894bf3d165f54c7eb8083d7317a1a61d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

894bf3d165f54c7eb8083d7317a1a61d_JaffaCakes118
Size

920KB
MD5

894bf3d165f54c7eb8083d7317a1a61d
SHA1

a864c463c16bc6186c6d571254113103ae1aef86
SHA256

03398a30d473d53ae06acce3ca80851b989bf7e9b2befefdf64680410a0e0df9
SHA512

11f3bc8b82d048fdbf43f761fe44116a5e6152c187da751a32c251b712fbf4bc49d81c664cf5ab81090540a9898f4de2253e5fcd0365d726460a959a9c280029
SSDEEP

12288:0PzRR7otCb9eVXU7SbVFNOPCTVlgI15U1mW4:0PzRRZb9yU7uVTOqf7C1m

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
894bf3d165f54c7eb8083d7317a1a61d_JaffaCakes118

Files

894bf3d165f54c7eb8083d7317a1a61d_JaffaCakes118
.dll regsvr32 windows:4 windows x86 arch:x86

f7a79cb6979835ce1583bedef65ea650

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

CreateThread
CreateMutexA
SetThreadPriority
GetExitCodeThread
WaitForSingleObject
lstrcatA
SetEvent
CloseHandle
CreateEventA
GetCurrentThreadId
GetCurrentProcess
FlushInstructionCache
SizeofResource
GetModuleFileNameA
GetModuleHandleA
GetShortPathNameA
lstrlenA
MultiByteToWideChar
EnterCriticalSection
LeaveCriticalSection
lstrlenW
WideCharToMultiByte
LoadLibraryA
FreeLibrary
LocalFree
InterlockedDecrement
GetProcAddress
HeapDestroy
lstrcpyA
DeleteCriticalSection
IsDBCSLeadByte
InitializeCriticalSection
DisableThreadLibraryCalls
LoadLibraryExA
lstrcpynA
lstrcmpiA
LoadResource
GetLastError
FindResourceA
Sleep
FormatMessageA
CompareStringA
CreateFileA
SetStdHandle
HeapAlloc
LCMapStringW
GetStringTypeW
GetStringTypeA
LCMapStringA
GetOEMCP
GetACP
SetFilePointer
IsBadCodePtr
GetCPInfo
SetUnhandledExceptionFilter
CompareStringW
IsBadReadPtr
HeapSize
WriteFile
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetStartupInfoA
GetFileType
FindResourceW
GetEnvironmentVariableA
SetHandleCount
TerminateProcess
SetEnvironmentVariableA
FlushFileBuffers
GetStdHandle
HeapFree
ExitProcess
TlsGetValue
SetLastError
TlsFree
TlsAlloc
TlsSetValue
RaiseException
GetLocalTime
GetSystemTime
GetTimeZoneInformation
GetVersion
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
GetModuleFileNameW
FindFirstFileW
FindNextFileW
LoadLibraryExW
GetLocaleInfoW
GetDateFormatW
CreateFileW
FormatMessageW
FindNextFileA
GetVersionExA
GetCommandLineA
GetDateFormatA
GetLocaleInfoA
GetProcessHeap
InterlockedIncrement
LocalAlloc
FindFirstFileA
RtlUnwind
HeapReAlloc
IsDBCSLeadByteEx
FreeResource
LockResource
InterlockedExchange

