b6342e1740bdb53f54c398c30f5e8b09_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b6342e1740bdb53f54c398c30f5e8b09_JaffaCakes118
Size

319KB
MD5

b6342e1740bdb53f54c398c30f5e8b09
SHA1

19cff5a50b9c6be87f79c57d945639ded7ace357
SHA256

2738a46b58a47d538e46d0ef6da16752efa4fb4e7ffe148904fc63da9b43be49
SHA512

7b09fc0eb99c1713cd699d848bf0dcf4ac2284a503b37dad2b5b003b43336ba3aa04b4a5fb475913dd26b30663ee662772a70477a9259bf262a1c47a5380998e
SSDEEP

6144:aO8OZC/iBInmq/Jmea9S9L6RXjZGjCMpOHYJ:w/iBKmq/JA9S9ORX94AC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b6342e1740bdb53f54c398c30f5e8b09_JaffaCakes118

Files

b6342e1740bdb53f54c398c30f5e8b09_JaffaCakes118
.exe windows:4 windows x86 arch:x86

54f107c3d5dd945ee5a8364fa7a300d4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

odbc32

ord18
ord8
ord2
ord66
ord54
ord13
ord3
ord11
ord41
ord15
ord4
ord10
ord16
ord9
ord14
ord1

kernel32

UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetOEMCP
HeapDestroy
HeapCreate
GetTimeZoneInformation
SetUnhandledExceptionFilter
VirtualAlloc
GetStringTypeA
GetStringTypeW
VirtualFree
IsBadWritePtr
IsBadCodePtr
LCMapStringA
LCMapStringW
GetCPInfo
GetACP
GetLocaleInfoW
CompareStringA
CompareStringW
SetEnvironmentVariableA
CloseHandle
GlobalDeleteAtom
GetCurrentThread
lstrcmpA
MultiByteToWideChar
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
MulDiv
GetCurrentThreadId
LockResource
FindResourceA
LoadResource
lstrcatA
lstrcpynA
GlobalGetAtomNameA
GlobalAddAtomA
lstrlenA
GlobalAlloc
GlobalLock
lstrcpyA
GlobalUnlock
GlobalFree
HeapSize
HeapReAlloc
TerminateProcess
ExitProcess
HeapAlloc
HeapFree
RaiseException
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
RtlUnwind
FileTimeToLocalFileTime
FileTimeToSystemTime
SetErrorMode
SystemTimeToFileTime
LocalFileTimeToFileTime
GetFileSize
GetCurrentDirectoryA
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
GetModuleFileNameA
GetShortPathNameA
GetThreadLocale
GetStringTypeExA
GetVolumeInformationA
FindFirstFileA
FindClose
DeleteFileA
MoveFileA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
GetCurrentProcess
DuplicateHandle
LoadLibraryA
GetProcAddress
FreeLibrary
GetLastError
SetLastError
GlobalFlags
lstrcmpiA
GetVersion
GetProcessVersion
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalFree
LocalAlloc
GetDiskFreeSpaceA
GetFullPathNameA
GetTempFileNameA
GetFileTime
SetFileTime
GetFileAttributesA
SetStdHandle
GetLocaleInfoA
GetFileType
GetStdHandle
IsBadReadPtr

