9520bf36c4e6b2b908e2dc19a2d4b416_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

9520bf36c4e6b2b908e2dc19a2d4b416_JaffaCakes118
Size

1.7MB
MD5

9520bf36c4e6b2b908e2dc19a2d4b416
SHA1

8a22e70faf3f06718d4077ddf27882572c4a2064
SHA256

1482bfab538e4bcfb8af4bced5a4d36d6b691e4b078532dc558dcb3cb7200535
SHA512

dc8b28598209e7da491ca6d21c265c54e16873edd57797d649dd52385cd8d6fccfe4bbecf3dab7aebbe61264cea109ddb62643863be6f413fcbf8b77aa18f04b
SSDEEP

49152:/tsQ4W+Iagi7O6Y2QO8eaK5Ow25a8j/aHev4:/tuV3B7OLObaDvj/a+A

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9520bf36c4e6b2b908e2dc19a2d4b416_JaffaCakes118

Files

9520bf36c4e6b2b908e2dc19a2d4b416_JaffaCakes118
.exe windows:4 windows x86 arch:x86

95f723bc3fe9e373bd25e56fecee6438

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

shlwapi

SHSetValueA
SHStrDupA
SHQueryValueExA
SHDeleteKeyA
PathIsContentTypeA
PathFileExistsA
SHSetValueA

shell32

SHGetFolderPathA
DragQueryFileA
SHGetDesktopFolder
SHGetDiskFreeSpaceA
Shell_NotifyIconA
SHGetFolderPathA
SHGetSpecialFolderLocation

advapi32

RegQueryInfoKeyA
RegQueryInfoKeyA
GetUserNameA
RegDeleteKeyA

oleaut32

SafeArrayUnaccessData
SysAllocStringLen
SafeArrayPtrOfIndex
OleLoadPicture
SafeArrayUnaccessData
SysReAllocStringLen
SysFreeString
VariantCopyInd
SafeArrayGetElement
SysAllocStringLen
OleLoadPicture
RegisterTypeLib
SafeArrayPtrOfIndex
SafeArrayCreate
SafeArrayGetElement
SafeArrayUnaccessData
GetErrorInfo
RegisterTypeLib
VariantCopyInd
SysStringLen
SafeArrayCreate
SysFreeString
OleLoadPicture
VariantChangeType
SysFreeString
VariantCopyInd

ole32

OleCreateStaticFromData
CLSIDFromString
CoGetObjectContext
CoGetMalloc
StgCreateDocfileOnILockBytes
StringFromIID
CoUnmarshalInterface
CoDisconnectObject
CoGetContextToken
CoReleaseMarshalData
CreateStreamOnHGlobal
CreateBindCtx
CLSIDFromString
OleRegGetUserType
CreateOleAdviseHolder
WriteClassStm
CoTaskMemFree
CreateBindCtx
GetHGlobalFromStream
StgCreateDocfileOnILockBytes
ReleaseStgMedium
CLSIDFromString
CoCreateGuid
CoCreateFreeThreadedMarshaler
CLSIDFromProgID
CoGetContextToken
OleCreateStaticFromData
CoGetMalloc
CoGetObjectContext
WriteClassStm
CoCreateInstanceEx
CoUninitialize
CoGetMalloc
CoCreateFreeThreadedMarshaler
OleRun

msvcrt

memset
sqrt
wcschr
memmove
time
clock
calloc
malloc
atol
wcscspn
exit
sprintf
malloc
swprintf
memmove
wcsncmp
wcschr
clock
memset
time
wcstol
swprintf
memset
sqrt
_acmdln
clock
memcpy
calloc
wcscspn
time
exit

