8895eec0d6f9c5bde4e5048824bdb693_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

8895eec0d6f9c5bde4e5048824bdb693_JaffaCakes118
Size

687KB
MD5

8895eec0d6f9c5bde4e5048824bdb693
SHA1

916ac63e438fd1ffd6bde77fa7ee754a79d828ac
SHA256

a31bcf37accafafcde367f7519883a6a86b98b28fdd941aac3f78349fb0a66a8
SHA512

23c9812d76f3231c474b388f46b25a559e527faa4147769dc5d5fd85064b9e45f1b615e09748133d91f0d681bda8f3dd8209996e303a3a959bb1984963e18c6b
SSDEEP

12288:HcHZI1cGYYZ6QrsSeqVz4q03q1Wfmq4Omh7pnsVFaH3Y3/Y0iG:HV1cGYYZ6q1Oq033f54Oe9sXaHb0R

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8895eec0d6f9c5bde4e5048824bdb693_JaffaCakes118

Files

8895eec0d6f9c5bde4e5048824bdb693_JaffaCakes118
.exe windows:5 windows x86 arch:x86

07b965fbc729c7a74615e3941e9568e1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

C:\fluor\Release\aspirations.pdb

Imports

kernel32

HeapSize
VirtualProtect
GetSystemInfo
VirtualQuery
HeapCreate
VirtualFree
GetStdHandle
GetACP
IsValidCodePage
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
InitializeCriticalSectionAndSpinCount
FreeEnvironmentStringsA
GetEnvironmentStrings
GetCommandLineA
GetEnvironmentStringsW
SetHandleCount
HeapReAlloc
QueryPerformanceCounter
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CompareStringW
SetEnvironmentVariableA
ExitProcess
Sleep
GetSystemTimeAsFileTime
IsDebuggerPresent
SetUnhandledExceptionFilter
RtlUnwind
GetFileType
GetStartupInfoA
UnhandledExceptionFilter
TerminateProcess
SetErrorMode
GetModuleHandleW
GetFileSizeEx
LocalFileTimeToFileTime
GetFileAttributesExA
FileTimeToLocalFileTime
GetShortPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
DuplicateHandle
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
lstrcmpiA
GetStringTypeExA
DeleteFileA
MoveFileA
GetCurrentDirectoryA
SystemTimeToFileTime
FileTimeToSystemTime
GetThreadLocale
GetOEMCP
GetCPInfo
InterlockedIncrement
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
GlobalReAlloc
TlsGetValue
LocalAlloc
GlobalFlags
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GetDiskFreeSpaceA
GetFullPathNameA
GetTempFileNameA
GetFileTime
SetFileTime
GetFileAttributesA
GetTickCount
GlobalFree
GetPrivateProfileStringA
WritePrivateProfileStringA
GetPrivateProfileIntA
GetCurrentThread
ConvertDefaultLocale
GetLocaleInfoA
lstrcmpA
GlobalAlloc
MulDiv
InterlockedDecrement
GetModuleFileNameW
FreeResource
GlobalFindAtomA
GlobalDeleteAtom
CompareStringA
FreeLibrary
lstrcmpW
GetVersionExA
GlobalLock
GlobalUnlock
GetCurrentProcessId
GlobalGetAtomNameA
GlobalAddAtomA
SetLastError
lstrcpyA
LocalFree
OpenFileMappingA
CloseHandle
GetCurrentThreadId
LoadLibraryExA
GetModuleHandleA
FindFirstVolumeMountPointA
GetModuleFileNameA
LoadLibraryA
VirtualAlloc
FindVolumeMountPointClose
GetProcAddress
GetLastError
InterlockedExchange
MultiByteToWideChar
ReadFile
EnumResourceLanguagesA
CreateEventA
FindResourceExA
FormatMessageA
FindNextVolumeMountPointA
GetProcessHeap
WaitForSingleObject
HeapFree
GetCurrentProcess
HeapAlloc
MapViewOfFile
lstrlenA
GetFileSize
CreateFileA
LockResource
SizeofResource
LoadResource
FindResourceA
WideCharToMultiByte
CreateThread
RaiseException
FreeEnvironmentStringsW
ExitThread

