7474b9802131d88337362e72a815275d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

7474b9802131d88337362e72a815275d_JaffaCakes118
Size

520KB
MD5

7474b9802131d88337362e72a815275d
SHA1

169f9c67a1bfc26c7eb0010af877826ec82f4855
SHA256

b1427b1e00f422d56688901e9444bf85f2e945374319eadf951f6e94a8e2de95
SHA512

7111169b58a0deb89e8696e624e29c3b0e200bbb85b7471d34469695eaa565ad1e2dd60fff7c95e99d6f23aff4344a96b45c5bf53020ba4c30a1cb233dc86d0c
SSDEEP

6144:sScVipHLPE4cZDLm9KRS/Hfyhe89+VcBl61Y8g01CEXB63K2Yxx9p0B:sgJLM4eSFyhe8+cBl6X9B6hkqB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7474b9802131d88337362e72a815275d_JaffaCakes118

Files

7474b9802131d88337362e72a815275d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2f7801fcd2cfaeb5590da46fe0be555d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalFlags
GetCPInfo
GetOEMCP
GetSystemTimeAsFileTime
GetTimeFormatA
GetDateFormatA
HeapFree
HeapAlloc
VirtualProtect
VirtualAlloc
GetSystemInfo
VirtualQuery
HeapReAlloc
GetCommandLineA
GetProcessHeap
GetStartupInfoA
RtlUnwind
RaiseException
ExitThread
CreateThread
HeapSize
ExitProcess
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetACP
GetStringTypeA
TlsFree
LCMapStringA
LCMapStringW
GetTimeZoneInformation
HeapDestroy
HeapCreate
VirtualFree
GetStdHandle
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
QueryPerformanceCounter
GetConsoleCP
GetConsoleMode
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetEnvironmentVariableA
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
LocalAlloc
InterlockedIncrement
GetFileTime
GetFileAttributesA
FileTimeToLocalFileTime
SetErrorMode
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesA
GetLocaleInfoA
FileTimeToSystemTime
InterlockedDecrement
GetModuleFileNameW
GetPrivateProfileStringA
WritePrivateProfileStringA
GetPrivateProfileIntA
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcmpW
GetVersionExA
FreeResource
CreateEventA
SuspendThread
GetCurrentThreadId
ResumeThread
FreeLibrary
lstrcmpA
GlobalFree
GlobalAlloc
GlobalLock
GlobalUnlock
FormatMessageA
LocalFree
MulDiv
CreateFileA
GetModuleFileNameA
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
GetCurrentProcess
DuplicateHandle
CloseHandle
GetThreadLocale
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
GetVersion
CompareStringA
InterlockedExchange
CompareStringW
GetCurrentProcessId
ReleaseMutex
CreateMutexA
OpenMutexA
lstrcpyA
Sleep
GetProcAddress
GetModuleHandleA
LoadLibraryA
GetLastError
SetLastError
WaitForSingleObject
SetEvent
MultiByteToWideChar
lstrlenA
GetTickCount
FindResourceA
LoadResource
LockResource
SizeofResource
GetStringTypeW
WideCharToMultiByte

user32

CharNextA
CopyAcceleratorTableA
SetRect
InvalidateRgn
GetNextDlgGroupItem
MessageBeep
GetWindowThreadProcessId
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
RegisterWindowMessageA
SendDlgItemMessageA
WinHelpA
IsChild
GetClassLongA
GetClassNameA
SetPropA
GetPropA
RemovePropA
SetFocus
GetWindowTextLengthA
GetWindowTextA
GetForegroundWindow
GetLastActivePopup
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
MapWindowPoints
TrackPopupMenu
SetScrollRange
SetScrollPos
GetScrollPos
UpdateWindow
UnregisterClassA
MessageBoxA
CreateWindowExA
GetClassInfoExA
RegisterClassA
AdjustWindowRectEx
EqualRect
CopyRect
GetScrollInfo
SetScrollInfo
CallWindowProcA
SetWindowLongA
IntersectRect
GetWindowPlacement
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
GetWindowLongA
GetDlgItem
IsWindowEnabled
GetNextDlgTabItem
EndDialog
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
ModifyMenuA
EnableMenuItem
CheckMenuItem
SetWindowsHookExA
CallNextHookEx
GetMessageA
GetActiveWindow
ValidateRect
GetMenuState
GetMenuItemID
GetMenuItemCount
GetSubMenu
SetWindowPos
GetDlgCtrlID
ClientToScreen
CharUpperA
InsertMenuA
CreatePopupMenu
DrawIcon
AppendMenuA
GetSystemMenu
LoadBitmapA
SetForegroundWindow
IsIconic
GetKeyState
InflateRect
IsRectEmpty
DefWindowProcA
GetClassInfoA
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
PtInRect
DrawEdge
GetWindowDC
GetSysColorBrush
DestroyMenu
SetWindowContextHelpId
SystemParametersInfoA
GetSystemMetrics
MapDialogRect
PostQuitMessage
RegisterClipboardFormatA
EndPaint
GetMenu
BeginPaint
GetFocus
TranslateMessage
ReleaseDC
ReleaseCapture
DispatchMessageA
PeekMessageA
GetCapture
SetCapture
GetDC
LoadCursorA
SetCursor
ScreenToClient
GetCursorPos
IsWindowVisible
IsWindow
CreateCursor
keybd_event
mouse_event
SetCursorPos
GetClientRect
GetWindowRect
BringWindowToTop
GetWindow
GetDesktopWindow
KillTimer
InvalidateRect
SetTimer
GetParent
LoadIconA
GetSysColor
SendMessageA
EnableWindow
PostThreadMessageA
PostMessageA
OffsetRect

