83e244c211dd9e192e7948cf1e2d9619_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

83e244c211dd9e192e7948cf1e2d9619_JaffaCakes118
Size

277KB
MD5

83e244c211dd9e192e7948cf1e2d9619
SHA1

72a950f7afdea9bd05211212174a80b7d0152934
SHA256

536fcb8cc67b7deb26129f112cb4554269185a125d7786df158c533b7bda3e37
SHA512

294f26db34066c7281b688b46548aa8e60f4e8a684db6e42e80413f460759dff75d7e85582a3d0d2c835698f6ae01ba2d65768e975a7f58657a5e07c1a8897d4
SSDEEP

6144:Vkjjsny4dJunPdgW4BsPfilIv9wIpktz3Q59xdh/0:8Anqn1glstv9pWtz3QDC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
83e244c211dd9e192e7948cf1e2d9619_JaffaCakes118

Files

83e244c211dd9e192e7948cf1e2d9619_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e1ceac08de9b307e316f59f2a78b8a66

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

CloseServiceHandle
OpenThreadToken
DeregisterEventSource
RegisterServiceCtrlHandlerA
AdjustTokenPrivileges
RegEnumValueA
RegCreateKeyExW
RegDeleteValueA
RegEnumKeyA
RevertToSelf
RegCreateKeyA
GetUserNameA
RegisterEventSourceA
CreateServiceA
RegQueryValueExA
RegEnumKeyExA
RegDeleteKeyW
IsValidSecurityDescriptor
RegEnumValueW
LookupPrivilegeValueA
StartServiceCtrlDispatcherA
RegOpenKeyExW
RegQueryValueA
GetFileSecurityA
OpenSCManagerW
RegDeleteValueW
RegConnectRegistryA
CopySid
InitializeAcl
RegOpenKeyA
EqualSid
RegQueryValueExW
GetTokenInformation
RegDeleteKeyA
InitializeSecurityDescriptor
ImpersonateLoggedOnUser
AllocateAndInitializeSid
AccessCheck
RegOpenKeyExA
QueryServiceStatus
ReportEventA
RegCloseKey
FreeSid
GetLengthSid
OpenProcessToken
GetSidIdentifierAuthority
AddAce
ControlService
OpenServiceW
SetSecurityDescriptorDacl
OpenSCManagerA
GetSecurityDescriptorDacl
RegSetValueExA
RegSetValueExW
RegCreateKeyExA
DeleteService
RegQueryInfoKeyA
OpenServiceA
GetUserNameW
RegSetValueA