kernel32

ExitProcess
SetHandleCount
GetFileAttributesA
DeleteCriticalSection
GetCommandLineA
GetModuleFileNameA
GlobalFindAtomA
WaitForSingleObject
DeleteCriticalSection
lstrcmpA
GetOEMCP
FindResourceA
GlobalFindAtomA
VirtualFree
RaiseException
MulDiv
GetTickCount
FormatMessageA
lstrcmpA
CompareStringA
GetFullPathNameA
MoveFileExA
WideCharToMultiByte
GetStringTypeA
GetCurrentProcess
WaitForSingleObject
LockResource
GetStringTypeA
GetEnvironmentStrings
HeapDestroy
InitializeCriticalSection
lstrcmpiA
LoadLibraryExA
GlobalDeleteAtom
GetACP
LoadLibraryExA
ExitThread
GlobalAlloc
GetModuleHandleA
VirtualAlloc
ExitProcess
GetCurrentThread
GetCPInfo
FormatMessageA
GlobalFindAtomA
GetEnvironmentStrings
DeleteCriticalSection
SetEvent
GetACP
GetDateFormatA
GetVersion

version

VerFindFileA
VerInstallFileA
VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA
VerFindFileA
VerInstallFileA
GetFileVersionInfoSizeA
VerFindFileA
VerFindFileA
VerQueryValueA
GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoSizeA
VerFindFileA
GetFileVersionInfoSizeA

