041321f55658484cec8749338636b2e0_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

041321f55658484cec8749338636b2e0_JaffaCakes118
Size

361KB
MD5

041321f55658484cec8749338636b2e0
SHA1

9db8e39ba950f79236847f9646d3efa5aca98815
SHA256

146f9745731bc790ca1bbf5851abff615a2dedcb254970fce9050e990f6a5907
SHA512

bece435c882db0555a29587533bf4ae4d2e385be0c7e4366df60a791cd051b53bb816640f8c2d74609e8a2420fb9ac23daaf37465c1ae24133e07fe3655a27d9
SSDEEP

6144:1C02LG0+TjoHxmlWl3PpSvAIMepTW6lmeuKPrNYFrE1Fc:Dv/oHglWl3LrHKO5

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
041321f55658484cec8749338636b2e0_JaffaCakes118

Files

041321f55658484cec8749338636b2e0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

508834e9409bfa827fa1f8e3a8425511

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

OpenFile
SetFileAttributesW
WriteFile
WritePrivateProfileStructW
FindResourceExW
CommConfigDialogA
CreateFileW
GetProcessTimes
ReplaceFileA
GetTempPathW
FindCloseChangeNotification
RtlUnwind
TlsSetValue
GlobalGetAtomNameW
DosDateTimeToFileTime
MoveFileExW
GetBinaryTypeA
DnsHostnameToComputerNameW
GetThreadPriority
ResumeThread
EnumResourceLanguagesA
SetEvent
GetLastError
SetHandleCount
_lcreat
GetDiskFreeSpaceExW
GetCompressedFileSizeA
VerifyVersionInfoA
SetProcessShutdownParameters
GetLogicalDrives
CancelDeviceWakeupRequest
BackupWrite
FindVolumeClose
GetVersion
EnumUILanguagesA
IsValidCodePage
FindNextVolumeMountPointA
VerSetConditionMask
CreateHardLinkA
SetVolumeMountPointW
GetModuleHandleA
CreateTimerQueueTimer
GetProcessVersion

gdiplus

GdipGetImagePaletteSize
GdipGetImageHeight
GdipGetImageGraphicsContext
GdipDrawImageI
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipGetImagePalette
GdipCreateBitmapFromFileICM
GdiplusShutdown
GdipCreateBitmapFromScan0
GdipFree
GdipDisposeImage
GdipCreateBitmapFromFile
GdipAlloc
GdipCreateBitmapFromStream
GdipDeleteGraphics
GdipCreateBitmapFromStreamICM
GdipGetImageWidth
GdipGetImagePixelFormat
GdipCloneImage
GdiplusStartup

comdlg32

GetOpenFileNameW
GetSaveFileNameW
ChooseFontW

wininet

GetUrlCacheEntryInfoW
InternetReadFile
InternetCanonicalizeUrlW
InternetOpenUrlW
InternetOpenA
InternetConnectW
InternetSetOptionW
InternetSetOptionA
HttpQueryInfoW
ResumeSuspendedDownload
InternetOpenW
InternetCloseHandle
HttpOpenRequestW
InternetSetStatusCallbackW
InternetCrackUrlW
HttpSendRequestW

cryptdll

MD5Final
MD5Init
MD5Update

comctl32

CreateStatusWindowW
ImageList_Draw
ImageList_BeginDrag
CreateToolbarEx
ImageList_GetIcon
ImageList_Add
ImageList_Destroy
ImageList_DragEnter
ImageList_DrawEx
ImageList_Create
PropertySheetW
ImageList_DragMove
ImageList_AddMasked
ImageList_EndDrag
ImageList_DragLeave
ImageList_Remove

