85e3058e5959683979d24b3132c07853_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

85e3058e5959683979d24b3132c07853_JaffaCakes118
Size

196KB
MD5

85e3058e5959683979d24b3132c07853
SHA1

9044474e7c115890e73685077b7b84540ef3d557
SHA256

fb3a15870850130f25d52c1cc4e750f38554f7cbd6292b738a18243612d0f430
SHA512

b808626204557e8689254a8aca93d9989da42d95dea5bd274f33c140edfff4e54f3adec18ab73c5c1658b3c38f523832af8c6787c082ea3410a7efbfcc46ecc0
SSDEEP

3072:PnXjL5pIRf9dRoFd/Rz8+AIc8WnoUKz4GMufVH2oAHcXm73:PnTL5pIRqVrAgWne4CVBX6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
85e3058e5959683979d24b3132c07853_JaffaCakes118

Files

85e3058e5959683979d24b3132c07853_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3a5dc1b7f2a8dd3e0957fc8d1efd2122

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetFileAttributesA
RtlUnwind
ExitProcess
TerminateProcess
HeapFree
HeapAlloc
GetStartupInfoA
RaiseException
HeapReAlloc
HeapSize
GetACP
GetEnvironmentVariableA
HeapDestroy
HeapCreate
GetCommandLineA
GetFileType
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
SetStdHandle
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
GlobalLock
GlobalUnlock
GlobalFree
GetVersionExA
SetCurrentDirectoryA
GetSystemDirectoryA
CreateProcessA
CloseHandle
LocalAlloc
LocalFree
SetEndOfFile
WriteFile
FlushFileBuffers
SetFilePointer
GetCurrentProcess
ReadFile
CreateFileA
SetErrorMode
WritePrivateProfileStringA
GetProcessVersion
GetOEMCP
GetCPInfo
TlsSetValue
TlsGetValue
LocalReAlloc
GlobalHandle
GlobalReAlloc
TlsFree
GlobalFlags
TlsAlloc
GetModuleFileNameA
MulDiv
lstrcmpA
GetCurrentThread
MultiByteToWideChar
SetLastError
VirtualAlloc
IsBadWritePtr
InterlockedIncrement
DeleteCriticalSection
LeaveCriticalSection
WideCharToMultiByte
InterlockedDecrement
GetVersion
lstrlenA
lstrcpynA
UnhandledExceptionFilter
lstrcmpiA
InitializeCriticalSection
lstrcatA
GlobalGetAtomNameA
GlobalDeleteAtom
GlobalAddAtomA
GlobalFindAtomA
LockResource
GetModuleHandleA
GetProcAddress
GetCurrentThreadId
FindResourceA
LoadResource
FreeLibrary
lstrcpyA
GetProfileStringA
OpenMutexA
CreateMutexA
GetLastError
LoadLibraryA
WaitForSingleObject
ReleaseMutex
FreeEnvironmentStringsA
GlobalAlloc
FreeEnvironmentStringsW
VirtualFree
EnterCriticalSection

user32

CheckRadioButton
IsDlgButtonChecked
IsDialogMessageA
SetWindowTextA
ShowWindow
EnableMenuItem
SetMenuItemBitmaps
ModifyMenuA
GetMenuState
LoadBitmapA
GetMenuCheckMarkDimensions
SetRectEmpty
LoadAcceleratorsA
TranslateAcceleratorA
ReleaseCapture
GetDesktopWindow
DestroyMenu
SetMenu
ReuseDDElParam
UnpackDDElParam
BringWindowToTop
IsZoomed
ClientToScreen
GetDC
ReleaseDC
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
PostQuitMessage
ShowOwnedPopups
ValidateRect
TranslateMessage
GetMessageA
GetClassNameA
PtInRect
LoadCursorA
GetSysColorBrush
WindowFromPoint
SetRect
InflateRect
GetDCEx
LockWindowUpdate
SetCapture
SetParent
ScreenToClient
EqualRect
DeferWindowPos
BeginDeferWindowPos
CopyRect
EndDeferWindowPos
SendDlgItemMessageA
PostMessageA
CheckDlgButton
AdjustWindowRectEx
GetTopWindow
MessageBoxA
IsChild
GetCapture
WinHelpA
RegisterClassA
GetMenu
GetMenuItemCount
GetWindowTextLengthA
GetDlgCtrlID
GetKeyState
DefWindowProcA
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
GetWindow
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
OffsetRect
IntersectRect
IsIconic
GetWindowPlacement
GetWindowRect
GetNextDlgTabItem
EndDialog
GetActiveWindow
IsWindow
GetSystemMetrics
CreateDialogIndirectParamA
DestroyWindow
GetParent
GetWindowLongA
GetDlgItem
IsWindowEnabled
LoadStringA
wsprintfA
InsertMenuA
CheckMenuItem
LoadMenuA
GetSubMenu
SetMenuDefaultItem
DeleteMenu
TrackPopupMenu
GetMenuItemID
GetDoubleClickTime
FindWindowA
SetCursor
InvalidateRect
UpdateWindow
GetSysColor
GetCursorPos
SystemParametersInfoA
GetFocus
SetFocus
GetClientRect
SetForegroundWindow
MapWindowPoints
PeekMessageA
DispatchMessageA
IsWindowVisible
SetActiveWindow
SendMessageA
KillTimer
LoadIconA
GetCaretBlinkTime
SetTimer
GetClassInfoA
EnableWindow
UnhookWindowsHookEx
SetPropA
GetWindowTextA
UnregisterClassA

gdi32

CreateFontIndirectA
CreateSolidBrush
DeleteObject
GetStockObject
SetTextColor
SetBkColor
GetClipBox
SelectObject
CreateBitmap
BitBlt
CreateCompatibleDC
GetTextMetricsA
SaveDC
DeleteDC
SetBkMode
RestoreDC
SetMapMode
OffsetViewportOrgEx
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
ScaleWindowExtEx
ExcludeClipRect
IntersectClipRect
SelectClipRgn
CreateRectRgn
GetDeviceCaps
PtVisible
RectVisible
CreatePatternBrush
ExtTextOutA
Escape
TextOutA
PatBlt
SetRectRgn
CreateRectRgnIndirect
CombineRgn
ScaleViewportExtEx
GetObjectA

winspool.drv

GetPrinterDriverDirectoryA
GetPrinterA
DocumentPropertiesA
PrinterProperties
GetPrinterDriverA
SetPrinterA
OpenPrinterA
ClosePrinter
EnumPrintersA
GetPrinterDataA

advapi32

RegEnumValueA
RegSetValueExA
RegCreateKeyExA
RegOpenKeyExA
RegCloseKey

shell32

Shell_NotifyIconA
ShellExecuteA
DragFinish
DragQueryFileA

comctl32

ord17

Sections

.text
Size: 136KB - Virtual size: 133KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 29KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 7KB - Virtual size: 24KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

3a5dc1b7f2a8dd3e0957fc8d1efd2122

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

comctl32

Sections

.text Size: 136KB - Virtual size: 133KB

.rdata Size: 32KB - Virtual size: 29KB

.data Size: 16KB - Virtual size: 29KB

.rsrc Size: 7KB - Virtual size: 24KB

.text
Size: 136KB - Virtual size: 133KB

.rdata
Size: 32KB - Virtual size: 29KB

.data
Size: 16KB - Virtual size: 29KB

.rsrc
Size: 7KB - Virtual size: 24KB