user32

wsprintfA
SendMessageW
IsIconic
InsertMenuItemA
LoadKeyboardLayoutA
GetWindowPlacement
SetRect
GetKeyboardLayout
CallNextHookEx
ClientToScreen
GetSysColorBrush
IsZoomed
GetClassInfoA
GetActiveWindow
SetWindowPos
RegisterWindowMessageA
FindWindowA
GetWindowLongA
GetForegroundWindow
GetTopWindow
GetKeyboardLayoutList
MoveWindow
GetMenuItemInfoA
CharNextA
IntersectRect
DrawTextA
GetCursor
MessageBeep
DrawIcon
CreateWindowExA
SetPropA
DestroyWindow
EnumChildWindows
AdjustWindowRectEx
ShowOwnedPopups
GetKeyboardState
MessageBoxA
GetLastActivePopup
IsChild
ActivateKeyboardLayout
GetCapture
DefMDIChildProcA
SetMenuItemInfoA
GetWindowLongW
InvalidateRect
EnumThreadWindows
SetMenu
GetMenuItemCount
CharNextW
GetWindowThreadProcessId
EnumWindows
IsWindowUnicode
TranslateMessage
EndPaint
ScrollWindow
RegisterClassA
GetMenuItemID
SetScrollInfo
GetClipboardData
IsDialogMessageA
WindowFromPoint
SetForegroundWindow
SetClipboardData
CreatePopupMenu
GetWindow
SetCursor
GetKeyboardType
DrawEdge
DefFrameProcA
GetDesktopWindow
GetPropA
MapVirtualKeyA
LoadCursorA
DestroyCursor
EmptyClipboard
FillRect
UnregisterClassA
EnableWindow
GetScrollInfo
GetSubMenu
GetClassLongA
SetWindowTextA
GetDCEx
IsWindowEnabled
EnableScrollBar
ShowWindow
SetWindowPlacement
TranslateMDISysAccel
ChildWindowFromPoint
DrawAnimatedRects
CharLowerBuffA
CharLowerA
GetSystemMenu
DrawMenuBar
GetClientRect
LoadBitmapA
DestroyMenu
OffsetRect
SetWindowsHookExA
GetFocus
DeleteMenu
DispatchMessageW
GetKeyState
SetWindowLongW
SetParent
GetWindowTextA
DrawFrameControl
GetKeyNameTextA
EqualRect
CloseClipboard
DefWindowProcA
SystemParametersInfoA
CharToOemA
GetWindowRect
GetSystemMetrics
LoadStringA
MapWindowPoints
SetScrollPos
SetTimer
RemovePropA
SetActiveWindow
KillTimer
OpenClipboard
GetClientRect
SetPropA
CloseClipboard
PtInRect
InflateRect
SendMessageA
GetParent
IsWindow
GetMenuItemInfoA
AdjustWindowRectEx
SetRect
DispatchMessageA
CreateMenu
GetScrollPos
GetIconInfo
SetWindowLongW
UpdateWindow
GetCapture
RemoveMenu
PostQuitMessage
GetFocus
SetWindowPos
SetParent
ShowOwnedPopups
GetSysColorBrush
IsWindowUnicode
WaitMessage
DeleteMenu
LoadCursorA
CreateIcon
InsertMenuItemA
GetWindowThreadProcessId
CreateWindowExA
TrackPopupMenu
GetScrollRange
RegisterClassA
LoadKeyboardLayoutA
GetWindowTextA
OpenClipboard
SetWindowPlacement
CharUpperBuffA
IsDialogMessageW
LoadIconA
EnableScrollBar
GetDCEx
GetCursor
GetWindowLongW
WindowFromPoint
DrawMenuBar
SetForegroundWindow
ReleaseDC
DefFrameProcA
DestroyIcon
InsertMenuA
ReleaseCapture
GetPropA
IsIconic
CharLowerA
EmptyClipboard
DestroyWindow
RegisterClipboardFormatA
GetSubMenu
IsChild
GetMenuStringA
TranslateMDISysAccel
EqualRect
GetClassInfoA
GetCursorPos
GetKeyboardLayout
GetWindowPlacement
DrawIconEx
GetSystemMetrics
PostMessageA
GetMenuState
SetActiveWindow
SetScrollPos
SystemParametersInfoA
GetClipboardData
ShowWindow
InvalidateRect
EnumChildWindows
GetMenuItemID
IsRectEmpty
IsDialogMessageA
GetKeyboardLayoutNameA
OffsetRect
GetWindowRect
RegisterWindowMessageA
RemovePropA
DispatchMessageW
FillRect
ScreenToClient
TranslateMessage
CallNextHookEx
GetClassLongA
SetWindowTextA
IsWindowVisible
SendMessageW
FrameRect
CharLowerBuffA
DestroyCursor
MsgWaitForMultipleObjects
GetDC
CheckMenuItem
EnableMenuItem
SetFocus
OemToCharA
MoveWindow
DefMDIChildProcA
MessageBoxA
CreatePopupMenu
GetForegroundWindow
IsZoomed
CharNextW
GetClassNameA
SetWindowsHookExA
GetKeyNameTextA
GetMessagePos
SetMenu
SetClassLongA
DestroyMenu
DrawFrameControl
PeekMessageW
ClientToScreen
KillTimer
ShowScrollBar
GetWindowLongA
MessageBoxA
EnableWindow
GetCursor
DrawTextA
TranslateMDISysAccel
SetScrollInfo
EnumThreadWindows
BeginPaint
LoadStringA
DispatchMessageW
MapWindowPoints
EndPaint
GetActiveWindow
GetFocus
GetMenuItemInfoA
SetWindowPos
AdjustWindowRectEx
GetClassLongA
MsgWaitForMultipleObjects
EnableScrollBar
UnregisterClassA
DestroyWindow
SetFocus
LoadCursorA
TranslateMessage
SetWindowsHookExA
KillTimer
TrackPopupMenu
SetScrollRange
CreateIcon
UpdateWindow
GetIconInfo
GetScrollPos
LoadKeyboardLayoutA
RemoveMenu
RegisterClipboardFormatA
PostMessageA
IsIconic
GetSysColorBrush
ShowScrollBar
CheckMenuItem
GetClassInfoA
InflateRect
GetSystemMetrics
PtInRect
GetMenuItemID
SetWindowLongW
wsprintfA
ScreenToClient
EmptyClipboard
GetParent
SetClassLongA
ShowWindow
RedrawWindow
EnumWindows
GetKeyNameTextA
CallWindowProcA
WaitMessage
FindWindowA
SetPropA
GetKeyboardState
InsertMenuA
OffsetRect
UnhookWindowsHookEx
DestroyMenu
DispatchMessageA
InsertMenuItemA
PeekMessageW
DrawIcon
RegisterClassA
GetClientRect
GetKeyboardLayout
RemovePropA
ActivateKeyboardLayout
DefMDIChildProcA
CharToOemA
DrawEdge
MapVirtualKeyA
PostQuitMessage
SetForegroundWindow
SetWindowTextA
DrawMenuBar
GetSubMenu
IsWindow
SetWindowLongA
DrawFrameControl
SetCursor
EnumChildWindows
GetWindowLongA
SetClipboardData
IsRectEmpty
DefFrameProcA
ChildWindowFromPoint
IsChild
GetWindow
IsWindowEnabled
GetClipboardData
GetMenu
DestroyCursor
SetActiveWindow
SetScrollPos
DefWindowProcA
ScrollWindow
GetMessagePos
GetSysColor
GetWindowThreadProcessId
DestroyIcon
GetScrollInfo
GetWindowTextA
GetKeyState
GetMenuState
ReleaseCapture
IsDialogMessageA
SetMenu
DrawAnimatedRects
SystemParametersInfoA
GetWindowPlacement
InvalidateRect
MoveWindow
CreatePopupMenu
CloseClipboard
EnableMenuItem

