b3d8572d8f9339dee3c6601d21344e16_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b3d8572d8f9339dee3c6601d21344e16_JaffaCakes118
Size

26KB
MD5

b3d8572d8f9339dee3c6601d21344e16
SHA1

2bd010d1e1d5976ddad59da6daf4dcc334f101ee
SHA256

46b808f1a1aee38592375af5882e1775b0460aa1c3a3aa551eee9ca41dbd1e1a
SHA512

795da74a9466c666411394c1c160aee9c14cbdee1e52c12e3e1bf965a4e82fa429e3767160249b8dfa4833888e05ee6cb610c2d9b6c2fcb054a49bdebddab125
SSDEEP

768:I3IHlKmpMt7TKQfixS8qL9K85fSDLQ/+db1io:62KmpMt7TKQfixS8j85iQ/+d

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b3d8572d8f9339dee3c6601d21344e16_JaffaCakes118

Files

b3d8572d8f9339dee3c6601d21344e16_JaffaCakes118
.exe windows:4 windows x86 arch:x86

62fe7dfb6cfaa19735f684d3dd8a513a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegQueryValueExW
RegDeleteKeyA
RegSetValueExA
RegSetValueExW
RegOpenKeyExA
RegCreateKeyExW
RegCreateKeyW
RegQueryValueExA
RegOpenKeyW
RegOpenKeyExW
RegDeleteValueW
RegNotifyChangeKeyValue
RegDeleteKeyW
RegOpenKeyA
RegCloseKey
RegEnumKeyW
RegCreateKeyA
RegEnumValueW
RegSetValueW
RegQueryValueW

kernel32

WriteConsoleA
SuspendThread
LCMapStringA
GetConsoleMode
FatalAppExitA
GetTimeFormatA
DeleteCriticalSection
IsDebuggerPresent
GetStartupInfoW
GetConsoleCP
lstrcpyA
GetFileTime
GlobalAddAtomW
CreateEventW
SetCurrentDirectoryW
GetVolumeInformationW
WaitForSingleObject
CompareStringW
ResetEvent
ConvertDefaultLocale
GetThreadLocale
lstrlenA
GlobalSize
GetSystemTimeAsFileTime
GetFileSize
GlobalReAlloc
GetAtomNameW
HeapSize
lstrcmpiW
FreeEnvironmentStringsA
GetConsoleOutputCP
SetEndOfFile
SetHandleCount
GlobalDeleteAtom
GetCurrentProcess
ExitThread
RaiseException
GetModuleFileNameW
TlsSetValue
SetEnvironmentVariableA
GetModuleFileNameA
GetCPInfo
GetDateFormatA
GetVersionExW
GetStringTypeA
GetCurrentDirectoryW
GetFileAttributesA
InterlockedDecrement
TerminateProcess
FormatMessageW
GetVersion
FindFirstFileW
LocalAlloc
GlobalHandle
GetUserDefaultLCID
GetCurrentThreadId
CompareStringA
IsValidCodePage
LoadLibraryW
CopyFileW
LCMapStringW
SetLastError
GetVersionExA
SetFileAttributesW
WritePrivateProfileStringW
GetStdHandle
IsValidLocale
GetPrivateProfileIntW
HeapCreate
GlobalLock
GetTimeZoneInformation
LocalFileTimeToFileTime
GetDriveTypeA
GlobalUnlock
CreateThread
HeapReAlloc
SetFileTime
FreeEnvironmentStringsW
GlobalFlags
CloseHandle
GetCurrentProcessId
TlsFree
LockFile
GetCommandLineW
TlsGetValue
InitializeCriticalSection
MultiByteToWideChar
GetCurrentThread
FlushFileBuffers
LeaveCriticalSection
EnumResourceLanguagesW
QueryPerformanceCounter
GetEnvironmentStringsW
lstrcmpW
GetModuleHandleW
ExitProcess
UnhandledExceptionFilter
SetConsoleCtrlHandler
GetSystemInfo
GlobalGetAtomNameW
FreeResource
GetStringTypeExW
GetFullPathNameW
GetFileAttributesW
InterlockedIncrement
FileTimeToLocalFileTime
SetThreadPriority
GetModuleHandleA
ReadFile
TlsAlloc
GetDriveTypeW
GetStringTypeW
GetLocaleInfoA
SetUnhandledExceptionFilter
HeapAlloc
WriteFile
GetLastError
GetStartupInfoA
VirtualAlloc
SetCurrentDirectoryA
VirtualFree
GlobalFree
GetCurrentDirectoryA
ResumeThread
Sleep
SetEvent
FindNextFileW
SizeofResource
DeleteFileW
GetTickCount
WriteConsoleW
GetShortPathNameW
SetStdHandle
UnlockFile
lstrlenW
RtlUnwind
MoveFileW
LoadLibraryA
LocalReAlloc
LocalFree
GlobalFindAtomW
GlobalAlloc
GetFileType
GetEnvironmentStrings
EnterCriticalSection
HeapFree
GetProcAddress
GetOEMCP
GetLocaleInfoW
WideCharToMultiByte
LoadResource
GetPrivateProfileStringW
MulDiv
CreateFileW
SetFilePointer
LockResource
DuplicateHandle
lstrcmpA
EnumSystemLocalesA
GetProcessHeap
FindResourceW
SetErrorMode
GetFullPathNameA
CreateFileA
SystemTimeToFileTime
InterlockedExchange
GetACP
HeapDestroy
FindClose
CreateProcessW
GetCommandLineA
FileTimeToSystemTime
FreeLibrary

