a9c32e182c2eb30aaa813e9e8929babc_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

a9c32e182c2eb30aaa813e9e8929babc_JaffaCakes118
Size

604KB
MD5

a9c32e182c2eb30aaa813e9e8929babc
SHA1

6b0ca066e668528fb3bce4216ecd3b2e098bbcfd
SHA256

997a3dc7db0f5d4a46a2ab097ec244b33cf4476592a6d30f78773025b100de4a
SHA512

3c88a300471bcc95c8d9d02e06993d2c1f1398d1d5d16567207c57253fa571a9fbc727847aea009e0f9e506f7363d3ada743dae477b5737117c503b7b53fd37e
SSDEEP

12288:7o8HWYgekVn19TG9HyIIAQvrQkgYF7uZbCJPoYCWPR:7F2YUVvTeSIIAQHgYF0bH3WZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a9c32e182c2eb30aaa813e9e8929babc_JaffaCakes118

Files

a9c32e182c2eb30aaa813e9e8929babc_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e40d5213aa8fbde06dd43bf634f32629

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

PDB Paths

k:\xaxm

Imports

comdlg32

ChooseColorW
LoadAlterBitmap

gdi32

CreatePatternBrush
GetViewportExtEx
MoveToEx
SaveDC
CreateDCA
ExcludeClipRect
GetEnhMetaFileA
GetTextExtentPoint32A
ResetDCW
GetWorldTransform
ExtTextOutA
Chord
GetAspectRatioFilterEx
UpdateICMRegKeyW

kernel32

GetUserDefaultLangID
GetLastError
HeapCreate
GetACP
GetTimeFormatA
SetThreadContext
CreateMutexA
GetDateFormatA
GetTickCount
TlsGetValue
SetLastError
SetConsoleCtrlHandler
GetModuleFileNameA
SetStdHandle
SetLocalTime
GetSystemInfo
DosDateTimeToFileTime
WaitCommEvent
LCMapStringW
FreeEnvironmentStringsW
GetVersionExA
GetEnvironmentStrings
GetProcAddress
MultiByteToWideChar
HeapFree
ExitProcess
EnumCalendarInfoW
HeapSize
VirtualQuery
GetCPInfo
VirtualFree
GetPrivateProfileSectionNamesA
FlushFileBuffers
HeapAlloc
GetModuleHandleA
FindNextFileA
SetEndOfFile
GetCurrentProcessId
ContinueDebugEvent
GlobalCompact
OpenFileMappingW
SetEnvironmentVariableA
GetUserDefaultLCID
SetHandleCount
GetLocaleInfoW
GetFileType
GetCurrentThreadId
GetEnvironmentStringsW
WideCharToMultiByte
GetStartupInfoA
FileTimeToSystemTime
LoadLibraryW
VirtualProtect
HeapReAlloc
TlsFree
GetCommandLineW
ReadConsoleOutputW
WriteConsoleInputA
DebugBreak
GetDateFormatW
GlobalReAlloc
GetProcAddress
GetStartupInfoW
TlsAlloc
GetDiskFreeSpaceExA
CompareStringA
MoveFileExW
CloseHandle
SleepEx
GlobalHandle
GetCurrentThread
InitializeCriticalSection
GetVersion
WriteFile
CreateToolhelp32Snapshot
FindResourceExA
GetProcessShutdownParameters
VirtualAlloc
ReadFile
GetTimeZoneInformation
DuplicateHandle
SetConsoleTitleA
FindFirstFileW
FormatMessageA
GetTempFileNameW
GetStringTypeA
GetLocaleInfoA
VirtualLock
GetVolumeInformationA
WritePrivateProfileStringW
InterlockedExchange
VirtualProtectEx
CreateEventW
GetStdHandle
TlsSetValue
GetSystemTimeAsFileTime
GetThreadPriorityBoost
SetFilePointer
RtlUnwind
LockFileEx
UnhandledExceptionFilter
IsValidCodePage
GetFileAttributesA
GetCurrentProcess
DeleteCriticalSection
GetModuleFileNameW
GetCommandLineA
LCMapStringA
OpenWaitableTimerA
HeapLock
GetOEMCP
GetWindowsDirectoryW
HeapDestroy
FoldStringW
GetStringTypeW
LeaveCriticalSection
LoadLibraryA
CompareStringW
QueryPerformanceCounter
GetAtomNameA
SetEnvironmentVariableW
OpenMutexA
CreateDirectoryA
SetWaitableTimer
IsValidLocale
EnumSystemLocalesA
EnterCriticalSection
TerminateProcess
FreeEnvironmentStringsA
IsBadWritePtr
WriteConsoleOutputCharacterW

