a1ba0ed26b746edcd7fdee2ab046e345_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a1ba0ed26b746edcd7fdee2ab046e345_JaffaCakes118
Size

120KB
MD5

a1ba0ed26b746edcd7fdee2ab046e345
SHA1

efb8cdfdc27dcf9b76c9567a28f9cf0dc4433c28
SHA256

e700672040399ee98fb8d6abfef72695dec7e694ca703b59db151e213365905a
SHA512

b38525a1edea34ddde086641ddbf0c371626538ed01f5c9499d9057c48175315134cf933b0249959eb4714eaca1fd1ed706795c63a3eb0f43ea5ba89010b12ff
SSDEEP

3072:OGSz+IOJW7ERs4BIv4ajr0e2wvdZ1/bTPmnh59m:UEJa4xIv4aR2SLW79m

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a1ba0ed26b746edcd7fdee2ab046e345_JaffaCakes118

Files

a1ba0ed26b746edcd7fdee2ab046e345_JaffaCakes118
.exe windows:5 windows x86 arch:x86

e21834bc97c26863febd29a399396c39

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

Shell_NotifyIconA
ExtractIconW
SHCreateShellItem
SHBindToParent
ShellExecuteW
SHGetSpecialFolderPathW
DragQueryFileW
ExtractAssociatedIconExW
ShellAboutW
SHGetFileInfoW
SHGetInstanceExplorer
SHBrowseForFolderW
Shell_NotifyIconW
SHGetDataFromIDListW
SHGetPathFromIDListW
ExtractIconExW
SHGetFolderLocation
SHFileOperationW
SHPathPrepareForWriteW
SHGetPathFromIDListA
ShellExecuteExW
ShellExecuteA
SHAppBarMessage
SHChangeNotify
SHGetDesktopFolder
SHGetFolderPathW
SHSetLocalizedName
SHGetFolderPathAndSubDirW
SHGetSpecialFolderLocation

ddraw

DirectDrawCreate

ntdll

RtlAddAccessAllowedObjectAce
RtlAdjustPrivilege
NtSetIoCompletion
NtQuerySemaphore

advapi32

OpenThreadToken
RegQueryValueExW
RegOpenKeyExA
RegSetValueExA
CryptAcquireContextW
ConvertSidToStringSidW
ImpersonateSelf
RegEnumKeyExW
RegCloseKey
RegQueryValueW
RegEnumValueW
UnregisterTraceGuids
GetTraceEnableFlags
GetTraceEnableLevel
SetTokenInformation
CreateProcessAsUserW
RegDeleteValueW
GetTraceLoggerHandle
RegQueryInfoKeyW
RegEnumValueA
SetThreadToken
IsTextUnicode
RegDeleteValueA
RegQueryValueExA
RegCreateKeyExW
CryptCreateHash
CryptGetHashParam
GetTokenInformation
RegCreateKeyA
RegEnumKeyW
GetLengthSid
ConvertStringSecurityDescriptorToSecurityDescriptorW
CryptHashData
RegSetValueExW
DuplicateTokenEx
CryptDestroyHash
TraceMessage
OpenProcessToken
GetUserNameW
RegOpenKeyExW
ConvertStringSidToSidW
RegDeleteKeyA
RegOpenCurrentUser
RegCreateKeyExA
RegisterTraceGuidsW
RegDeleteKeyW
TraceEvent
CryptReleaseContext
RegOpenKeyW

