88b1efd4f6c3ae35bc66ebb6b4afe98e_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

88b1efd4f6c3ae35bc66ebb6b4afe98e_JaffaCakes118
Size

96KB
MD5

88b1efd4f6c3ae35bc66ebb6b4afe98e
SHA1

adaaf60ef11ff3ae26c28915187bad6694f6d5e9
SHA256

1c82777e90bfd7ead84f0b597308377077ca8ce97baff538b35038bf8db54e96
SHA512

ec7a5a876234ed9044a11270daf513f7d7c872a07fb844a2676c36d158d88f2845869dbca7135eab8f606c4af29b892aaf84fa8f7fcb6e85a3d8c69eb9fac6fd
SSDEEP

1536:lNM9CvICMC9P3VOiVUzshDCJ8we6PnGpsecddKrI0Lzs7f:rNdP3AOzCJ8aPnise0UI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
88b1efd4f6c3ae35bc66ebb6b4afe98e_JaffaCakes118

Files

88b1efd4f6c3ae35bc66ebb6b4afe98e_JaffaCakes118
.dll regsvr32 windows:4 windows x86 arch:x86

769c53511b7d0df0d6bd9f4fcd45d6e1

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

HeapDestroy
ProcessIdToSessionId
FreeConsole
FlushViewOfFile
IsProcessorFeaturePresent
GlobalFindAtomA
CreateEventA
HeapSetInformation
GlobalDeleteAtom
GetFileInformationByHandle
ExitThread
ClearCommError
OpenSemaphoreW
SetHandleInformation
GetQueuedCompletionStatus
AssignProcessToJobObject
ReadConsoleInputA
UnlockFileEx
GetLongPathNameW
GetUserDefaultUILanguage
HeapLock
FindFirstChangeNotificationW
GetDriveTypeW
SearchPathA
LockFile
CallNamedPipeA
EnumResourceNamesA
GetCommandLineA
CancelIo
SetConsoleCursorPosition
GetSystemDirectoryA
ReleaseSemaphore
GetStringTypeExA
MapViewOfFileEx
OpenEventW
lstrcatW
GlobalGetAtomNameW
GetSystemTimeAdjustment
GetFileAttributesExW
RemoveDirectoryA
FileTimeToLocalFileTime
SetEnvironmentVariableW
GlobalReAlloc
GetProfileIntW
CreateNamedPipeW
ReadProcessMemory
SetFilePointerEx
GetSystemTime
GetExitCodeThread
GetLogicalDrives
CreateFileW
FindResourceExA
LCMapStringW
LocalLock
GlobalAddAtomA
SetConsoleTitleA
SetWaitableTimer
WriteFileEx
GetDefaultCommConfigW
CreateMailslotW
ReadConsoleA
OpenThread
ChangeTimerQueueTimer
GetSystemWindowsDirectoryA
SetEnvironmentVariableA
lstrcpyW
ConvertDefaultLocale
CreateConsoleScreenBuffer
WriteProfileStringA
SetStdHandle
GetVolumePathNamesForVolumeNameW
GetLocaleInfoA
GlobalFree
FindFirstFileExW
DeviceIoControl
TerminateJobObject
FreeEnvironmentStringsW
CreateMailslotA
GetStartupInfoW
LoadResource
lstrcpyA
FindFirstVolumeW
SetInformationJobObject
TryEnterCriticalSection
lstrcatA
GetTimeFormatW
WriteProfileStringW
RtlMoveMemory
VirtualFree
lstrcmpW
HeapCreate
FindClose
FindFirstVolumeMountPointW
SetTimeZoneInformation
RegisterWaitForSingleObject
OpenMutexA
GetThreadContext
PeekConsoleInputW
PulseEvent
GetFileAttributesW
GetVersionExA
FindVolumeMountPointClose
LCMapStringA
SetProcessWorkingSetSize
CopyFileExW
GetFileTime
GetThreadTimes
PeekConsoleInputA
GetSystemWow64DirectoryW
LeaveCriticalSection
IsBadStringPtrA
LoadLibraryA
CreateThread
ReadFile
ExpandEnvironmentStringsA
CloseHandle
VirtualProtect
GetProcAddress
HeapFree
InterlockedExchange
GetComputerNameA
MapViewOfFile
ReleaseMutex
CopyFileA
HeapAlloc
InitializeCriticalSection
GetTickCount
GlobalAlloc
GetModuleFileNameA
DeleteFileA
GetProcessHeap
GetSystemTimeAsFileTime
CreateFileA
VirtualQuery
Sleep
InterlockedIncrement
CreateDirectoryA
WriteFile
ReadFileEx

