a07d336e90b58df06341ed2f26e43ba9_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a07d336e90b58df06341ed2f26e43ba9_JaffaCakes118
Size

45KB
MD5

a07d336e90b58df06341ed2f26e43ba9
SHA1

bdafe0eae7b4103b7e9a30d0204826a3e7311c87
SHA256

a6f67dc05295a43e110cf3cf7ba79c7f34a43bfe1cf83ceb66d3e048c1992a08
SHA512

c2b048c27fe8db3898eb04b21cba7b4f02de057ef29de4ac06927899897adc6b3b70a2d20a52c3a62a6dc8efb4261d66151079bf4a9f65da9e1cf738883e324d
SSDEEP

768:oWFNwVCDUXu+svwGSMvI+ZVXpXgSp4w3dWuU1g/p685vkbLUnTBvR79tFjzkv3Cq:oW3f4XuV+MvfZV5h/W6UlbLcd9tVz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a07d336e90b58df06341ed2f26e43ba9_JaffaCakes118

Files

a07d336e90b58df06341ed2f26e43ba9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

ac33c99ba1f01fd7039be79c0418d831

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

InternetQueryDataAvailable
InternetReadFile
InternetGetCookieW
InternetSetFilePointer
FtpRemoveDirectoryW
InternetCanonicalizeUrlW
InternetErrorDlg
FtpFindFirstFileW
FtpRenameFileW
FtpGetFileW
FtpOpenFileW
InternetOpenW
GopherGetAttributeW
InternetCrackUrlW
FtpSetCurrentDirectoryW
InternetQueryOptionW
HttpEndRequestW
GopherCreateLocatorW
InternetSetCookieW
InternetCloseHandle
GopherFindFirstFileW
HttpAddRequestHeadersW
InternetSetOptionExW
HttpSendRequestExW
GopherOpenFileW
InternetSetStatusCallbackW
InternetWriteFile
FtpDeleteFileW
HttpQueryInfoW
InternetOpenUrlW
HttpOpenRequestW
InternetConnectW
HttpSendRequestW
FtpPutFileW
InternetFindNextFileW
FtpGetCurrentDirectoryW
InternetGetLastResponseInfoW
FtpCreateDirectoryW

gdi32

SetTextColor
SetTextCharacterExtra
OffsetRgn
DeleteObject
SetWindowExtEx
GetTextColor
SetPolyFillMode
DPtoLP
StartPage
SetBkColor
GetPixel
DeleteDC
CreateFontW
CreateSolidBrush
CreateRectRgnIndirect
ExtCreatePen
SelectClipRgn
EndPage
PolyDraw
GetClipBox
CreateBitmap
SaveDC
GetStockObject
GetClipRgn
UnrealizeObject
SetROP2
CreateMetaFileW
CreateDCW
CreateHatchBrush
LPtoDP
CreatePen
ExtSelectClipRgn
PlayMetaFile
SetViewportExtEx
SetStretchBltMode
CreateRectRgn
CreatePalette
OffsetWindowOrgEx
DeleteMetaFile
CreateCompatibleDC
SetColorAdjustment
GetWindowOrgEx
RectVisible
PolylineTo
ScaleWindowExtEx
SetBrushOrgEx
GetROP2
GetObjectType
GetTextFaceW
GetWindowExtEx
GetTextExtentPoint32A
GetTextExtentPoint32W
GetNearestColor
GetCurrentPositionEx
GetViewportOrgEx
OffsetViewportOrgEx
PolyBezierTo
IntersectClipRect
StretchDIBits
SetMapMode
SetTextAlign
SetWindowOrgEx
SelectClipPath
GetTextAlign
CreateFontIndirectW
LineTo
CopyMetaFileW
RealizePalette
CreateDIBPatternBrushPt
CloseMetaFile
SetRectRgn
PtVisible
TextOutW
ExcludeClipRect
GetObjectW
SetBkMode
OffsetClipRgn
EnumMetaFile
RestoreDC
GetBkMode
MoveToEx
CreateCompatibleBitmap
SetAbortProc
StartDocW
CreatePatternBrush
PlayMetaFileRecord
ExtTextOutW
BitBlt
GetBkColor
SetMapperFlags
GetCharWidthW
Rectangle
GetPaletteEntries
GetPolyFillMode
Escape
GetViewportExtEx
SelectObject
GetTextMetricsW
GetStretchBltMode
SetArcDirection
EnumFontFamiliesExW
EndDoc
SetViewportOrgEx
ScaleViewportExtEx
PatBlt
GetDeviceCaps
EnumFontFamiliesW
ArcTo
GetMapMode
CombineRgn
AbortDoc
SetTextJustification
SelectPalette

