74bb908f8b5752e60f0898aa14c072fa_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

74bb908f8b5752e60f0898aa14c072fa_JaffaCakes118
Size

1.2MB
MD5

74bb908f8b5752e60f0898aa14c072fa
SHA1

d44da3b968f301bf67bd6eab4a8dbd02238e9924
SHA256

250031018a2ecd6947b1629e471ef23919e43c19cc8f84e76308d3fa0204faf4
SHA512

de95567277f134da20243d9011b85cd19968aeed0c847d95768980f5d8ef2b9da407c15edb017676d09d90ea1bfe3c96dbdb87c9cec8613d56d38e44ed2d0fbd
SSDEEP

24576:u8erhGYY5fYpBUWob7FfoMFSc0Bctt8Se1N1:2rkCG6+4ctt2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
74bb908f8b5752e60f0898aa14c072fa_JaffaCakes118

Files

74bb908f8b5752e60f0898aa14c072fa_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f59db9d037e8509de560946c37357f5c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

kernel32

CreateThread
ExitThread
TerminateProcess
GetACP
HeapReAlloc
HeapSize
GetEnvironmentVariableA
GetStartupInfoA
ExitProcess
VirtualFree
VirtualAlloc
IsBadWritePtr
LCMapStringA
LCMapStringW
SetUnhandledExceptionFilter
SetStdHandle
GetCommandLineA
HeapDestroy
HeapCreate
RtlUnwind
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
CompareStringA
CreateMutexA
RaiseException
VirtualProtect
GetTimeZoneInformation
GetCurrentDirectoryA
FindResourceExA
TlsGetValue
GetOEMCP
GetCPInfo
TlsFree
LocalReAlloc
TlsSetValue
LocalAlloc
GlobalHandle
TlsAlloc
SetErrorMode
GetFileTime
EnterCriticalSection
GetFileAttributesA
GetProcessVersion
InitializeCriticalSection
LeaveCriticalSection
DeleteCriticalSection
ReleaseMutex
GlobalFlags
GetFileType
SetHandleCount
ReadFile
SetFilePointer
QueryPerformanceFrequency
QueryPerformanceCounter
WriteFile
lstrcmpiA
GetLastError
WaitForSingleObject
CreateEventA
ResetEvent
DeviceIoControl
GetLogicalDrives
GetDriveTypeA
QueryDosDeviceA
CreateFileA
CloseHandle
GetProcAddress
GetSystemDirectoryA
GetVersionExA
GetModuleFileNameA
CopyFileA
GetTickCount
GetSystemTime
GetTempPathA
GlobalLock
GlobalUnlock
HeapFree
GetProcessHeap
HeapAlloc
Sleep
GlobalSize
LoadLibraryA
FreeLibrary
GlobalAlloc
GlobalReAlloc
GlobalFree
FindNextFileA
SetEnvironmentVariableA
CompareStringW
FileTimeToLocalFileTime
InterlockedExchange
GetSystemInfo
GetDiskFreeSpaceA
SetCurrentDirectoryA
GetProfileStringA
FileTimeToSystemTime
WritePrivateProfileStringA
GetPrivateProfileStringA
SuspendThread
SetThreadPriority
ResumeThread
SetEvent
lstrcmpA
GetCurrentThread
LocalFree
GetVersion
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
GetThreadLocale
GetFullPathNameA
FindFirstFileA
FindClose
DeleteFileA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
GetCurrentProcess
DuplicateHandle
MulDiv
SetLastError
lstrcatA
lstrlenA
WinExec
lstrcpyA
GetWindowsDirectoryA
FormatMessageA
SizeofResource
GetSystemDefaultLangID
FindResourceA
LoadResource
LockResource
WideCharToMultiByte
MultiByteToWideChar
GetLocaleInfoA
lstrcpynA
GetVolumeInformationA
GlobalMemoryStatus
OpenProcess
GetLocalTime
GetModuleHandleA
InterlockedDecrement
InterlockedIncrement
GetCurrentProcessId
GetFileSize
GetStdHandle
UnhandledExceptionFilter