user32

CharUpperA
DdeCreateStringHandleA
SetFocus
CloseDesktop
CreateWindowExA
GetClipboardFormatNameA
IntersectRect
RemoveMenu
GetSystemMenu
SetWindowPos
GetSubMenu
UnregisterClassA
SetWindowTextW
SetCaretPos
DdeUninitialize
BringWindowToTop
DrawTextExA
CharNextA
CreateWindowExW
GetWindowTextW
GetCaretPos
LoadMenuW
CallWindowProcW
GetParent
GetPropA
KillTimer
SystemParametersInfoW
GetForegroundWindow
CopyAcceleratorTableW
DispatchMessageA
MsgWaitForMultipleObjects
IsDialogMessageA
BeginPaint
MonitorFromPoint
SetRect
GetDlgItemInt
GetWindowLongA
GetClassInfoA
ClientToScreen
LockWindowUpdate
CreateAcceleratorTableW
ShowOwnedPopups
EndDialog
RegisterClassA
SetClipboardData
SetForegroundWindow
DefWindowProcW
MessageBoxW
FindWindowExW
AppendMenuA
IsWindow
TrackPopupMenuEx
FrameRect
GetMessageW
GetMenu
SendMessageTimeoutA
GetDesktopWindow
GetUpdateRect
GetActiveWindow
LoadBitmapA
GetSysColor
GetMenuItemInfoA
GetDlgItemTextA
GetWindowDC
IsWindowUnicode
SetWindowContextHelpId
DestroyMenu
EndDeferWindowPos
EnableMenuItem
GetMenuStringW
GetTopWindow
GetMessagePos
GetKeyNameTextA
GetDCEx
RegisterClipboardFormatA
RedrawWindow
GetMenuItemID
EmptyClipboard
EqualRect
LoadImageA
GetClassInfoExA
InsertMenuA
DrawIcon
GetDialogBaseUnits
UnregisterClassW
GetSystemMetrics
DestroyAcceleratorTable
UnpackDDElParam
PostQuitMessage
SendMessageW
IsWindowEnabled
EnumWindows
AdjustWindowRectEx
GetSysColorBrush
SetMenuDefaultItem
LoadCursorA
wsprintfA
SystemParametersInfoA
GetFocus
GetClassLongW
GetDlgItem
RegisterWindowMessageW
GetIconInfo
GetWindowTextA
CallWindowProcA
BeginDeferWindowPos
LoadCursorW
CreatePopupMenu
GetDoubleClickTime
ShowCaret
PeekMessageA
GetMenuStringA
SetRectEmpty
SetWindowTextA
IsMenu
SetCursor
LoadStringA
WaitMessage
HideCaret
EndPaint
TrackPopupMenu
EnableWindow
DdeClientTransaction
RemovePropW
DefWindowProcA
SetScrollInfo
SetActiveWindow
DdeDisconnect
OffsetRect
EnumClipboardFormats
IsIconic
WinHelpA
MoveWindow
GetWindowPlacement
SetWindowsHookExA
GetWindowRgn
GetDlgCtrlID
GetClassNameA
CloseClipboard
CharNextW
TranslateMessage
GetKeyState
DrawMenuBar
GetLastActivePopup
GetTabbedTextExtentA
GetWindowLongW
IsZoomed
FindWindowW
EnableScrollBar
DestroyWindow
GrayStringA
TranslateAcceleratorW
DrawEdge
GetClassNameW
GetWindowTextLengthA
SetDlgItemTextA
SetClipboardViewer
DefDlgProcA
GetNextDlgTabItem
CreateDialogIndirectParamA
SetMenuItemBitmaps
DispatchMessageW
PtInRect
GetAsyncKeyState
ReleaseDC
DrawFocusRect
UnhookWindowsHookEx
SetCursorPos
ScreenToClient
IsChild
MapWindowPoints
CharLowerA
GetWindow
CreateMenu
GetWindowThreadProcessId
ShowWindow
MessageBeep
RegisterClassExA
RegisterClipboardFormatW
SetScrollRange
CallNextHookEx
GetCursorPos
GetWindowRect
PostMessageA
GetCapture
SendMessageA
ShowScrollBar
ValidateRect
LoadMenuA
GetMessageA
FillRect
GetClassLongA
DeferWindowPos
GetDC
RemovePropA
DrawFrameControl
LoadBitmapW
MapDialogRect
SendDlgItemMessageA
PostThreadMessageA
PostMessageW
DefFrameProcA
GetScrollRange
GetMessageTime
HiliteMenuItem
SetPropA
ExcludeUpdateRgn
InflateRect
MessageBoxA
SetWindowLongA
LoadIconW
InvalidateRgn
DestroyIcon
SetCapture
GetMenuCheckMarkDimensions
LoadIconA
IsDialogMessageW
DrawIconEx
CopyRect
WindowFromPoint
SetParent
DestroyCursor
IsClipboardFormatAvailable
RegisterWindowMessageA
wsprintfW
CharUpperW
ModifyMenuA
SetMenu
DrawTextA
IsWindowVisible
ReleaseCapture
SetWindowsHookExW
CheckMenuItem
GetClientRect
OpenClipboard
SetTimer
UnregisterHotKey
InvalidateRect
LoadImageW
GetMenuItemCount
GetNextDlgGroupItem
CopyImage
TranslateAcceleratorA
wvsprintfA

version

GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW
VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA

shell32

ShellExecuteA
ord155
DragQueryFileW
SHGetMalloc
DragQueryFileA
SHGetPathFromIDListA
ExtractIconA
Shell_NotifyIconA
DragFinish
SHGetDesktopFolder
Shell_NotifyIconW
SHGetFileInfoA
SHGetFileInfoW
DragAcceptFiles
SHGetFolderPathW
SHFileOperationA
ShellExecuteW
SHGetSpecialFolderPathA
SHBrowseForFolderA