user32

SendMessageA
GetDC
ReleaseDC
CharNextA
TrackPopupMenu
AppendMenuA
MessageBoxA
LoadStringA
GetClientRect
RegisterClassExA
wsprintfA
GetClassInfoExA
LoadCursorA
SetRect
CallWindowProcA
SetWindowLongA
GetWindowLongA
PeekMessageA
CreateWindowExA
DispatchMessageA
EndPaint
InvalidateRect
SystemParametersInfoA
GetDesktopWindow
BeginPaint
SetWindowPos
GetWindow
MapWindowPoints
GetWindowRect
LoadBitmapA
GetParent
MessageBoxW
DialogBoxParamA
LoadMenuA
LoadStringW
RegisterClassExW
CreateWindowExW
LoadAcceleratorsW
LoadMenuW
SetWindowTextW
GetWindowTextW
SendDlgItemMessageW
SendMessageW
CharLowerW
DialogBoxParamW
CreateDialogParamW
CreateDialogIndirectParamW
LoadMenuIndirectW
InsertMenuW
GetClassInfoExW
GetClassNameW
UnregisterClassW
CallWindowProcW
RegisterClassW
SetWindowLongW
GetWindowLongW
TranslateAcceleratorW
GetMessageW
DispatchMessageW
DefWindowProcW
TranslateAcceleratorA
GetMessageA
SetFocus
GetFocus
SetRectEmpty
GetSystemMetrics
PostMessageA
GetDlgItem
EndDialog
SetParent
GetWindowTextLengthA
GetClassNameA
UnregisterClassA
RegisterClassA
LoadAcceleratorsA
MessageBeep
LoadMenuIndirectA
InsertMenuA
IsWindowVisible
CreateDialogParamA
CreateDialogIndirectParamA
CharLowerA
SetWindowTextA
LoadIconA
EnumChildWindows
EnableWindow
IsDialogMessageA
IsRectEmpty
DefMDIChildProcA
DefFrameProcA
FillRect
WindowFromDC
GetDlgCtrlID
ClientToScreen
SetDlgItemTextA
LoadImageA
SetCursor
IsWindow
InflateRect
ScreenToClient
GetClassLongA
DestroyWindow
DefWindowProcA
ShowWindow
OffsetRect
RemoveMenu
CreatePopupMenu
GetCursorPos
TrackPopupMenuEx
GetSubMenu
DestroyMenu
GetMenuItemCount

gdi32

DeleteObject
GetObjectA
CreateFontIndirectA
SelectObject
CreateCompatibleBitmap
BitBlt
LPtoDP
RestoreDC
CreateCompatibleDC
SetWindowOrgEx
SetMapMode
SetViewportOrgEx
GetDeviceCaps
CreateDCA
SaveDC
DeleteDC
CreateFontIndirectW
GetTextExtentPoint32W
GetStockObject
SetBkMode
SetTextColor
GetTextExtentPoint32A
GetObjectW
GetBkMode
GetTextColor
GetObjectType
GetMapMode

advapi32

RegEnumKeyExA
RegCloseKey
RegSetValueExA
RegCreateKeyExA
RegDeleteValueA
RegDeleteKeyA
RegOpenKeyExA
RegQueryInfoKeyA
RegEnumValueA

ole32

OleRun
CoDisconnectObject
CoTaskMemRealloc
CoTaskMemAlloc
CoTaskMemFree
CoCreateInstance

oleaut32

GetErrorInfo
VariantChangeType
VariantCopy
VariantInit
VariantClear
SysAllocStringLen
LoadRegTypeLi
LoadTypeLi
RegisterTypeLi
VarUI4FromStr
SysStringByteLen
SysAllocStringByteLen
SysAllocString
SysStringLen
SysFreeString

comctl32

PropertySheetW
PropertySheetA
ord17

comdlg32

ChooseFontA
ChooseFontW

shell32

ShellExecuteA

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllGetVersion
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 268KB - Virtual size: 266KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 44KB - Virtual size: 42KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 192KB - Virtual size: 195KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 388KB - Virtual size: 385KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f7a79cb6979835ce1583bedef65ea650

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

ole32

oleaut32

comctl32

comdlg32

shell32

Exports

Exports

Sections

.text Size: 268KB - Virtual size: 266KB

.rdata Size: 44KB - Virtual size: 42KB

.data Size: 192KB - Virtual size: 195KB

.rsrc Size: 388KB - Virtual size: 385KB

.reloc Size: 24KB - Virtual size: 22KB

.text
Size: 268KB - Virtual size: 266KB

.rdata
Size: 44KB - Virtual size: 42KB

.data
Size: 192KB - Virtual size: 195KB

.rsrc
Size: 388KB - Virtual size: 385KB

.reloc
Size: 24KB - Virtual size: 22KB