6fde3b35d1eecedd758557b9adbe4627_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

6fde3b35d1eecedd758557b9adbe4627_JaffaCakes118
Size

534KB
MD5

6fde3b35d1eecedd758557b9adbe4627
SHA1

cd474cbd54d476628aeaf0fc32d9e2f2e7e25f45
SHA256

ab95894306d850fd2cd42d3e6d40c30db10ff48d366ccbe2fbdac85ab8188d86
SHA512

e80b6d5671b1aac0b48d9bee7b96c970bcf6fb8481ba6395c305be6fdb93580f39981fb88932b2dc677d5f47e8a06c2a74e2343a14e8d88709f86a6cf1e9a544
SSDEEP

12288:qCIpTMMnMMMMMUTsIGJjYIRgcg/kihARikicQSfpyUBoXEs:ENMMnMMMMMksBJFJg/kaARikicQgyb

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6fde3b35d1eecedd758557b9adbe4627_JaffaCakes118

Files

6fde3b35d1eecedd758557b9adbe4627_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c01ea75d24aee116b0db72f49c651331

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc

shell32

ShellExecuteExW
SHGetDataFromIDListW
ExtractIconExW
SHGetDesktopFolder
DragQueryFileW
SHCreateShellItem
SHChangeNotify
SHGetFileInfoW
ShellAboutW
SHGetPathFromIDListA
ShellExecuteW
Shell_NotifyIconW
SHBrowseForFolderW
SHPathPrepareForWriteW
SHAppBarMessage
SHGetPathFromIDListW
SHGetFolderPathAndSubDirW
SHSetLocalizedName
ExtractIconW
Shell_NotifyIconA
SHGetFolderPathW
SHFileOperationW
SHGetSpecialFolderPathW
ShellExecuteA
SHGetInstanceExplorer
ExtractAssociatedIconExW
SHBindToParent
SHGetSpecialFolderLocation
SHGetFolderLocation

ntdll

RtlAddAccessAllowedObjectAce
RtlAdjustPrivilege
NtSetSystemInformation
NtQuerySemaphore

gdi32

SelectObject
CreateBitmap
GetPixel
GetPaletteEntries
GetTextExtentExPointI
CreateDCA
GetDCOrgEx
TextOutW
CreateHalftonePalette
SetWindowExtEx
GetBrushOrgEx
CreatePatternBrush
PatBlt
IntersectClipRect
CreateDIBSection
SetViewportExtEx
OffsetRgn
GetRegionData
GetTextMetricsW
GetBkMode
SelectPalette
SetWindowOrgEx
CreatePen
CreateFontIndirectA
SetBkColor
GetTextExtentPoint32A
RestoreDC
GetObjectA
CreateDIBPatternBrushPt
LineTo
GetTextExtentPointW
GetGlyphIndicesW
CreateCompatibleBitmap
CreatePolygonRgn
DeleteObject
GetTextAlign
GetTextExtentPoint32W
DeleteDC
CreateFontIndirectW
CreateEnhMetaFileA
GetLayout
SetDCPenColor
CloseEnhMetaFile
RectVisible
SetStretchBltMode
CloseMetaFile
BitBlt
GetTextCharset
CreateRectRgnIndirect
DeleteEnhMetaFile
EqualRgn
SetTextAlign
CreateRectRgn
GetObjectW
CombineRgn
GetClipBox
GetTextColor
SetTextColor
CreateCompatibleDC
MoveToEx
SetBrushOrgEx
SetViewportOrgEx
SetRectRgn
StretchBlt
ExtTextOutW
CreateMetaFileW
GetBkColor
GetDeviceCaps
CreatePalette
LPtoDP
StretchDIBits
CreateFontW
GetSystemPaletteEntries
ExtCreateRegion
GetDIBits
CreateSolidBrush
SetPaletteEntries
GetStockObject
CreateDCW
Rectangle
RealizePalette
SetLayout
TextOutA
GetRgnBox
SaveDC
SetMapMode
OffsetWindowOrgEx
PlayEnhMetaFile
SetBkMode

psapi

GetProcessImageFileNameW

uxtheme

IsThemeActive
GetThemeBackgroundExtent
GetThemeBackgroundContentRect
CloseThemeData
OpenThemeData
GetThemeAppProperties
GetThemeColor
DrawThemeParentBackground
DrawThemeBackground
GetThemePartSize
GetThemeFont
GetThemeMetric
SetWindowTheme
GetThemeMargins
IsAppThemed

