81cce2a851bcc14168b7d91312a9dd90_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

81cce2a851bcc14168b7d91312a9dd90_JaffaCakes118
Size

97KB
MD5

81cce2a851bcc14168b7d91312a9dd90
SHA1

80fb55b9cbb26f5ddc865d265f5c384d44ab6739
SHA256

4e1035a690cba57405aec7087f8c64db6f155b52d8b3d8cec0419457492d5dba
SHA512

dd836d023d8ab0d78f842ef77698d7746e8ad5b547f0d9896f5fe804d3fb2f65cf1040e31e4c27a6abfb488c9c8dbee3ce9a09b43aa4b37ae3998855b88256e2
SSDEEP

1536:LomRneKYpTuoqFnMyoBHmXE5gxRdd/1PqSOX/U/YNxb2Z9IPPisafhw:L/eLpKoEn0VL5qZP+aYPXww

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
81cce2a851bcc14168b7d91312a9dd90_JaffaCakes118

Files

81cce2a851bcc14168b7d91312a9dd90_JaffaCakes118
.exe windows:4 windows x86 arch:x86

462b1d7e0faa45c0619bf70500113b05

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

InternetSetCookieW
InternetSetFilePointer
FtpFindFirstFileW
FtpRemoveDirectoryW
FtpDeleteFileW
FtpOpenFileW
FtpCreateDirectoryW
GopherOpenFileW
FtpRenameFileW
GopherFindFirstFileW
HttpAddRequestHeadersW
InternetGetLastResponseInfoW
InternetSetStatusCallbackW
HttpOpenRequestW
HttpEndRequestW
FtpGetCurrentDirectoryW
InternetCloseHandle
HttpSendRequestExW
GopherGetAttributeW
InternetOpenUrlW
InternetReadFile
InternetSetOptionExW
InternetErrorDlg
InternetCrackUrlW
InternetGetCookieW
FtpGetFileW
InternetQueryDataAvailable
FtpPutFileW
InternetQueryOptionW
InternetFindNextFileW
InternetOpenW
GopherCreateLocatorW
HttpQueryInfoW
InternetConnectW
HttpSendRequestW
FtpSetCurrentDirectoryW
InternetWriteFile
InternetCanonicalizeUrlW

msvcrt

wcsftime
_wcslwr
_fdopen
modf
_endthreadex
iswspace
_except_handler3
_ultow
floor
_beginthreadex
memmove
wcstod
ceil
_ltow
_adjust_fdiv
wcslen
wcstol
fgetws
_snwprintf
gmtime
fread
calloc
wcsstr
fwrite
_initterm
__CxxFrameHandler
malloc
ftell
_open_osfhandle
abort
wcstoul
wcscpy
wcscmp
fclose
_msize
_onexit
fseek
_wcsnicmp
wcsncmp
_wfullpath
__wargv
_CxxThrowException
time
realloc
_wcsupr
_purecall
_wtoi
_wsplitpath
clearerr
__doserrno
_get_osfhandle
__dllonexit
_expand
wcsrchr
iswdigit
fflush
wcspbrk
wcschr
_wcsrev
fputws
vswprintf
wcscspn
_wtol
__argc
_wcsdup
_itow
free
wcsncpy
swprintf
wcsspn
localtime
mktime