user32

DispatchMessageA
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
MapWindowPoints
ScrollWindow
TrackPopupMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
SetForegroundWindow
ShowScrollBar
MessageBoxA
GetClassInfoExA
RegisterClassA
ScreenToClient
DeferWindowPos
GetScrollInfo
SetScrollInfo
CallWindowProcA
PtInRect
SystemParametersInfoA
GetWindowPlacement
GetSystemMetrics
GetClassNameA
GetSysColor
UnpackDDElParam
ReuseDDElParam
WinHelpA
SetWindowPos
SetFocus
GetActiveWindow
IsWindowEnabled
EqualRect
GetDlgCtrlID
GetKeyState
SetCursor
PeekMessageA
GetCapture
ReleaseCapture
LoadAcceleratorsA
IsWindowVisible
InvalidateRect
IsIconic
InsertMenuItemA
GetMenuItemID
GetMenuItemCount
CreatePopupMenu
IntersectRect
OffsetRect
SetRectEmpty
CopyRect
GetWindowTextA
BringWindowToTop
GetNextDlgGroupItem
GetDesktopWindow
GetWindow
ShowWindow
TranslateAcceleratorA
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapA
GetFocus
GetParent
ModifyMenuA
GetMenuState
EnableMenuItem
EndPaint
GetSystemMenu
GetWindowRect
SetActiveWindow
PostQuitMessage
GetSubMenu
LoadStringA
IsClipboardFormatAvailable
AttachThreadInput
LoadMenuA
LoadIconA
wsprintfA
WindowFromPoint
GetClientRect
SendMessageA
BeginPaint
CreateCaret
EnableWindow
UpdateWindow
MoveWindow
GetDC
InflateRect
GetForegroundWindow
GetMenu
SetWindowLongA
GetWindowLongA
GetClipboardData
CreateWindowExA
EmptyClipboard
ChangeClipboardChain
GetDlgItem
EndDialog
DefWindowProcA
GetCursorPos
SetMenu
DrawMenuBar
GetClassInfoA
AppendMenuA
IsWindow
GetCursor
OpenClipboard
AdjustWindowRectEx
GetWindowTextLengthA
RemovePropA
GetPropA
SetPropA
GetClassLongA
CallNextHookEx
SetWindowTextA
LoadImageA
SetClipboardData
DestroyMenu
LoadCursorA
SetWindowsHookExA
IsChild
SendDlgItemMessageA
RegisterWindowMessageA
PostThreadMessageA
GetLastActivePopup
MessageBeep
GetWindowThreadProcessId
CheckMenuItem
GetDialogBaseUnits
SetClipboardViewer
InvalidateRgn
CopyAcceleratorTableA
CharNextA
CharUpperA
DestroyIcon
UnregisterClassA
LockWindowUpdate
GetDCEx
SetRect
GetMenuItemInfoA
GetMenuStringA
InsertMenuA
GetSysColorBrush
SetCapture
KillTimer
SetTimer
SetWindowRgn
DrawIcon
RegisterClipboardFormatA
CreateDialogIndirectParamA
GetNextDlgTabItem
GetMessageA
TranslateMessage
ValidateRect
SetWindowContextHelpId
MapDialogRect
ShowOwnedPopups
GetWindowDC
ClientToScreen
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
FillRect
ReleaseDC
IsZoomed
SetParent
DeleteMenu
IsRectEmpty
IsDialogMessageA
DefFrameProcA
TranslateMDISysAccel
PostMessageA
DefMDIChildProcA
RedrawWindow

