a738d41a7393c0d17fd31f1346f78df9_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a738d41a7393c0d17fd31f1346f78df9_JaffaCakes118
Size

232KB
MD5

a738d41a7393c0d17fd31f1346f78df9
SHA1

ac4e53e75254bacc4dd3fbe7fb00c9be637319fb
SHA256

8cb7525b29791728c5b28e7e61fd32667137a5cb2981899412ca55646a1a65e6
SHA512

1bf58fd6ad7283b8f6cdcc5946bd59500d9a6b1bebb0c2ca66233504e265930bc7266b22f478d93b9fc0acedc302ebbdb9b0f8314887301540387c95aeecb0e7
SSDEEP

6144:bVFLJTdVP0iSuKxoiRLux40P/0o8VGwyn+:dTP5tgcvX0oTwyn+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a738d41a7393c0d17fd31f1346f78df9_JaffaCakes118

Files

a738d41a7393c0d17fd31f1346f78df9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1de80d6ab03b80d9ef82cb94898d2b8f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

version

GetFileVersionInfoSizeA
VerInstallFileA
VerFindFileA
VerQueryValueA
VerInstallFileA

user32

OpenClipboard
LoadKeyboardLayoutA
SendMessageA
GetForegroundWindow
SetFocus
RemoveMenu
CharNextW
UnhookWindowsHookEx
GetSysColor
UnregisterClassA
WaitMessage
UpdateWindow
IsChild
GetCursor
LoadIconA
RegisterClassA
EnumChildWindows
IsWindowEnabled
FindWindowA
SetCursor
MapVirtualKeyA
DrawEdge
ShowWindow
ClientToScreen
IntersectRect
MoveWindow
TranslateMessage
GetWindowDC
SetMenu
GetWindowThreadProcessId
AdjustWindowRectEx
DestroyWindow
IsIconic
GetClassLongA
SetClassLongA
ChildWindowFromPoint
SetTimer
EnableWindow
EnableScrollBar
GetFocus
wsprintfA
OffsetRect
DrawMenuBar
IsRectEmpty
GetKeyboardLayout
CreateIcon
GetActiveWindow
SetWindowsHookExA
GetMenuItemCount
SetWindowPlacement
GetWindowTextA
PostMessageA
GetWindowRect
ScreenToClient
GetSubMenu
CallNextHookEx
TranslateMDISysAccel
SetRect
GetMenuItemInfoA
GetMenuItemID
CharLowerA
GetSysColorBrush
GetDCEx
DestroyIcon
SetWindowTextA
GetMessagePos
GetPropA
FillRect
IsDialogMessageW
InsertMenuItemA
SendMessageW
GetClientRect
RemovePropA
SetScrollPos
KillTimer
SetScrollInfo
LoadBitmapA
GetLastActivePopup
CheckMenuItem
DrawAnimatedRects
GetKeyboardLayoutList
CreateWindowExA
DestroyCursor
ActivateKeyboardLayout
GetClipboardData
EmptyClipboard
ReleaseDC
SetCapture
LoadCursorA
EnumWindows
SetClipboardData
LoadStringA
ScrollWindow
CloseClipboard
DrawIcon
CreatePopupMenu
GetWindowPlacement
TrackPopupMenu
MessageBoxA
MsgWaitForMultipleObjects
GetKeyboardState
GetWindow
SetActiveWindow
GetKeyboardType
DeleteMenu
IsWindowVisible
GetMenuState
EnableMenuItem
DefWindowProcA
EqualRect
DrawTextA
SetMenuItemInfoA
RedrawWindow
DestroyMenu
GetParent
EndPaint
PostQuitMessage
GetScrollInfo
FrameRect
OemToCharA
GetKeyNameTextA
PeekMessageW
SetWindowPos
GetDC
SystemParametersInfoA
GetScrollRange