dciman32

DCIEnum

ole32

OleCreateLinkToFile
CreateDataAdviseHolder
OleSetMenuDescriptor
StgIsStorageFile
OleSave
CreateDataCache
IsAccelerator
OleSetClipboard
StgOpenStorageOnILockBytes
CreateILockBytesOnHGlobal
OleIsRunning
GetRunningObjectTable
CreateStreamOnHGlobal
OleFlushClipboard
CoCreateInstance
CoRegisterClassObject
OleCreateLinkFromData
OleSaveToStream
WriteFmtUserTypeStg
WriteClassStg
OleQueryCreateFromData
CoRegisterMessageFilter
CreateFileMoniker
ReleaseStgMedium
CLSIDFromProgID
CoTreatAsClass
CreateGenericComposite
DoDragDrop
OleTranslateAccelerator
CoGetMalloc
OleRun
OleUninitialize
OleDestroyMenuDescriptor
CoUninitialize
OleGetIconOfClass
OleDuplicateData
CoRevokeClassObject
OleRegGetMiscStatus
CoGetClassObject
OleSetContainedObject
RevokeDragDrop
OleQueryLinkFromData
OleCreateMenuDescriptor
GetClassFile
WriteClassStm
OleGetClipboard
CoDisconnectObject
CoTaskMemFree
CoFreeUnusedLibraries
CreateBindCtx
StringFromGUID2
CreateItemMoniker
OleIsCurrentClipboard
OleRegGetUserType
OleLoadFromStream
CreateOleAdviseHolder
OleCreateFromFile
OleCreate
StgCreateDocfile
StgCreateDocfileOnILockBytes
OleRegEnumVerbs
CoTaskMemAlloc
RegisterDragDrop
CLSIDFromString
ReadFmtUserTypeStg
OleCreateStaticFromData
CoInitialize
CoLockObjectExternal
StringFromCLSID
OleInitialize
GetHGlobalFromILockBytes
OleCreateFromData
StgOpenStorage
OleLoad
OleLockRunning
ReadClassStg
SetConvertStg
ReadClassStm

gdi32

SetTextColor
PolylineTo
StartDocW
GetPolyFillMode
CombineRgn
PolyBezierTo
GetObjectW
OffsetViewportOrgEx
StartPage
ExtCreatePen
LPtoDP
ScaleViewportExtEx
EnumMetaFile
SetAbortProc
OffsetWindowOrgEx
OffsetClipRgn
GetDeviceCaps
AbortDoc
GetTextMetricsW
SetStretchBltMode
RestoreDC
SelectClipRgn
CreateBitmap
IntersectClipRect
DeleteObject
LineTo
BitBlt
SetRectRgn
SetROP2
SetViewportExtEx
GetTextAlign
GetViewportOrgEx
ExtSelectClipRgn
DeleteMetaFile
EndPage
GetROP2
SetTextAlign
SetTextJustification
SetViewportOrgEx
GetObjectType
ExcludeClipRect
SetColorAdjustment
Rectangle
SelectPalette
CreateCompatibleDC
SetWindowExtEx
StretchDIBits
CopyMetaFileW
CreateCompatibleBitmap
SetMapperFlags
GetNearestColor
CreateRectRgnIndirect
CreateHatchBrush
GetWindowOrgEx
GetTextExtentPoint32W
GetClipBox
GetBkColor
SaveDC
SelectClipPath
OffsetRgn
RealizePalette
GetTextExtentPoint32A
UnrealizeObject
GetWindowExtEx
SetTextCharacterExtra
CloseMetaFile
GetCurrentPositionEx
GetViewportExtEx
MoveToEx
RectVisible
SetBrushOrgEx
CreateMetaFileW
GetTextFaceW
EnumFontFamiliesW
ScaleWindowExtEx
SetBkColor
GetStockObject
SelectObject
CreateSolidBrush
PlayMetaFileRecord
SetPolyFillMode
EndDoc
PtVisible
GetBkMode
PlayMetaFile
TextOutW
GetTextColor
PolyDraw
GetCharWidthW
GetMapMode
CreateRectRgn
CreateFontW
CreatePatternBrush
GetStretchBltMode
GetPaletteEntries
ExtTextOutW
SetMapMode
PatBlt
GetClipRgn
CreateDIBPatternBrushPt
CreatePalette
GetPixel
CreatePen
SetWindowOrgEx
EnumFontFamiliesExW
CreateDCW
DeleteDC
Escape
CreateFontIndirectW
ArcTo
SetBkMode
SetArcDirection
DPtoLP