version

VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA

shell32

ShellExecuteW
ExtractIconW
Shell_NotifyIconW
SHGetFileInfoW

gdi32

SetTextColor
SetRectRgn
CreateDCW
SetColorAdjustment
SelectPalette
SetArcDirection
PlayMetaFileRecord
SelectClipRgn
Escape
GetCurrentPositionEx
SetTextCharacterExtra
CreateCompatibleDC
PolyDraw
SelectObject
SetBkMode
GetObjectW
SetTextAlign
SetViewportExtEx
DeleteDC
OffsetWindowOrgEx
SetViewportOrgEx
PolylineTo
OffsetViewportOrgEx
ExtTextOutW
SetStretchBltMode
RestoreDC
SetWindowOrgEx
CreatePatternBrush
GetClipRgn
GetWindowExtEx
CreateBitmap
GetTextExtentPoint32W
GetDeviceCaps
PatBlt
OffsetClipRgn
ExtSelectClipRgn
ArcTo
GetClipBox
RectVisible
GetDCOrgEx
CreateRectRgnIndirect
DPtoLP
CopyMetaFileW
GetViewportExtEx
LineTo
ScaleViewportExtEx
SaveDC
SetWorldTransform
TextOutW
CombineRgn
PlayMetaFile
CreateRectRgn
PtVisible
GetStockObject
GetMapMode
GetObjectType
ModifyWorldTransform
ExtCreatePen
SetMapperFlags
PolyBezierTo
SetWindowExtEx
MoveToEx
ScaleWindowExtEx
SelectClipPath
SetBkColor
SetMapMode
CreateDIBPatternBrushPt
SetGraphicsMode
GetTextMetricsW
BitBlt
IntersectClipRect
CreateHatchBrush
GetPixel
DeleteObject
StartDocW
CreatePen
SetPolyFillMode
EnumMetaFile
CreateSolidBrush
SetTextJustification
ExcludeClipRect
CreateFontIndirectW
SetROP2