user32

CopyAcceleratorTableA
CharNextA
GetNextDlgGroupItem
WindowFromPoint
GetAsyncKeyState
DestroyMenu
MapDialogRect
SetWindowContextHelpId
GetMessageA
ValidateRect
PostQuitMessage
wvsprintfA
GetMenuCheckMarkDimensions
GetMenuState
SetMenuItemBitmaps
CheckMenuItem
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
CheckRadioButton
SendDlgItemMessageA
MapWindowPoints
SetFocus
AdjustWindowRectEx
IsWindowVisible
GetTopWindow
GetCapture
GetClassInfoA
RegisterClassA
GetWindowTextLengthA
GetWindowTextA
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
UnhookWindowsHookEx
RemovePropA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindowPlacement
GetNextDlgTabItem
EndDialog
GetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
GetDlgItem
IsWindowEnabled
CharUpperA
IntersectRect
EndPaint
BeginPaint
GetClassNameA
CopyIcon
GetParent
IsWindow
MessageBeep
DestroyCursor
WinHelpA
GetKeyState
PostMessageA
IsChild
SystemParametersInfoA
SetRect
AdjustWindowRect
LoadStringA
GetSysColorBrush
CopyRect
GetWindow
IsMenu
ScreenToClient
FillRect
GetFocus
DrawEdge
RegisterWindowMessageA
GrayStringA
DrawTextA
TabbedTextOutA
RemoveMenu
SetCursor
UpdateWindow
RedrawWindow
MsgWaitForMultipleObjects
PostThreadMessageA
RegisterClipboardFormatA
DefWindowProcA
GetDlgCtrlID
GetDesktopWindow
DispatchMessageA
PeekMessageA
TranslateMessage
LoadImageA
MessageBoxA
LoadMenuA
GetCursorPos
TrackPopupMenu
wsprintfA
GetSysColor
DrawStateA
EnableMenuItem
InvalidateRect
IsIconic
DrawIcon
LoadBitmapA
GetSystemMenu
AppendMenuA
GetMenu
GetSubMenu
GetMenuItemCount
GetMenuStringA
GetMenuItemID
ModifyMenuA
LoadCursorA
LoadIconA
ClientToScreen
ReleaseCapture
SetWindowPos
SetCapture
PtInRect
GetPropA
SetPropA
SetWindowLongA
GetWindowLongA
GetSystemMetrics
CallWindowProcA
GetWindowDC
DrawFrameControl
InflateRect
OffsetRect
DrawIconEx
EnableWindow
SendMessageA
KillTimer
SetTimer
GetWindowRect
IsRectEmpty
OpenClipboard
EmptyClipboard
SetClipboardData
CloseClipboard
GetDC
GetClientRect
ReleaseDC
SetActiveWindow
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
DefDlgProcA
IsWindowUnicode
UnregisterClassA

gdi32

CreateDIBitmap
ExtTextOutA
DeleteObject
GetObjectA
CreateRectRgn
CreateFontA
GetTextFaceA
SaveDC
RestoreDC
SelectPalette
GetTextExtentPointA
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
GetClipBox
SelectClipRgn
IntersectClipRect
GetBitmapBits
GetViewportExtEx
GetWindowExtEx
PatBlt
GetTextColor
LPtoDP
EnumFontFamiliesExA
PtVisible
GetBkColor
GetCurrentObject
GetStockObject
Polygon
MoveToEx
CreateFontIndirectA
SetTextColor
SetPixel
LineTo
SetTextAlign
TextOutA
Ellipse
CreatePen
CreateSolidBrush
GetTextExtentPoint32A
SetBkMode
DPtoLP
Rectangle
GetMapMode
SetMapMode
CreateBitmap
DeleteDC
CreateRectRgnIndirect
SetBkColor
GetDeviceCaps
GetSystemPaletteEntries
CombineRgn
RealizePalette
GetDIBits
CreatePalette
CreateCompatibleBitmap
SelectObject
CreateCompatibleDC
Escape
BitBlt
RectVisible

comdlg32

GetFileTitleA
GetOpenFileNameA
ChooseColorA
GetSaveFileNameA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegCloseKey
RegQueryValueExA
RegCreateKeyExA
RegOpenKeyExA
RegSetValueExA
RegDeleteValueA
RegEnumValueA
RegQueryValueA

shell32

SHGetFileInfoA
SHGetMalloc
SHBrowseForFolderA
SHGetSpecialFolderLocation
SHGetPathFromIDListA
ShellExecuteA

comctl32

ImageList_GetBkColor
ImageList_ReplaceIcon
ImageList_SetBkColor
ImageList_GetImageInfo
ord17
ImageList_Remove
ImageList_GetImageCount
ImageList_AddMasked
ImageList_Draw
ImageList_Destroy
ImageList_Create
PropertySheetA
DestroyPropertySheetPage
CreatePropertySheetPageA
ImageList_DrawIndirect

oledlg

ord8

ole32

OleInitialize
OleUninitialize
CoFreeUnusedLibraries
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
StgCreateDocfileOnILockBytes
CoRegisterMessageFilter
StgOpenStorageOnILockBytes
CoRevokeClassObject
OleFlushClipboard
OleIsCurrentClipboard
CoTaskMemAlloc
CoTaskMemFree
CreateILockBytesOnHGlobal

olepro32

ord253

oleaut32

SysStringLen
SysAllocStringByteLen
SysAllocString
VariantChangeType
VariantCopy
VariantTimeToSystemTime
VariantClear
SysAllocStringLen
SysFreeString

Sections

.text
Size: 632KB - Virtual size: 632KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 104KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 96KB - Virtual size: 2.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 380KB - Virtual size: 380KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

mhfuciy
Size: - Virtual size: 4KB

IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f59db9d037e8509de560946c37357f5c

Headers

File Characteristics

Imports

version

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

Sections

.text Size: 632KB - Virtual size: 632KB

.rdata Size: 104KB - Virtual size: 100KB

.data Size: 96KB - Virtual size: 2.1MB

.rsrc Size: 380KB - Virtual size: 380KB

mhfuciy Size: - Virtual size: 4KB

.text
Size: 632KB - Virtual size: 632KB

.rdata
Size: 104KB - Virtual size: 100KB

.data
Size: 96KB - Virtual size: 2.1MB

.rsrc
Size: 380KB - Virtual size: 380KB

mhfuciy
Size: - Virtual size: 4KB