MsgWaitForMultipleObjects
IsWindowUnicode
IsDialogMessageW
InsertMenuA
GetMenuState
SetPropA
GetTopWindow
DispatchMessageW
EqualRect
GetClassInfoA
AdjustWindowRectEx
GetClassNameA
GetForegroundWindow
CheckMenuItem
SetMenuItemInfoA
GetKeyboardLayoutNameA
ReleaseCapture
CreatePopupMenu
TranslateMessage
GetSysColorBrush
RegisterClipboardFormatA
ClientToScreen
DrawEdge
RemoveMenu
WindowFromPoint
FrameRect
DrawTextA
SetCapture
DispatchMessageA
EnableWindow
GetMenuItemCount
GetCapture
CallWindowProcA
GetWindowLongW
GetPropA
DefMDIChildProcA
GetMessagePos
GetScrollPos
IntersectRect
SetWindowTextA
SetActiveWindow
GetMenuStringA
SetScrollInfo
SetRect
DrawAnimatedRects
DrawIcon
MoveWindow
GetDlgItem
LoadCursorA
KillTimer
RegisterClassA
wsprintfA
DestroyMenu
GetKeyboardState
GetWindowLongA
GetKeyboardLayout
CharNextW
EnumChildWindows
GetMenu
EndPaint
CreateMenu
WaitMessage
GetDC
CharUpperBuffA
FillRect
MapWindowPoints
GetKeyboardType
SetClipboardData
GetCursor
CharNextA
SetScrollPos
GetSystemMenu
InflateRect
GetScrollRange
GetCursorPos
UnregisterClassA
ChildWindowFromPoint
SetCursor
EnableMenuItem
TranslateMDISysAccel
GetActiveWindow
IsZoomed
MapVirtualKeyA
DrawFrameControl
LoadKeyboardLayoutA
GetDCEx
EnumWindows
CreateWindowExA
CreateIcon
OpenClipboard
EmptyClipboard
SetWindowPos
PostMessageA
LoadIconA
IsIconic
GetDesktopWindow
BeginPaint
SetScrollRange
ScreenToClient
FindWindowA
IsWindowVisible
DefWindowProcA
PeekMessageW
OffsetRect
PeekMessageA
DestroyCursor
SetFocus
ShowScrollBar
DestroyWindow
GetFocus
PtInRect
GetWindowTextA
RedrawWindow
DeleteMenu
SetWindowsHookExA
SystemParametersInfoA
IsChild
InsertMenuItemA
UnhookWindowsHookEx
MessageBeep
EnableScrollBar
PostQuitMessage
GetKeyState
ScrollWindow
ActivateKeyboardLayout
SetWindowLongW
RegisterWindowMessageA
GetMenuItemInfoA
SetParent
ScrollWindow
DestroyCursor
GetDesktopWindow
DefMDIChildProcA
GetClassLongA
EqualRect
GetKeyboardLayoutList
CreateWindowExA
GetMenuItemID
GetKeyState
GetScrollPos
GetWindowLongA
InflateRect
IsDialogMessageA
GetIconInfo
GetSysColor
MessageBoxA
SendMessageA
ClientToScreen
GetCursorPos
UnhookWindowsHookEx
CreateMenu
GetKeyboardType
InsertMenuA
CallNextHookEx
SetClassLongA
DrawFrameControl
GetSysColorBrush
GetForegroundWindow
GetKeyboardLayoutNameA
RegisterClipboardFormatA
EnumWindows
GetDC
IsWindowUnicode
GetWindowLongW
WindowFromPoint
IsRectEmpty
InsertMenuItemA
DefFrameProcA
KillTimer
RedrawWindow
MoveWindow
SetMenu
SystemParametersInfoA
GetCapture
DispatchMessageW
GetMenuItemInfoA
GetScrollRange
SetClipboardData
RemoveMenu
LoadCursorA
GetDCEx
SetActiveWindow
GetActiveWindow
GetParent
GetClassInfoA
DrawIcon
GetCursor
