87e155dc8680f123ed2c6d1a1c4ab2c3_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

87e155dc8680f123ed2c6d1a1c4ab2c3_JaffaCakes118
Size

92KB
MD5

87e155dc8680f123ed2c6d1a1c4ab2c3
SHA1

3f18cc23732c77eb1296a778a60bb1fa58384671
SHA256

658e15b344a590129af09bc3974f4a90e7917efb0d41ee1d97370a0e55fb9e4c
SHA512

befaa79b57907ad658583cb993d29eb88dac5fac18998d430ea72ebf6b467cf2a468d0011ad8a88dcf21c8d4940e8cffe03c1a161053c5b02451b7e3ffe1e756
SSDEEP

1536:X8rg8EzDxaI0M40A7UIRejalphcT4vRDIKGWiWjsKzxY:fDxRr40A7UIRFCWJGgLzxY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
87e155dc8680f123ed2c6d1a1c4ab2c3_JaffaCakes118

Files

87e155dc8680f123ed2c6d1a1c4ab2c3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3f2e6964bd1cd0195216e9e85bf0d548

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

WSAGetLastError

ole32

OleGetIconOfClass
StgIsStorageFile
OleCreateStaticFromData
CreateOleAdviseHolder
CreateStreamOnHGlobal
OleSave
OleRegGetMiscStatus
OleCreateLinkToFile
OleRegGetUserType
CreateGenericComposite
CoRegisterMessageFilter
StgOpenStorageOnILockBytes
RevokeDragDrop
OleSetContainedObject
IsAccelerator
CoFreeUnusedLibraries
StgCreateDocfile
WriteFmtUserTypeStg
CoRegisterClassObject
StgCreateDocfileOnILockBytes
WriteClassStm
CreateFileMoniker
CreateILockBytesOnHGlobal
StringFromCLSID
WriteClassStg
OleQueryLinkFromData
OleTranslateAccelerator
StgOpenStorage
ReleaseStgMedium
CoGetMalloc
OleSaveToStream
CoLockObjectExternal
OleLockRunning
GetRunningObjectTable
OleSetMenuDescriptor
OleLoadFromStream
OleIsRunning
SetConvertStg
CreateBindCtx
OleCreateFromFile
CoUninitialize
OleGetClipboard
OleSetClipboard
OleDuplicateData
CoDisconnectObject
CreateItemMoniker
GetClassFile
OleCreateMenuDescriptor
CreateDataAdviseHolder
OleCreateFromData
CoTaskMemAlloc
OleCreateLinkFromData
GetHGlobalFromILockBytes
CoTreatAsClass
CoTaskMemFree
OleLoad
OleRun
CoCreateInstance
CoGetClassObject
OleInitialize
CoRevokeClassObject
ReadClassStm
OleDestroyMenuDescriptor
CreateDataCache
RegisterDragDrop
OleQueryCreateFromData
OleCreate
CLSIDFromProgID
DoDragDrop
ReadClassStg
ReadFmtUserTypeStg
OleFlushClipboard
OleRegEnumVerbs
CoInitialize
StringFromGUID2
CLSIDFromString
OleUninitialize
OleIsCurrentClipboard