gdi32

SelectPalette
GetTextCharsetInfo
GetArcDirection
RoundRect
GetPaletteEntries
GetTextAlign
GetCharABCWidthsA
CreatePalette
GetTextExtentPoint32A
GetSystemPaletteEntries
EnumFontFamiliesExA
CreateDiscardableBitmap
PatBlt
CreatePatternBrush
GetObjectA
GetGraphicsMode
ExtFloodFill
GetTextColor
SetWindowOrgEx
CreateMetaFileA
GetViewportExtEx
GetPath
StretchDIBits
GetEnhMetaFilePaletteEntries
TextOutA
PlgBlt
GetTextMetricsA
CreatePenIndirect
SetROP2
EqualRgn
OffsetWindowOrgEx
DPtoLP
GetStockObject
StretchBlt
BeginPath
EnumObjects
SetPolyFillMode
MaskBlt
CreatePen
EndDoc
EndPage
CreateSolidBrush
CreateDIBitmap
Arc
SetTextCharacterExtra
PlayMetaFile
PlayEnhMetaFile
Polygon
CreatePolygonRgn
SetAbortProc
SetPaletteEntries
ScaleWindowExtEx
EnumEnhMetaFile
SetBkColor
SetBitmapBits
GetOutlineTextMetricsA
Pie
OffsetViewportOrgEx
SetRectRgn
TextOutW
EndPath
CreateDCW
LPtoDP
PtVisible
CreateCompatibleBitmap
RectVisible
CreateRectRgn
GetDeviceCaps
CreateHatchBrush
GetEnhMetaFileA
CreateDIBSection
GdiFlush
FillPath
GetMapMode
GetRgnBox
GetTextExtentExPointW
DeleteDC
SetViewportOrgEx
GetEnhMetaFileHeader
CreateEnhMetaFileA
GetCharWidthW
SelectClipPath
PaintRgn
SetMiterLimit
GetWindowOrgEx
ExcludeClipRect
GetPixel
CreateCompatibleDC
SetTextAlign
SetBrushOrgEx
SetDIBits
StartPage
FillRgn
PolylineTo
CloseFigure
GetTextCharacterExtra
CreateICA
ExtSelectClipRgn
GetDIBits
PolyBezierTo
BitBlt
GetBoundsRect
CreateFontA
EnumFontFamiliesA
SetMapMode
LineDDA
Ellipse
GetObjectType
CreateBitmapIndirect
SetArcDirection
RestoreDC
SelectObject
SetDIBitsToDevice
ExtCreateRegion
SetPixelV
SaveDC
SetTextColor
GetTextExtentPoint32W
GetAspectRatioFilterEx
GetCharWidthA
GetMiterLimit
GetClipBox
SetBkMode
GetViewportOrgEx
GetMetaFileA
CreateFontIndirectA
FrameRgn
GetBitmapBits
OffsetClipRgn
GdiComment
GetRegionData
SetPixel
GetCurrentPositionEx
CreateFontIndirectW
GetStretchBltMode
IntersectClipRect
ExtEscape
InvertRgn
GetGlyphOutlineA
CreateDCA
WidenPath
ExtTextOutW
ExtTextOutA
ScaleViewportExtEx
UnrealizeObject
SelectClipRgn
SetTextJustification
GetPolyFillMode
GetCharWidthFloatA
CopyMetaFileA
GetWindowExtEx
PolyPolygon
GetBrushOrgEx
LineTo
CreateRectRgnIndirect
Rectangle
Escape
RectInRegion
SetWindowExtEx
Polyline
GetObjectW
CreateRoundRectRgn
SetViewportExtEx
AnimatePalette
AbortDoc
GetNearestPaletteIndex
CloseMetaFile
AbortPath
SetDIBColorTable
SetGraphicsMode
CreatePolyPolygonRgn
GetCurrentObject
PtInRegion
StartDocA
OffsetRgn
GetBkColor
CloseEnhMetaFile
GetCharABCWidthsFloatA
DrawEscape
GetTextExtentPointA
FlattenPath
CreateBitmap
EnumFontsW
CombineRgn
GetTextMetricsW
GetColorAdjustment
SetStretchBltMode
AngleArc
GetKerningPairsA
GetFontData
FloodFill
DeleteObject
GetBkMode
GetNearestColor
MoveToEx
RealizePalette
CreateBrushIndirect

comctl32

CreatePropertySheetPageA
ImageList_GetIcon
ImageList_Remove
DestroyPropertySheetPage
ImageList_EndDrag
ImageList_SetBkColor
InitializeFlatSB
ImageList_Replace
ImageList_AddMasked
ImageList_LoadImageA
ImageList_Read
ImageList_DragLeave
ord17
ImageList_SetDragCursorImage
ImageList_DragMove
ImageList_LoadImageW
ImageList_Destroy
ImageList_Draw
ImageList_DragShowNolock
PropertySheetA
FlatSB_EnableScrollBar
InitCommonControlsEx
ImageList_Add
ImageList_Create
ImageList_Write
ImageList_GetDragImage
ImageList_BeginDrag
ImageList_DragEnter
ImageList_GetImageCount
PropertySheetW
ImageList_ReplaceIcon
CreateStatusWindowW
ImageList_Merge
_TrackMouseEvent