SetWindowsHookExA
PostQuitMessage
CreateIcon
GetWindowThreadProcessId
SendMessageW
DefWindowProcA
CharUpperBuffA
RegisterWindowMessageA
GetMenu
ReleaseDC
GetMenuItemCount
SetWindowLongA
IsWindowVisible
MapVirtualKeyA
wsprintfA
ShowOwnedPopups
IsChild
CheckMenuItem
OemToCharA
EmptyClipboard
ShowWindow
CloseClipboard
DispatchMessageA
GetScrollInfo
GetSystemMetrics
IntersectRect
PeekMessageW
FrameRect
GetTopWindow
SetCursor
PtInRect
DestroyMenu
SetWindowPlacement
CharLowerA
GetWindowPlacement
LoadKeyboardLayoutA
SetWindowPos
FindWindowA
SetPropA
DrawAnimatedRects
DeleteMenu
ReleaseCapture
CharNextA
TrackPopupMenu
GetPropA
DrawEdge
MessageBeep
WaitMessage
GetClientRect
UnregisterClassA
SetMenuItemInfoA
CharNextW
MsgWaitForMultipleObjects
FillRect
GetClipboardData
GetKeyNameTextA
DestroyIcon
IsIconic
RegisterClassA
GetSystemMenu
CallWindowProcA
SetFocus
AdjustWindowRectEx
GetLastActivePopup
UpdateWindow
MoveWindow
DrawIconEx
CheckMenuItem
SetWindowsHookExA
EndPaint
DeleteMenu
TranslateMessage
GetDlgItem
RegisterClipboardFormatA
SetActiveWindow
ScreenToClient
RemovePropA
GetWindow
GetKeyNameTextA
ClientToScreen
ShowScrollBar
GetClassNameA
GetSystemMetrics
WaitMessage
SetScrollRange
FrameRect
GetClientRect
GetWindowPlacement
OemToCharA
ShowOwnedPopups
GetMenuItemInfoA
GetForegroundWindow
TrackPopupMenu
GetSysColorBrush
ScrollWindow
SetScrollPos
CharNextW
GetDCEx
GetWindowRect
GetScrollPos
EmptyClipboard
DrawFrameControl
GetDesktopWindow
IsChild
InflateRect
CharToOemA
SendMessageA
PostMessageA
DestroyCursor
EnumThreadWindows
GetWindowTextA
GetMenuItemCount
DestroyMenu
SetCursor
PtInRect
FillRect
BeginPaint
LoadCursorA
IsWindowVisible
TranslateMDISysAccel
GetWindowThreadProcessId
GetDC
UpdateWindow
SetWindowTextA
EqualRect
SetWindowLongW
wsprintfA
GetActiveWindow
GetMenuItemID
SetClassLongA
GetKeyboardLayoutList
OpenClipboard
AdjustWindowRectEx
MsgWaitForMultipleObjects
CallNextHookEx
ActivateKeyboardLayout
SetTimer
GetMessagePos
EnableMenuItem
LoadBitmapA
OffsetRect
ChildWindowFromPoint
GetCursorPos
IsWindowUnicode
WindowFromPoint
SetMenuItemInfoA
GetTopWindow
PostQuitMessage
SetClipboardData
CharLowerA
GetClassLongA
UnhookWindowsHookEx
FindWindowA
InsertMenuA
LoadKeyboardLayoutA
SetWindowPos
GetCursor
SetParent
SetForegroundWindow
CreateIcon
SetMenu
RegisterClassA
ReleaseCapture
GetParent
GetKeyState
SendMessageW
GetKeyboardState
SetPropA
IsDialogMessageA
ShowWindow
LoadStringA
PeekMessageW
SetScrollInfo
DestroyIcon
IsDialogMessageW
GetKeyboardType
GetIconInfo
DefFrameProcA
UnregisterClassA
MapVirtualKeyA
GetMenu
GetLastActivePopup
InvalidateRect
DrawIcon
CreateWindowExA
DrawEdge
EnumWindows

