86735c7271c36d6744e1fa1755657490_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

86735c7271c36d6744e1fa1755657490_JaffaCakes118
Size

472KB
MD5

86735c7271c36d6744e1fa1755657490
SHA1

8d21eeacacd48fd5ab3923c5a8dea581b517105c
SHA256

ec8a07a5da03f68b0a77fa59e6443a574b537456eed4d509c310c30dad47a87b
SHA512

ffbe8935263700545437d0a0930e1836f7fe15b0d1f134e002c499bf846739ca027028f2d75e02add94fd792a144e2c3c631da2126848f3b14fc90da14d07552
SSDEEP

12288:v1Lj0YG6rhThMeafxDJPC4nY4COPIjW3bx:NL4mrQeaxDJab4FwjW3bx

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
86735c7271c36d6744e1fa1755657490_JaffaCakes118

Files

86735c7271c36d6744e1fa1755657490_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c0966236730373a97ea949997410b0da

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

d:\dss\aoluti.PDB

Imports

user32

GetClassInfoExW
ExitWindowsEx
GetAsyncKeyState
ModifyMenuW
GetDlgItemInt
IsWindowEnabled
GetSubMenu
SetRectEmpty
DrawTextA
ScreenToClient
BeginPaint
GetForegroundWindow
MoveWindow
SetWindowTextW
LoadIconW
CloseClipboard
EnableMenuItem
CopyImage
AppendMenuA
CallWindowProcA
GetMenuItemCount
GetWindowLongA
BringWindowToTop
GetWindowTextW
FlashWindow
SetPropA
InsertMenuW
GetMessageA
DefFrameProcA
PeekMessageA
TranslateMessage
LoadBitmapA
EndDeferWindowPos
GetWindowLongW
EndDialog
SetMenuItemBitmaps
SetWindowTextA
GetMenu
DrawEdge
GetDesktopWindow
GetClassLongA
CopyAcceleratorTableW
GetClassInfoExA
SetFocus
GetDlgCtrlID
IsClipboardFormatAvailable
DdeClientTransaction
UnhookWindowsHookEx
MessageBoxA
SystemParametersInfoW
IsDlgButtonChecked
GetCapture
GetWindowTextLengthA
DrawAnimatedRects
GetMessagePos
IsIconic
GetActiveWindow
InsertMenuA
EnumChildWindows
RedrawWindow
GetSystemMenu
GetSystemMetrics
SetActiveWindow
DdePostAdvise
IsChild
FindWindowA
UnregisterClassA
DrawStateA
GetWindowThreadProcessId
EqualRect
GetKeyboardLayoutList
ExcludeUpdateRgn
EnableWindow
DdeUninitialize
SendDlgItemMessageW
LoadCursorW
LockWindowUpdate
CheckMenuItem
CheckMenuRadioItem
SetCursorPos
ScrollWindowEx
PeekMessageW
CharNextA
GetClientRect
RegisterClipboardFormatW
ReuseDDElParam
ModifyMenuA
DrawFocusRect
ShowScrollBar
GetClassNameA
DestroyMenu
FindWindowW
GetIconInfo
CopyRect
ValidateRect
SetRect
GetWindowRect
SetWindowLongA
CreatePopupMenu
MapVirtualKeyExA
DragDetect
DestroyAcceleratorTable
RemoveMenu
PostMessageA
SetForegroundWindow
CallWindowProcW
DefDlgProcA
SetDlgItemTextW
IsWindowUnicode
CreateDialogIndirectParamW
GrayStringW
DispatchMessageW
DestroyCursor
GetKeyboardState
MapVirtualKeyW
MapWindowPoints
GetClassInfoA
SetDlgItemTextA
EnumClipboardFormats
SetCursor
IsDialogMessageA
GetNextDlgTabItem
FrameRect
ClientToScreen
TabbedTextOutW
HideCaret
SetWindowPos
SetCapture
WindowFromPoint
RegisterWindowMessageA
UnionRect
DestroyIcon
GetCursorPos
GetMenuState
IntersectRect
DdeDisconnect
OpenClipboard
TabbedTextOutA
GetSysColorBrush
SetScrollRange
WinHelpA
OffsetRect
LoadIconA
DefWindowProcW
IsWindowVisible
wsprintfW
SetCaretPos
MessageBeep
ShowWindow
DefWindowProcA
LoadCursorA
GetKeyState
AdjustWindowRectEx
IsDialogMessageW
GetSysColor
CheckDlgButton
SetScrollPos
TranslateMDISysAccel
UpdateWindow
GetPropA
InvalidateRgn
RegisterClassA
GetNextDlgGroupItem
SetClipboardData
GetMenuItemInfoA
TrackPopupMenu
InflateRect
CreateWindowExA
DrawIconEx
DeleteMenu
GetDlgItemTextW
LoadMenuW
InsertMenuItemW
GetParent
TrackPopupMenuEx
InsertMenuItemA
SetTimer
KillTimer
RegisterClipboardFormatA
IsRectEmpty
PostMessageW
GetComboBoxInfo
CopyIcon
CreateWindowExW
CreateDialogIndirectParamA
PtInRect
GetMenuCheckMarkDimensions
SetScrollInfo
IsWindow
GetFocus
ReleaseCapture
GetLastActivePopup
CharUpperBuffA
ReleaseDC
SetWindowLongW
ScrollWindow
EndPaint
LoadStringA
SetWindowsHookExA
MessageBoxW
DrawMenuBar
SetMenuItemInfoA
GetDlgItem
SystemParametersInfoA
IsZoomed
MapDialogRect
GetMenuItemID
SetWindowRgn
LoadImageA
GetWindowPlacement
SetParent
ChangeClipboardChain
DrawTextW
SendMessageW
DeferWindowPos
RegisterClassExA
SubtractRect
GetMessageTime
DrawFrameControl
GetWindowDC
FillRect
PostThreadMessageA
ShowCaret
SendDlgItemMessageA
SendMessageA
SetWindowPlacement
InvertRect
PostQuitMessage
DestroyWindow
DispatchMessageA
BeginDeferWindowPos
GetPropW
LoadImageW
DrawTextExW
GetDC
GetDCEx
CopyAcceleratorTableA
RemovePropA
RegisterHotKey
InvalidateRect
GrayStringA
GetWindow
GetWindowTextA
GetTabbedTextExtentA

