakes118
Size

1.0MB
MD5

71bd876217deb1ab69f05ad31572cf37
SHA1

14bd62369eaf81f680afd67370724c186e885e97
SHA256

b88ca74dd64b6f147e1e86f3fbd09d9493ef03ccabf9c65fb10310e5234a2236
SHA512

1953a29391355804ab6ce693bc02b35283b3861585b926e84fbed4d0107ad60ed718393df366d91f666c6f891997097a5976b27c9e74ad1d0e2b581fe257a910
SSDEEP

24576:oeDllbeNLizUR6YDNfwk8VLCQTouoKac+:RlbMEYDNjuod

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
71bd876217deb1ab69f05ad31572cf37_JaffaCakes118

Files

71bd876217deb1ab69f05ad31572cf37_JaffaCakes118
.exe windows:4 windows x86 arch:x86

29bf2386b121c5e438beb767389c38f2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentProcess
SetPriorityClass
GetLogicalDrives
GetShortPathNameA
lstrcmpA
GetSystemTimeAsFileTime
GlobalUnlock
CreateEventA
CreateSemaphoreA
LoadLibraryExA
GlobalReAlloc
MultiByteToWideChar
RemoveDirectoryA
CreateDirectoryA
LeaveCriticalSection
SetEndOfFile
GetDriveTypeA
ExitProcess
CopyFileA
GetLastError
ReleaseSemaphore
ReadFile
GetFullPathNameA
MoveFileA
GlobalLock
EnterCriticalSection
GetStartupInfoA
FreeLibrary
CreateProcessA
Sleep
CreateThread
WaitForSingleObject
CloseHandle
GetModuleFileNameA
FindResourceA
LoadResource
LockResource
MulDiv
GetTickCount
GlobalAlloc
DeleteCriticalSection
InitializeCriticalSection
SetThreadPriority
FindFirstFileA
FindNextFileA
FindClose
WritePrivateProfileStructA
GetPrivateProfileStructA
lstrcatA
lstrcpyA
CreateFileA
SetFilePointer
WriteFile
GetFileSize
lstrcmpiA
GetTempFileNameA
lstrcpynA
SetCurrentDirectoryA
GetCurrentDirectoryA
GetPrivateProfileStringA
WritePrivateProfileStringA
LoadLibraryA
GetProcAddress
GetLocalTime
DeleteFileA
GetTempPathA
GetPrivateProfileIntA
GlobalFree
GetSystemTime
GetModuleHandleA
SystemTimeToFileTime

user32

GetMessageA
KillTimer
GetClassInfoA
RegisterClassA
IsDlgButtonChecked
MessageBoxA
IsDialogMessageA
TranslateMessage
DispatchMessageA
PostMessageA
IsWindow
SetTimer
EndPaint
GetForegroundWindow
GetParent
SetDlgItemTextA
DialogBoxParamA
GetSubMenu
SetCapture
SetWindowTextA
GetWindowDC
ReleaseDC
DestroyWindow
CreateDialogParamA
SendDlgItemMessageA
IsWindowVisible
CheckDlgButton
FindWindowA
DefWindowProcA
CreateWindowExA
SetWindowLongA
GetUpdateRect
BeginPaint
GetDlgItem
GetWindowRect
SetCursor
FillRect
ClientToScreen
SetParent
IsChild
ScreenToClient
LoadCursorA
GetCursorPos
ReleaseCapture
FindWindowExA
TrackPopupMenu
GetWindowLongA
EndDialog
CheckMenuItem
SetWindowPos
InvalidateRect
SendMessageA
GetDlgItemTextA
DrawTextA
SetForegroundWindow
ShowWindow
LoadImageA
wsprintfA
GetAsyncKeyState
PeekMessageA
EnableWindow
GetSystemMetrics
GetKeyState
CallWindowProcA
SetRect
GetWindowRgn
EnumDisplaySettingsA
DestroyIcon
CharPrevA
TranslateAcceleratorA
DeferWindowPos
DestroyCursor
BeginDeferWindowPos
wvsprintfA
EndDeferWindowPos
SetWindowRgn
IsIconic
CharNextA
GetMenuStringA
SetCursorPos
SetDlgItemInt
GetDlgItemInt
RegisterClipboardFormatA
DrawIconEx
GetWindowTextA
GetMenuItemCount
GetMenuItemRect
SystemParametersInfoA
GetFocus
ModifyMenuA
CreatePopupMenu
GetMessagePos
DestroyMenu
SendMessageTimeoutA
LoadMenuA
PostQuitMessage
UpdateWindow
GetMenuItemInfoA
GetSystemMenu
InsertMenuA
InsertMenuItemA
SetMenuItemInfoA
EnableMenuItem
RegisterWindowMessageA
LoadIconA
SetClassLongA
RemoveMenu
LoadStringA
LoadAcceleratorsA
GetClientRect
GetClassLongA
GetDC
WindowFromPoint
SetFocus
DeleteMenu