oleacc

AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject

comdlg32

GetFileTitleW

comctl32

CreateStatusWindowA

user32

GetMessagePos
SetClassLongW
ValidateRect
MoveWindow
SetWindowPlacement
DestroyMenu
GetMenuCheckMarkDimensions
LoadStringW
GetMessageTime
UnregisterClassA
ScreenToClient
GetSystemMetrics
GetClassLongW
CallNextHookEx
FindWindowW
GetSysColor
ShowOwnedPopups
GetDC
GetTopWindow
CreateWindowExW
EnumThreadWindows
GetWindowThreadProcessId
GetSubMenu
BeginPaint
LoadBitmapW
ShowScrollBar
GetMessageW
GetWindowLongW
GetDesktopWindow
GetMenuStringW
TranslateMessage
GetNextDlgTabItem
SetCursor
FindWindowExW
GetMenuItemCount
WinHelpW
RegisterClassExW
SendDlgItemMessageA
GetDlgCtrlID
CheckMenuItem
SetFocus
GetLastActivePopup
GetCapture
DestroyWindow
PeekMessageW
EndDeferWindowPos
CallWindowProcW
RegisterClassW
LoadCursorW
GetDialogBaseUnits
SetDlgItemInt
DefWindowProcW
SetWindowPos
KillTimer
SystemParametersInfoW
GetScrollPos
AdjustWindowRectEx
GetMenuState
GetClassNameW
GetWindowTextW
GrayStringW
GetWindowPlacement
DeleteMenu
GetPropW
RemoveMenu
DrawTextW
UnregisterClassW
ClientToScreen
EndPaint
SendDlgItemMessageW
IntersectRect
GetMenu
DispatchMessageW
GetKeyState
GetMenuItemID
GetClassInfoW
SetPropW
EnableMenuItem
UnhookWindowsHookEx
GetDlgItemInt
GetActiveWindow
TrackPopupMenu
SetWindowTextW
CharUpperW
PtInRect
SetScrollInfo
SetTimer
EndDialog
GetParent
ShowWindow
SetWindowLongW
SetScrollRange
SendMessageW
UpdateWindow
GetSysColorBrush
GetWindow
FillRect
CopyRect
CreateDialogIndirectParamW
InsertMenuW
IsDlgButtonChecked
TrackPopupMenuEx
SystemParametersInfoA
GetClientRect
GetScrollInfo
DeferWindowPos
IsWindowEnabled
TabbedTextOutW
PostMessageW
MapWindowPoints
GetWindowRect
GetDlgItemTextW
GetForegroundWindow
GetDlgItem
PostQuitMessage
GetWindowDC
GetCursorPos
LoadMenuW
GetWindowTextLengthW
IsWindow
SetActiveWindow
IsIconic
RegisterWindowMessageW
RemovePropW
GetMenuItemInfoW
DrawTextExW
EnableWindow
SetForegroundWindow
EqualRect
MessageBoxW
OffsetRect
ScrollWindow
CreateDialogParamW
SetDlgItemTextW
CheckDlgButton
LoadIconW
AppendMenuW
DestroyIcon
GetScrollRange
ScrollWindowEx
SetMenuItemBitmaps
ModifyMenuW
CheckRadioButton
IsDialogMessageW
ReleaseDC
IsChild
GetFocus
InflateRect
GetClassInfoExW
SetScrollPos
SetWindowsHookExW
IsWindowVisible
LoadImageW
BeginDeferWindowPos
WaitForInputIdle

shlwapi

PathFindExtensionW
PathIsUNCW
PathRemoveExtensionW
PathStripToRootW
PathFindFileNameW

ws2_32

WSAGetLastError

Sections

.data
Size: 1KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.text
Size: 512B - Virtual size: 473B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

62fe7dfb6cfaa19735f684d3dd8a513a

Headers

File Characteristics

Imports

advapi32

kernel32

version

shell32

gdi32

oleacc

comdlg32

comctl32

user32

shlwapi

ws2_32

Sections

.data Size: 1KB - Virtual size: 16KB

.rsrc Size: 10KB - Virtual size: 10KB

.text Size: 512B - Virtual size: 473B

.rdata Size: 13KB - Virtual size: 12KB

.data
Size: 1KB - Virtual size: 16KB

.rsrc
Size: 10KB - Virtual size: 10KB

.text
Size: 512B - Virtual size: 473B

.rdata
Size: 13KB - Virtual size: 12KB