ole32

CreateILockBytesOnHGlobal
OleRegGetUserType
CreateItemMoniker
CoRevertToSelf
ReadFmtUserTypeStg
StgCreateDocfile
CoAllowSetForegroundWindow
OleGetAutoConvert
StgCreateDocfileOnILockBytes
CoGetClassObject
OleDestroyMenuDescriptor
GetRunningObjectTable
OleQueryLinkFromData
CreateFileMoniker
CoGetMalloc
OleLockRunning
CreateOleAdviseHolder
CoDisableCallCancellation
CreateGenericComposite
CoGetMarshalSizeMax
OleSave
IIDFromString
OleRun
CoRegisterMessageFilter
OleInitialize
CoCreateInstance
CoTaskMemAlloc
CoTaskMemFree
CoUninitialize
CoInitialize

user32

GetDlgItemTextA
SetMessageQueue
GetWindowLongW
FlashWindow
LoadCursorA
CheckDlgButton
GetScrollBarInfo
SetCapture
DefFrameProcW
SetWindowContextHelpId
OpenWindowStationA
AppendMenuA
SetProcessWindowStation
MsgWaitForMultipleObjects
DefFrameProcA
GetMonitorInfoW
LoadBitmapW
SetScrollRange
InvalidateRgn
GetClassInfoA
GetFocus
PostMessageA
DrawFocusRect
SetWindowRgn
GetAsyncKeyState
IsWindowEnabled
GetMenuItemCount
GetMessageExtraInfo
BeginPaint
ClientToScreen
GetClassNameW
DestroyMenu
DialogBoxIndirectParamA
GetCaretBlinkTime
DefWindowProcA
SendMessageTimeoutW
ShowWindowAsync
CallMsgFilterW
CreateDialogIndirectParamW
GetWindowTextW
ChangeMenuA
IsCharAlphaNumericW
IsDlgButtonChecked
DialogBoxParamA
GetClassInfoExW
DrawFrameControl
SetWindowPos
OpenDesktopA
UnregisterClassW
SetMenuDefaultItem
LookupIconIdFromDirectory
wvsprintfA
GetMenuState
SetForegroundWindow
ScreenToClient
SendNotifyMessageA
CharPrevW
IsMenu
PostThreadMessageA
FindWindowExA
SendDlgItemMessageA
AllowSetForegroundWindow
CheckMenuItem
GetKeyNameTextA
AttachThreadInput
CharNextExA
DestroyWindow
GetMenuItemID
GetWindowTextLengthW
GetCursorPos
TranslateMessage
LoadMenuW
SubtractRect
RemovePropW
GetForegroundWindow
LoadImageA
TrackPopupMenuEx
GetClassLongW
CallWindowProcW
OffsetRect
wsprintfA
GetThreadDesktop
GetWindowDC
TrackPopupMenu
GetCapture
CreateIconIndirect
MessageBoxIndirectW
MessageBoxExA
SendNotifyMessageW
LoadBitmapA
DefMDIChildProcA
IsRectEmpty
SetFocus
SetCursorPos
LoadAcceleratorsW
EnumDisplaySettingsA
CharUpperA
IsZoomed
ExitWindowsEx
WindowFromPoint
DestroyCursor
ScrollWindowEx
FillRect
EnableWindow
GetNextDlgGroupItem
CloseDesktop
EnumWindowStationsW
CharPrevA
SetTimer
GetClassLongA
GetMonitorInfoA
GetWindow
PtInRect
WindowFromDC
GetWindowInfo
ValidateRect
GetWindowPlacement
GetClassInfoExA
SetWindowsHookExA
GetClassNameA
UnhookWindowsHookEx
PeekMessageA
DispatchMessageA
CallNextHookEx
GetMessageA
FindWindowA
DrawTextA

