89a106e327adafd6633c0663a7065528_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

89a106e327adafd6633c0663a7065528_JaffaCakes118
Size

823KB
MD5

89a106e327adafd6633c0663a7065528
SHA1

4df00f2212b28841909990f751a5b6936e8f9efc
SHA256

629d7608180191ea2a8db9e98f80bf04ab60df18c4d81c54df5b7175e03715b9
SHA512

495aac362af7a5d0ab8c8e32b9afa4785309b2c9cedba204875bcc16ea1d1387fb25de23bfa4a6199d8dac4933c9b14fefb7a43db14d6708d66e14d43fc94ab1
SSDEEP

24576:YrrgSy8n2qrl9l/NGdun3K1SvnTpJYei:YrsS9n2A9n3oSvTpJ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
89a106e327adafd6633c0663a7065528_JaffaCakes118

Files

89a106e327adafd6633c0663a7065528_JaffaCakes118
.exe windows:5 windows x86 arch:x86

7a00695c3e23303caa17dfd92ced639f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
VirtualAlloc
ExitProcess
Sleep

user32

SetTimer
SetRect
GetMessageW
GetCapture
GetForegroundWindow
GetMenuStringW
GetClassInfoW
GetDC
GetParent
ReleaseDC
RedrawWindow
SetMenu
GetSysColor
IsIconic
GetWindowDC
SetRectEmpty
DefMDIChildProcW
SetFocus
TranslateMessage
LoadBitmapW
GetScrollRange
FillRect
AdjustWindowRectEx
GetWindowThreadProcessId
GetMenuItemCount
SetMenuItemInfoW
IsWindow
GetSysColorBrush
WaitForInputIdle
GetKeyboardLayoutNameW
IsWindowVisible
PeekMessageW
TranslateMDISysAccel
SetActiveWindow
CharUpperBuffW
DestroyMenu
FindWindowW
InsertMenuItemW
ActivateKeyboardLayout
OffsetRect
GetMenuItemInfoW
InvalidateRect
PtInRect
MsgWaitForMultipleObjects
ShowScrollBar
DestroyCursor
KillTimer
GetIconInfo
DrawIconEx
CreateMenu
CharLowerBuffW
MessageBeep
SetForegroundWindow
InsertMenuW
TrackPopupMenu
GetSystemMenu
GetKeyboardLayout
RegisterWindowMessageW
CharLowerW
DestroyIcon
SendMessageW
ScrollWindow
DrawTextW
LoadCursorW
PeekMessageA
IsChild
DrawFocusRect
GetSubMenu
DefFrameProcW
DrawFrameControl
MsgWaitForMultipleObjectsEx
CreateIcon
CharNextW
GetKeyState
GetKeyNameTextW
SetWindowsHookExW
ShowWindow
CallNextHookEx
PostQuitMessage
GetDCEx
ScrollWindowEx
RegisterClassW
UpdateWindow
SetWindowLongW
SetParent
SetWindowPlacement
SetCapture
IsRectEmpty
DefWindowProcW
EnableMenuItem
InflateRect
GetClassLongW
DispatchMessageA
GetWindowPlacement
EnableWindow
EndPaint
WindowFromPoint
FindWindowExW
LoadIconW
CreateWindowExW
DeleteMenu
EnableScrollBar
DrawIcon
RemovePropW
ShowOwnedPopups
OemToCharBuffA
EnumWindows
GetSystemMetrics
RegisterClipboardFormatW
DrawMenuBar
DispatchMessageW
CallWindowProcW
SetScrollInfo
SystemParametersInfoW
GetCursor
GetMenuState
MapWindowPoints
ClientToScreen
LoadStringW
IsDialogMessageA
GetFocus
GetWindowLongW
IntersectRect
PostMessageW
RemoveMenu
GetLastActivePopup
MapVirtualKeyW
GetWindow
ExitWindowsEx
SetScrollPos
EnumChildWindows
GetKeyboardLayoutList
IsWindowEnabled
GetCursorPos
SetWindowTextW
SetPropW
CharToOemBuffA
ReleaseCapture
DrawTextExW
IsWindowUnicode
GetScrollPos
IsZoomed
GetMessagePos
AppendMenuW
SetCursor
SetWindowPos
GetPropW
GetWindowTextW
SendNotifyMessageW
GetActiveWindow
GetMenuItemID
SendMessageA
GetScrollInfo
LoadKeyboardLayoutW
DestroyWindow
GetKeyboardState
BeginPaint
GetMenu
IsDialogMessageW
GetTopWindow
UnhookWindowsHookEx
SetClassLongW
CheckMenuItem
CreatePopupMenu
SendMessageTimeoutW
DrawEdge
UnregisterClassW
WaitMessage
GetDesktopWindow
EnumThreadWindows
GetClientRect
BringWindowToTop
FrameRect
SetScrollRange
ScreenToClient
MessageBoxW
ReplyMessage
GetWindowRect