gdi32

UpdateColors
SelectPalette
BitBlt
CreateDIBSection
CreatePalette
GetDeviceCaps
CreateBrushIndirect
GetNearestColor
GetPixel
GetTextMetricsA
CreateFontA
CreateCompatibleBitmap
StretchBlt
ExtSelectClipRgn
Rectangle
IntersectClipRect
SetBkColor
GetStockObject
GetTextExtentPoint32A
CreateFontIndirectA
EnumFontsA
CreateRectRgn
CreatePolyPolygonRgn
CreatePen
CreateSolidBrush
SetPixel
GetObjectA
RoundRect
GetBkColor
GetTextColor
MoveToEx
LineTo
RealizePalette
SetBkMode
CreateCompatibleDC
SetTextColor
GetDIBits
GetDIBColorTable
SelectObject
DeleteObject
DeleteDC

advapi32

RegCreateKeyA
RegCloseKey
RegQueryValueExA
RegOpenKeyA
RegDeleteValueA
RegSetValueExA
RegDeleteKeyA
RegEnumKeyA
RegOpenKeyExA
RegCreateKeyExA

shell32

ShellExecuteA
Shell_NotifyIconA
SHGetMalloc
DragQueryPoint
DragFinish
DragQueryFileA
SHBrowseForFolderA
SHAppBarMessage
SHGetPathFromIDListA

comctl32

ord17

ole32

CoCreateGuid
CoRevokeClassObject
RevokeDragDrop
OleUninitialize
OleInitialize
RegisterDragDrop
CoRegisterClassObject
CoInitialize
CoCreateInstance

comdlg32

GetSaveFileNameA
GetOpenFileNameA

msacm32

acmStreamUnprepareHeader
acmStreamPrepareHeader
acmStreamOpen
acmStreamConvert
acmStreamClose
acmFormatSuggest
acmFormatDetailsA
acmFormatTagDetailsA
acmFormatChooseA

msvcrt

_acmdln
_exit
_onexit
_XcptFilter
strstr
isalnum
__dllonexit
strtol
strchr
tolower
qsort
ceil
fwrite
_isctype
_pctype
__mb_cur_max
_except_handler3
fseek
srand
realloc
strncmp
ftell
fputc
memcmp
strncpy
_purecall
__CxxFrameHandler
fgets
exit
__getmainargs
??3@YAXPAX@Z
strcmp
??2@YAPAXI@Z
localtime
strftime
time
sprintf
atoi
toupper
malloc
fprintf
strlen
sqrt
sin
free
memset
strcat
pow
fread
fclose
fopen
_mbsstr
memcpy
strcpy
rand
_ftol
_CIpow
__setusermatherr
_adjust_fdiv
_initterm
__p__fmode
__set_app_type
__p__commode
_stricmp
_strnicmp
_controlfp
_chmod
_access
_strdup

Sections

.text
Size: 327KB - Virtual size: 327KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 36KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 652KB - Virtual size: 652KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

29bf2386b121c5e438beb767389c38f2

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

comctl32

ole32

comdlg32

msacm32

msvcrt

Sections

.text Size: 327KB - Virtual size: 327KB

.rdata Size: 12KB - Virtual size: 11KB

.data Size: 36KB - Virtual size: 107KB

.rsrc Size: 652KB - Virtual size: 652KB

.text
Size: 327KB - Virtual size: 327KB

.rdata
Size: 12KB - Virtual size: 11KB

.data
Size: 36KB - Virtual size: 107KB

.rsrc
Size: 652KB - Virtual size: 652KB