comctl32

FlatSB_EnableScrollBar
ImageList_DragShowNolock
ImageList_Replace
ImageList_EndDrag
ImageList_Read
ImageList_Remove
ImageList_GetIcon
ImageList_GetImageInfo
ImageList_LoadImageA
ImageList_BeginDrag
ImageList_Merge
ImageList_DragEnter
ImageList_GetImageCount
ImageList_Draw
ImageList_ReplaceIcon
InitializeFlatSB
ImageList_GetDragImage
ImageList_DrawEx
ImageList_DragMove
ord17
ImageList_Destroy
ImageList_DragLeave
InitCommonControlsEx
ImageList_GetIconSize
ImageList_SetDragCursorImage
ImageList_SetBkColor
DestroyPropertySheetPage
_TrackMouseEvent
ImageList_Write
ImageList_SetOverlayImage
ImageList_Add
ImageList_Create
ImageList_AddMasked

kernel32

_lopen
SystemTimeToFileTime
GetVersion
FreeEnvironmentStringsW
GetDriveTypeA
LocalAlloc
GetLastError
SetThreadPriority
EnterCriticalSection
QueryDosDeviceA
GetWindowsDirectoryA
LocalFree
LoadLibraryExW
lstrlenA
IsBadWritePtr
lstrlenW
SearchPathA
SizeofResource
QueryPerformanceFrequency
FileTimeToSystemTime
GetCurrentThreadId
IsValidCodePage
WideCharToMultiByte
ResumeThread
OpenMutexA
lstrcmpiW
GetStartupInfoA
SetEndOfFile
CloseHandle
SetFilePointerEx
VirtualProtect
IsValidLocale
InterlockedExchange
GetModuleHandleA
GetCurrentProcessId
FlushInstructionCache
CreateThread
FreeLibrary
GetLocalTime
EnumResourceLanguagesA
lstrcpynA
VirtualAlloc
GetNumberFormatA
LCMapStringA
GetLocaleInfoW
CreatePipe
lstrcmpiA
ExitProcess
DeleteFileA
VirtualFree
CreateFileW
GetProfileIntW
LocalReAlloc
LockFile
HeapSize
CreateMutexA
ExitThread
GetStdHandle
GetEnvironmentStrings
GetCurrentDirectoryA
lstrcatA
CreateMutexW
GlobalHandle
TlsGetValue
GetFileSize
GlobalGetAtomNameA
FindFirstFileA
InterlockedDecrement
HeapCreate
TlsFree
HeapReAlloc
LocalFileTimeToFileTime
InterlockedIncrement
GlobalReAlloc
FindNextFileW
TlsAlloc
SetEnvironmentVariableA
CreateProcessW
VirtualQuery
LockResource
GetEnvironmentStringsW
lstrcpyW
FlushFileBuffers
GetCurrentProcess
FreeEnvironmentStringsA
lstrcmpW
SetHandleCount
OpenFileMappingA
WriteConsoleA
CopyFileA
UnlockFile
LoadResource
GetSystemInfo
MapViewOfFile
AllocConsole
GlobalLock
GetTickCount
FindResourceExA
TerminateProcess
GlobalAlloc
lstrcpynW
GetFileType
FreeResource
CreateFileA
LoadLibraryExA
GetCurrentThread
WriteFile
GetEnvironmentVariableW
GetPrivateProfileStringA
DuplicateHandle
DeleteCriticalSection
OpenProcess
WaitForSingleObject
MultiByteToWideChar
GetComputerNameA
GetFileAttributesExA
