7127f64fa044d79080df9e7ab7cdc7d5_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

7127f64fa044d79080df9e7ab7cdc7d5_JaffaCakes118
Size

472KB
MD5

7127f64fa044d79080df9e7ab7cdc7d5
SHA1

dc379b4f34fbd703c5ae767c98fdbd935f8f78b1
SHA256

7456231647cee78d9d41544ccea8ddbda56f6224aacfcb6da4a1bcd125a55f2b
SHA512

2da78a6f0ab3f78a7ef6a43b17d7da4392cf4443c61949139e0d4ba26671c60f025a2c1ae6fa67a9b42f9bd95336e6c827704605589dc3254182f60a7c2a31ee
SSDEEP

6144:TUjkfInxPKW+pSHR1eh/6JLdTj2HUIEynshJB0y77H:YjkfGxPKJp6R1ehUFj2BEyns

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7127f64fa044d79080df9e7ab7cdc7d5_JaffaCakes118

Files

7127f64fa044d79080df9e7ab7cdc7d5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f2e8a45494ddbdaf51ccec5d856046c5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
HeapDestroy
GetVersionExA
UnhandledExceptionFilter
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
SetUnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentVariableA
LCMapStringW
IsBadCodePtr
CompareStringA
CompareStringW
SetEnvironmentVariableA
SetErrorMode
LCMapStringA
GetTimeZoneInformation
GetACP
HeapReAlloc
HeapSize
GetFileType
SetStdHandle
ExitThread
CreateThread
ExitProcess
GetStringTypeA
TerminateProcess
GetProcAddress
GetModuleHandleA
RaiseException
HeapAlloc
GetCommandLineA
GetStartupInfoA
HeapFree
RtlUnwind
GetTickCount
GetStringTypeW
IsBadReadPtr
FileTimeToLocalFileTime
WideCharToMultiByte
lstrlenA
InterlockedDecrement
InterlockedIncrement
Sleep
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalReAlloc
GlobalFree
FindFirstFileA
DeleteFileA
FindNextFileA
GetLastError
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GetFileAttributesA
GetDriveTypeA
CreateDirectoryA
ResetEvent
SetThreadPriority
ResumeThread
CloseHandle
CreateEventA
FileTimeToSystemTime
LocalFileTimeToFileTime
SystemTimeToFileTime
GetFileSize
GetProfileStringA
SizeofResource
GetOEMCP
GetCPInfo
GetProcessVersion
GlobalFlags
TlsGetValue
LocalReAlloc
TlsSetValue
TlsFree
GlobalHandle
TlsAlloc
LocalAlloc
GetShortPathNameA
GetThreadLocale
GetStringTypeExA
GetVolumeInformationA
FindClose
MoveFileA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
GetCurrentProcess
DuplicateHandle
GetDiskFreeSpaceA
GetFileTime
SetFileTime
GetFullPathNameA
GetTempFileNameA
FormatMessageA
LocalFree
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
SuspendThread
SetEvent
WaitForSingleObject
GetModuleFileNameA
lstrcmpA
GetCurrentThread
lstrcpynA
MulDiv
SetLastError
LoadLibraryA
FreeLibrary
FindResourceA
LoadResource
LockResource
GetVersion
lstrcatA
GetCurrentThreadId
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcpyA
MultiByteToWideChar
GetCurrentDirectoryA

