86387b726c3c5476865925609d003024_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

86387b726c3c5476865925609d003024_JaffaCakes118
Size

836KB
MD5

86387b726c3c5476865925609d003024
SHA1

8da3e280d42417b85e9c0408fcf55a963ee5dba6
SHA256

797f0f8cfbdd0187486f0816d35431107dca600029db14ca76309b125fa8bf02
SHA512

77425178e01eb6496f4c6209dc783b0e5ed916980d5d96db6839774093533674c523baab1280a4d1bd778f7fa5b5a55c78ae2d435a1517b7c4eae84ca9e923d2
SSDEEP

24576:xgvFOH+RvNnFCGV2xN3lOksBAFQKLOwYUd7s37aOgiE:xofRFl63wZKDazUNOZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
86387b726c3c5476865925609d003024_JaffaCakes118

Files

86387b726c3c5476865925609d003024_JaffaCakes118
.exe windows:5 windows x86 arch:x86

803a77cc61e748aa56ba201513c33752

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCurrentDirectoryA
VirtualProtect
GetConsoleOutputCP

user32

GetMessagePos
GrayStringW
GetNextDlgTabItem
InvalidateRgn
GetDlgItem
IsDialogMessageW
SendMessageW
GetCursorPos
GetMessageTime
SetWindowTextW
AppendMenuW
CreateWindowExW
GetWindowThreadProcessId
UnhookWindowsHookEx
InvalidateRect
AllowSetForegroundWindow
GetWindowInfo
PostThreadMessageW
SetActiveWindow
InflateRect
SetWindowPlacement
GetFocus
CharUpperW
GetClassNameW
UpdateWindow
GetForegroundWindow
BeginPaint
SetFocus
SetCursorPos
GetMessageW
RegisterClipboardFormatW
GetClassLongW
MessageBoxW
TrackPopupMenu
MapWindowPoints
DefWindowProcW
EndPaint
CheckMenuItem
RedrawWindow
GetSysColor
GetClassInfoW
GetSubMenu
IsChild
GetActiveWindow
GetNextDlgGroupItem
OffsetRect
EndDialog
GetClassInfoExW
MapDialogRect
PeekMessageW
KillTimer
GetMenu

gdi32

CreateFontIndirectW
GetTextColor
SaveDC
MoveToEx
GetTextExtentPoint32W
PtVisible
GetMapMode
SetMapMode
SetPixel
Escape
GetDeviceCaps
DeleteObject
CreatePen
CreateRectRgnIndirect
CreateSolidBrush
RestoreDC
ScaleViewportExtEx
SetViewportOrgEx
DPtoLP
GetBkColor
ExtSelectClipRgn
RectVisible
PatBlt
SetBkMode
CreateBitmap
Polyline
BitBlt
CreateBitmapIndirect
TextOutW
CreateCompatibleBitmap
ExcludeClipRect
GetRgnBox
GetClipBox
GetViewportExtEx
StretchDIBits
SelectPalette
GetWindowExtEx
SetBkColor
ScaleWindowExtEx
LineTo
SetStretchBltMode
SetWindowExtEx
SelectObject
GetPixel
OffsetViewportOrgEx
GetStockObject
ExtTextOutW
CreateCompatibleDC
SetViewportExtEx
StretchBlt
GetObjectW
SetTextColor
DeleteDC

comdlg32

GetFileTitleW

advapi32

RegDeleteValueW
RegQueryValueW
RegEnumKeyW
StartServiceW
RegQueryValueExW
RegCreateKeyExW
RegOpenKeyW
RegOpenKeyExW
RegCloseKey
RegSetValueExW
LookupPrivilegeValueW
RegEnumKeyExW
AdjustTokenPrivileges
OpenProcessToken
RegNotifyChangeKeyValue
CloseServiceHandle
OpenServiceW
RegCreateKeyW
OpenSCManagerW
RegDeleteKeyW