user32

SetRect
GetCursorPos
LoadCursorA
IsRectEmpty
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
CharUpperA
LoadStringA
PostQuitMessage
ShowOwnedPopups
MessageBoxA
PtInRect
DestroyCursor
GetMessageA
GetSysColorBrush
GetClassNameA
SetTimer
KillTimer
WindowFromPoint
GetTabbedTextExtentA
InsertMenuA
DeleteMenu
GetMenuStringA
DestroyIcon
InflateRect
GetDCEx
TranslateMessage
SetCapture
IntersectRect
SetParent
ValidateRect
LockWindowUpdate
InvertRect
GetDC
ReleaseDC
OffsetRect
IsZoomed
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
EnableMenuItem
SetWindowTextA
IsDialogMessageA
SetDlgItemTextA
GetDlgItemTextA
SendDlgItemMessageA
SystemParametersInfoA
MapWindowPoints
DispatchMessageA
GetFocus
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
ScreenToClient
ScrollWindow
AppendMenuA
SetScrollInfo
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
GetSystemMenu
GetScrollInfo
GetWindowTextLengthA
GetWindowTextA
DefWindowProcA
SetWindowsHookExA
CallNextHookEx
UnhookWindowsHookEx
GetForegroundWindow
SetForegroundWindow
GetPropA
GetMessageTime
GetMessagePos
GetWindowRect
RegisterWindowMessageA
GetNextDlgTabItem
EndDialog
GetSystemMetrics
CreateDialogIndirectParamA
DestroyWindow
GetLastActivePopup
IsWindowVisible
IsIconic
EqualRect
CopyRect
GetDlgItem
GetKeyState
GetDlgCtrlID
UnpackDDElParam
ReuseDDElParam
SetActiveWindow
WinHelpA
SetMenu
LoadIconA
GetClassInfoA
LoadMenuA
DestroyMenu
SetFocus
ShowWindow
GetDesktopWindow
IsWindowEnabled
GetWindow
SetCursor
PeekMessageA
GetCapture
ReleaseCapture
PostMessageA
LoadAcceleratorsA
SetRectEmpty
GetActiveWindow
GetMenuItemID
AdjustWindowRectEx
RedrawWindow
SetWindowPos
GetWindowLongA
GetParent
IsWindow
SetWindowLongA
DefMDIChildProcA
SendMessageA
DrawMenuBar
TranslateAcceleratorA
TranslateMDISysAccel
DefFrameProcA
CreateWindowExA
BringWindowToTop
GetMenuItemCount
IsChild
GetSubMenu
wsprintfA
GetMenu
CheckMenuItem
IsClipboardFormatAvailable
GetClipboardData
OpenClipboard
SetClipboardData
CloseClipboard
UpdateWindow
EnableWindow
GetSysColor
FillRect
GetClientRect
InvalidateRect
ClientToScreen
RegisterClassA
CallWindowProcA
RemovePropA
SetPropA
UnregisterClassA

gdi32

PatBlt
CreateCompatibleDC
CreateCompatibleBitmap
GetStockObject
StretchDIBits
DeleteDC
GetTextExtentPointA
SelectObject
CreateBitmap
GetObjectA
SetBkColor
SetTextColor
GetTextMetricsA
GetDeviceCaps
LPtoDP
CreateSolidBrush
EndDoc
StartPage
StartDocA
SetAbortProc
CreateDCA
SaveDC
RestoreDC
SetBkMode
SetPolyFillMode
SetROP2
SetStretchBltMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
GetClipBox
SelectClipRgn
ExcludeClipRect
IntersectClipRect
GetViewportOrgEx
MoveToEx
LineTo
SetTextAlign
CreatePen
Rectangle
GetCurrentPositionEx
DeleteObject
CreateRectRgn
GetViewportExtEx
GetWindowExtEx
CreatePatternBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
CreateFontIndirectA
GetNearestColor
GetBkColor
GetTextColor
GetStretchBltMode
GetPolyFillMode
GetTextAlign
GetBkMode
GetROP2
GetTextFaceA
GetCharWidthA
GetWindowOrgEx
CreateRectRgnIndirect
CombineRgn
SetRectRgn
BitBlt
EndPage
DPtoLP
AbortDoc

comdlg32

GetOpenFileNameA
GetFileTitleA
PrintDlgA
CommDlgExtendedError
GetSaveFileNameA

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

RegQueryValueExA
RegSetValueA
RegCreateKeyA
RegDeleteValueA
RegSetValueExA
RegOpenKeyExA
RegCreateKeyExA
GetFileSecurityA
SetFileSecurityA
RegDeleteKeyA
RegOpenKeyA
RegCloseKey
RegQueryValueA

shell32

ExtractIconA
SHGetFileInfoA
DragQueryFileA
DragFinish

comctl32

ord17
ImageList_Destroy

Sections

.text
Size: 190KB - Virtual size: 189KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 19KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 29KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

54f107c3d5dd945ee5a8364fa7a300d4

Headers

File Characteristics

Imports

odbc32

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

Sections

.text Size: 190KB - Virtual size: 189KB

.rdata Size: 44KB - Virtual size: 44KB

.data Size: 19KB - Virtual size: 31KB

.idata Size: 10KB - Virtual size: 9KB

.rsrc Size: 29KB - Virtual size: 28KB

.reloc Size: 25KB - Virtual size: 24KB

.text
Size: 190KB - Virtual size: 189KB

.rdata
Size: 44KB - Virtual size: 44KB

.data
Size: 19KB - Virtual size: 31KB

.idata
Size: 10KB - Virtual size: 9KB

.rsrc
Size: 29KB - Virtual size: 28KB

.reloc
Size: 25KB - Virtual size: 24KB