a9f31d9d5e9420d22df248477c00c200_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a9f31d9d5e9420d22df248477c00c200_JaffaCakes118
Size

186KB
MD5

a9f31d9d5e9420d22df248477c00c200
SHA1

24f4fac1fad66ead1f59a04eb0a3d167cb4db426
SHA256

2ec38e9e74a46e2cad1a746f19146a2daa78586c35b530a75816bfa9139c2b23
SHA512

a1cbec94df0a1bbd2ac324a7baa03a5b77fa568d48be1443bfbaf0fb568996d85f27cdfc36e28b9553006183f40e2943c0147d810bd1c5c85dd14846ad7bd203
SSDEEP

3072:N1JmHGAqIqRs6rw5WRX6lGKjDMXpnNWal3G4QUwbWA5tJyIyDo93Sg0Ve:N1mGAqIqej5XGKjDa33GawbWA5awSg0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a9f31d9d5e9420d22df248477c00c200_JaffaCakes118

Files

a9f31d9d5e9420d22df248477c00c200_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1ab2c04133afd3b99f026ff30b676751

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

PropertySheetA
ord17
ImageList_Create
ImageList_SetBkColor
ImageList_Destroy
PropertySheetW
ImageList_ReplaceIcon

version

VerQueryValueA
GetFileVersionInfoSizeA
VerQueryValueW
GetFileVersionInfoW
GetFileVersionInfoSizeW
GetFileVersionInfoA

kernel32

GetUserDefaultLangID
GetOEMCP
GetACP
GetWindowsDirectoryW
GetProcessHeap
lstrcmpA
lstrcmpW
lstrlenA
GlobalUnlock
GlobalLock
GetCurrentDirectoryA
GetCurrentDirectoryW
MultiByteToWideChar
lstrlenW
lstrcatA
lstrcatW
GetCommandLineA
GetCommandLineW
GetPrivateProfileStringA
GetPrivateProfileStringW
WritePrivateProfileStringA
WritePrivateProfileStringW
FindClose
FindFirstFileA
FindFirstFileW
GetModuleFileNameA
GetModuleFileNameW
GetFullPathNameA
GetFullPathNameW
CreateFileA
CreateFileW
ReadFile
GetLocaleInfoW
HeapAlloc
HeapFree
CreateProcessA
CreateProcessW
GetCurrentThreadId
WideCharToMultiByte
GetPrivateProfileStructA
GetPrivateProfileStructW
WritePrivateProfileStructA
WritePrivateProfileStructW
SetFilePointer
FindNextFileA
FindNextFileW
ExpandEnvironmentStringsA
ExpandEnvironmentStringsW
GetFileTime
SetFileTime
SetFileAttributesA
GetFileAttributesA
SetFileAttributesW
GetFileAttributesW
GetLocaleInfoA
GetModuleHandleA
GetStartupInfoA
CreateMutexA
GetLastError
WaitForSingleObject
GlobalAlloc
GlobalFree
ExitProcess
CompareFileTime
lstrcmpiA
lstrcpyA
SearchPathA
SetCurrentDirectoryA
CloseHandle
ReleaseMutex
GetProcAddress
lstrcpynA
LoadLibraryA
GetModuleHandleW
GetStartupInfoW
lstrcpynW
LoadLibraryW
FreeLibrary
SetCurrentDirectoryW
SearchPathW
lstrcpyW
WriteFile
lstrcmpiW
MulDiv