rtutils

TraceDumpExA
TraceDumpExW

user32

GetDC
MessageBoxIndirectA
PostMessageA
PostMessageW
CheckMenuItem
SetWindowLongA
FindWindowA
RegisterClipboardFormatW
EndDialog
IsWindowUnicode
SetMenuDefaultItem
GetWindowRect
AttachThreadInput
DialogBoxParamW
ShowOwnedPopups
DeleteMenu
MapVirtualKeyW
OffsetRect
GetKeyNameTextW
SetPropA
GetDlgItemTextW
WaitMessage
GetAsyncKeyState
DdeCreateDataHandle
SetDlgItemInt
CopyImage
GetMenuState
PostThreadMessageA
AdjustWindowRectEx
IsIconic
GetClassWord
CharNextW
SetMenuItemBitmaps
EnumDesktopWindows
SetWindowPos
RegisterClassW
GetLastActivePopup
GetClientRect
GetDlgCtrlID
LoadStringA
GetMenuDefaultItem
GetMessageW
RegisterClipboardFormatA
CallNextHookEx
DrawFocusRect
SetWindowTextW
AllowSetForegroundWindow
ShowCaret
SetActiveWindow
SetMenu
CharNextA
GetSystemMetrics
MessageBoxW
DdeFreeDataHandle
DefWindowProcW
InsertMenuItemW
DrawTextW
RegisterWindowMessageW
GetWindowInfo
GetClassInfoW
SetWindowsHookExW
UnregisterClassW
GetCursor
GetClassNameW
CharLowerBuffW
GetDesktopWindow
MonitorFromPoint
SystemParametersInfoA
SetWindowPlacement
RemovePropW
GetClipboardFormatNameW
CreateWindowExW
SendMessageTimeoutW
IsRectEmpty
InsertMenuW
GetProcessWindowStation
EnumDisplaySettingsW
SetCapture
EnumThreadWindows
GetWindowThreadProcessId
TrackPopupMenu
FindWindowW
GetCapture
GetSysColor
GetDlgItem
ChangeClipboardChain
GetCursorPos
AdjustWindowRect
GetKeyState
IsMenu
CreateDialogParamW
RemovePropA
DdeUninitialize
IsDlgButtonChecked
GetWindow
TrackPopupMenuEx
GetMenuItemID
MessageBeep
DialogBoxParamA
UpdateWindow
LoadIconW
SendDlgItemMessageW
GetWindowRgnBox
CharUpperW
GetShellWindow
SendNotifyMessageW
FillRect
SetTimer
MessageBoxIndirectW
ReleaseCapture
UnhookWindowsHookEx
SetWindowRgn
DdeFreeStringHandle
LoadImageW
RegisterClassExW
IsWindowEnabled
GetMessageTime
SetClipboardData
WindowFromPoint
EmptyClipboard
LoadAcceleratorsW
GetClassInfoExW
MonitorFromWindow
SetPropW
LoadBitmapW
GetPropW
CopyRect
GetMenuItemInfoA
NotifyWinEvent
SendMessageW
GetActiveWindow
GetComboBoxInfo
IsHungAppWindow
ShowWindow
SetParent
SetRect
GetMenuStringW
CharPrevA
CheckDlgButton
MsgWaitForMultipleObjects
SendMessageA
DispatchMessageA
ShowScrollBar
GetPropA
GetWindowTextLengthW
IsChild
SetClipboardViewer
BeginDeferWindowPos
DestroyAcceleratorTable
MonitorFromRect
FindWindowExW
GetForegroundWindow
TranslateAcceleratorW
GetLastInputInfo
UpdateLayeredWindow
DdeConnect
AnimateWindow
CreateMenu
PeekMessageW
DrawEdge
PostQuitMessage
IntersectRect
LoadMenuW
SetWindowLongW
RedrawWindow
SetRectEmpty
DefWindowProcA
PeekMessageA
DdeDisconnect
GetKeyboardLayout
DrawFrameControl
GetClassLongW
DdeNameService
GetSysColorBrush
GetWindowPlacement
IsWindowVisible
LoadCursorW
EnumWindows
RegisterWindowMessageA
KillTimer
CopyIcon
GetMenuItemInfoW
LoadCursorA
TranslateMessage
CallWindowProcW
SetDlgItemTextW
SetMenuItemInfoW
GetMessagePos
RemoveMenu
SetCursorPos
LoadStringW
BeginPaint
VkKeyScanExW
GetNextDlgTabItem
GetDoubleClickTime
MoveWindow
CallMsgFilterW
DrawIconEx
GetIconInfo
AppendMenuW
ReleaseDC
SetCursor
GetAncestor
CharPrevW
GetSystemMenu
GetSubMenu
DestroyIcon
WaitForInputIdle
GetWindowTextW
DestroyMenu
SystemParametersInfoW
CheckMenuRadioItem
CreateIconIndirect
OpenClipboard
SendMessageTimeoutA
CreatePopupMenu
DdeGetData
GetDialogBaseUnits
IsDialogMessageW
SetForegroundWindow
GetFocus
UnionRect
EndDeferWindowPos
CloseClipboard
GetWindowDC
DispatchMessageW
DdeQueryStringW
GetParent
GetMenuItemCount
MessageBoxExA
SetScrollInfo
EnableMenuItem
TrackMouseEvent
wsprintfW
DialogBoxIndirectParamW
HideCaret
MsgWaitForMultipleObjectsEx
ScreenToClient
MapDialogRect
InflateRect
EqualRect
PtInRect
SetScrollPos
GetMessageA
SetFocus
ClientToScreen
PostThreadMessageW
CheckRadioButton
ChildWindowFromPoint
DestroyWindow
IsWindow
IsCharAlphaNumericW
GetMonitorInfoW
DdeCreateStringHandleW
EndPaint
WinHelpW
EnumChildWindows
DrawTextExW
EnableWindow
DeferWindowPos
DialogBoxIndirectParamA
GetWindowLongW
CharLowerW
InvalidateRect
GetTopWindow
EndMenu
LockSetForegroundWindow
GetWindowLongA
MessageBoxExW
GetClipboardData
DdeInitializeW
MapWindowPoints
DdeClientTransaction
GetScrollInfo

