75ccdc3c0b047d97afdc395a6fd86356_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

75ccdc3c0b047d97afdc395a6fd86356_JaffaCakes118
Size

291KB
MD5

75ccdc3c0b047d97afdc395a6fd86356
SHA1

04af7a1e01abc3b5390228b7afb78e354bc7a7b8
SHA256

f0efc5802874605a998e8d45bf404dc22d394255c66b97a452a2659478c6e26a
SHA512

2e19f035eb0d1a141ff8b05098a27d1d8a2e0853cc66c9cb79e52295af5a75bad3ad65081b31fe73f838716df5a8c6a0dc620c6bb8d3e61a7baed22f16379d09
SSDEEP

6144:gie4GL7uC7IhTs9AfP8Ghv3y92cIa/Iv8VSHP+QpgNYkCAPx:fjGL7RI5sMyQwwv8VPndlJ

Score

1^/10

Malware Config

Signatures

Files

75ccdc3c0b047d97afdc395a6fd86356_JaffaCakes118
.exe windows:4 windows x86 arch:x86

45a2611eda8fdbc76160d117ae57e79e

Code Sign

7f:f5:10:74:37:ce:c2:45:bb:be:0d:12:5f:95:2f:25
Certificate

Issuer

CN=2352323

Not Before

11/02/2012, 05:41

Not After

31/12/2039, 23:59

Subject

CN=2352323

Extended Key Usages

ExtKeyUsageCodeSigning

88:f3:ab:b6:2f:a8:ce:b2:e4:17:08:e0:f7:95:cd:a0:e3:89:3c:72
Signer

Actual PE Digest

88:f3:ab:b6:2f:a8:ce:b2:e4:17:08:e0:f7:95:cd:a0:e3:89:3c:72

Digest Algorithm

sha1

PE Digest Matches

true

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetWindowsDirectoryA
lstrlenA
lstrcpyA
CreateFileA
VirtualAlloc

user32

GetDC
ReleaseDC
SetScrollPos
AllowSetForegroundWindow
ReleaseCapture
CharLowerA
ClipCursor
wsprintfA
GetShellWindow
CharToOemA
GrayStringW
PeekMessageW
CreateMenu
DestroyIcon
DdeCmpStringHandles
ShowOwnedPopups
DdeQueryStringA
LoadKeyboardLayoutA
CopyAcceleratorTableA
IsCharAlphaNumericW
wvsprintfW
DrawEdge
DefMDIChildProcW
DdeQueryNextServer
GetCaretPos
DdeQueryConvInfo
DefDlgProcW
IsDialogMessage
MessageBeep
DefWindowProcA
CharUpperBuffW
GetCursorPos
FreeDDElParam
TranslateMDISysAccel
EnumDisplaySettingsW
WaitForInputIdle
DlgDirListComboBoxW
GetInputState
DragDetect
IsIconic
InsertMenuW
CreateCursor
SetMenuInfo
CopyAcceleratorTableW
CharNextA
EnumDisplaySettingsA
ScrollWindowEx
DefDlgProcA
CreateCaret
CopyRect
ChangeClipboardChain
GetWindowPlacement
GetWindowModuleFileName
GetWindowModuleFileNameW
SetPropW
GetPriorityClipboardFormat
GetWindowDC
CharPrevExA
PostThreadMessageW
GetClassWord
GetMessageW
TrackPopupMenu
GetMenuItemRect
UnionRect
DdeNameService
RegisterHotKey
UnhookWinEvent
IMPQueryIMEW
SetActiveWindow
GetProcessDefaultLayout
SendMessageCallbackA
KillTimer
MonitorFromRect
EnumDisplayDevicesW
GetNextDlgGroupItem
ToUnicode
FindWindowExW
DrawIcon
IsCharLowerW
CharUpperA
DdeFreeStringHandle
SetForegroundWindow
SetMessageQueue
RegisterClassW
OpenInputDesktop
SetPropA
BringWindowToTop
DialogBoxIndirectParamW
MessageBoxIndirectW
OemToCharW
MapVirtualKeyExA
SetUserObjectInformationA
TabbedTextOutA
GetLastInputInfo
GetFocus
CreateDialogParamA

gdi32

GetTextMetricsA

advapi32

RegOpenKeyW

comctl32

CreatePropertySheetPageA
InitMUILanguage
ImageList_SetImageCount
ImageList_SetBkColor
UninitializeFlatSB
ImageList_GetIconSize
ImageList_Remove
ImageList_DragLeave
ImageList_Create
ord15
ord2
ImageList_GetImageInfo
ord7
DrawStatusTextW
ord6
ImageList_Replace
ImageList_BeginDrag
ord16
ImageList_DragEnter
ImageList_Merge
ImageList_LoadImage
FlatSB_SetScrollProp
ImageList_DragShowNolock
ImageList_GetIcon
ImageList_SetOverlayImage
ImageList_GetBkColor
CreateStatusWindow
FlatSB_ShowScrollBar
FlatSB_GetScrollInfo
CreateToolbarEx
ImageList_Destroy
ImageList_Draw
ImageList_SetDragCursorImage
ImageList_DragMove
FlatSB_SetScrollInfo
ImageList_DrawIndirect
GetMUILanguage
FlatSB_GetScrollPos
ImageList_GetDragImage
FlatSB_SetScrollPos
_TrackMouseEvent
DrawStatusText
ImageList_Write
ord8
ImageList_LoadImageA
ImageList_LoadImageW
ImageList_ReplaceIcon
ord3
FlatSB_GetScrollRange
CreatePropertySheetPageW
InitCommonControlsEx
CreatePropertySheetPage
CreateStatusWindowW

Sections

.text
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.textF3
Size: 273KB - Virtual size: 273KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.textF4
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.textF1
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.textF2
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 868B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

45a2611eda8fdbc76160d117ae57e79e

Code Sign

7f:f5:10:74:37:ce:c2:45:bb:be:0d:12:5f:95:2f:25Certificate

Extended Key Usages

88:f3:ab:b6:2f:a8:ce:b2:e4:17:08:e0:f7:95:cd:a0:e3:89:3c:72Signer

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

comctl32

Sections

.text Size: 3KB - Virtual size: 3KB

.textF3 Size: 273KB - Virtual size: 273KB

.textF4 Size: 1KB - Virtual size: 1KB

.data Size: 4KB - Virtual size: 4KB

.textF1 Size: 1024B - Virtual size: 1000B

.textF2 Size: 1024B - Virtual size: 1000B

.rsrc Size: 4KB - Virtual size: 3KB

.reloc Size: 1024B - Virtual size: 868B

7f:f5:10:74:37:ce:c2:45:bb:be:0d:12:5f:95:2f:25
Certificate

88:f3:ab:b6:2f:a8:ce:b2:e4:17:08:e0:f7:95:cd:a0:e3:89:3c:72
Signer

.text
Size: 3KB - Virtual size: 3KB

.textF3
Size: 273KB - Virtual size: 273KB

.textF4
Size: 1KB - Virtual size: 1KB

.data
Size: 4KB - Virtual size: 4KB

.textF1
Size: 1024B - Virtual size: 1000B

.textF2
Size: 1024B - Virtual size: 1000B

.rsrc
Size: 4KB - Virtual size: 3KB

.reloc
Size: 1024B - Virtual size: 868B