kernel32

lstrcmpiA
GetFileAttributesW
GetFullPathNameW
GetThreadLocale
GlobalLock
lstrcatA
SetFilePointer
TlsAlloc
UnlockFile
TlsSetValue
GetFileTime
ResumeThread
ReleaseSemaphore
lstrcpyA
GlobalAddAtomW
FreeLibrary
Sleep
GetSystemTimeAsFileTime
GlobalSize
LockResource
GetModuleHandleA
DelayLoadFailureHook
GlobalUnlock
GlobalHandle
lstrcpyW
LoadLibraryExA
GetTempFileNameW
VirtualAlloc
FileTimeToSystemTime
LoadLibraryA
lstrlenA
FindResourceW
GetCurrentProcess
SearchPathW
CreateFileW
LoadLibraryW
DeleteFileW
GetShortPathNameW
QueryPerformanceCounter
GetPrivateProfileStringW
SetLastError
GlobalDeleteAtom
FindResourceExW
CloseHandle
SuspendThread
GlobalFree
WriteFile
TlsFree
FreeConsole
LoadResource
SystemTimeToFileTime
CreateMutexW
GetLastError
VirtualProtect
GetModuleFileNameW
FormatMessageW
ReadFile
lstrcmpW
SetUnhandledExceptionFilter
InitializeCriticalSection
UnhandledExceptionFilter
InterlockedDecrement
lstrcatW
lstrcmpiW
DuplicateHandle
EnterCriticalSection
GlobalFlags
FindClose
SetEndOfFile
GetCurrentDirectoryW
LocalFree
GetFileSize
WritePrivateProfileStringW
GetCurrentThread
InterlockedCompareExchange
FindFirstFileW
GetDiskFreeSpaceW
OutputDebugStringW
LeaveCriticalSection
SetFileTime
GlobalFindAtomW
CreateSemaphoreW
GetProfileIntW
GetProcAddress
VirtualQuery
MulDiv
GetUserDefaultLCID
SetThreadPriority
lstrcpynA
TerminateProcess
GetCurrentThreadId
InterlockedIncrement
MultiByteToWideChar
lstrlenW
GetVolumeInformationW
SetEvent
FreeResource
ReleaseMutex
LocalFileTimeToFileTime
GetTickCount
lstrcpynW
LocalAlloc
GlobalGetAtomNameW
GetSystemDirectoryA
WaitForMultipleObjects
GetVersionExW
GlobalAlloc
LocalReAlloc
IsDBCSLeadByte
WaitForSingleObject
SetErrorMode
GetVersion
FileTimeToLocalFileTime
GetStringTypeExW
FlushFileBuffers
DeleteCriticalSection
CopyFileW
LocalLock
TlsGetValue
MoveFileW
LockFile
GlobalReAlloc
SizeofResource
WideCharToMultiByte
SetFileAttributesW
GetModuleHandleW
lstrcmpA
LocalUnlock
GetTempPathW
GetPrivateProfileIntW
GetProcessVersion
FindNextFileW
GetCurrentProcessId
GetSystemInfo
GetVersionExA