activeds

FreeADsMem

ole32

StringFromGUID2
CreateStreamOnHGlobal
OleRegGetUserType
OleInitialize
SetConvertStg
WriteFmtUserTypeStg
RevokeDragDrop
CoFreeUnusedLibraries
StgCreateDocfile
GetRunningObjectTable
OleGetIconOfClass
CreateDataCache
OleCreateMenuDescriptor
OleIsCurrentClipboard
RegisterDragDrop
OleSetContainedObject
StgCreateDocfileOnILockBytes
OleCreateFromData
OleRegGetMiscStatus
GetHGlobalFromILockBytes
OleCreateLinkFromData
CoRevokeClassObject
CLSIDFromString
GetClassFile
OleDestroyMenuDescriptor
OleDuplicateData
OleLoadFromStream
OleCreateFromFile
OleSaveToStream
CoDisconnectObject
CoRegisterClassObject
StringFromCLSID
CoTaskMemAlloc
WriteClassStm
OleRegEnumVerbs
OleSetClipboard
CreateILockBytesOnHGlobal
CoRegisterMessageFilter
WriteClassStg
ReleaseStgMedium
StgOpenStorage
CreateDataAdviseHolder
DoDragDrop
OleGetClipboard
CreateItemMoniker
CoCreateInstance
OleTranslateAccelerator
OleSetMenuDescriptor
CLSIDFromProgID
OleUninitialize
CreateGenericComposite
OleIsRunning
OleCreate
IsAccelerator
CoInitialize
CoLockObjectExternal
ReadClassStg
CoTreatAsClass
OleQueryLinkFromData
CoUninitialize
OleFlushClipboard
CoGetClassObject
OleCreateStaticFromData
CreateFileMoniker
StgIsStorageFile
OleQueryCreateFromData
OleLockRunning
OleLoad
OleCreateLinkToFile
StgOpenStorageOnILockBytes
CreateBindCtx
OleRun
CreateOleAdviseHolder
CoTaskMemFree
OleSave
ReadFmtUserTypeStg
ReadClassStm
CoGetMalloc