rtutils

TraceDumpExW
TraceDumpExA

ddraw

DirectDrawCreate

user32

SetWindowsHookExW
ClientToScreen
TrackPopupMenu
CreateWindowExW
SetWindowPlacement
IntersectRect
MapVirtualKeyW
SetCursorPos
LoadStringW
SetTimer
GetSysColorBrush
FindWindowW
EnableWindow
GetMessageTime
TrackPopupMenuEx
GetComboBoxInfo
SetPropA
GetDlgItemTextW
PostQuitMessage
GetWindowTextLengthW
DdeGetData
CallMsgFilterW
CallWindowProcW
IsHungAppWindow
LockSetForegroundWindow
SetActiveWindow
CreatePopupMenu
GetPropA
InsertMenuW
RegisterClipboardFormatW
GetMenuItemInfoA
GetMenuItemCount
MessageBoxExW
DispatchMessageA
RemovePropW
MapWindowPoints
IsWindowUnicode
GetWindowRect
GetWindowRgnBox
LoadBitmapW
SetWindowLongA
MessageBeep
RegisterWindowMessageW
SetForegroundWindow
DdeCreateDataHandle
DdeDisconnect
SetCapture
DdeFreeDataHandle
EnableMenuItem
IsWindowVisible
WaitForInputIdle
IsCharAlphaNumericW
OffsetRect
DialogBoxIndirectParamA
GetWindowPlacement
GetWindowInfo
ChangeClipboardChain
GetClassNameW
GetDesktopWindow
DdeFreeStringHandle
NotifyWinEvent
SetWindowRgn
MonitorFromPoint
SetWindowTextW
KillTimer
CharUpperW
GetSubMenu
SendNotifyMessageW
WinHelpW
BeginPaint
GetWindowLongA
FindWindowExW
GetNextDlgTabItem
TranslateMessage
GetParent
IsChild
LoadCursorW
SendMessageTimeoutW
GetCursor
DdeNameService
DeferWindowPos
DdeConnect
wsprintfW
GetMenuState
DefWindowProcA
MessageBoxExA
VkKeyScanExW
UnhookWindowsHookEx
GetMessageW
SendMessageA
GetClassLongW
LoadImageW
IsDialogMessageW
GetClipboardFormatNameW
CheckDlgButton
DrawIconEx
EnumDisplaySettingsW
ScreenToClient
SetRectEmpty
IsWindow
IsMenu
FillRect
GetCursorPos
DrawTextExW
SetRect
LoadAcceleratorsW
AnimateWindow
GetSysColor
SetMenuDefaultItem
RemovePropA
EnumDesktopWindows
DdeCreateStringHandleW
GetPropW
PtInRect
MessageBoxW
InflateRect
AppendMenuW
EmptyClipboard
PeekMessageA
LoadIconW
DialogBoxParamW
CreateDialogParamW
PostThreadMessageA
CharLowerW
ReleaseCapture
GetScrollInfo
OpenClipboard
GetFocus
PeekMessageW
EndPaint
CharLowerBuffW
DrawEdge
GetWindowDC
DestroyWindow
RegisterWindowMessageA
AdjustWindowRectEx
GetForegroundWindow
GetShellWindow
GetDoubleClickTime
CheckRadioButton
WindowFromPoint
SetClipboardData
SetWindowPos
GetDlgItem
SystemParametersInfoA
HideCaret
FindWindowA
RedrawWindow
GetLastInputInfo
ShowWindow
GetAncestor
SetCursor
CharPrevW
SetScrollPos
EndDeferWindowPos
MsgWaitForMultipleObjects
DestroyAcceleratorTable
InsertMenuItemW
DrawFocusRect
GetDC
SetFocus
GetDialogBaseUnits
MonitorFromRect
IsIconic
GetWindow
BeginDeferWindowPos
SetMenuItemInfoW
DispatchMessageW
ShowScrollBar
UpdateLayeredWindow
GetKeyState
EnumWindows
SendDlgItemMessageW
UpdateWindow
GetIconInfo
DestroyIcon
SetWindowLongW
LoadMenuW
WaitMessage
CharNextA
DeleteMenu
GetDlgCtrlID
CheckMenuItem
EndMenu
GetKeyboardLayout
GetSystemMenu
DdeUninitialize
RegisterClassW
LoadStringA
IsWindowEnabled
TrackMouseEvent
GetClassInfoExW
RemoveMenu
AllowSetForegroundWindow
DialogBoxParamA
SetParent
CreateMenu
CopyRect
GetMonitorInfoW
SetDlgItemTextW
SetDlgItemInt
DrawTextW
GetMenuItemID
AttachThreadInput
GetWindowTextW
GetMessageA
GetLastActivePopup
CloseClipboard
MessageBoxIndirectW
DdeQueryStringW
SetMenu
GetProcessWindowStation
CheckMenuRadioItem
GetAsyncKeyState
GetCapture
GetTopWindow
RegisterClipboardFormatA
CopyImage
SetPropW
GetClassWord
DestroyMenu
DefWindowProcW
RegisterClassExW
CharNextW
DdeClientTransaction
MapDialogRect
GetWindowThreadProcessId
GetActiveWindow
EqualRect
GetMenuDefaultItem
GetSystemMetrics
IsRectEmpty
CopyIcon
MsgWaitForMultipleObjectsEx
SystemParametersInfoW
PostMessageW
GetClientRect
EnumChildWindows
ShowCaret
GetMessagePos
LoadCursorA
EndDialog
SetScrollInfo
GetClipboardData
GetMenuStringW
ReleaseDC
MoveWindow
PostMessageA
GetWindowLongW
DialogBoxIndirectParamW
TranslateAcceleratorW
AdjustWindowRect
MessageBoxIndirectA
ChildWindowFromPoint
SendMessageW
ShowOwnedPopups
IsDlgButtonChecked
CallNextHookEx
UnionRect
MonitorFromWindow
GetClassInfoW
GetKeyNameTextW
SetClipboardViewer
SetMenuItemBitmaps
DrawFrameControl
GetMenuItemInfoW
CharPrevA
PostThreadMessageW
UnregisterClassW
EnumThreadWindows
CreateIconIndirect
SendMessageTimeoutA
InvalidateRect
DdeInitializeW