gdi32

ExcludeClipRect
IntersectClipRect
SelectClipRgn
CreateRectRgn
GetViewportExtEx
GetWindowExtEx
GetPixel
PtVisible
RectVisible
ExtTextOutA
Escape
OffsetViewportOrgEx
ScaleViewportExtEx
ExtSelectClipRgn
CreatePatternBrush
GetDeviceCaps
CreateEllipticRgn
LPtoDP
CreateFontIndirectA
CreateRectRgnIndirect
PatBlt
SetRectRgn
GetMapMode
GetBkColor
GetTextColor
GetRgnBox
RestoreDC
SetBkMode
SaveDC
StretchDIBits
DeleteDC
CreateFontA
GetCharWidthA
GetTextExtentPoint32A
GetTextMetricsA
SetBkColor
SetTextColor
GetClipBox
CreateCompatibleDC
CreateCompatibleBitmap
CreateBitmap
BitBlt
Pie
SetViewportOrgEx
SetWindowExtEx
CreateMetaFileA
GetBoundsRect
DeleteObject
SelectObject
CombineRgn
SetMapMode
Ellipse
ScaleWindowExtEx
TextOutA
RoundRect
GetObjectA
GetStockObject
SwapBuffers
CreateSolidBrush
SetViewportExtEx

comdlg32

GetOpenFileNameA
GetFileTitleA

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

RegOpenKeyA
IsTextUnicode
SetSecurityInfo
BuildExplicitAccessWithNameA
RegCreateKeyA
RegSetValueA
GetFileSecurityA
SetFileSecurityA
RegDeleteValueA
RegSetValueExA
RegCreateKeyExA
RegQueryValueA
SetEntriesInAclA
RegEnumKeyA
RegDeleteKeyA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
CreateWellKnownSid
IsValidSecurityDescriptor
GetUserNameA

shell32

DragAcceptFiles
DragQueryFileA
ExtractIconA
SHGetFileInfoA
DragFinish

comctl32

ImageList_Destroy
ImageList_ReplaceIcon
InitCommonControlsEx
ImageList_Create

shlwapi

PathFindExtensionA
PathRemoveExtensionA
PathStripToRootA
PathIsUNCA
PathCompactPathA
PathFindFileNameA
PathRemoveFileSpecW

oledlg

ord8

ole32

CoRevokeClassObject
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CoCreateInstance
CoTaskMemAlloc
CoUninitialize
OleIsCurrentClipboard
CoTaskMemFree
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CLSIDFromString
CLSIDFromProgID
RegisterDragDrop
CoInitializeEx
OleFlushClipboard
CoRegisterMessageFilter

oleaut32

VariantCopy
SysAllocStringByteLen
SysAllocStringLen
VariantInit
VariantChangeType
VariantClear
SysFreeString
VarBstrCat
SysStringLen
SysAllocString
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
OleCreateFontIndirect

opengl32

glClearDepth
glClearColor
glTexImage2D
glShadeModel
glTexParameteri
glDrawBuffer
glEnable
glTexGeni
glFlush
glHint
glDepthFunc

glu32

gluQuadricTexture
gluQuadricNormals

msvfw32

DrawDibOpen

credui

CredUIParseUserNameA
CredUIPromptForCredentialsA

pdh

PdhGetFormattedCounterValue

oleacc

LresultFromObject
AccessibleObjectFromWindow
CreateStdAccessibleObject

Sections

.text
Size: 380KB - Virtual size: 380KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 91KB - Virtual size: 90KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 202KB - Virtual size: 202KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

07b965fbc729c7a74615e3941e9568e1

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

opengl32

glu32

msvfw32

credui

pdh

oleacc

Sections

.text Size: 380KB - Virtual size: 380KB

.rdata Size: 91KB - Virtual size: 90KB

.data Size: 12KB - Virtual size: 27KB

.rsrc Size: 202KB - Virtual size: 202KB

.text
Size: 380KB - Virtual size: 380KB

.rdata
Size: 91KB - Virtual size: 90KB

.data
Size: 12KB - Virtual size: 27KB

.rsrc
Size: 202KB - Virtual size: 202KB