user32

CheckMenuItem
GetTopWindow
DefMDIChildProcW
IsWindowVisible
GetMessageTime
PostQuitMessage
LockWindowUpdate
GetDlgCtrlID
UnionRect
BringWindowToTop
GetLastActivePopup
wsprintfW
SetTimer
EqualRect
PostThreadMessageW
GetPropW
SetActiveWindow
CharUpperW
GetMessagePos
RedrawWindow
IsRectEmpty
MoveWindow
SetRect
DispatchMessageW
DrawFocusRect
AdjustWindowRectEx
GetDlgItemTextW
GetKeyState
LoadAcceleratorsW
GrayStringW
SetDlgItemInt
DestroyIcon
SetRectEmpty
InvalidateRect
RegisterClassW
ScrollWindow
WinHelpW
SetParent
EnumChildWindows
GetSubMenu
GetClassNameW
GetMenuItemID
FillRect
WindowFromPoint
ClientToScreen
InSendMessage
CreateDialogIndirectParamW
LoadStringW
TrackPopupMenu
CheckRadioButton
DeleteMenu
BeginDeferWindowPos
LoadCursorW
PtInRect
GetTabbedTextExtentW
GetWindowPlacement
ScreenToClient
GetActiveWindow
MapWindowPoints
SetPropW
SetWindowsHookExW
SetForegroundWindow
TranslateMDISysAccel
ValidateRect
GetClassInfoW
RemovePropW
ShowWindow
GetSystemMenu
GetScrollInfo
GetDesktopWindow
IsZoomed
CharNextW
InsertMenuW
GetParent
ClipCursor
TabbedTextOutW
ScrollWindowEx
GetSysColorBrush
IsDlgButtonChecked
GetWindowRect
GetSystemMetrics
GetDCEx
SetScrollPos
MessageBoxA
GetFocus
EndPaint
MessageBeep
MapDialogRect
SendMessageW
GetWindowLongW
SystemParametersInfoW
IsClipboardFormatAvailable
EnableMenuItem
InflateRect
GetScrollPos
CallWindowProcW
DestroyMenu
SetDlgItemTextW
WaitMessage
GetMenuItemCount
GetWindowDC
GetWindowTextW
SetCursorPos
DestroyWindow
SetFocus
MessageBoxW
UnhookWindowsHookEx
PeekMessageW
ModifyMenuW
AppendMenuW
IsWindow
SetWindowTextW
OffsetRect
GetSysColor
CreateMenu
GetWindowTextLengthW
RegisterWindowMessageW
GetNextDlgGroupItem
CheckDlgButton
GetDlgItem
DefFrameProcW
EnableWindow
FrameRect
GetMenu
ShowOwnedPopups
FindWindowW
GetWindow
CopyAcceleratorTableW
IsWindowEnabled
GetWindowThreadProcessId
GetDialogBaseUnits
GetCursorPos
SetCapture
IsIconic
EndDialog
SetScrollRange
GetMenuStringW
SetWindowPos
GetScrollRange
GetForegroundWindow
DrawTextW
InvertRect
BeginPaint
ReleaseCapture
GetNextDlgTabItem
wvsprintfW
LoadIconW
ReuseDDElParam
CallNextHookEx
DrawEdge
RegisterClipboardFormatW
GetMessageW
CreateWindowExW
UnregisterClassW
TranslateMessage
ShowScrollBar
GetMenuState
LoadMenuW
WindowFromDC
GetDC
UnpackDDElParam
PostMessageW
IntersectRect
IsDialogMessageW
SetMenu
SetScrollInfo
KillTimer
SetWindowContextHelpId
SendDlgItemMessageA
GetTabbedTextExtentA
SetCursor
TranslateAcceleratorW
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
EndDeferWindowPos
DeferWindowPos
IsChild
GetAsyncKeyState
DefWindowProcW
MsgWaitForMultipleObjects
InvalidateRgn
GetClientRect
SetWindowLongW
LoadBitmapW
CopyRect
SetWindowPlacement
SendDlgItemMessageW
DestroyCursor
ReleaseDC
GetCapture
DrawMenuBar
CountClipboardFormats
RemoveMenu
SystemParametersInfoA
GetDlgItemInt
UpdateWindow

advapi32

RegCreateKeyExW
RegCreateKeyW
RegSetValueW
RegQueryValueExW
SetFileSecurityW
GetFileSecurityW
RegDeleteValueW
RegEnumKeyW
RegSetValueExW
RegOpenKeyExW
RegDeleteKeyW
RegOpenKeyW
RegQueryValueW
RegCloseKey

msvcrt

gmtime
malloc
_initterm
wcscpy
_wtol
_msize
wcschr
__doserrno
_wcslwr
wcsftime
_wcsrev
_purecall
_adjust_fdiv
_itow
fflush
wcsstr
modf
_endthreadex
fgetws
ftell
wcscspn
fclose
fputws
swprintf
wcstol
_onexit
fwrite
wcslen
_fdopen
_wcsnicmp
wcspbrk
fread
_get_osfhandle
_wcsdup
_ltow
_wcsupr
calloc
wcsspn
localtime
__argc
free
_except_handler3
_ultow
wcsncpy
_expand
wcstod
_wsplitpath
wcscmp
ceil
_wfullpath
realloc
__wargv
floor
fseek
clearerr
iswdigit
_snwprintf
vswprintf
_wtoi
wcsncmp
_open_osfhandle
abort
time
__dllonexit
_CxxThrowException
wcstoul
__CxxFrameHandler
mktime
_beginthreadex
wcsrchr
memmove
iswspace