advapi32

SetThreadToken
RegDeleteKeyW
RegQueryValueExW
RegEnumKeyExW
RegEnumKeyW
GetTraceEnableFlags
RegEnumValueW
CryptHashData
RegisterTraceGuidsW
RegSetValueExW
RegEnumValueA
GetUserNameW
SetTokenInformation
GetLengthSid
RegDeleteKeyA
RegQueryInfoKeyW
RegCreateKeyExW
RegDeleteValueW
CryptReleaseContext
RegQueryValueW
RegOpenKeyW
ImpersonateSelf
CreateProcessAsUserW
IsTextUnicode
CryptGetHashParam
RegCreateKeyExA
CryptDestroyHash
GetTraceEnableLevel
RegQueryValueExA
GetTokenInformation
RegOpenKeyExW
RegOpenCurrentUser
UnregisterTraceGuids
ConvertStringSecurityDescriptorToSecurityDescriptorW
DuplicateTokenEx
GetTraceLoggerHandle
RegCloseKey
RegOpenKeyExA
RegCreateKeyA
OpenProcessToken
TraceMessage
CryptCreateHash
CryptAcquireContextW
OpenThreadToken
ConvertSidToStringSidW
ConvertStringSidToSidW
RegDeleteValueA
RegSetValueExA
TraceEvent

Sections

.text
Size: 1024B - Virtual size: 1008B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 2.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 469KB - Virtual size: 469KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c01ea75d24aee116b0db72f49c651331

Headers

File Characteristics

Imports

kernel32

shell32

ntdll

gdi32

psapi

uxtheme

rtutils

ddraw

user32

advapi32

Sections

.text Size: 1024B - Virtual size: 1008B

.data Size: 5KB - Virtual size: 2.0MB

.idata Size: 12KB - Virtual size: 12KB

.rdata Size: 45KB - Virtual size: 44KB

.rsrc Size: 469KB - Virtual size: 469KB

.text
Size: 1024B - Virtual size: 1008B

.data
Size: 5KB - Virtual size: 2.0MB

.idata
Size: 12KB - Virtual size: 12KB

.rdata
Size: 45KB - Virtual size: 44KB

.rsrc
Size: 469KB - Virtual size: 469KB