iphlpapi

GetAdaptersInfo

user32

LoadIconW
LoadStringA
SetWindowsHookExA
DeleteMenu
GetDoubleClickTime
DestroyMenu
MessageBoxW
SendInput
GetSystemMetrics
SetRect
FlashWindow
RegisterDeviceNotificationW
SystemParametersInfoW
CreateWindowExW
wsprintfW
CharNextA
LoadCursorA
DispatchMessageW
CheckMenuRadioItem
InvalidateRgn
EditWndProc
KillTimer
EndPaint
GetDlgItem
CreateIconFromResource
CopyImage
UpdateWindow
InflateRect
SetWindowsHookExW
GetClassInfoExW
IntersectRect
CountClipboardFormats
CreateDialogParamW
ShowWindow
SetRectEmpty
TranslateMessage
GetWindowInfo
ShowWindowAsync
GetMenuItemCount
DdeCreateStringHandleW
LoadIconA
IsMenu
DrawTextW
SetCursor
InsertMenuItemW
IsDlgButtonChecked
MessageBoxExA
ClientToScreen
GetUpdateRect
GetWindowTextW
GetMessagePos
FindWindowExW
ChildWindowFromPointEx
CreatePopupMenu
GetFocus
RemovePropA
GetDC
GetPropA
SetMenu
ReplyMessage
UnregisterDeviceNotification
MapVirtualKeyExW
CheckDlgButton
RegisterClassExA
IsWindowVisible
LockSetForegroundWindow
OpenInputDesktop
GetMessageW
LoadBitmapW
WindowFromDC
SetWindowsHookA
RemoveMenu
MonitorFromWindow
PostMessageW
GetSysColor
CascadeWindows
GetDlgItemTextW
BeginPaint
SetWindowLongA
AdjustWindowRect
CreateDesktopW
SetFocus
SetCapture
EndDialog
SetCursorPos
GetClassLongA
IsZoomed
wvsprintfA
GetDesktopWindow
IsIconic
SetDlgItemInt
LoadMenuA
IsWindowEnabled
EnableWindow
ScreenToClient
DialogBoxParamW
CharUpperA
FindWindowW
InvalidateRect
MsgWaitForMultipleObjectsEx
CharLowerBuffA
MapDialogRect
UnionRect
SetWindowLongW
TrackPopupMenuEx
GetClassWord
PostThreadMessageW
GetWindowRgn
RegisterClassW
IMPSetIMEW
LoadImageA
DefWindowProcW
CallNextHookEx
GetNextDlgTabItem
CreateWindowExA
CallWindowProcW
CloseDesktop
DrawAnimatedRects
LoadStringW
GetDlgItemInt
DdeAccessData
GetParent
HiliteMenuItem
PtInRect
DestroyWindow
ValidateRect
CreateIcon
EnableMenuItem
FillRect
ReleaseDC
DdeConnectList
LoadBitmapA
TrackPopupMenu
PostQuitMessage
IsDialogMessageW
LoadMenuW
GetAsyncKeyState
SendDlgItemMessageA
GetUserObjectInformationW
SetScrollPos
GetClientRect
DdeSetUserHandle
EnumDesktopsA
GetForegroundWindow
MessageBeep
RegisterClipboardFormatW
CreateCaret
RegisterClipboardFormatA
SetForegroundWindow
DestroyAcceleratorTable
DrawFocusRect
GetAltTabInfoW
GetWindowDC
LoadCursorW
DefWindowProcA
CloseClipboard
UnhookWindowsHookEx
IMPSetIMEA
SetMenuItemInfoW
CheckMenuItem
SetTimer
GetDlgCtrlID
GetWindow
SetActiveWindow
IsWindow
GetDCEx
CharNextW
UnregisterClassW
DrawMenuBar
MessageBoxIndirectW
DeferWindowPos
LoadCursorFromFileW
EnumClipboardFormats
AdjustWindowRectEx
GetKeyState
IsClipboardFormatAvailable
SetWindowPlacement
SetPropA
GetScrollInfo
RegisterWindowMessageW
EnumPropsW
BeginDeferWindowPos
CharPrevW
SetMenuItemBitmaps
GetCursorPos
MsgWaitForMultipleObjects
RegisterClassExW
SetWindowPos
BroadcastSystemMessageW
SetWinEventHook
IsCharAlphaA
LoadImageW
CloseWindow
DestroyIcon
CreateAcceleratorTableW
GetWindowLongW
GetMessageTime
SetWindowTextW
PeekMessageW
VkKeyScanExA
OffsetRect
GetMenuItemInfoW
SetParent
GetWindowTextLengthW
MonitorFromRect
GetClassInfoExA
MapWindowPoints
EnumChildWindows
GetLastInputInfo
CheckRadioButton
SetMenuDefaultItem
EndDeferWindowPos
GetWindowLongA
GetSysColorBrush
RedrawWindow
IsChild
GetDialogBaseUnits
SetDlgItemTextW
DrawEdge
GetMenu
IsCharLowerA
SetWindowRgn
EqualRect
GetSubMenu
GetWindowModuleFileNameW
GetMenuState
SendMessageW
ReleaseCapture
GetMenuItemID
GetLastActivePopup
wvsprintfW
GetWindowPlacement
SendDlgItemMessageW
GetCaretPos
DdeEnableCallback
GetWindowRect
GetClassNameW
MoveWindow
ModifyMenuW
AnimateWindow

msimg32

AlphaBlend
TransparentBlt

version

VerQueryValueA
GetFileVersionInfoSizeA
VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW
GetFileVersionInfoA

shlwapi

SHGetValueW
StrCmpNIW
StrStrA
StrCpyNW
SHGetInverseCMAP
wnsprintfW
StrStrIW
StrCatBuffW
StrStrIA
StrTrimA
StrStrW
StrChrA
StrCmpNW
StrToIntExW
StrChrW
StrCatBuffA
wnsprintfA
StrRChrW
StrCmpNA
StrPBrkW
StrRChrA
StrCmpIW
StrTrimW

Sections

.text
Size: 124KB - Virtual size: 124KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 119KB - Virtual size: 118KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 101KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

508834e9409bfa827fa1f8e3a8425511

Headers

File Characteristics

Imports

kernel32

gdiplus

comdlg32

wininet

cryptdll

comctl32

iphlpapi

user32

msimg32

version

shlwapi

Sections

.text Size: 124KB - Virtual size: 124KB

.data Size: 119KB - Virtual size: 118KB

.xdata Size: 6KB - Virtual size: 6KB

.rdata Size: 10KB - Virtual size: 9KB

.rsrc Size: 101KB - Virtual size: 100KB

.text
Size: 124KB - Virtual size: 124KB

.data
Size: 119KB - Virtual size: 118KB

.xdata
Size: 6KB - Virtual size: 6KB

.rdata
Size: 10KB - Virtual size: 9KB

.rsrc
Size: 101KB - Virtual size: 100KB