gdi32

CreateBrushIndirect
SelectPalette
CreateDIBitmap
GetPaletteEntries
GetRgnBox
GetClipBox
CreatePalette
BitBlt
GetDCOrgEx
CreateDIBitmap
GetDIBits
SetBkColor
GetBitmapBits

comdlg32

GetSaveFileNameA
FindTextA
GetSaveFileNameA
FindTextA
GetOpenFileNameA
GetOpenFileNameA
FindTextA
ChooseColorA
GetFileTitleA
GetSaveFileNameA
GetFileTitleA
GetSaveFileNameA
ChooseColorA
GetOpenFileNameA
FindTextA
GetFileTitleA
ChooseColorA
FindTextA
GetOpenFileNameA

comctl32

ImageList_Destroy
ImageList_DrawEx
ImageList_DragShowNolock
ImageList_Create
ImageList_GetBkColor
ImageList_Remove
ImageList_Read
ImageList_Add
ImageList_Write
ImageList_Draw
ImageList_Create
ImageList_Add
ImageList_DrawEx
ImageList_Read
ImageList_Draw
ImageList_Write
ImageList_DragShowNolock
ImageList_GetBkColor
ImageList_Destroy
ImageList_Remove
ImageList_DragShowNolock
ImageList_GetBkColor
ImageList_Write

Sections

.text
Size: 69KB - Virtual size: 72KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 372KB - Virtual size: 372KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

CODE
Size: 369KB - Virtual size: 372KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 929KB - Virtual size: 932KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 16KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

BSS
Size: 512B - Virtual size: 5.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

INIT
Size: 1KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

95f723bc3fe9e373bd25e56fecee6438

Headers

File Characteristics

Imports

shlwapi

shell32

advapi32

oleaut32

ole32

msvcrt

kernel32

version

user32

gdi32

comdlg32

comctl32

Sections

.text Size: 69KB - Virtual size: 72KB

.rdata Size: 372KB - Virtual size: 372KB

CODE Size: 369KB - Virtual size: 372KB

.tls Size: 929KB - Virtual size: 932KB

DATA Size: 16KB - Virtual size: 20KB

.idata Size: 512B - Virtual size: 4KB

BSS Size: 512B - Virtual size: 5.0MB

INIT Size: 1KB - Virtual size: 4KB

.rsrc Size: 16KB - Virtual size: 20KB

.text
Size: 69KB - Virtual size: 72KB

.rdata
Size: 372KB - Virtual size: 372KB

CODE
Size: 369KB - Virtual size: 372KB

.tls
Size: 929KB - Virtual size: 932KB

DATA
Size: 16KB - Virtual size: 20KB

.idata
Size: 512B - Virtual size: 4KB

BSS
Size: 512B - Virtual size: 5.0MB

INIT
Size: 1KB - Virtual size: 4KB

.rsrc
Size: 16KB - Virtual size: 20KB