a6e78ffaad8be1fc94eab4e383a95095_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a6e78ffaad8be1fc94eab4e383a95095_JaffaCakes118
Size

236KB
MD5

a6e78ffaad8be1fc94eab4e383a95095
SHA1

354cb7d00c68e905ab1f96bca3da5b259320ed2e
SHA256

48848501d85f015f328d46219c4c102e75d77539b892ac0e9445789aafded944
SHA512

e37f966ef67920eb5beac07579df65b80ff4d1e6a5595d35a528bef577d78724a7b5156bb5c77636f9942279abf83b968c6688b50aabe7a3cbc795a8809eddde
SSDEEP

6144:42pt4fF54IF76gfD42x0yqGBFWZqx0AzwBlyy:tpaN5VfD4gOGeIMey

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a6e78ffaad8be1fc94eab4e383a95095_JaffaCakes118

Files

a6e78ffaad8be1fc94eab4e383a95095_JaffaCakes118
.exe windows:4 windows x86 arch:x86

06f982a4e4019d93899d6c6a4b7d40b5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\caqsbrxi\dog\glvdlupoe.pdb

Imports

ole32

CLSIDFromProgID
CreateBindCtx
CreateDataAdviseHolder
CoGetClassObject
GetHGlobalFromILockBytes
StringFromGUID2
StringFromCLSID
CoFreeUnusedLibraries
CoLockObjectExternal
OleLoad
OleSetClipboard

gdi32

PtInRegion
GetRegionData
SelectObject
CreateCompatibleDC
AbortDoc
ExtCreatePen
SaveDC
GetObjectW
SetTextColor
PtVisible
SetPolyFillMode
SetWindowExtEx
DeleteObject
EndDoc
CreateRectRgn
IntersectClipRect
GetTextMetricsW
CreateDCW
DeleteDC
GdiFlush
SetPixel
GetDeviceCaps
ExtSelectClipRgn
GetDIBits
ScaleViewportExtEx
SetROP2
MoveToEx
CreateFontIndirectW
SelectClipRgn
RoundRect
RestoreDC
CombineRgn
SetViewportOrgEx
SetBkColor
SelectPalette
RectInRegion
CreatePatternBrush
BitBlt
CreateSolidBrush
GetClipBox
SetWindowOrgEx
ScaleWindowExtEx
CreateEllipticRgn
DPtoLP
CreateBitmap
Polygon
StartPage
Arc
CreateBrushIndirect
SetViewportExtEx
CreatePolygonRgn
EndPage
LineTo
CreatePalette
SetMapMode
CreatePen
ExtFloodFill
CreateDIBSection
ExtTextOutW
GetPaletteEntries
GetTextExtentPoint32W
GetBkMode
Polyline
SetBkMode
GetStockObject
GetPixel
Ellipse
Escape
TextOutW
SetAbortProc
StartDocW
GetRgnBox
StretchDIBits
SetStretchBltMode
CreateCompatibleBitmap

advapi32

RegOpenKeyA
RegCreateKeyExA
RegQueryValueA
RegQueryValueExA
RegEnumKeyA
RegOpenKeyExA
RegCloseKey