kernel32

GetVersionExA
InterlockedIncrement
ResumeThread
Sleep
QueryPerformanceCounter
GetDiskFreeSpaceW
lstrlenW
GlobalFlags
VirtualAlloc
GlobalAddAtomW
lstrcpyW
GetCurrentDirectoryW
WritePrivateProfileStringW
GetTickCount
GlobalDeleteAtom
UnhandledExceptionFilter
LocalFileTimeToFileTime
WaitForSingleObject
LockFile
SetLastError
GlobalFree
WaitForMultipleObjects
MultiByteToWideChar
TlsAlloc
FreeResource
GetVolumeInformationW
GlobalReAlloc
SetEvent
GetModuleHandleA
WriteFile
InterlockedDecrement
GetSystemDirectoryA
GetFileTime
lstrcpyA
FileTimeToSystemTime
SizeofResource
SuspendThread
SetFileTime
CloseHandle
lstrcmpW
MoveFileW
DuplicateHandle
FindResourceW
VirtualQuery
GetTempFileNameW
LocalFree
LoadLibraryA
MulDiv
GetFileSize
VirtualProtect
GetPrivateProfileStringW
FormatMessageW
DelayLoadFailureHook
lstrcpynW
GetFileAttributesW
GetProcAddress
FreeConsole
FindFirstFileW
GetModuleHandleW
lstrcmpA
LocalReAlloc
CopyFileW
FileTimeToLocalFileTime
DeleteCriticalSection
GetFullPathNameW
GetCurrentThread
lstrcatW
GetUserDefaultLCID
CreateFileW
LocalAlloc
GetPrivateProfileIntW
GetCurrentProcessId
TerminateProcess
FlushFileBuffers
WideCharToMultiByte
FindNextFileW
lstrcmpiA
SetFileAttributesW
GlobalHandle
CreateEventW
GetProcessVersion
GlobalFindAtomW
lstrcmpiW
GetVersionExW
lstrcatA
InitializeCriticalSection
SystemTimeToFileTime
CreateMutexW
InterlockedCompareExchange
LeaveCriticalSection
GlobalGetAtomNameW
GetSystemTimeAsFileTime
GlobalLock
GetModuleFileNameW
UnlockFile
GetThreadLocale
TlsFree
LocalLock
SetUnhandledExceptionFilter
OutputDebugStringW
LoadLibraryW
FindResourceExW
CreateSemaphoreW
SearchPathW
GetShortPathNameW
GetCurrentThreadId
GetStringTypeExW
GetVersion
IsDBCSLeadByte
GetTempPathW
GetProfileIntW
ReleaseSemaphore
SetFilePointer
GlobalSize
lstrcpynA
SetEndOfFile
FindClose
FreeLibrary
LocalUnlock
GetSystemInfo
GetCurrentProcess
LockResource
SetThreadPriority
lstrlenA
GlobalAlloc
TlsSetValue
SetErrorMode
GlobalUnlock
DeleteFileW
ReadFile
LoadResource
GetLastError
EnterCriticalSection
LoadLibraryExA
ReleaseMutex

dciman32

DCIEnum

Sections

.textbss
Size: - Virtual size: 144KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 512B - Virtual size: 428B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

ac33c99ba1f01fd7039be79c0418d831

Headers

File Characteristics

Imports

wininet

gdi32

activeds

ole32

user32

advapi32

msvcrt

kernel32

dciman32

Sections

.textbss Size: - Virtual size: 144KB

.text Size: 512B - Virtual size: 428B

.idata Size: 16KB - Virtual size: 16KB

.data Size: 26KB - Virtual size: 26KB

.rdata Size: 512B - Virtual size: 32B

.textbss
Size: - Virtual size: 144KB

.text
Size: 512B - Virtual size: 428B

.idata
Size: 16KB - Virtual size: 16KB

.data
Size: 26KB - Virtual size: 26KB

.rdata
Size: 512B - Virtual size: 32B