gdi32

GetWindowExtEx
SetViewportOrgEx
OffsetViewportOrgEx
ExcludeClipRect
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
DeleteDC
CreatePatternBrush
GetStockObject
GetViewportExtEx
CreateSolidBrush
SetRectRgn
CombineRgn
GetMapMode
DPtoLP
GetBkColor
GetTextColor
GetRgnBox
SetMapMode
CreateRectRgn
SelectClipRgn
MoveToEx
LineTo
DeleteObject
SetBkMode
RestoreDC
SaveDC
PatBlt
CreateRectRgnIndirect
SetBkColor
SetTextColor
GetClipBox
CreateBitmap
GetDeviceCaps
SetPixel
GetPixel
SelectObject
Rectangle
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
CreatePenIndirect
CreatePen
BitBlt
CreateCompatibleBitmap
CreateCompatibleDC
GetTextExtentPoint32A
GetObjectA
FillRgn
CreatePolygonRgn
CreateFontIndirectA
GetTextMetricsA
IntersectClipRect

comdlg32

GetFileTitleA

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

RegSetValueExA
RegQueryValueA
RegEnumKeyA
RegDeleteKeyA
RegDeleteValueA
RegOpenKeyExA
RegCreateKeyExA
RegOpenKeyA
RegCloseKey
RegQueryValueExA

shell32

ShellExecuteA

comctl32

InitCommonControlsEx

shlwapi

PathIsUNCA
PathFindExtensionA
PathStripToRootA
PathFindFileNameA

oledlg

ord8

ole32

CoTaskMemFree
CoTaskMemAlloc
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
CLSIDFromProgID
CLSIDFromString
CoGetClassObject
CoRevokeClassObject
OleIsCurrentClipboard
OleFlushClipboard
CoRegisterMessageFilter
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal

oleaut32

SysAllocString
OleCreateFontIndirect
SafeArrayDestroy
VariantCopy
SystemTimeToVariantTime
VariantTimeToSystemTime
SysAllocStringLen
VariantInit
VariantChangeType
VariantClear
SysAllocStringByteLen
SysFreeString
SysStringLen

urlmon

IsValidURL
URLDownloadToCacheFileA

ws2_32

htonl
htons
bind
WSASetLastError
connect
recvfrom
WSAAsyncSelect
gethostbyname
recv
sendto
WSASocketA
inet_ntoa
WSAGetLastError
inet_addr
closesocket
WSACleanup
WSAStartup
select
socket
send
accept

Sections

.text
Size: 344KB - Virtual size: 340KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 84KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 72KB - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2f7801fcd2cfaeb5590da46fe0be555d

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

urlmon

ws2_32

Sections

.text Size: 344KB - Virtual size: 340KB

.rdata Size: 84KB - Virtual size: 80KB

.data Size: 16KB - Virtual size: 27KB

.rsrc Size: 72KB - Virtual size: 68KB

.text
Size: 344KB - Virtual size: 340KB

.rdata
Size: 84KB - Virtual size: 80KB

.data
Size: 16KB - Virtual size: 27KB

.rsrc
Size: 72KB - Virtual size: 68KB