b0907312a924197f183824fd00ab545f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b0907312a924197f183824fd00ab545f_JaffaCakes118
Size

376KB
MD5

b0907312a924197f183824fd00ab545f
SHA1

9b6e8ea3b601c554188b751bb8ddb76e9c23cf9c
SHA256

804cae6db69503ea79e220a114e1f13910dbee196ce1d055fa6a730b89de8196
SHA512

6e23c6d17490366d4340922e9071734e33adc862956768efd2c8985c5c4dbb7fff3e873f5e2225eb3ec859fdd01b32f267e1d80ae37e3618b02107ce0ba11c3e
SSDEEP

6144:nvZG8tTaSb+bk30X1MCX0vciAkHLSX8d2qQqebx7+XKPa:DtT7b+i0X1X0vbHL5tQqoa

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b0907312a924197f183824fd00ab545f_JaffaCakes118

Files

b0907312a924197f183824fd00ab545f_JaffaCakes118
.exe windows:5 windows x86 arch:x86

753598098ad559b62d3f8ed372d73f1d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

setupapi

SetupDiEnumDeviceInterfaces
SetupDiGetDeviceInterfaceDetailA
SetupDiGetHwProfileList
SetupDiSetClassInstallParamsA
SetupDiCallClassInstaller
SetupDiGetDeviceInstallParamsA
SetupDiGetClassDevsA
SetupDiEnumDeviceInfo
SetupDiGetDeviceRegistryPropertyA
CM_Get_DevNode_Status
SetupDiDestroyDeviceInfoList

shlwapi

PathFindExtensionA
PathFindFileNameA
PathStripToRootA
PathIsUNCA
SHGetValueA
StrStrIA
StrStrIW

ole32

CoInitializeEx
CoSetProxyBlanket
CoCreateInstance
CoInitializeSecurity
CoTaskMemFree
CoUninitialize
StringFromCLSID
CoTaskMemAlloc
CoRegisterClassObject
CoRevokeClassObject
CLSIDFromProgID
CLSIDFromString
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
OleIsCurrentClipboard
OleFlushClipboard
CoRegisterMessageFilter

kernel32

GetVolumeInformationA
GetFullPathNameA
GetShortPathNameA
SetErrorMode
GetFileAttributesA
GetFileTime
GetTickCount
RtlUnwind
HeapFree
HeapAlloc
VirtualProtect
VirtualAlloc
GetCurrentProcess
VirtualQuery
GetStartupInfoA
GetCommandLineA
HeapReAlloc
TerminateProcess
HeapSize
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
QueryPerformanceCounter
GetCurrentProcessId
GetSystemTimeAsFileTime
SetUnhandledExceptionFilter
GetTimeZoneInformation
GetDriveTypeA
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
SetEnvironmentVariableA
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
GetCurrentDirectoryA
GetOEMCP
GetCPInfo
GlobalFlags
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
TlsGetValue
GlobalHandle
GlobalReAlloc
LocalAlloc
RaiseException
WritePrivateProfileStringA
InterlockedIncrement
GetCurrentThread
GetModuleFileNameA
ConvertDefaultLocale
EnumResourceLanguagesA
lstrcmpA
lstrcpyA
FindFirstFileA
FileTimeToLocalFileTime
FileTimeToSystemTime
FindNextFileA
FindClose
FreeResource
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcatA
lstrcmpW
GetModuleHandleA
SetLastError
MulDiv
GlobalAlloc
GlobalLock
GlobalUnlock
lstrcpynA
InterlockedDecrement
GlobalFree
CompareStringW
CompareStringA
lstrlenA
lstrlenW
lstrcmpiA
MultiByteToWideChar
WideCharToMultiByte
FindResourceA
LoadResource
LockResource
SizeofResource
GetThreadLocale
GetLocaleInfoA
GetACP
InterlockedExchange
CreateFileMappingA
MapViewOfFile
SetConsoleCtrlHandler
CreateThread
SetEvent
GetSystemPowerStatus
CreateEventA
WaitForSingleObject
UnmapViewOfFile
EnterCriticalSection
LeaveCriticalSection
Sleep
DeleteCriticalSection
InitializeCriticalSection
LoadLibraryA
GetProcAddress
FreeLibrary
GetVersion
ExpandEnvironmentStringsA
ExitProcess
GetLastError
FormatMessageA
LocalFree
DeviceIoControl
CloseHandle
GetVersionExA
CreateFileA
GetSystemInfo