kernel32

MoveFileA
GetStartupInfoW
GetCommandLineW
OutputDebugStringW
GlobalFlags
PurgeComm
FlushFileBuffers
TerminateThread
GetStringTypeExA
EnterCriticalSection
GetCurrentThread
SetFileAttributesW
GetSystemTime
GetVersion
DeleteFileW
SetHandleCount
lstrcatA
InitializeCriticalSection
VirtualFree
GetDiskFreeSpaceA
GetEnvironmentStringsW
WinExec
CompareStringA
MultiByteToWideChar
GetStringTypeW
GetTimeZoneInformation
GetProcessVersion
GlobalHandle
SetEnvironmentVariableA
SetCurrentDirectoryA
UnlockFile
GlobalAddAtomA
HeapCreate
DuplicateHandle
SetUnhandledExceptionFilter
GlobalFindAtomA
RtlUnwind
LocalFree
OutputDebugStringA
LCMapStringW
GetModuleHandleA
FindClose
SetFileAttributesA
HeapFree
EnumSystemLocalesA
GetComputerNameW
SystemTimeToFileTime
HeapDestroy
GetStringTypeA
EnumResourceLanguagesA
LockFile
SetEndOfFile
GetVersionExA
GetCurrentDirectoryA
SuspendThread
CloseHandle
SetFilePointer
SetThreadPriority
GetConsoleMode
GetVolumeInformationW
CreateMutexA
GetACP
GetCommandLineA
GetDateFormatA
TlsAlloc
DeleteFileA
GetLocaleInfoA
CopyFileW
GetFileAttributesW
lstrcpyA
TlsGetValue
GetSystemDirectoryA
GlobalFree
GlobalSize
GetFileType
VirtualAlloc
GetProcAddress
FileTimeToSystemTime
GetFileSize
QueryPerformanceCounter
GetStartupInfoA
FindFirstFileA
GetTickCount
LocalAlloc
IsBadStringPtrA
lstrcmpiA
GetFullPathNameA
GetEnvironmentStrings
FindResourceExW
LeaveCriticalSection
GetConsoleOutputCP
IsValidLocale
DeleteCriticalSection
VirtualQuery
GetDriveTypeA
TlsFree
VirtualProtect
lstrlenW
GlobalReAlloc
IsBadReadPtr
FatalAppExitA
LCMapStringA
LockResource
GetPrivateProfileStringA
FreeEnvironmentStringsW
GetDiskFreeSpaceW
GlobalUnlock
lstrcpyW
OpenProcess
FormatMessageW
GetTempFileNameA
CompareStringW
WriteFile
lstrcmpA
GetSystemTimeAsFileTime
GetPrivateProfileSectionA
GetProfileIntA
GetProcessHeap
CreateEventA
OpenMutexA
lstrcmpW
GetLocalTime
GetConsoleCP
GetCPInfo
GetCurrentProcess
WriteConsoleW
LocalFileTimeToFileTime
IsDebuggerPresent
MulDiv
HeapReAlloc
SetEvent
WideCharToMultiByte
GetVolumeInformationA
GetEnvironmentVariableW
HeapAlloc
GetWindowsDirectoryA
GlobalLock
CreateThread
CreateMutexW
ExitThread
lstrcpynA
IsValidCodePage
LoadResource
SetLastError
ExitProcess
GetProfileStringA
FormatMessageA
GetStdHandle
ResetEvent
GetTempPathW
FindNextFileW
CreateProcessA
GetTimeFormatW
FindResourceA
SetCommMask
ConvertDefaultLocale
SetStdHandle
GetLastError
CopyFileA
CreateFileW
GlobalGetAtomNameA
SizeofResource
CreateDirectoryW
FreeEnvironmentStringsA
TlsSetValue
GetCurrentProcessId
ResumeThread
CreateToolhelp32Snapshot
IsBadWritePtr
WriteConsoleA
GlobalDeleteAtom
GetEnvironmentVariableA
GetFullPathNameW
Sleep
GetShortPathNameA
FreeLibrary
GlobalAlloc
GetWindowsDirectoryW
InterlockedExchange
InterlockedDecrement
GetTempPathA
FreeResource
GetLocaleInfoW
MoveFileExA
CreateFileA
FileTimeToLocalFileTime
GetModuleFileNameA
LoadLibraryA
HeapSize
LocalReAlloc
GetCurrentThreadId
SetErrorMode
InterlockedIncrement
GetTimeFormatA
GetModuleFileNameW
UnmapViewOfFile
TerminateProcess
lstrlenA
ReadFile
IsBadCodePtr
GetThreadLocale
RemoveDirectoryW
UnhandledExceptionFilter

shlwapi

StrToInt64ExW
StrStrIA
SHDeleteKeyW
StrToIntExW
StrToIntW

Sections

.text
Size: 62KB - Virtual size: 61KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 110KB - Virtual size: 109KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 67KB - Virtual size: 85KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e1ceac08de9b307e316f59f2a78b8a66

Headers

File Characteristics

Imports

advapi32

user32

version

shell32

gdi32

comctl32

kernel32

shlwapi

Sections

.text Size: 62KB - Virtual size: 61KB

.rdata Size: 110KB - Virtual size: 109KB

.data Size: 67KB - Virtual size: 85KB

.rsrc Size: 36KB - Virtual size: 36KB

.text
Size: 62KB - Virtual size: 61KB

.rdata
Size: 110KB - Virtual size: 109KB

.data
Size: 67KB - Virtual size: 85KB

.rsrc
Size: 36KB - Virtual size: 36KB