75370ea5201dc6d06bdae03127b496df_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

75370ea5201dc6d06bdae03127b496df_JaffaCakes118
Size

384KB
MD5

75370ea5201dc6d06bdae03127b496df
SHA1

6c016b256943038eb7433e631ca7e3b5454b992b
SHA256

9c1b66c2637c13c9fad4cebadd288fddd8e84e7bed7e119faca19aba260b6531
SHA512

fafa376c8578cd6d12901e5243511aced1009464574fe6ed50c0ee95e3cb2c6bc9a6b3af79f2c62dc6cf8a34722e00cb7b54c76872eda67b1ac38e2108a5eb2c
SSDEEP

6144:XOzNnR7ECv+bLAk/Ilc4zxCmDwCo7xR1w+tVBYM+Z4G5:XOzLleLsvzB0TtT+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
75370ea5201dc6d06bdae03127b496df_JaffaCakes118

Files

75370ea5201dc6d06bdae03127b496df_JaffaCakes118
.exe windows:5 windows x86 arch:x86

d17a86161c327c8a2a00a8b8c691e2b9

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

mdminst.pdb

Imports

comctl32

CreateToolbarEx

comdlg32

GetOpenFileNameA
GetSaveFileNameA

netapi32

NetApiBufferFree
NetGetJoinInformation

msvcrt

_c_exit
_exit
_XcptFilter
_cexit
exit
_acmdln
__getmainargs
sscanf
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
_initterm

advapi32

CloseServiceHandle
OpenServiceA
OpenSCManagerA
RegQueryValueExA
RegOpenKeyExA
RegCloseKey
GetAce
InitializeSecurityDescriptor
GetLengthSid
InitializeAcl
AddAccessAllowedAce
SetSecurityDescriptorDacl
OpenThreadToken
GetTokenInformation
EqualSid
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
IsValidSecurityDescriptor
GetSecurityDescriptorLength
MakeSelfRelativeSD
GetSecurityDescriptorOwner
RegEnumKeyExA
RegDeleteKeyA
RegSetValueExA
RegDeleteValueA
RegCreateKeyExA
QueryServiceStatus

kernel32

GlobalFree
ReleaseMutex
WaitForSingleObject
CloseHandle
lstrlenA
OpenFile
LocalAlloc
LocalFree
GetLastError
SetEvent
WideCharToMultiByte
MultiByteToWideChar
LoadLibraryW
FreeLibrary
GetProcAddress
LoadLibraryA
GetACP
lstrcmpA
FormatMessageA
Sleep
SetLastError
GetComputerNameW
GetCurrentProcess
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
ReadFile
SetFilePointer
CreateFileA
WriteFile
lstrcpyW
GlobalSize
DeleteFileA
lstrlenW
GlobalReAlloc
GetCurrentThread
GetModuleHandleA
GetStartupInfoA
GlobalAlloc
GlobalLock
GlobalHandle
GlobalUnlock
lstrcmpiA
IsDBCSLeadByte
GetThreadLocale
CreateMutexA
CreateEventA
lstrcpyA
lstrcatA
GetCurrentThreadId
GlobalAddAtomA
GlobalDeleteAtom
GetComputerNameA

gdi32

SetBrushOrgEx
SetViewportExtEx
PlayMetaFileRecord
SetMapMode
PlayEnhMetaFile
SetWindowOrgEx
RectVisible
SaveDC
SetWindowExtEx
GetDeviceCaps
GetTextExtentPointA
GetTextExtentPointW
TextOutW
TextOutA
BitBlt
DeleteDC
CreateCompatibleDC
CreateFontA
CreateBitmap
TranslateCharsetInfo
CreateBitmapIndirect
SetMetaFileBitsEx
CreatePalette
SetEnhMetaFileBits
Rectangle
StretchBlt
DeleteEnhMetaFile
GetMetaFileBitsEx
GetPaletteEntries
GetEnhMetaFileBits
GetBitmapBits
SetStretchBltMode
PlayMetaFile
GetEnhMetaFileHeader
PatBlt
GetDIBits
CreateDIBitmap
EnumMetaFile
IntersectClipRect
SetViewportOrgEx
RestoreDC
SetDIBitsToDevice
SelectObject
GetTextMetricsA
CreateSolidBrush
DeleteObject
SetBkColor
SetTextColor
SelectPalette
RealizePalette
GetStockObject
GetObjectA
CreateFontIndirectA

