85eb05bcb2f81cb9a7560c10aa545fba_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

85eb05bcb2f81cb9a7560c10aa545fba_JaffaCakes118
Size

323KB
MD5

85eb05bcb2f81cb9a7560c10aa545fba
SHA1

b39df029a3b12b43c8c14b7fb7a0e2c03fa37aea
SHA256

e10dac238966a224bf2247d38b6fb64a03b4f7ce615c44c61d12dd64eb458a2e
SHA512

e88149e124098b0760280566db8f329930e5d0ec0d147ad32130658f5bb0462f9c58ec741a89b729ae40b2ef0230f2e3fee10fb5a3ef2ae97041b3d9e597fe11
SSDEEP

6144:nwvrDvPY8r8/GoUq6U1vjd7iay3LqyDmZKnzP04akxTybjtcz2oEy:wH416UpZ7nyB6KzP04LYZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
85eb05bcb2f81cb9a7560c10aa545fba_JaffaCakes118

Files

85eb05bcb2f81cb9a7560c10aa545fba_JaffaCakes118
.exe windows:4 windows x86 arch:x86

126b2c96751fd265fbadf841a480cefc

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrcpynW
lstrlenA
lstrcpyW
lstrcmpiW
lstrcmpW
lstrcatW
_lwrite
_lread
_lopen
_llseek
_lcreat
_lclose
WriteProfileStringW
WriteFile
WideCharToMultiByte
WaitForSingleObject
WaitForMultipleObjects
VirtualQuery
VirtualFree
VirtualAlloc
UnmapViewOfFile
UnhandledExceptionFilter
TlsGetValue
TerminateThread
TerminateProcess
SystemTimeToFileTime
Sleep
SizeofResource
SetUnhandledExceptionFilter
SetThreadPriority
SetLastError
SetHandleCount
SetFileTime
SetFilePointer
SetFileAttributesW
SetEvent
SetErrorMode
SetEndOfFile
SetCurrentDirectoryW
CloseHandle
ResumeThread
ResetEvent
RemoveDirectoryW
ReleaseSemaphore
ReleaseMutex
ReadFile
RaiseException
QueueUserWorkItem
QueryPerformanceFrequency
QueryPerformanceCounter
ProcessIdToSessionId
OutputDebugStringW
OutputDebugStringA
OpenThread
OpenProcess
OpenEventW
MultiByteToWideChar
MulDiv
MoveFileW
MapViewOfFile
LockResource
LocalFree
LocalFileTimeToFileTime
LocalAlloc
LoadResource
LoadLibraryW
LoadLibraryA
LeaveCriticalSection
IsDebuggerPresent
IsDBCSLeadByte
InterlockedIncrement
InterlockedExchange
InterlockedDecrement
InterlockedCompareExchange
InitializeCriticalSection
HeapFree
HeapAlloc
GlobalUnlock
GlobalSize
GlobalReAlloc
GlobalMemoryStatus
GlobalLock
GlobalHandle
GlobalFree
GlobalAlloc
GetVersionExW
GetVersionExA
GetVersion
GetTimeZoneInformation
GetTimeFormatW
GetTickCount
GetThreadPriority
GetThreadLocale
GetTempPathW
GetTempFileNameW
GetSystemTimeAsFileTime
GetSystemTime
GetSystemInfo
GetSystemDirectoryA
GetSystemDefaultLangID
GetStringTypeExW
GetStdHandle
GetStartupInfoW
GetProfileStringW
GetProcessHeap
GetProcAddress
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameW
GetModuleFileNameA
GetMailslotInfo
GetLogicalDrives
GetLocaleInfoW
GetLocaleInfoA
GetLocalTime
GetLastError
GetFullPathNameA
GetFileTime
GetFileSize
GetFileInformationByHandle
GetFileAttributesW
GetFileAttributesExW
GetExitCodeProcess
GetDiskFreeSpaceW
GetDateFormatW
GetCurrentThreadId
GetCurrentThread
GetCurrentProcessId
GetCurrentProcess
GetCurrentDirectoryW
GetComputerNameExA
GetCommandLineW
GetACP
FreeLibrary
FormatMessageW
FormatMessageA
FlushFileBuffers
FindResourceW
FindNextFileW
FindFirstFileW
FindFirstFileExW
FindFirstFileA
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
FileTimeToDosDateTime
FatalAppExitA
ExitThread
ExitProcess
EnterCriticalSection
DuplicateHandle
DosDateTimeToFileTime
DeleteFileW
DeleteFileA
DeleteCriticalSection
DebugBreak
CreateThread
CreateSemaphoreW
CreateProcessW
CreateMutexA
CreateMailslotA
CreateFileW
CreateFileMappingW
CreateFileA
CreateEventW
CreateEventA
CreateDirectoryW
CopyFileW
CompareStringW
CompareFileTime
lstrlenW

advapi32

ConvertSidToStringSidA
CryptAcquireContextA
CryptCreateHash
CryptDestroyHash
CryptGenRandom
CryptGetHashParam
CryptHashData
CryptReleaseContext
FreeSid
IsValidSid
LookupAccountNameA
RegCloseKey
RegCreateKeyExW
RegDeleteKeyW
RegEnumKeyExW
RegEnumValueW
RegOpenKeyA
RegOpenKeyExA
RegOpenKeyExW
RegOpenKeyW
RegQueryValueExA
RegQueryValueExW
RegQueryValueW
RegSetValueExW
RegSetValueW
GetUserNameA