kernel32

CreateProcessW
GetVersionExA
IsBadCodePtr
QueryPerformanceCounter
FileTimeToSystemTime
CompareStringW
RaiseException
GlobalReAlloc
MultiByteToWideChar
GetCommandLineW
GetThreadLocale
GetStartupInfoW
HeapFree
InterlockedExchange
GetTimeZoneInformation
GetEnvironmentStringsW
GlobalUnlock
FlushFileBuffers
CreateDirectoryW
HeapSize
GetStringTypeW
IsBadReadPtr
SetUnhandledExceptionFilter
SetEnvironmentVariableA
LocalFree
GetModuleHandleA
GetModuleFileNameA
CreateFileA
SizeofResource
CreateMutexW
GetCurrentThreadId
FindClose
HeapDestroy
TlsAlloc
TlsSetValue
GetCurrentProcess
HeapCreate
GetFileType
LeaveCriticalSection
IsDebuggerPresent
TlsFree
VirtualAlloc
GetLastError
LockResource
GetStdHandle
GetFullPathNameW
GetWindowsDirectoryW
WideCharToMultiByte
LocalAlloc
GetProcessHeap
GetFileSize
GetLocaleInfoA
GetCurrentProcessId
FreeLibrary
SetHandleCount
FindFirstFileW
SetStdHandle
MapViewOfFile
GlobalSize
GetVersion
FreeEnvironmentStringsW
TlsGetValue
GetStringTypeA
LoadLibraryA
GetTickCount
CompareStringA
GetEnvironmentStrings
VirtualFree
WaitForSingleObject
GlobalLock
TerminateProcess
FreeEnvironmentStringsA
ExitProcess
InitializeCriticalSection
CopyFileA
DeleteCriticalSection
lstrcmpiA
WriteFile
EnterCriticalSection
VirtualQuery
SetLastError
GetModuleFileNameW
InterlockedDecrement
LocalFileTimeToFileTime
LoadLibraryW
RtlUnwind
UnhandledExceptionFilter
LoadResource
SetErrorMode
lstrlenW
CloseHandle
HeapReAlloc
Sleep
GetLocalTime
LCMapStringW
InterlockedIncrement
LCMapStringA
GetSystemTime
GlobalFree
IsBadWritePtr
FlushInstructionCache
GetCommandLineA
ReadFile
DuplicateHandle
HeapAlloc
lstrcmpA
ResumeThread
GlobalDeleteAtom
GetSystemTimeAsFileTime
GetModuleHandleW
GetCPInfo
CreateProcessA
SetEndOfFile
GetStartupInfoA
GetProcAddress
SetFilePointer

user32

SetCapture
GetActiveWindow
PostQuitMessage
SystemParametersInfoW
ScreenToClient
GetDlgItemTextW
DestroyMenu
SetFocus
EndPaint
GrayStringW
PeekMessageW
DestroyAcceleratorTable
GetDesktopWindow
SetScrollPos
PtInRect
TrackPopupMenu
GetDCEx
EnableWindow
CreateWindowExW
GetTopWindow
ReleaseDC
GetLastActivePopup
GetMenu
CallNextHookEx
InvalidateRect
DestroyWindow
MessageBoxW
SendMessageW
DrawMenuBar
TabbedTextOutW
LoadIconW
RegisterClassExW
DefWindowProcW
CopyRect
AdjustWindowRectEx
GetWindowLongW
SetDlgItemTextW
SetTimer
GetWindowTextLengthW
CharUpperW
LoadStringW
DrawIconEx
BeginPaint
GetParent
CallWindowProcW
EndDialog
SetClipboardData
MapWindowPoints
GetClientRect
ReleaseCapture
ShowWindow
GetSysColorBrush
RegisterClassW
EqualRect
LoadBitmapW
SetWindowsHookExW

winmm

mixerGetLineInfoA
mixerGetLineControlsA
mixerGetControlDetailsA
waveOutRestart

comctl32

ImageList_GetIcon
ord17
_TrackMouseEvent
ImageList_SetBkColor
ImageList_Destroy
ImageList_Replace
ImageList_LoadImageA
ImageList_Create
ImageList_BeginDrag
ImageList_EndDrag
ImageList_AddMasked
ImageList_ReplaceIcon
InitCommonControlsEx
ImageList_Draw
ImageList_DragMove
ImageList_Add
PropertySheetA
CreatePropertySheetPageA
ImageList_Remove

shell32

Shell_NotifyIconW
DragQueryFileW
ord155
ExtractIconW
DragFinish

Sections

.text
Size: 64KB - Virtual size: 63KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 96KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 136KB - Virtual size: 134KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

06f982a4e4019d93899d6c6a4b7d40b5

Headers

File Characteristics

PDB Paths

Imports

ole32

gdi32

advapi32

kernel32

user32

winmm

comctl32

shell32

Sections

.text Size: 64KB - Virtual size: 63KB

.rdata Size: 96KB - Virtual size: 93KB

.data Size: 68KB - Virtual size: 86KB

.rsrc Size: 136KB - Virtual size: 134KB

.text
Size: 64KB - Virtual size: 63KB

.rdata
Size: 96KB - Virtual size: 93KB

.data
Size: 68KB - Virtual size: 86KB

.rsrc
Size: 136KB - Virtual size: 134KB