advapi32

RegQueryInfoKeyA
RegLoadKeyA
RegOpenKeyExA
RegEnumKeyExA
RegQueryValueA
RegQueryInfoKeyA
RegOpenKeyA
RegOpenKeyExA
RegQueryValueExA
RegQueryValueA

ole32

CLSIDFromString
CLSIDFromProgID
StgOpenStorage
OleRun
PropVariantClear

shlwapi

PathIsContentTypeA
SHDeleteKeyA
SHQueryValueExA
SHStrDupA
SHGetValueA
SHSetValueA
SHSetValueA
SHEnumValueA
SHDeleteKeyA
PathGetCharTypeA
PathFileExistsA
SHStrDupA
SHSetValueA

shell32

SHGetDesktopFolder
DragQueryFileA
SHGetSpecialFolderLocation
SHFileOperationA
SHGetFileInfoA
DragQueryFileA

oleaut32

SafeArrayGetElement
SysAllocStringLen
RegisterTypeLib
SysReAllocStringLen

gdi32

CreateCompatibleBitmap
CreateBitmap
CreateDIBitmap
GetDIBits
CreateCompatibleDC
SetBkMode
GetDCOrgEx
SelectPalette
GetObjectA
SetBkMode
SelectPalette
CreateFontIndirectA
GetObjectA
CreateDIBitmap
CreatePenIndirect
SetTextColor
SelectObject
GetCurrentPositionEx
CreateFontIndirectA
GetObjectA
SetTextColor
CopyEnhMetaFileA
SetBkMode
RestoreDC
SetBkColor

comctl32

ImageList_Write
ImageList_Destroy
ImageList_DrawEx
ImageList_DragShowNolock
ImageList_Remove
ImageList_Create
ImageList_Add
ImageList_Read
ImageList_DragShowNolock
ImageList_Draw
ImageList_Read
ImageList_Remove
ImageList_Read
ImageList_DrawEx
ImageList_GetBkColor
ImageList_Write
ImageList_Remove
ImageList_Draw

msvcrt

swprintf
wcscspn
sqrt
wcstol
wcschr
memset
exit
malloc
wcsncmp
_acmdln
malloc
memset
wcstol
memcpy
rand
memmove
srand
memmove
wcsncmp
wcscspn
time
wcschr
clock
memset
tolower
wcschr
swprintf
srand
memset
mbstowcs
time
exit
_acmdln
memmove
wcscspn
clock
atol
sprintf
memmove
sprintf
memset
_acmdln
rand
time
malloc
memcpy
swprintf
wcstol
memcpy
sqrt
mbstowcs
memset
srand
wcsncmp
time
memmove

kernel32

LockResource
SetThreadLocale
ExitProcess
WideCharToMultiByte
LocalReAlloc
GetModuleHandleA
VirtualAlloc
GetACP
LoadLibraryA
lstrlenA
GetCurrentProcessId
LocalAlloc
GetVersionExA
GetCurrentProcess
GetFullPathNameA
GlobalAlloc
FreeResource
CreateThread
GetStringTypeW
GlobalAlloc
lstrcpyA
GetCommandLineA

comdlg32

GetOpenFileNameA
ChooseColorA
GetFileTitleA
FindTextA
GetSaveFileNameA
GetSaveFileNameA
GetOpenFileNameA
GetOpenFileNameA
GetFileTitleA
GetSaveFileNameA

Sections

.text
Size: 71KB - Virtual size: 71KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 78KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

INIT
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 44B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.edata
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 307B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1de80d6ab03b80d9ef82cb94898d2b8f

Headers

File Characteristics

Imports

version

user32

advapi32

ole32

shlwapi

shell32

oleaut32

gdi32

comctl32

msvcrt

kernel32

comdlg32

Sections

.text Size: 71KB - Virtual size: 71KB

.data Size: 9KB - Virtual size: 44KB

.idata Size: 78KB - Virtual size: 78KB

INIT Size: 34KB - Virtual size: 33KB

DATA Size: 23KB - Virtual size: 23KB

.tls Size: 512B - Virtual size: 44B

.edata Size: 512B - Virtual size: 24B

.rdata Size: 512B - Virtual size: 307B

.rsrc Size: 12KB - Virtual size: 12KB

.text
Size: 71KB - Virtual size: 71KB

.data
Size: 9KB - Virtual size: 44KB

.idata
Size: 78KB - Virtual size: 78KB

INIT
Size: 34KB - Virtual size: 33KB

DATA
Size: 23KB - Virtual size: 23KB

.tls
Size: 512B - Virtual size: 44B

.edata
Size: 512B - Virtual size: 24B

.rdata
Size: 512B - Virtual size: 307B

.rsrc
Size: 12KB - Virtual size: 12KB