gdi32

SetGraphicsMode
SetDIBitsToDevice
SetDIBits
SetBrushOrgEx
SetBkMode
SetBkColor
SetBitmapBits
SelectPalette
SelectObject
SelectClipRgn
SelectClipPath
SaveDC
RoundRect
RestoreDC
Rectangle
RectVisible
RealizePalette
PtVisible
PolylineTo
Polyline
Polygon
PolyPolygon
PolyBezierTo
PlayEnhMetaFileRecord
PatBlt
PaintRgn
OffsetRgn
MoveToEx
ModifyWorldTransform
MaskBlt
LineTo
LPtoDP
IntersectClipRect
GetWorldTransform
GetWindowOrgEx
GetWindowExtEx
GetViewportOrgEx
GetViewportExtEx
GetTextMetricsW
GetTextExtentPoint32W
GetTextExtentExPointW
GetTextColor
GetTextCharset
GetTextAlign
GetSystemPaletteEntries
GetStockObject
GetPolyFillMode
GetPixel
GetPath
GetPaletteEntries
GetOutlineTextMetricsW
GetObjectW
SetMapMode
GetNearestColor
GetMetaFileBitsEx
GetMapMode
GetKerningPairsW
GetGlyphOutlineW
GetFontData
GetEnhMetaFileW
GetEnhMetaFileHeader
GetDeviceCaps
GetDIBits
GetCurrentObject
GetClipRgn
GetClipBox
GetCharWidthW
GetBkMode
GetBkColor
GetBitmapBits
GdiFlush
FrameRgn
FillRgn
FillPath
ExtTextOutW
ExtCreatePen
Escape
EnumFontFamiliesW
EnumFontFamiliesExW
EnumEnhMetaFile
EndPath
EndPage
EndDoc
Ellipse
DeleteObject
DeleteMetaFile
DeleteEnhMetaFile
DeleteDC
DPtoLP
CreateSolidBrush
CreateRectRgnIndirect
CreateRectRgn
CreatePolygonRgn
CreatePen
CreatePatternBrush
CreatePalette
CreateMetaFileW
CreateHatchBrush
CreateFontIndirectW
CreateEnhMetaFileW
CreateDIBitmap
CreateDIBSection
CreateDIBPatternBrushPt
CreateCompatibleDC
CreateBrushIndirect
CreateBitmapIndirect
CreateBitmap
CombineRgn
CloseMetaFile
CloseFigure
CloseEnhMetaFile
BitBlt
BeginPath
SetPixel
SetPixelV
SetPolyFillMode
SetRectRgn
SetStretchBltMode
SetTextAlign
SetTextColor
SetWinMetaFileBits
StartDocW
StartPage
StretchBlt
StretchDIBits
StrokePath
TextOutW
TranslateCharsetInfo
UnrealizeObject
GetNearestPaletteIndex
CreateCompatibleBitmap

shell32

ShellExecuteA
ShellExecuteW
CommandLineToArgvW
DragAcceptFiles
DragFinish
SHGetSpecialFolderPathA
SHBrowseForFolderW
SHChangeNotify
SHCreateDirectoryExW
SHGetDesktopFolder
SHGetFolderPathW
SHGetMalloc
DragQueryFileW

comdlg32

ChooseColorW
CommDlgExtendedError
GetOpenFileNameW
GetSaveFileNameW
PrintDlgW
GetFileTitleW

version

GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeW

winmm

waveOutPrepareHeader
waveOutReset
waveOutUnprepareHeader
waveOutWrite
waveOutOpen
timeSetEvent
mmioRead
waveOutGetDevCapsW
mmioOpenA
mmioDescend
mmioCreateChunk
mmioClose
mmioAscend
timeKillEvent
timeGetTime
timeGetDevCaps
mmioWrite
mmioOpenW
timeEndPeriod
timeBeginPeriod
waveOutClose

msvfw32

ICCompressorFree
ICCompressorChoose

rpcrt4

UuidCreate

imm32

ImmSetCompositionWindow
ImmSetCompositionFontW
ImmSetCandidateWindow
ImmReleaseContext
ImmNotifyIME
ImmGetVirtualKey
ImmGetContext
ImmGetCompositionStringW

ws2_32

WSAStartup
WSACleanup

shlwapi

SHDeleteKeyW
PathFileExistsW

wininet

InternetErrorDlg
HttpAddRequestHeadersW

ole32

CoTaskMemFree
CoTaskMemAlloc
OleDraw
ReleaseStgMedium
StgCreateDocfile
StgIsStorageFile
StgOpenStorage
CoInitialize
CoFreeUnusedLibraries
CoCreateInstance
CoUninitialize

oleaut32

SysAllocString
SysFreeString
VariantClear

Exports

Exports

DjInvolkerSrtgtyuh
MM_InitWrapper_324d
Plug1PlugExtensionCall
Plug1PlugGetVersion
Plug1PlugLoadExtension
Plug1PlugMenuCall
Plug1PlugNotifyStateChange
Plug2PlugTerminate
Plug2PlugUnloadExtension
PlugPlugSetFlashPanelList
PlugPlugSetup

Sections

.text
Size: 201KB - Virtual size: 204KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 72KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 11KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 21KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

126b2c96751fd265fbadf841a480cefc

Headers

File Characteristics

Imports

kernel32

advapi32

gdi32

shell32

comdlg32

version

winmm

msvfw32

rpcrt4

imm32

ws2_32

shlwapi

wininet

ole32

oleaut32

Exports

Exports

Sections

.text Size: 201KB - Virtual size: 204KB

.rdata Size: 72KB - Virtual size: 72KB

.data Size: 16KB - Virtual size: 80KB

.idata Size: 11KB - Virtual size: 12KB

.rsrc Size: 21KB - Virtual size: 24KB

.text
Size: 201KB - Virtual size: 204KB

.rdata
Size: 72KB - Virtual size: 72KB

.data
Size: 16KB - Virtual size: 80KB

.idata
Size: 11KB - Virtual size: 12KB

.rsrc
Size: 21KB - Virtual size: 24KB