gdi32

SetWindowExtEx
SetAbortProc
GetStockObject
AbortDoc
GetObjectType
SetWindowOrgEx
GetMapMode
LPtoDP
MoveToEx
GetWindowOrgEx
CreateBitmap
GetTextFaceW
SetTextColor
SelectPalette
GetViewportOrgEx
PolyBezierTo
UnrealizeObject
CloseMetaFile
EnumFontFamiliesExW
GetCharWidthW
DPtoLP
SelectClipRgn
RealizePalette
OffsetClipRgn
SetTextAlign
SetTextCharacterExtra
EnumFontFamiliesW
GetWindowExtEx
SetViewportExtEx
GetTextExtentPoint32A
GetPolyFillMode
Rectangle
DeleteMetaFile
GetObjectW
RestoreDC
SelectClipPath
GetPaletteEntries
EndDoc
SetMapperFlags
StartPage
CreateDIBPatternBrushPt
CreateHatchBrush
SetStretchBltMode
CopyMetaFileW
SetBrushOrgEx
CreateDCW
SetBkColor
SetTextJustification
CreateRectRgn
OffsetWindowOrgEx
SetROP2
GetTextColor
ExcludeClipRect
TextOutW
StartDocW
PlayMetaFile
StretchDIBits
SaveDC
Escape
GetPixel
CreateRectRgnIndirect
SetBkMode
GetDeviceCaps
DeleteObject
CombineRgn
ExtCreatePen
PolylineTo
OffsetRgn
CreateCompatibleDC
BitBlt
SetRectRgn
ScaleViewportExtEx
GetBkColor
CreateFontW
EndPage
CreateFontIndirectW
CreatePalette
GetClipBox
CreateCompatibleBitmap
GetNearestColor
PtVisible
ExtSelectClipRgn
CreateSolidBrush
SetColorAdjustment
GetTextMetricsW
SetViewportOrgEx
SetArcDirection
EnumMetaFile
SelectObject
GetViewportExtEx
PolyDraw
GetBkMode
ArcTo
GetTextAlign
PatBlt
SetPolyFillMode
CreatePatternBrush
GetStretchBltMode
GetCurrentPositionEx
RectVisible
CreateMetaFileW
GetClipRgn
CreatePen
SetMapMode
ExtTextOutW
IntersectClipRect
OffsetViewportOrgEx
GetROP2
GetTextExtentPoint32W
PlayMetaFileRecord
DeleteDC
LineTo
ScaleWindowExtEx

wininet

GopherOpenFileW
InternetSetFilePointer
GopherGetAttributeW
InternetFindNextFileW
GopherCreateLocatorW
InternetSetCookieW
FtpOpenFileW
InternetErrorDlg
InternetGetCookieW
FtpFindFirstFileW
InternetCloseHandle
FtpCreateDirectoryW
FtpDeleteFileW
InternetReadFile
InternetSetOptionExW
HttpSendRequestExW
InternetOpenUrlW
HttpOpenRequestW
InternetWriteFile
InternetQueryDataAvailable
InternetConnectW
InternetCrackUrlW
FtpSetCurrentDirectoryW
FtpGetFileW
FtpGetCurrentDirectoryW
FtpRenameFileW
HttpQueryInfoW
InternetOpenW
InternetGetLastResponseInfoW
InternetQueryOptionW
HttpSendRequestW
InternetCanonicalizeUrlW
InternetSetStatusCallbackW
GopherFindFirstFileW
FtpRemoveDirectoryW
HttpAddRequestHeadersW
HttpEndRequestW
FtpPutFileW

advapi32

GetFileSecurityW
RegCreateKeyExW
RegCloseKey
RegCreateKeyW
RegQueryValueExW
RegOpenKeyExW
RegSetValueW
RegEnumKeyW
RegOpenKeyW
SetFileSecurityW
RegDeleteKeyW
RegQueryValueW
RegSetValueExW
RegDeleteValueW