gdi32

Rectangle
SetMapMode
CreateSolidBrush
CreatePolygonRgn
SetBkMode
GetClipBox
GetObjectW
GetRegionData
MoveToEx
IntersectClipRect
GetTextExtentPointW
CreateFontIndirectA
PatBlt
GetTextExtentExPointI
GetTextColor
SetTextColor
SetLayout
CloseEnhMetaFile
GetBkMode
GetDIBits
GetTextCharset
SetBkColor
CreateMetaFileW
CreateEnhMetaFileA
TextOutA
StretchDIBits
CreateHalftonePalette
CreatePen
SetTextAlign
GetTextAlign
SetWindowOrgEx
SelectPalette
GetGlyphIndicesW
GetTextExtentPoint32A
ExtTextOutW
DeleteObject
LineTo
CreateFontIndirectW
ExtCreateRegion
SetViewportExtEx
RealizePalette
GetDCOrgEx
GetPixel
CreateCompatibleBitmap
DeleteDC
EqualRgn
LPtoDP
CreateDIBSection
CombineRgn
CreateRectRgnIndirect
DeleteEnhMetaFile
GetTextMetricsW
CreatePatternBrush
TextOutW
GetTextExtentPoint32W
StretchBlt
SetStretchBltMode
CreateDIBPatternBrushPt
CreateFontW
CreateDCW
SetRectRgn
CreateBitmap
GetSystemPaletteEntries
SetDCPenColor
RestoreDC
CreateDCA
GetDeviceCaps
CreateRectRgn
RectVisible
CloseMetaFile
GetBkColor
SetWindowExtEx
CreateCompatibleDC
SetPaletteEntries
GetLayout
OffsetRgn
GetPaletteEntries
SetBrushOrgEx
GetStockObject
PlayEnhMetaFile
SaveDC
BitBlt
CreatePalette
SetViewportOrgEx
GetBrushOrgEx
OffsetWindowOrgEx
GetObjectA
GetRgnBox
SelectObject

kernel32

VirtualAlloc

uxtheme

IsThemeActive
GetThemeMetric
DrawThemeParentBackground
GetThemeAppProperties
GetThemeFont
IsAppThemed
OpenThemeData
SetWindowTheme
GetThemeBackgroundExtent
CloseThemeData
GetThemePartSize
GetThemeColor
DrawThemeBackground
GetThemeMargins
GetThemeBackgroundContentRect

psapi

GetProcessImageFileNameW

Sections

.text
Size: 1024B - Virtual size: 1004B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 54KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 40KB - Virtual size: 232KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 12KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e21834bc97c26863febd29a399396c39

Headers

DLL Characteristics

File Characteristics

Imports

shell32

ddraw

ntdll

advapi32

rtutils

user32

gdi32

kernel32

uxtheme

psapi

Sections

.text Size: 1024B - Virtual size: 1004B

.rsrc Size: 10KB - Virtual size: 10KB

.rdata Size: 54KB - Virtual size: 54KB

.data Size: 40KB - Virtual size: 232KB

.idata Size: 12KB - Virtual size: 32KB

.text
Size: 1024B - Virtual size: 1004B

.rsrc
Size: 10KB - Virtual size: 10KB

.rdata
Size: 54KB - Virtual size: 54KB

.data
Size: 40KB - Virtual size: 232KB

.idata
Size: 12KB - Virtual size: 32KB