user32

GetNextDlgGroupItem
InvertRect
RegisterClipboardFormatA
PostThreadMessageA
LockWindowUpdate
GetDCEx
GetClassNameA
LoadStringA
GetSystemMenu
DeleteMenu
AppendMenuA
IsRectEmpty
SetParent
DestroyCursor
SetCursorPos
SetCapture
IsZoomed
BringWindowToTop
UnpackDDElParam
ReuseDDElParam
SetMenu
ReleaseCapture
TranslateAcceleratorA
LoadAcceleratorsA
CharUpperA
wvsprintfA
MapDialogRect
SetWindowContextHelpId
GetMessageA
TranslateMessage
ValidateRect
GetActiveWindow
CreateDialogIndirectParamA
GetCursorPos
WindowFromPoint
DestroyMenu
PtInRect
SetRectEmpty
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
ClientToScreen
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetNextDlgTabItem
IsWindowEnabled
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
MessageBeep
FindWindowA
SendDlgItemMessageA
MapWindowPoints
DispatchMessageA
GetFocus
SetFocus
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
IsWindowVisible
GetScrollPos
SetScrollPos
GetTopWindow
MessageBoxA
IsChild
GetCapture
WinHelpA
wsprintfA
RegisterClassA
GetMenu
GetMenuItemID
TrackPopupMenu
GetDlgItem
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
GetKeyState
DefWindowProcA
DestroyWindow
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
GetWindow
GetWindowLongA
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
IntersectRect
IsIconic
GetWindowPlacement
CopyAcceleratorTableA
CharNextA
DestroyIcon
GetMenuStringA
InsertMenuA
InvalidateRect
GetSysColorBrush
GetWindowDC
RedrawWindow
PeekMessageA
PostQuitMessage
InflateRect
SetRect
LoadMenuA
GetSubMenu
LoadIconA
EndDialog
KillTimer
SetTimer
GetDC
ReleaseDC
SystemParametersInfoA
LoadBitmapA
DrawEdge
CopyRect
OffsetRect
GetDesktopWindow
GetWindowRect
GetSysColor
FillRect
GetClassInfoA
PostMessageA
GetSystemMetrics
GetMenuItemCount
SetForegroundWindow
SendMessageA
GetParent
IsWindow
GetClientRect
UpdateWindow
LoadCursorA
SetCursor
EnableWindow
SetActiveWindow
ShowOwnedPopups
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
DefDlgProcA
IsWindowUnicode

gdi32

CreatePatternBrush
SelectObject
CreateCompatibleDC
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
ExcludeClipRect
IntersectClipRect
MoveToEx
LineTo
SetTextAlign
GetObjectA
CreateRectRgn
GetViewportExtEx
GetWindowExtEx
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
StretchDIBits
GetCharWidthA
GetMapMode
SetRectRgn
CreateRectRgnIndirect
DPtoLP
GetTextMetricsA
GetTextColor
GetBkColor
LPtoDP
CreateDIBitmap
SetBkMode
GetTextExtentPointA
RestoreDC
SaveDC
GetStockObject
Rectangle
GetClipBox
SetBkColor
PatBlt
GetTextExtentPoint32A
SelectPalette
RealizePalette
GetDeviceCaps
CreateCompatibleBitmap
SelectClipRgn
SetTextColor
CombineRgn
CreateSolidBrush
CreatePen
GetPixel
DeleteDC
CreateFontIndirectA
BitBlt
CreateFontA
DeleteObject
StretchBlt
CreateBitmap

comdlg32

GetSaveFileNameA
GetFileTitleA
GetOpenFileNameA

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

RegCreateKeyA
RegQueryValueA
RegCloseKey
RegEnumKeyA
RegOpenKeyA
RegDeleteKeyA
RegCreateKeyExA
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA
RegDeleteValueA
SetFileSecurityA
GetFileSecurityA
RegSetValueA

shell32

ExtractIconA
DragQueryFileA
DragFinish
SHGetFileInfoA
Shell_NotifyIconA
ShellExecuteA

comctl32

ImageList_SetOverlayImage
ord17
ImageList_Destroy
ImageList_LoadImageA

oledlg

ord8

ole32

CoTaskMemFree
CLSIDFromProgID
CLSIDFromString
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CoTaskMemAlloc
OleInitialize
OleUninitialize
CoFreeUnusedLibraries
CoRegisterMessageFilter
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard

olepro32

ord253

oleaut32

SysStringLen
SysAllocString
VariantClear
SysAllocStringLen
SysFreeString
SysAllocStringByteLen
VariantTimeToSystemTime
VariantCopy
VariantChangeType

wsock32

WSAStartup
WSACleanup

Sections

.text
Size: 296KB - Virtual size: 295KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 76KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f2e8a45494ddbdaf51ccec5d856046c5

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

wsock32

Sections

.text Size: 296KB - Virtual size: 295KB

.rdata Size: 76KB - Virtual size: 73KB

.data Size: 24KB - Virtual size: 39KB

.rsrc Size: 56KB - Virtual size: 55KB

.text
Size: 296KB - Virtual size: 295KB

.rdata
Size: 76KB - Virtual size: 73KB

.data
Size: 24KB - Virtual size: 39KB

.rsrc
Size: 56KB - Virtual size: 55KB