activeds

FreeADsMem

user32

SetWindowPos
SendMessageW
SetCursorPos
RegisterClassW
GetMessageW
GetWindowLongW
MoveWindow
GetDesktopWindow
SetWindowsHookExW
GetAsyncKeyState
GetMenuItemCount
SendDlgItemMessageA
FrameRect
SetTimer
SetScrollRange
ClientToScreen
InvertRect
GetDlgItem
WindowFromDC
SetMenuItemBitmaps
GetDlgItemInt
LockWindowUpdate
EnableMenuItem
SetMenu
ShowOwnedPopups
IsIconic
KillTimer
DispatchMessageW
GetDialogBaseUnits
SetCapture
CharUpperW
WinHelpW
LoadCursorW
SystemParametersInfoW
LoadAcceleratorsW
SetWindowPlacement
MessageBeep
MessageBoxW
IsZoomed
DrawTextW
FindWindowW
GetFocus
GetSysColorBrush
CheckDlgButton
SystemParametersInfoA
InvalidateRect
GetScrollRange
CheckMenuItem
SendDlgItemMessageW
GetMessagePos
GetTopWindow
SetDlgItemInt
SetRect
SetPropW
RemoveMenu
DeferWindowPos
GetDlgCtrlID
EndDialog
UnregisterClassW
EndDeferWindowPos
DestroyCursor
PtInRect
IsChild
UnpackDDElParam
TranslateMessage
IsDlgButtonChecked
GetSubMenu
GetScrollInfo
GetWindowPlacement
GetForegroundWindow
UnhookWindowsHookEx
IsWindow
CallNextHookEx
ShowWindow
GetMenuItemID
CreateDialogIndirectParamW
GetSystemMenu
ScrollWindow
GetActiveWindow
GetClientRect
MessageBoxA
InvalidateRgn
ReuseDDElParam
DestroyMenu
CharNextW
TabbedTextOutW
CountClipboardFormats
SetWindowLongW
SetDlgItemTextW
IsRectEmpty
ModifyMenuW
AppendMenuW
SetWindowContextHelpId
InSendMessage
DefWindowProcW
GetMenuStringW
ReleaseCapture
RegisterWindowMessageW
GetMenuCheckMarkDimensions
IsWindowVisible
GetMenu
OffsetRect
DrawEdge
CallWindowProcW
GetDC
BringWindowToTop
ClipCursor
BeginDeferWindowPos
InsertMenuW
PeekMessageW
GetWindowTextW
GetLastActivePopup
GetPropW
CreateWindowExW
GetMenuState
AdjustWindowRectEx
MapDialogRect
DrawFocusRect
FillRect
EnableWindow
SetWindowTextW
GetClassNameW
TrackPopupMenu
CopyAcceleratorTableW
MsgWaitForMultipleObjects
LoadIconW
GetNextDlgGroupItem
GetCursorPos
GetClassInfoW
MapWindowPoints
ReleaseDC
GetSysColor
GetWindowThreadProcessId
ScrollWindowEx
SetFocus
UnionRect
GrayStringW
SetScrollInfo
RegisterClipboardFormatW
EndPaint
TranslateAcceleratorW
InflateRect
DrawMenuBar
GetTabbedTextExtentA
TranslateMDISysAccel
EqualRect
IsWindowEnabled
GetParent
IsDialogMessageW
GetTabbedTextExtentW
GetWindowTextLengthW
WaitMessage
GetWindow
SetParent
PostMessageW
ShowScrollBar
GetKeyState
IsClipboardFormatAvailable
GetMessageTime
GetSystemMetrics
CopyRect
ScreenToClient
SetScrollPos
ValidateRect
wvsprintfW
wsprintfW
WindowFromPoint
EnumChildWindows
RemovePropW
LoadBitmapW
GetScrollPos
PostThreadMessageW
GetCapture
LoadMenuW
DefFrameProcW
GetNextDlgTabItem
CreateMenu
SetForegroundWindow
SetCursor
IntersectRect
GetWindowRect
DeleteMenu
DestroyWindow
GetDCEx
DestroyIcon
GetDlgItemTextW
LoadStringW
RedrawWindow
UpdateWindow
GetWindowDC
SetRectEmpty
SetActiveWindow
BeginPaint
DefMDIChildProcW
PostQuitMessage
CheckRadioButton

advapi32

RegDeleteValueW
RegOpenKeyExW
SetFileSecurityW
RegQueryValueW
GetFileSecurityW
RegSetValueExW
RegDeleteKeyW
RegQueryValueExW
RegCloseKey
RegOpenKeyW
RegCreateKeyW
RegSetValueW
RegEnumKeyW
RegCreateKeyExW

Sections

.textbss
Size: - Virtual size: 448KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 512B - Virtual size: 428B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 78KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

462b1d7e0faa45c0619bf70500113b05

Headers

File Characteristics

Imports

wininet

msvcrt

dciman32

ole32

gdi32

kernel32

activeds

user32

advapi32

Sections

.textbss Size: - Virtual size: 448KB

.text Size: 512B - Virtual size: 428B

.idata Size: 17KB - Virtual size: 16KB

.data Size: 78KB - Virtual size: 77KB

.rdata Size: 512B - Virtual size: 32B

.textbss
Size: - Virtual size: 448KB

.text
Size: 512B - Virtual size: 428B

.idata
Size: 17KB - Virtual size: 16KB

.data
Size: 78KB - Virtual size: 77KB

.rdata
Size: 512B - Virtual size: 32B