783fe1ce473a28b05f758dbbf8f70256_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

783fe1ce473a28b05f758dbbf8f70256_JaffaCakes118
Size

2.3MB
MD5

783fe1ce473a28b05f758dbbf8f70256
SHA1

619287a7b5d4929619fb319ab81bfc396f99a2fd
SHA256

1089309e98cc24d7774534600d050a5208882181f2747a65edfa06d5df6bea65
SHA512

c020664249583ace0e7682e4e6fa5867c4bcfc8601cb247e0a4bab88510d4ae3af246cec9e144f0de8a66047cb65ba38c24946f5b85f5f62e3d51d4d159e75e1
SSDEEP

24576:GsMBF8V8J98kOVBEbdCtK0asgri1cHkGW7xpnMujVw+0HG12RFOUY4agTjIW9:wz8V8J7XqaPkD7w+0U2XZTQW9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
783fe1ce473a28b05f758dbbf8f70256_JaffaCakes118

Files

783fe1ce473a28b05f758dbbf8f70256_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d5d2daac45a1bbf932420c6b663bfa64

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ord17

uxtheme

EnableThemeDialogTexture

kernel32

CompareStringA
GetFullPathNameW
QueryPerformanceCounter
GetFileAttributesW
CompareStringW
QueryPerformanceFrequency
WriteFile
GetCurrentProcess
GetTempPathW
OutputDebugStringA
GetVersionExA
WideCharToMultiByte
InterlockedIncrement
InterlockedDecrement
DeleteFileA
ReadFile
CreateFileA
GetTempFileNameA
GetTempPathA
GetModuleHandleA
VirtualFree
VirtualAlloc
MapViewOfFile
GetFileSize
CreateFileMappingA
CreateFileW
UnmapViewOfFile
FindResourceA
GetSystemInfo
IsProcessorFeaturePresent
InterlockedExchange
InterlockedCompareExchange
GetFullPathNameA
FreeResource
DeleteFileW
SetFilePointer
lstrcmpiA
MoveFileA
MoveFileW
GetTempFileNameW
IsBadWritePtr
GlobalMemoryStatus
SetEndOfFile
ExpandEnvironmentStringsA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
GetFileAttributesA
VirtualQuery
IsValidCodePage
IsValidLocale
LoadLibraryA
GetLocaleInfoA
GetUserDefaultLCID
GetCurrentProcessId
GetTickCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetCurrentDirectoryA
GetModuleFileNameA
GetOEMCP
GetACP
FlushFileBuffers
GetConsoleMode
GetConsoleCP
HeapCreate
HeapDestroy
GetFileType
GetStdHandle
SetHandleCount
HeapSize
GetCurrentThreadId
SetLastError
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
GetCPInfo
RaiseException
ExitProcess
GetLocalTime
RtlUnwind
GetStartupInfoA
GetCommandLineA
FindFirstFileW
GetDriveTypeW
FileTimeToLocalFileTime
FileTimeToSystemTime
FindClose
GetTimeZoneInformation
HeapReAlloc
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetSystemTimeAsFileTime
lstrlenW
GetLocaleInfoW
GetProcessHeap
HeapFree
HeapAlloc
DeleteCriticalSection
EnterCriticalSection
GetProcAddress
GetLastError
MultiByteToWideChar
SetEnvironmentVariableA
LeaveCriticalSection
LoadLibraryW
GetSystemDirectoryW
InitializeCriticalSection
FreeLibrary
GetCommandLineW
Sleep
lstrcpynW
GetModuleHandleW
FindResourceExW
LockResource
GlobalFree
GlobalUnlock
GetModuleFileNameW
SizeofResource
GlobalAlloc
GlobalLock
LoadResource
FindResourceW
lstrcpyW
WriteProcessMemory
CloseHandle
VirtualAllocEx
GetVersionExW
ReadProcessMemory
VirtualFreeEx
OpenProcess
CreateProcessW
GetSystemDefaultLangID
SetStdHandle
GetDriveTypeA
EnumSystemLocalesA

