9759fb1a96aa3325b387acb919cb8768_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

9759fb1a96aa3325b387acb919cb8768_JaffaCakes118
Size

764KB
MD5

9759fb1a96aa3325b387acb919cb8768
SHA1

dbef8a2bd91f540b2c7d1757705657d8f133b0ef
SHA256

585eff8285aa2cbb8653e28eba1b39c9aad06d6cf373c84c134bb51ff6ffe8a8
SHA512

39a9127dbfa58df74b90cdf3de2a55c17ff2d538d259e18ed6745694917e44b185066458d0bc7724a9c1569a2a69618eb8ad7e3cafb6eab20c46e3da140ebff8
SSDEEP

12288:x625sWZ9Hdeyd6vJ1UoUfwAbpM3YEXA9o57PKpeLGOO/0BcHcLYxe5ngbCB:s25s7U6rHUoAbq3YPoxPKKO/AM94h

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
9759fb1a96aa3325b387acb919cb8768_JaffaCakes118

Files

9759fb1a96aa3325b387acb919cb8768_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ed02e928507d85b27e08f4f90e05afe6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\euvolqo\rdeeiad\ejeeykgace\eqeagmjfon.pdb

Imports

user32

IsWindowEnabled
SetParent
LoadBitmapW
GetClientRect
PtInRect
GetSystemMenu
LoadIconW
DestroyCursor
GetWindowDC
EndDialog
SendDlgItemMessageW
WindowFromPoint
GetDC
DestroyAcceleratorTable
IsDialogMessageW
CreateWindowExW
DrawStateW
GetClipboardData
IsChild
LoadStringW
DestroyMenu
EnableWindow
SetFocus
TranslateAcceleratorW
DispatchMessageW
RemoveMenu
FillRect
SetClipboardData
TrackPopupMenuEx
SetWindowLongW
GetWindowTextW
EndDeferWindowPos
CopyIcon
SetMenuItemBitmaps
MessageBoxW
ShowWindow
SetWindowTextW
SetRect
UnregisterClassA
CallNextHookEx
SystemParametersInfoA
ReleaseDC
DestroyIcon
EndPaint
DestroyWindow
GetWindowRect
SetForegroundWindow
DrawEdge
TranslateMessage
GetSubMenu
GetDlgCtrlID
OffsetRect
SetRectEmpty
SetWindowsHookExW
MessageBeep
IsWindow
CloseClipboard
IsWindowVisible
RegisterClassW
MoveWindow
DefWindowProcW
CopyAcceleratorTableW
CreatePopupMenu
GetSystemMetrics
UnregisterClassW
OpenClipboard
GetWindowThreadProcessId
EqualRect
SetCapture
SystemParametersInfoW
SetWindowRgn
GetMenuState
IsMenu
GetWindow
GetWindowPlacement
GetMenu
FindWindowW
GetDesktopWindow
GetNextDlgTabItem
GetKeyState
EmptyClipboard
InsertMenuW
GetSysColor
InflateRect
IsZoomed
ModifyMenuW
EnableMenuItem
SendMessageW
CreateMenu
ValidateRect
DrawIconEx
CheckMenuItem
GetDlgItem
SetTimer
LockWindowUpdate
DrawTextW
InvalidateRgn
InvalidateRect
CopyImage
LoadCursorW
GetParent
BeginPaint
UpdateWindow
LoadMenuW
KillTimer
UnhookWindowsHookEx
IntersectRect
DrawIcon
ScreenToClient
ReleaseCapture
CopyRect
GetMenuItemInfoW
DeleteMenu
SetCursor
AppendMenuW
GetScrollPos
PeekMessageW
GetWindowLongW
GetDCEx
LoadAcceleratorsW
IsIconic
CharUpperW
WinHelpW
GetAsyncKeyState
GetMenuItemID
GetActiveWindow
GetMessagePos
SetMenuItemInfoW
CallWindowProcW
RegisterClassExW
RegisterClipboardFormatW
ClientToScreen
BeginDeferWindowPos
PostQuitMessage
MapWindowPoints

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA
VerLanguageNameA

advapi32

RegOpenKeyExA
RegDeleteValueA

oleaut32

LoadTypeLi

kernel32

InterlockedDecrement
WriteConsoleA
SetLastError
LoadLibraryA
LoadLibraryW
InterlockedIncrement
GetStartupInfoW
WriteConsoleW
CompareStringW
GetModuleFileNameW
GetSystemTimeAsFileTime
GetCurrentProcess
GetFileType
LocalFree
TlsFree
GetOEMCP
UnhandledExceptionFilter
GetCurrentProcessId
LCMapStringW
GetModuleFileNameA
HeapAlloc
GetLocaleInfoA
RaiseException
GetCommandLineW
HeapFree
SetHandleCount
GetCurrentThreadId
QueryPerformanceCounter
TlsAlloc
FreeEnvironmentStringsW
IsValidCodePage
GetStringTypeW
GetConsoleCP
GetEnvironmentStringsW
EnterCriticalSection
GetModuleHandleA
CreateFileA
TerminateProcess
GetProcAddress
HeapReAlloc
VirtualAlloc
LCMapStringA
ExitProcess
GetTickCount
GetLastError
VirtualQuery
GetTimeZoneInformation
Sleep
GetACP
SetFilePointer
GetCPInfo
GetDateFormatA
IsDebuggerPresent
GetStringTypeA
GetConsoleMode
DeleteCriticalSection
TlsSetValue
FlushFileBuffers
HeapSize
GetConsoleOutputCP
MultiByteToWideChar
CloseHandle
GetStdHandle
LeaveCriticalSection
VirtualFree
InterlockedExchange
SetUnhandledExceptionFilter
WaitForSingleObject
CreateMutexW
ReadFile
RtlUnwind
WriteFile
GetTimeFormatA
SetEnvironmentVariableA
GetStartupInfoA
TlsGetValue
GetModuleHandleW
InitializeCriticalSectionAndSpinCount
SetStdHandle
WideCharToMultiByte
HeapCreate
CompareStringA

comctl32

CreatePropertySheetPageA
_TrackMouseEvent
InitCommonControlsEx
ImageList_GetImageCount

gdi32

StartPage
ExtCreateRegion
CreateBitmap
SelectClipRgn
SelectObject
EndPath
SetBkMode
CreateRectRgnIndirect
BeginPath
EndDoc
SetTextColor
SetROP2
GetWindowOrgEx
GetMapMode
GetFontData
SetTextJustification
BitBlt
DeleteObject
GetDIBits
GetObjectA
FloodFill
GetBkColor
CreateFontA
GetTextExtentPoint32A
Polygon
GetGlyphOutlineA
EndPage
CreatePatternBrush
GetRegionData
MoveToEx

Sections

.text
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 484KB - Virtual size: 481KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 112KB - Virtual size: 133KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 56KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ed02e928507d85b27e08f4f90e05afe6

Headers

File Characteristics

PDB Paths

Imports

user32

version

advapi32

oleaut32

kernel32

comctl32

gdi32

Sections

.text Size: 108KB - Virtual size: 107KB

.rdata Size: 484KB - Virtual size: 481KB

.data Size: 112KB - Virtual size: 133KB

.rsrc Size: 56KB - Virtual size: 54KB

.text
Size: 108KB - Virtual size: 107KB

.rdata
Size: 484KB - Virtual size: 481KB

.data
Size: 112KB - Virtual size: 133KB

.rsrc
Size: 56KB - Virtual size: 54KB