abb9c9068097f627ce7a4d685159019c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

abb9c9068097f627ce7a4d685159019c_JaffaCakes118
Size

21KB
MD5

abb9c9068097f627ce7a4d685159019c
SHA1

6e974fffd4d4b3d9dd1823c48e97236c8ec8222e
SHA256

8ed5fdc1f2a9f9bd2e28beb5c0c673df1e5a09093573633e526d737e5b93947b
SHA512

ef6a656d41a73884444b7289d984603c3ed9c727267592ae866672ccc15166184c57178ab4203dccf1a21a9088771be5ca4dffbf5ebcf905ab22d0f7c77ec15f
SSDEEP

384:Y57zFdR998jAhn1fGaMcXVJymIuW2PZhh4WWieZWB6:Q7zFL9l7+g0uW2PZhhdel

Score

1^/10

Malware Config

Signatures

Files

abb9c9068097f627ce7a4d685159019c_JaffaCakes118
.exe windows:5 windows x86 arch:x86

59c188aed971bd231e021609f43c2f49

Code Sign

60:29:be:36:38:c4:8a:74:bb:5e:b2:8f:90:0a:7f:8c
Certificate

Issuer

CN=yFfJFQjZS5cVSsx

Not Before

20/03/2012, 06:07

Not After

31/12/2039, 23:59

Subject

CN=yFfJFQjZS5cVSsx

Extended Key Usages

ExtKeyUsageCodeSigning

85:93:f7:cb:9c:74:99:bf:c2:1b:8b:64:9c:7a:19:5c:ca:fe:8a:e2
Signer

Actual PE Digest

85:93:f7:cb:9c:74:99:bf:c2:1b:8b:64:9c:7a:19:5c:ca:fe:8a:e2

Digest Algorithm

sha1

PE Digest Matches

true

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTempPathA
GetProcAddress
GetModuleHandleA

msvcrt

memset

user32

wsprintfW
WINNLSEnableIME
VkKeyScanW
VkKeyScanExW
UnloadKeyboardLayout
UnionRect
SubtractRect
SetWindowsHookExW
SetWindowLongA
SetMessageExtraInfo
SetMenuDefaultItem
SetMenu
SetKeyboardState
SetDebugErrorLevel
SetClassWord
SendNotifyMessageW
SendMessageCallbackW
SendMessageCallbackA
SendMessageA
ScreenToClient
RemovePropW
RemovePropA
RegisterShellHookWindow
RegisterDeviceNotificationW
PostQuitMessage
PeekMessageW
PackDDElParam
OpenClipboard
OemToCharW
OemToCharBuffA
NotifyWinEvent
MonitorFromWindow
MessageBoxW
MessageBoxA
MapWindowPoints
LookupIconIdFromDirectory
IsRectEmpty
IsHungAppWindow
GetWindowThreadProcessId
GetWindowPlacement
GetWindowInfo
GetWindowDC
GetUserObjectInformationA
GetUpdateRgn
GetSystemMenu
GetShellWindow
GetPriorityClipboardFormat
GetMouseMovePointsEx
GetMonitorInfoW
GetMenuStringW
GetMenuState
GetMenuDefaultItem
GetLastActivePopup
GetIconInfo
GetComboBoxInfo
GetClipboardViewer
GetClassLongW
GetCaretPos
GetAncestor
EnumPropsW
EnumPropsExA
EnumPropsA
EnumDisplaySettingsW
EnumDisplayDevicesA
EnumDesktopsW
EnumClipboardFormats
EnableScrollBar
DrawEdge
DrawAnimatedRects
DispatchMessageW
DialogBoxIndirectParamW
DestroyMenu
DefWindowProcA
DdeQueryStringA
DdeKeepStringHandle
DdeInitializeW
DdeImpersonateClient
DdeAbandonTransaction
CreateWindowStationW
CreateWindowExA
CreatePopupMenu
CreateDialogParamA
CreateCursor
CloseDesktop
CheckMenuRadioItem
ChangeMenuA
ChangeDisplaySettingsExW
CascadeChildWindows
CallMsgFilterW
CallMsgFilterA
BlockInput
WinHelpW

gdi32

CombineTransform
CloseEnhMetaFile
Arc
XLATEOBJ_iXlate
UpdateColors
UnloadNetworkFonts
SetWindowExtEx
SetTextCharacterExtra
SetMagicColors
SetICMProfileW
SetColorAdjustment
SetBitmapDimensionEx
SetBitmapBits
SelectObject
SelectFontLocal
SaveDC
STROBJ_vEnumStart
STROBJ_bGetAdvanceWidths
RoundRect
ResetDCW
RemoveFontResourceTracking
PlgBlt
PATHOBJ_vEnumStart
OffsetRgn
NamedEscape
InvertRgn
HT_Get8BPPFormatPalette
GetTextExtentPointA
GetTextColor
GetTextAlign
GetRelAbs
GetRegionData
GetPixelFormat
GetObjectType
GetMetaFileBitsEx
GetKerningPairsA
GetGlyphOutlineW
GetGlyphOutline
GetDeviceGammaRamp
GetCurrentObject
GetCharacterPlacementA
GetCharWidthA
GetCharABCWidthsI
GetCharABCWidthsFloatA
GetBitmapBits
GdiSwapBuffers
GdiSetLastError
GdiSetAttrs
GdiPlayScript
GdiPlayPrivatePageEMF
GdiGetDevmodeForPage
GdiFixUpHandle
GdiEntry8
GdiConvertRegion
GdiConvertFont
GdiConvertBitmap
GdiConvertAndCheckDC
GdiAddGlsBounds
FillRgn
FONTOBJ_vGetInfo
ExtTextOutA
ExtFloodFill
ExtCreatePen
EnumFontsA
EnumFontFamiliesW
EnumFontFamiliesExA
EnumEnhMetaFile
EngWideCharToMultiByte
EngUnlockSurface
EngUnicodeToMultiByteN
EngQueryEMFInfo
EngFreeModule
EngCreateSemaphore
EnableEUDC
Ellipse
DeviceCapabilitiesExW
DeviceCapabilitiesExA
DeleteEnhMetaFile
DeleteDC
DeleteColorSpace
CreatePolygonRgn
CreatePolyPolygonRgn
CreatePenIndirect
CreateFontW
CreateEnhMetaFileW
CreateEllipticRgnIndirect
CreateDIBitmap
CreateColorSpaceW
CopyEnhMetaFileW
AddFontResourceExA

advapi32

RegOpenKeyExW

Sections

.text
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

59c188aed971bd231e021609f43c2f49

Code Sign

60:29:be:36:38:c4:8a:74:bb:5e:b2:8f:90:0a:7f:8cCertificate

Extended Key Usages

85:93:f7:cb:9c:74:99:bf:c2:1b:8b:64:9c:7a:19:5c:ca:fe:8a:e2Signer

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

gdi32

advapi32

Sections

.text Size: 14KB - Virtual size: 14KB

.data Size: 2KB - Virtual size: 1KB

.rsrc Size: 3KB - Virtual size: 2KB

60:29:be:36:38:c4:8a:74:bb:5e:b2:8f:90:0a:7f:8c
Certificate

85:93:f7:cb:9c:74:99:bf:c2:1b:8b:64:9c:7a:19:5c:ca:fe:8a:e2
Signer

.text
Size: 14KB - Virtual size: 14KB

.data
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 3KB - Virtual size: 2KB