shell32

Shell_NotifyIconW
ShellExecuteW
SHGetFolderPathW

ole32

CoTaskMemAlloc
OleIsCurrentClipboard
CreateStreamOnHGlobal
CoRegisterMessageFilter
OleUninitialize
CoUninitialize
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromProgID
CoInitialize
OleInitialize
CoTaskMemFree
CoFreeUnusedLibraries
CLSIDFromString
CoRevokeClassObject
OleFlushClipboard
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
CoCreateInstance
PropVariantClear

shlwapi

PathFindFileNameW
PathIsUNCW
PathFindExtensionW
PathStripToRootW

winmm

PlaySoundW
waveInStart
waveInClose
waveInGetNumDevs
waveInStop
waveInReset
waveInAddBuffer
waveInUnprepareHeader
waveInPrepareHeader
waveInOpen
waveInGetDevCapsW

rpcrt4

UuidCreate

setupapi

SetupDiGetClassDevsW
SetupDiEnumDeviceInterfaces
SetupDiGetDeviceInterfaceDetailW
SetupDiDestroyDeviceInfoList

gdiplus

GdipDrawImageRectRect
GdipFlush
GdipMeasureString
GdipCloneBrush
GdipCreateFontFamilyFromName
GdipFillRectangleI
GdipDrawString
GdipCreateBitmapFromScan0
GdipDisposeImage
GdipAlloc
GdipDrawImagePointRectI
GdipDeleteFontFamily
GdipDeleteGraphics
GdipDrawImageI
GdipCreateBitmapFromStream
GdipCreateHBITMAPFromBitmap
GdipDrawImageRect
GdipDeleteFont
GdiplusStartup
GdipDeleteBrush
GdipCreateBitmapFromHBITMAP
GdipDrawImageRectI
GdipCreateSolidFill
GdipCreateFont
GdipCloneImage
GdipSetTextRenderingHint
GdipCreateBitmapFromGraphics
GdipCreateFromHDC
GdipFree
GdipImageRotateFlip
GdipGetImageHeight
GdipGetImageGraphicsContext
GdipGetGenericFontFamilySansSerif
GdipGetFontSize
GdipGetImageWidth
GdipGetImageBounds
GdipCreateBitmapFromResource
GdipFillRectangle

msvcrt

exit

oleacc

ObjectFromLresult

esent

JetMove
JetTerm

Sections

.text
Size: 168KB - Virtual size: 168KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.55
Size: - Virtual size: 182KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 828B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.aa
Size: 285KB - Virtual size: 285KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bb
Size: 163KB - Virtual size: 163KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.cc
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.a46
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.asshole
Size: 204KB - Virtual size: 203KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 720B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

803a77cc61e748aa56ba201513c33752

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

shlwapi

winmm

rpcrt4

setupapi

gdiplus

msvcrt

oleacc

esent

Sections

.text Size: 168KB - Virtual size: 168KB

.55 Size: - Virtual size: 182KB

.rdata Size: 6KB - Virtual size: 6KB

.data Size: 512B - Virtual size: 828B

.aa Size: 285KB - Virtual size: 285KB

.bb Size: 163KB - Virtual size: 163KB

.cc Size: 512B - Virtual size: 32B

.a46 Size: 1KB - Virtual size: 1KB

.asshole Size: 204KB - Virtual size: 203KB

.rsrc Size: 1024B - Virtual size: 720B

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 168KB - Virtual size: 168KB

.55
Size: - Virtual size: 182KB

.rdata
Size: 6KB - Virtual size: 6KB

.data
Size: 512B - Virtual size: 828B

.aa
Size: 285KB - Virtual size: 285KB

.bb
Size: 163KB - Virtual size: 163KB

.cc
Size: 512B - Virtual size: 32B

.a46
Size: 1KB - Virtual size: 1KB

.asshole
Size: 204KB - Virtual size: 203KB

.rsrc
Size: 1024B - Virtual size: 720B

.reloc
Size: 4KB - Virtual size: 3KB