user32

DrawFocusRect
SetCapture
GetDlgItemTextA
EndDialog
GetDlgCtrlID
ReleaseCapture
DdeGetData
PeekMessageA
CheckDlgButton
SetDlgItemTextA
GetDlgItem
IsDlgButtonChecked
SendDlgItemMessageA
EnumClipboardFormats
IsClipboardFormatAvailable
GetClipboardData
DdeQueryConvInfo
LoadStringW
RegisterClipboardFormatW
GetClipboardFormatNameW
ShowCursor
DrawTextW
SendMessageA
FindWindowA
SetClipboardViewer
ShowWindow
UpdateWindow
SetWindowPlacement
DrawMenuBar
EnableMenuItem
GetSubMenu
GetMenu
CreateWindowExA
SetWindowsHookExA
DdeGetLastError
DdeCreateStringHandleA
DdeInitializeA
LoadStringA
LoadIconA
LoadCursorA
LoadAcceleratorsA
InvalidateRect
ShowScrollBar
GetWindowLongA
IsWindow
SetCursor
DefMDIChildProcA
EndPaint
FillRect
GetSysColor
DrawIcon
BeginPaint
IsIconic
SetFocus
ReleaseDC
GetDC
GetKeyState
GetSystemMetrics
WinHelpA
CreateWindowExW
SetWindowLongA
DdeFreeStringHandle
DdeDisconnect
PostMessageA
GetWindow
OpenClipboard
CloseClipboard
DefFrameProcA
DdeFreeDataHandle
DdeUnaccessData
DdeAccessData
DdeKeepStringHandle
SetClipboardData
wsprintfA
GetMenuStringA
GetClientRect
RegisterClipboardFormatA
PostQuitMessage
GetWindowPlacement
ChangeClipboardChain
DefWindowProcA
RegisterClassA
UnhookWindowsHookEx
DdeUninitialize
DestroyCursor
DestroyIcon
DispatchMessageA
TranslateMessage
TranslateAcceleratorA
TranslateMDISysAccel
GetMessageA
SetForegroundWindow
SetScrollPos
ScrollWindow
FrameRect
InflateRect
DrawTextA
GetClipboardOwner
GetClipboardFormatNameA
GetScrollPos
GetScrollRange
SetScrollRange
CheckMenuItem
AppendMenuA
DeleteMenu
GetMenuItemCount
EmptyClipboard
CountClipboardFormats
EnableWindow
IntersectRect
CopyRect
MessageBoxA
MessageBeep
DdeClientTransaction
DdeSetUserHandle
DdeConnect
GetSystemMenu
SetWindowTextA
MoveWindow
DialogBoxParamA
DestroyWindow
GetDesktopWindow
LoadBitmapA

Sections

.text
Size: 54KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 286KB - Virtual size: 912KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 34KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d17a86161c327c8a2a00a8b8c691e2b9

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

comctl32

comdlg32

netapi32

msvcrt

advapi32

kernel32

gdi32

user32

Sections

.text Size: 54KB - Virtual size: 55KB

.data Size: 286KB - Virtual size: 912KB

.rsrc Size: 34KB - Virtual size: 34KB

.reloc Size: 11KB - Virtual size: 11KB

.text
Size: 54KB - Virtual size: 55KB

.data
Size: 286KB - Virtual size: 912KB

.rsrc
Size: 34KB - Virtual size: 34KB

.reloc
Size: 11KB - Virtual size: 11KB