IsBadCodePtr
GetDateFormatW
SetErrorMode
GetFullPathNameA
FatalAppExitA
OpenEventA
SetLastError
GetModuleHandleW
HeapFree
GetOEMCP
IsProcessorFeaturePresent
lstrcpyA
GlobalDeleteAtom
GetStartupInfoW
GetLogicalDrives
GetCPInfo
FindResourceW
TlsSetValue
ResetEvent
GlobalUnlock
IsDebuggerPresent
SetUnhandledExceptionFilter
FormatMessageA
GetProcAddress
LoadLibraryW
InitializeCriticalSection
GetSystemTime
GetTimeZoneInformation
GetVersionExA
QueryPerformanceCounter
InterlockedCompareExchange
RtlUnwind
LoadLibraryA
GlobalFree
UnhandledExceptionFilter
GetExitCodeThread
EnumResourceLanguagesW
FileTimeToLocalFileTime
SetFileTime
HeapDestroy
LeaveCriticalSection
DeleteFileW
GetTempPathA
GetTempFileNameA
GetEnvironmentVariableA
CompareStringA
IsBadReadPtr
SetStdHandle
DebugBreak
GetFileInformationByHandle
FindResourceA
ConvertDefaultLocale
lstrcmpA
GetSystemDirectoryA
VerLanguageNameA
GetModuleFileNameA
CreateDirectoryA
GetUserDefaultLangID
ReadFile
SetFilePointer
CreateProcessA
SetEvent
GetModuleFileNameW
GetSystemTimeAsFileTime
GetPrivateProfileIntA
WriteConsoleW
GetCommandLineA
HeapAlloc
FindNextFileA
GetFileAttributesA
GetDateFormatA
Sleep
GetStringTypeA
GetShortPathNameA
GetUserDefaultLCID
GetCommandLineW
GetThreadLocale
LCMapStringW
GetDiskFreeSpaceA
GlobalFlags
GetACP
RaiseException
CompareStringW
SetFileAttributesA
GetWindowsDirectoryW
GetStringTypeW
WritePrivateProfileStringA

advapi32

RegSetValueExW
AllocateAndInitializeSid
EqualSid
RegDeleteValueW
DuplicateToken
OpenThreadToken
RegOpenKeyExW
OpenSCManagerA
CryptGetHashParam
RegCreateKeyExW
RegSetValueExA
RegCreateKeyW
RegOpenKeyA
RegOpenKeyExA
RegEnumKeyW
RegCreateKeyA
DeleteAce
CryptAcquireContextA
StartServiceW
AddAce
RegOpenKeyW
RegQueryInfoKeyW
RegEnumKeyExW
FreeSid
RegCloseKey
AdjustTokenPrivileges
ChangeServiceConfigA
GetUserNameW
InitializeSecurityDescriptor
DeleteService
GetSecurityInfo
RegDeleteKeyW
AccessCheck
GetAclInformation
RegQueryValueExW
RegEnumKeyA
RegEnumKeyExA
OpenProcessToken
GetUserNameA
LookupPrivilegeValueA
CryptDeriveKey
RegQueryValueExA
RegCreateKeyExA
GetSidSubAuthority
CryptDestroyHash
GetLengthSid
SetSecurityDescriptorDacl
InitiateSystemShutdownA
QueryServiceStatus
RegDeleteKeyA
CryptReleaseContext
GetAce
GetSidSubAuthorityCount
CreateProcessAsUserA
RegQueryValueA
QueryServiceConfigA
InitializeAcl
LookupPrivilegeValueW
CloseServiceHandle
RegSetValueW
RegEnumValueA
ControlService