user32

GetCursorPos
CheckMenuRadioItem
InvertRect
SetMenuInfo
CreateWindowExA
SetDebugErrorLevel
GetClipboardFormatNameA
ValidateRect
SetWindowRgn
DlgDirListComboBoxW
BeginPaint
ReplyMessage
RedrawWindow
LoadImageW
SendDlgItemMessageA
UnloadKeyboardLayout
SendIMEMessageExA
DdeQueryNextServer
GetMessageTime
TranslateAcceleratorA
RegisterClassW
BroadcastSystemMessageA
GetClassLongW
LoadBitmapA
RegisterClassExA
DrawFocusRect
GetKBCodePage
DdeCreateDataHandle
GetClipboardSequenceNumber
GetTabbedTextExtentA
GetMenuBarInfo
GetThreadDesktop
SetWindowsHookW
ShowCaret
DlgDirSelectComboBoxExA
CreateDialogParamW
SwitchToThisWindow
ShowWindow
GetProcessDefaultLayout
RegisterDeviceNotificationW
RegisterClassA
ChangeDisplaySettingsExW
PackDDElParam
DdeCreateStringHandleA
IsRectEmpty
EnumWindowStationsA
MessageBoxA
ExcludeUpdateRgn
GetScrollInfo
DdeFreeStringHandle
GetKeyNameTextA
SetMenuItemInfoA
LoadCursorA
FindWindowExA
LoadBitmapW
EndTask
ShowCursor
DefWindowProcA
WinHelpW
WINNLSGetIMEHotkey
GetAncestor
CopyAcceleratorTableW
LoadStringW
DrawTextExA
GetTopWindow
TabbedTextOutW
DestroyWindow
GetCaretBlinkTime

advapi32

RegQueryMultipleValuesA
LookupSecurityDescriptorPartsA
GetUserNameA
CryptAcquireContextW
RegSaveKeyA
ReportEventW
CryptEnumProvidersW
RegDeleteKeyW
CryptDeriveKey
CryptGenRandom
LogonUserW
CryptGetDefaultProviderW
CryptSignHashA
RegQueryValueA
LookupAccountNameW
RegSetValueA
InitiateSystemShutdownW
RegDeleteKeyA
RegDeleteValueA
AbortSystemShutdownW

comctl32

CreatePropertySheetPage
ImageList_Duplicate
ImageList_LoadImageA
DrawStatusTextA
InitCommonControlsEx
CreateStatusWindowW
ImageList_BeginDrag
ImageList_DragLeave
ImageList_GetIconSize
DrawStatusTextW
InitMUILanguage
ImageList_Create
ImageList_SetBkColor
ImageList_DrawEx
CreatePropertySheetPageA
CreateMappedBitmap
ImageList_AddMasked
ImageList_LoadImageW
ImageList_SetImageCount
CreateStatusWindow
ImageList_DragMove
ImageList_Read

wininet

HttpSendRequestExA
GetUrlCacheEntryInfoA
CreateUrlCacheGroup

Sections

.text
Size: 180KB - Virtual size: 179KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 264KB - Virtual size: 261KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 108KB - Virtual size: 121KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 48KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e40d5213aa8fbde06dd43bf634f32629

Headers

File Characteristics

PDB Paths

Imports

comdlg32

gdi32

kernel32

user32

advapi32

comctl32

wininet

Sections

.text Size: 180KB - Virtual size: 179KB

.rdata Size: 264KB - Virtual size: 261KB

.data Size: 108KB - Virtual size: 121KB

.rsrc Size: 48KB - Virtual size: 46KB

.text
Size: 180KB - Virtual size: 179KB

.rdata
Size: 264KB - Virtual size: 261KB

.data
Size: 108KB - Virtual size: 121KB

.rsrc
Size: 48KB - Virtual size: 46KB