user32

ReleaseDC
SetCapture
SetRectEmpty
PtInRect
OffsetRect
GetDC
ReleaseCapture
GetKeyboardLayoutList
DestroyWindow
SetCursor
GetIconInfo
CallWindowProcW
ValidateRgn
IsWindowVisible
GetWindow
GetWindowThreadProcessId
CheckMenuItem
DefWindowProcW
SendMessageW
MessageBoxW
FindWindowExW
IsWindow
GetMenuItemCount
CreateDialogParamW
FillRect
RegisterClassExW
ShowWindow
LoadStringW
GetCursorPos
SetWindowPos
LoadIconW
BeginPaint
FindWindowW
GetParent
GetSubMenu
TrackPopupMenu
PostQuitMessage
GetWindowRect
SetTimer
GetKeyboardLayout
IsIconic
UnregisterClassW
LoadCursorW
CallNextHookEx
GetClientRect
GetClassLongW
GetMenu
GetWindowPlacement
GetAsyncKeyState
SetRect
GetWindowLongW
GetWindowTextW
SystemParametersInfoW
MonitorFromWindow
SetWindowLongW
SetMenu
ClipCursor
SetWindowsHookExW
RegisterClassW
GetSystemMetrics
AdjustWindowRect
DestroyMenu
GetMonitorInfoW
EnumDisplaySettingsW
GetUpdateRect
InvalidateRect
ScreenToClient
GetDlgItem
PostMessageW
TranslateMessage
PeekMessageW
CreateWindowExW
DispatchMessageW
LoadMenuIndirectW
CreateDialogIndirectParamW
EndDialog
SetWindowTextW
EndPaint

gdi32

DeleteObject
GetDIBits
DeleteDC
CreateSolidBrush
GdiFlush
CreateDIBSection
GetObjectA
GetTextMetricsA
GetGlyphOutlineA
GetCharacterPlacementA
GetCharacterPlacementW
SelectObject
SetBkColor
SetBkMode
GetTextMetricsW
GetFontLanguageInfo
CreateFontIndirectA
CreateFontIndirectW
SetTextAlign
SetMapMode
ExtTextOutA
MoveToEx
ExtTextOutW
GetClipBox
GetBoundsRect
BitBlt
GetStockObject
GetObjectW
SetTextColor
CreateCompatibleDC

advapi32

RegQueryValueExW
RegOpenKeyA
RegQueryValueExA
RegSetValueExW
RegDeleteValueW
RegCloseKey
RegOpenKeyExW
RegCreateKeyExW

shell32

SHGetDesktopFolder
ExtractIconW
Shell_NotifyIconW

ole32

StringFromGUID2
CLSIDFromString
CoCreateGuid
RegisterDragDrop
RevokeDragDrop
CreateStreamOnHGlobal
OleInitialize
CoInitialize
CoCreateInstance

oleaut32

SysFreeString
SysAllocString

shlwapi

PathFileExistsW

gdiplus

GdipCreateFromHWND
GdipGetImageWidth
GdipCloneImage
GdipDisposeImage
GdiplusShutdown
GdipDrawImageRectI
GdipDeleteGraphics
GdipGetImageHeight
GdipFree
GdipLoadImageFromStream
GdipAlloc
GdiplusStartup

Sections

.text
Size: 1.4MB - Virtual size: 1.4MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 264KB - Virtual size: 262KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 72KB - Virtual size: 122KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 528KB - Virtual size: 527KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d5d2daac45a1bbf932420c6b663bfa64

Headers

File Characteristics

Imports

comctl32

uxtheme

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

shlwapi

gdiplus

Sections

.text Size: 1.4MB - Virtual size: 1.4MB

.rdata Size: 264KB - Virtual size: 262KB

.data Size: 72KB - Virtual size: 122KB

.rsrc Size: 528KB - Virtual size: 527KB

.text
Size: 1.4MB - Virtual size: 1.4MB

.rdata
Size: 264KB - Virtual size: 262KB

.data
Size: 72KB - Virtual size: 122KB

.rsrc
Size: 528KB - Virtual size: 527KB