user32

PostThreadMessageA
SetRect
IsRectEmpty
GetMenuItemInfoA
InflateRect
GetSysColorBrush
SetWindowContextHelpId
MapDialogRect
GetMessageA
TranslateMessage
GetCursorPos
ValidateRect
ShowOwnedPopups
IsZoomed
LoadMenuA
DestroyMenu
UnpackDDElParam
ReuseDDElParam
ReleaseCapture
LoadAcceleratorsA
InvalidateRect
InsertMenuItemA
CreatePopupMenu
SetRectEmpty
BringWindowToTop
SetMenu
TranslateAcceleratorA
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
ClientToScreen
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
FillRect
SetMenuItemBitmaps
ModifyMenuA
EnableMenuItem
CheckMenuItem
GetMenuCheckMarkDimensions
LoadBitmapA
SetParent
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
IsDlgButtonChecked
SetDlgItemTextA
CheckRadioButton
CheckDlgButton
GetActiveWindow
CreateDialogIndirectParamA
IsWindowEnabled
GetNextDlgTabItem
WinHelpA
SetCapture
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
GetClassInfoExA
GetClassNameA
SetPropA
SendDlgItemMessageA
GetFocus
IsWindow
SetFocus
IsChild
GetWindowTextLengthA
GetWindowTextA
GetForegroundWindow
GetLastActivePopup
SetActiveWindow
DispatchMessageA
BeginDeferWindowPos
EndDeferWindowPos
GetDlgItem
GetTopWindow
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
LoadIconA
PeekMessageA
MapWindowPoints
TrackPopupMenu
GetKeyState
RegisterClipboardFormatA
LockWindowUpdate
GetDCEx
MessageBeep
GetNextDlgGroupItem
wsprintfA
CharNextA
MessageBoxA
CopyRect
PtInRect
SetForegroundWindow
IsWindowVisible
UpdateWindow
GetMenu
GetSysColor
AdjustWindowRectEx
GetParent
EqualRect
DeferWindowPos
GetClassInfoA
RegisterClassA
UnregisterClassA
GetDlgCtrlID
DefWindowProcA
CallWindowProcA
GetWindowLongA
SetWindowPos
IntersectRect
SystemParametersInfoA
IsIconic
InvalidateRgn
CopyAcceleratorTableA
DestroyIcon
GetCapture
WindowFromPoint
GetWindowPlacement
GetSystemMetrics
GetWindow
GetMenuState
GetMenuItemID
GetMenuItemCount
GetSubMenu
OffsetRect
SetWindowRgn
CharUpperA
GetMessagePos
SetCursor
LoadCursorA
GetDC
ScreenToClient
PostQuitMessage
SendMessageA
GetWindowThreadProcessId
EnumThreadWindows
GetPropA
SetWindowLongA
RemovePropA
RegisterWindowMessageA
PostMessageA
EndDialog
EnableWindow
GetDesktopWindow
KillTimer
SetTimer
GetClientRect
GetWindowRect

gdi32

CreateCompatibleBitmap
GetTextExtentPoint32A
StretchDIBits
GetCharWidthA
CreateFontA
CreateRectRgnIndirect
SetRectRgn
CombineRgn
PatBlt
GetBkColor
GetTextColor
GetRgnBox
CreateCompatibleDC
CreatePatternBrush
DeleteDC
ExtSelectClipRgn
ScaleWindowExtEx
ExcludeClipRect
SetMapMode
SetBkMode
RestoreDC
SaveDC
CreateBitmap
SetBkColor
SetTextColor
GetClipBox
GetDeviceCaps
GetPixel
GetTextMetricsA
GetObjectA
CreateFontIndirectA
GetStockObject
FrameRgn
CreateRoundRectRgn
GetMapMode
CreateSolidBrush
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SelectObject
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
BitBlt
GetWindowExtEx
GetViewportExtEx
CreateRectRgn
SelectClipRgn
DeleteObject
IntersectClipRect
SetWindowExtEx

comdlg32

CommDlgExtendedError
PrintDlgA
GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegSetValueA
CreateServiceA
DeleteService
OpenServiceA
StartServiceA
ControlService
OpenSCManagerA
RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegOpenKeyA
RegDeleteValueA
RegCreateKeyExA
RegQueryValueA
RegDeleteKeyA
CloseServiceHandle
InitializeSecurityDescriptor
SetSecurityDescriptorDacl
StartServiceCtrlDispatcherA
RegisterServiceCtrlHandlerA
RegEnumKeyA
SetServiceStatus
RegSetValueExA
GetCurrentHwProfileA

shell32

ExtractIconA
DragQueryFileA
DragFinish
SHGetSpecialFolderPathA

comctl32

ord17
ImageList_Draw
ImageList_GetImageInfo
ImageList_Destroy

oledlg

ord8

oleaut32

SafeArrayGetElement
SafeArrayGetUBound
SafeArrayGetLBound
VariantClear
SysStringLen
SysFreeString
SysAllocString
SysAllocStringByteLen
SysStringByteLen
VariantChangeType
VariantInit
SysAllocStringLen
VariantCopy
SafeArrayDestroy
SystemTimeToVariantTime
OleCreateFontIndirect

Sections

.text
Size: 224KB - Virtual size: 221KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 76KB - Virtual size: 73KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

753598098ad559b62d3f8ed372d73f1d

Headers

File Characteristics

Imports

setupapi

shlwapi

ole32

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

oleaut32

Sections

.text Size: 224KB - Virtual size: 221KB

.rdata Size: 60KB - Virtual size: 59KB

.data Size: 12KB - Virtual size: 23KB

.rsrc Size: 76KB - Virtual size: 73KB

.text
Size: 224KB - Virtual size: 221KB

.rdata
Size: 60KB - Virtual size: 59KB

.data
Size: 12KB - Virtual size: 23KB

.rsrc
Size: 76KB - Virtual size: 73KB