gdi32

CopyMetaFileA
LPtoDP
CreateCompatibleBitmap
CreateFontIndirectA
GetCharABCWidthsFloatW
GetROP2
UnrealizeObject
PlayEnhMetaFile
GetBkColor
GetGlyphOutlineA
SetViewportOrgEx
CreateDIBSection
GetTextAlign
GetDCOrgEx
RestoreDC
PathToRegion
DeleteEnhMetaFile
PlayMetaFileRecord
GetViewportOrgEx
SetTextAlign
CreateCompatibleDC
GetFontData
SetPixelV
CreateRectRgnIndirect
IntersectClipRect
GetTextFaceW
EnumFontFamiliesExW
ResetDCA
SelectPalette
GetWindowExtEx
SetROP2
BitBlt
CreateICA
SetStretchBltMode
PolyPolygon
SetRectRgn
GetBitmapDimensionEx
SetBitmapDimensionEx
StretchDIBits
CreateMetaFileA
CreateFontW
CreateHalftonePalette
OffsetViewportOrgEx
PatBlt
StartDocW
CreateRoundRectRgn
GetArcDirection
SetBrushOrgEx
RoundRect
EnumFontsW
CombineRgn
FloodFill
GetBoundsRect
SaveDC
ArcTo
CreateHatchBrush
Arc
GetRegionData
SelectObject
CreateEllipticRgn
GetTextMetricsA
GetNearestColor
EndDoc
GetGlyphOutlineW
AbortDoc
GetStockObject
StrokePath
Chord
ExtTextOutA
GetTextFaceA
UpdateColors
BeginPath
OffsetClipRgn
PlayMetaFile
PtInRegion
GetSystemPaletteEntries
SetMapMode
ScaleViewportExtEx
DPtoLP
GetTextExtentPointA
GetBkMode
GetRgnBox
SetGraphicsMode
GetCharWidthW
CreatePatternBrush
SetPaletteEntries
DeleteDC
GetWindowOrgEx
CreatePolygonRgn
PtVisible
ExtFloodFill
SetDIBitsToDevice
Polygon
SetTextColor
Pie
Ellipse
StrokeAndFillPath
EqualRgn
GetCurrentObject
MaskBlt
GetObjectType
ExtTextOutW
MoveToEx
ExtSelectClipRgn
SetWindowOrgEx
GetTextColor
ExtEscape
ExcludeClipRect
SetBitmapBits
CloseEnhMetaFile
RealizePalette
GetCurrentPositionEx
GetEnhMetaFileHeader
PolyPolyline
SetBkColor
DeleteObject
GetPolyFillMode
CreateFontA
GetObjectA
SetTextCharacterExtra
GetClipBox
OffsetWindowOrgEx
CreateRectRgn
GetStretchBltMode
GdiFlush
ScaleWindowExtEx
GetPaletteEntries
SetMapperFlags
GetMapMode
GetNearestPaletteIndex
SetTextJustification
EndPage
CreateSolidBrush
GetTextMetricsW
SetAbortProc
RectInRegion
FrameRgn
SetWindowExtEx
SetPolyFillMode
TextOutW
GetDeviceCaps
StartDocA
CreatePen
StretchBlt
CreateEnhMetaFileA
ExtCreatePen
GetTextExtentPoint32A
EnumFontFamiliesA
SetPixel
CreatePolyPolygonRgn
FillRgn
SetWorldTransform
GetTextCharacterExtra
CreateICW
OffsetRgn
CreateDIBPatternBrushPt
ExtCreateRegion
PaintRgn
GetPixel
FillPath
GetCharABCWidthsA
EnumMetaFile
SetViewportExtEx
SetBoundsRect
GetTextCharsetInfo
Escape
TextOutA
PolyDraw
CreatePalette
GetTextExtentPoint32W
DeleteMetaFile
CreateFontIndirectW
SelectClipRgn
CreateBitmapIndirect
Polyline
CloseFigure
SelectClipPath
EnumFontFamiliesW
RectVisible
PolyBezier
GetDIBits
SetColorAdjustment
EnumFontFamiliesExA
InvertRgn
LineTo
SetDIBits
StartPage
GetOutlineTextMetricsA
ResizePalette
Rectangle
EndPath
CreateBitmap
PolyBezierTo
GetObjectW
CreateDIBitmap
CloseMetaFile
SetBkMode

version

GetFileVersionInfoA
GetFileVersionInfoW
VerQueryValueA
VerQueryValueW
GetFileVersionInfoSizeA
GetFileVersionInfoSizeW

Sections

.text
Size: 76KB - Virtual size: 73KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 272KB - Virtual size: 268KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 88KB - Virtual size: 97KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c0966236730373a97ea949997410b0da

Headers

File Characteristics

PDB Paths

Imports

user32

comctl32

kernel32

advapi32

gdi32

version

Sections

.text Size: 76KB - Virtual size: 73KB

.rdata Size: 272KB - Virtual size: 268KB

.data Size: 88KB - Virtual size: 97KB

.rsrc Size: 32KB - Virtual size: 28KB

.text
Size: 76KB - Virtual size: 73KB

.rdata
Size: 272KB - Virtual size: 268KB

.data
Size: 88KB - Virtual size: 97KB

.rsrc
Size: 32KB - Virtual size: 28KB