gdi32

GetPixel
SelectObject
GetDIBColorTable
DeleteDC
CreateBrushIndirect
Ellipse
RealizePalette
RestoreDC
SetBkColor
GetBitmapBits
SetStretchBltMode
UnrealizeObject
CreateDIBSection
IntersectClipRect
Arc
GetClipBox
CreateCompatibleDC
CreateHalftonePalette
CreateBitmap
GetWindowOrgEx
SetBrushOrgEx
GetTextMetricsW
GetObjectW
CreateCompatibleBitmap
GetSystemPaletteEntries
GetStockObject
CreateSolidBrush
DeleteObject
SetROP2
RemoveFontResourceW
ExtTextOutW
PatBlt
SetBkMode
CreateRectRgn
MoveToEx
SetDIBColorTable
StretchBlt
SetViewportOrgEx
SetTextColor
CreateDIBitmap
LineDDA
GetTextExtentPointW
MaskBlt
EnumFontsW
GetDeviceCaps
GetTextExtentPoint32W
ChoosePixelFormat
SelectPalette
GetRgnBox
RectVisible
RoundRect
SetPixel
GetBrushOrgEx
GetDCOrgEx
Polyline
ExcludeClipRect
SaveDC
FrameRgn
SetWindowOrgEx
CreatePenIndirect
Rectangle
LineTo
Chord
CreateFontIndirectW
ExtFloodFill
GetCurrentPositionEx
CreatePalette
AddFontResourceW
GetPaletteEntries
Pie
BitBlt
GetDIBits

comdlg32

GetSaveFileNameW
GetOpenFileNameW

advapi32

AdjustTokenPrivileges

shell32

SHBrowseForFolderW
SHChangeNotify
SHGetMalloc
SHGetPathFromIDListW

ole32

CoDisconnectObject

oleaut32

SysFreeString

comctl32

FlatSB_GetScrollInfo
FlatSB_GetScrollPos
_TrackMouseEvent
ImageList_Draw
FlatSB_SetScrollProp
ImageList_SetImageCount
ImageList_Write
ImageList_GetBkColor
ImageList_GetImageCount
ImageList_DragMove
ImageList_BeginDrag
ImageList_DragShowNolock
ImageList_SetBkColor
ImageList_GetIconSize
ImageList_SetIconSize
ImageList_Destroy
ord17
FlatSB_SetScrollInfo
ImageList_EndDrag
ImageList_Remove
ImageList_Create
ImageList_GetDragImage
InitializeFlatSB
ImageList_DragLeave
FlatSB_SetScrollPos
ImageList_Add
ImageList_DrawEx
ImageList_Read
ImageList_DragEnter

msimg32

AlphaBlend

version

GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW

mpr

WNetCloseEnum
WNetEnumResourceW
WNetOpenEnumW
WNetGetUniversalNameW
WNetGetConnectionW

netapi32

NetApiBufferFree

wtsapi32

WTSVirtualChannelClose

wldap32

ord319

Sections

.text
Size: 512KB - Virtual size: 511KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.stroke
Size: 195KB - Virtual size: 194KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.char
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.joke
Size: 512B - Virtual size: 3B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.key
Size: 48KB - Virtual size: 48KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7a00695c3e23303caa17dfd92ced639f

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

comctl32

msimg32

version

mpr

netapi32

wtsapi32

wldap32

Sections

.text Size: 512KB - Virtual size: 511KB

.stroke Size: 195KB - Virtual size: 194KB

.char Size: 48KB - Virtual size: 47KB

.rdata Size: 8KB - Virtual size: 8KB

.data Size: 512B - Virtual size: 44KB

.joke Size: 512B - Virtual size: 3B

.key Size: 48KB - Virtual size: 48KB

.rsrc Size: 5KB - Virtual size: 4KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 512KB - Virtual size: 511KB

.stroke
Size: 195KB - Virtual size: 194KB

.char
Size: 48KB - Virtual size: 47KB

.rdata
Size: 8KB - Virtual size: 8KB

.data
Size: 512B - Virtual size: 44KB

.joke
Size: 512B - Virtual size: 3B

.key
Size: 48KB - Virtual size: 48KB

.rsrc
Size: 5KB - Virtual size: 4KB

.reloc
Size: 4KB - Virtual size: 3KB