kernel32

CreateMutexW
WriteFile
ReadFile
GlobalLock
MulDiv
ReleaseMutex
GetModuleFileNameW
SetUnhandledExceptionFilter
VirtualQuery
GetProcessVersion
GetVersionExA
LocalAlloc
LocalFree
GetShortPathNameW
GlobalHandle
GetCurrentProcessId
FindNextFileW
DelayLoadFailureHook
SetLastError
WritePrivateProfileStringW
TlsFree
DeleteCriticalSection
InterlockedIncrement
FormatMessageW
LeaveCriticalSection
InterlockedDecrement
DuplicateHandle
LockFile
GetSystemInfo
ResumeThread
SetThreadPriority
LoadLibraryA
WaitForMultipleObjects
IsDBCSLeadByte
CreateFileW
lstrlenA
MultiByteToWideChar
GetDiskFreeSpaceW
TlsSetValue
GetCurrentDirectoryW
EnterCriticalSection
GetCurrentThreadId
FreeResource
UnlockFile
GlobalSize
MoveFileW
GetVersionExW
WideCharToMultiByte
GetPrivateProfileStringW
lstrcmpiA
CloseHandle
lstrcatA
TlsAlloc
ReleaseSemaphore
SystemTimeToFileTime
GetStringTypeExW
SizeofResource
GetVersion
QueryPerformanceCounter
GetUserDefaultLCID
GetFileSize
GetCurrentProcess
GlobalFindAtomW
SetErrorMode
FileTimeToSystemTime
LoadLibraryExA
VirtualAlloc
GetProcAddress
FindResourceExW
OutputDebugStringW
FindFirstFileW
SetFileAttributesW
SetEvent
lstrcpynA
GlobalUnlock
GlobalDeleteAtom
FindResourceW
LoadResource
CopyFileW
SetFileTime
UnhandledExceptionFilter
GlobalAddAtomW
Sleep
GlobalFlags
lstrcatW
FindClose
FreeLibrary
lstrcmpA
TerminateProcess
GetFullPathNameW
GetPrivateProfileIntW
GetLastError
GetTempFileNameW
LocalLock
InitializeCriticalSection
LoadLibraryW
LocalUnlock
VirtualProtect
GetCurrentThread
GlobalReAlloc
LocalReAlloc
FileTimeToLocalFileTime
SetEndOfFile
GlobalAlloc
GetModuleHandleW
FlushFileBuffers
CreateSemaphoreW
GetFileTime
SearchPathW
lstrcmpW
GetTempPathW
SetFilePointer
GetSystemTimeAsFileTime
LockResource
GetSystemDirectoryA
GetFileAttributesW
CreateEventW
GetVolumeInformationW
LocalFileTimeToFileTime
InterlockedCompareExchange
lstrcmpiW
GlobalFree
GlobalGetAtomNameW
lstrcpyA
GetProfileIntW
GetThreadLocale
WaitForSingleObject
SuspendThread
GetTickCount
lstrcpynW
lstrcpyW
GetModuleHandleA
TlsGetValue
lstrlenW
DeleteFileW

ntdll

NtCreateKey

msvcrt

abort
_get_osfhandle
wcscpy
__CxxFrameHandler
swprintf
_open_osfhandle
_wcslwr
_wcsrev
_ultow
__argc
fseek
_wsplitpath
wcsspn
_msize
__doserrno
wcstol
vswprintf
_beginthreadex
_fdopen
fputws
modf
_except_handler3
fclose
_adjust_fdiv
fwrite
__dllonexit
fgetws
wcstoul
wcsncmp
_CxxThrowException
wcschr
fread
wcspbrk
_purecall
_wtoi
wcscspn
gmtime
_wcsupr
wcscmp
_wcsnicmp
_endthreadex
__wargv
wcsstr
iswdigit
iswspace
_wfullpath
malloc
_itow
calloc
wcsncpy
realloc
_wcsdup
_initterm
wcsrchr
_onexit
wcstod
mktime
time
clearerr
floor
_expand
wcslen
localtime
fflush
free
wcsftime
_ltow
_wtol
ceil
_snwprintf
ftell
memmove