user32

GetMenuStringA
GetQueueStatus
ShowWindow
GetSysColor
DefFrameProcA
SetClassLongA
GetClassLongA
GetClientRect
CreateWindowExA
DrawMenuBar
DeleteMenu
GetSubMenu
DefFrameProcW
GetMenuStringW
SetWindowLongW
GetWindowLongW
DestroyAcceleratorTable
GetClassLongW
CreateWindowExW
DispatchMessageW
TranslateAcceleratorW
IsDialogMessageW
GetMessageW
RegisterClassW
FindWindowW
DispatchMessageA
TranslateMessage
TranslateAcceleratorA
IsDialogMessageA
GetMessageA
UpdateWindow
RegisterClassA
LoadCursorA
FindWindowA
GetClassNameA
GetClassNameW
CloseClipboard
SetClipboardData
EmptyClipboard
GetClipboardData
OpenClipboard
ShowScrollBar
SetWindowPos
CharUpperA
CharUpperW
GetKeyNameTextA
MapVirtualKeyA
GetKeyNameTextW
MapVirtualKeyW
UnhookWindowsHookEx
EndDialog
SetDlgItemTextA
SetDlgItemTextW
ActivateKeyboardLayout
GetKeyboardLayout
GetFocus
ReleaseDC
GetDC
GetKeyState
SetForegroundWindow
MoveWindow
GetWindow
LoadMenuA
LoadMenuW
LoadAcceleratorsA
LoadAcceleratorsW
LoadIconA
LoadIconW
LoadImageA
LoadImageW
LoadStringA
LoadStringW
CreateDialogParamA
CreateDialogParamW
DialogBoxParamA
DialogBoxParamW
EnumThreadWindows
WaitForInputIdle
SetWindowsHookExA
GetWindowTextLengthA
GetWindowTextLengthW
GetDlgItemInt
SetDlgItemInt
InsertMenuA
ModifyMenuA
InsertMenuW
ModifyMenuW
EnableWindow
SetWindowTextA
SetWindowTextW
GetCursorPos
DrawTextExA
DrawTextExW
IsCharLowerW
CharLowerW
CharLowerBuffW
CharUpperBuffW
GetDlgItemTextA
GetDlgItemTextW
IsCharLowerA
CharLowerA
CharLowerBuffA
CharUpperBuffA
FindWindowExA
FindWindowExW
ShowCaret
HideCaret
DestroyMenu
PostQuitMessage
GetWindowRect
GetSystemMenu
CreateMDIWindowW
CreateMDIWindowA
DestroyWindow
DestroyIcon
CallWindowProcW
SendMessageW
DefWindowProcW
CallWindowProcA
MessageBeep
SystemParametersInfoA
GetScrollInfo
DefWindowProcA
wsprintfW
MessageBoxW
PostMessageW
GetWindowTextW
DefMDIChildProcW
EnableMenuItem
SetFocus
wsprintfA
MessageBoxA
PostMessageA
ClientToScreen
TrackPopupMenu
GetParent
GetWindowLongA
SetWindowLongA
InvalidateRect
GetDlgItem
CheckMenuItem
GetWindowTextA
DefMDIChildProcA
SendMessageA
SetClassLongW
GetSystemMetrics

gdi32

GetCharWidthW
DeleteDC
EndDoc
EndPage
StartPage
GetTextMetricsA
StartDocA
GetTextMetricsW
StartDocW
CreateFontIndirectA
SelectObject
GetCharWidthA
GetDeviceCaps
DeleteObject
GetObjectW
GetObjectA
GetStockObject
CreateFontIndirectW

comdlg32

PrintDlgW
PrintDlgA
GetOpenFileNameA
ChooseColorA
PageSetupDlgW
PageSetupDlgA
GetOpenFileNameW
GetSaveFileNameA
GetSaveFileNameW
ChooseFontA
ChooseFontW
ChooseColorW

advapi32

RegCreateKeyExA
RegDeleteKeyW
RegEnumKeyExW
RegDeleteKeyA
RegEnumKeyExA
RegEnumValueW
RegDeleteValueW
RegEnumValueA
RegSetValueExA
RegOpenKeyExW
RegQueryValueExW
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
RegSetValueExW
RegCreateKeyExW
RegDeleteValueA

shell32

ShellExecuteA
DragFinish
DragQueryFileA
DragQueryFileW
DragAcceptFiles
SHGetMalloc
SHChangeNotify
ShellExecuteW

ole32

ReleaseStgMedium

Sections

.text
Size: 117KB - Virtual size: 117KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 51KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1ab2c04133afd3b99f026ff30b676751

Headers

DLL Characteristics

File Characteristics

Imports

comctl32

version

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

Sections

.text Size: 117KB - Virtual size: 117KB

.rdata Size: 14KB - Virtual size: 13KB

.data Size: 3KB - Virtual size: 51KB

.rsrc Size: 19KB - Virtual size: 19KB

.text
Size: 117KB - Virtual size: 117KB

.rdata
Size: 14KB - Virtual size: 13KB

.data
Size: 3KB - Virtual size: 51KB

.rsrc
Size: 19KB - Virtual size: 19KB