shlwapi

PathRemoveBackslashW
StrRetToStrW
PathCompactPathExW
StrStrA
PathAppendW
SHDeleteValueW
PathCreateFromUrlW
PathStripToRootW
PathRemoveFileSpecA
StrCmpIW
StrStrW
StrRetToBufW
PathIsDirectoryA
PathGetDriveNumberW
StrCpyNW
StrCpyW
PathFileExistsW
StrNCatW
UrlCombineW
PathStripPathW
PathIsUNCServerW
PathFindExtensionA
wnsprintfA
StrRChrW
PathRemoveArgsW

advapi32

RegCloseKey
RegQueryInfoKeyA
LookupAccountNameA
SetNamedSecurityInfoA
RegOpenKeyExA
GetSecurityDescriptorSacl
RegEnumKeyExA
ConvertStringSecurityDescriptorToSecurityDescriptorA
MakeAbsoluteSD
CreateProcessAsUserW
RegDeleteKeyW
RegQueryValueW
IsTextUnicode
RegOpenKeyW
RegLoadKeyW
EnumDependentServicesA
QueryServiceConfig2W
RevertToSelf
RegUnLoadKeyA
CreateServiceA
RegFlushKey
RegSaveKeyW
RegUnLoadKeyW
RegOpenKeyA
ImpersonateAnonymousToken
RegisterServiceCtrlHandlerExA
GetInheritanceSourceW
OpenServiceA
RegQueryInfoKeyW
StartServiceW
RegisterEventSourceA
EnumServicesStatusW
ReadEventLogW
QueryServiceStatus
OpenThreadToken
RegRestoreKeyW
UnlockServiceDatabase
RegEnumValueA
StartServiceCtrlDispatcherA
DuplicateToken
OpenEventLogW
RegRestoreKeyA

shell32

SHCreateShellItem
ShellAboutW
SHPathPrepareForWriteW
SHGetInstanceExplorer
SHGetSettings
SHFileOperationA
ShellExecuteExA
DragAcceptFiles
DragQueryFileA
SHAddToRecentDocs
ShellExecuteExW
SHBindToParent
SHFormatDrive

gdi32

EnumFontFamiliesExA
CreateHalftonePalette
GetRandomRgn
Arc
SetWindowExtEx
GetPolyFillMode
GetTextFaceW
AnimatePalette
StrokePath
GetTextCharacterExtra
DeleteMetaFile
GetBitmapDimensionEx
FlattenPath
GetTextMetricsW
StartDocA
SetWindowOrgEx
GetOutlineTextMetricsA
CreateDCA
GetSystemPaletteUse
ExtCreatePen
GetCharABCWidthsA
GetPixelFormat
SetTextJustification
AbortPath
PatBlt
TextOutW
GetKerningPairsA
EnumFontsA
SetDIBits
GetEnhMetaFileA
GetWorldTransform
StartDocW
GetPixel
EqualRgn
PlayMetaFile
GetGlyphOutlineW
EnumFontFamiliesExW
CreatePatternBrush
GetCharABCWidthsW
SetTextAlign
GetBrushOrgEx
GetTextExtentPointW
CreateFontIndirectW
EnumEnhMetaFile
SetMetaRgn
GetEnhMetaFileHeader
ScaleWindowExtEx
SetTextColor
CreateMetaFileW
CreateScalableFontResourceA
OffsetViewportOrgEx
SetViewportOrgEx
SetLayout
DeleteEnhMetaFile
ExtCreateRegion
SetStretchBltMode
GetCurrentPositionEx
PolylineTo
CreateDCW
SetArcDirection
RoundRect
GetNearestPaletteIndex
SetGraphicsMode
CreateDiscardableBitmap
GetRgnBox
PlayEnhMetaFile
BitBlt
CreatePen
AddFontResourceW
EndPage
CreatePalette
EnumMetaFile
GetTextFaceA
SetTextCharacterExtra

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 68KB - Virtual size: 65KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 4KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

769c53511b7d0df0d6bd9f4fcd45d6e1

Headers

File Characteristics

Imports

kernel32

ole32

user32

shlwapi

advapi32

shell32

gdi32

Exports

Exports

Sections

.text Size: 68KB - Virtual size: 65KB

.rdata Size: 16KB - Virtual size: 12KB

.data Size: 4KB - Virtual size: 6KB

.reloc Size: 4KB - Virtual size: 2KB

.text
Size: 68KB - Virtual size: 65KB

.rdata
Size: 16KB - Virtual size: 12KB

.data
Size: 4KB - Virtual size: 6KB

.reloc
Size: 4KB - Virtual size: 2KB