adsldpc

ADsEnumClasses

user32

ClipCursor
TranslateAcceleratorW
CallWindowProcW
DrawFocusRect
GetDlgCtrlID
SetWindowLongW
GetLastActivePopup
CreateMenu
TranslateMDISysAccel
GetMessageW
SetWindowTextW
GetDialogBaseUnits
SetCursor
IsClipboardFormatAvailable
GetScrollInfo
KillTimer
IsRectEmpty
LoadCursorW
RemoveMenu
UnhookWindowsHookEx
CharUpperW
GetWindowThreadProcessId
GetMenuItemID
RemovePropW
ReleaseDC
SetWindowContextHelpId
IsWindowVisible
SetRect
ScrollWindowEx
EndDialog
GetTabbedTextExtentA
GetMenu
IsWindowEnabled
GetDlgItemTextW
GetMenuStringW
GetSysColor
GetSystemMenu
GetMenuState
DefMDIChildProcW
GetDCEx
UnionRect
SetMenuItemBitmaps
GetTopWindow
UnpackDDElParam
AdjustWindowRectEx
DeleteMenu
DrawEdge
SetRectEmpty
GetKeyState
ScreenToClient
GetFocus
DispatchMessageW
LoadIconW
GetDC
InvertRect
GetMenuCheckMarkDimensions
SetTimer
CreateDialogIndirectParamW
GetDlgItemInt
SendDlgItemMessageW
EnableMenuItem
GetScrollPos
GetPropW
FrameRect
WinHelpW
SystemParametersInfoW
DeferWindowPos
CheckRadioButton
MapWindowPoints
MapDialogRect
FillRect
MoveWindow
GetNextDlgGroupItem
CharNextW
MessageBoxW
CopyAcceleratorTableW
GrayStringW
PtInRect
InvalidateRect
GetClassInfoW
MessageBeep
IsDialogMessageW
GetTabbedTextExtentW
SetPropW
MessageBoxA
DrawTextW
InsertMenuW
DestroyIcon
WaitMessage
GetWindowTextW
GetCapture
wsprintfW
IsDlgButtonChecked
SetFocus
SetMenu
SendDlgItemMessageA
ShowOwnedPopups
SetParent
GetNextDlgTabItem
GetWindowLongW
BringWindowToTop
LockWindowUpdate
WindowFromPoint
EqualRect
DefWindowProcW
IsZoomed
EnumChildWindows
FindWindowW
GetActiveWindow
GetWindow
GetSystemMetrics
SetDlgItemInt
ValidateRect
ShowWindow
InSendMessage
RegisterWindowMessageW
UnregisterClassW
AppendMenuW
EndPaint
CallNextHookEx
UpdateWindow
SetWindowPos
CheckDlgButton
EndDeferWindowPos
ReleaseCapture
LoadBitmapW
GetSysColorBrush
GetWindowPlacement
WindowFromDC
InflateRect
GetWindowDC
SendMessageW
SetScrollRange
LoadMenuW
GetMessageTime
IsIconic
IsWindow
GetDlgItem
RegisterClassW
BeginPaint
SetScrollInfo
CopyRect
TranslateMessage
CountClipboardFormats
GetDesktopWindow
MsgWaitForMultipleObjects
TrackPopupMenu
SetForegroundWindow
SetDlgItemTextW
EnableWindow
LoadStringW
ModifyMenuW
PostMessageW
GetScrollRange
InvalidateRgn
DefFrameProcW
SystemParametersInfoA
ReuseDDElParam
RegisterClipboardFormatW
SetActiveWindow
DestroyWindow
GetMessagePos
IsChild
IntersectRect
ScrollWindow
TabbedTextOutW
OffsetRect
wvsprintfW
GetMenuItemCount
RedrawWindow
GetSubMenu
GetCursorPos
GetClassNameW
SetCapture
CreateWindowExW
SetWindowsHookExW
BeginDeferWindowPos
DestroyMenu
GetClientRect
GetWindowRect
LoadAcceleratorsW
SetScrollPos
DestroyCursor
ShowScrollBar
SetCursorPos
GetAsyncKeyState
PostThreadMessageW
DrawMenuBar
CheckMenuItem
SetWindowPlacement
GetWindowTextLengthW
PeekMessageW
GetParent
ClientToScreen
GetForegroundWindow
PostQuitMessage

Sections

.textbss
Size: 1024B - Virtual size: 656KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 512B - Virtual size: 448B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.idata
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

3f2e6964bd1cd0195216e9e85bf0d548

Headers

DLL Characteristics

File Characteristics

Imports

ws2_32

ole32

gdi32

wininet

advapi32

kernel32

ntdll

msvcrt

adsldpc

user32

Sections

.textbss Size: 1024B - Virtual size: 656KB

.text Size: 512B - Virtual size: 448B

.rdata Size: 512B - Virtual size: 32B

.reloc Size: 512B - Virtual size: 24B

.idata Size: 88KB - Virtual size: 88KB

.textbss
Size: 1024B - Virtual size: 656KB

.text
Size: 512B - Virtual size: 448B

.rdata
Size: 512B - Virtual size: 32B

.reloc
Size: 512B - Virtual size: 24B

.idata
Size: 88KB - Virtual size: 88KB