b85438015d1a3e1ad8a51d655e71baf9_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b85438015d1a3e1ad8a51d655e71baf9_JaffaCakes118
Size

1.9MB
MD5

b85438015d1a3e1ad8a51d655e71baf9
SHA1

680ffa6a9dc160936ecf0f58aa3c6e0ce94284ea
SHA256

7ff08f08a2bc57ce52bc929f0be700d6169f7d744198618b92b7b716cccffcc7
SHA512

917066d4ac3aa7bc0484c9decd3007aab23c4432dd4d94012db967f56b89ae58cec3572318936d0a7a0fd3a0545975eb8e42b42e8f16cbbe5b2d86c3d3ac7c7c
SSDEEP

24576:eTckHkFyvDK9LqQhZ/DHjiwaPq2Ew/qvZV2nIy+GApttaiODS76USmWNMwutoW/b:Pik/nDHjiM2jqPPy1Apttppz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b85438015d1a3e1ad8a51d655e71baf9_JaffaCakes118

Files

b85438015d1a3e1ad8a51d655e71baf9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

224225d08653b2d9858a555d300785ee

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA

kernel32

DosDateTimeToFileTime
EnterCriticalSection
GetLastError
lstrlenW
LockResource
WideCharToMultiByte
GetLocaleInfoA
GetFileSize
IsBadWritePtr
CreateFileMappingA
MapViewOfFile
InterlockedIncrement
VirtualAlloc
VirtualFree
ReadFile
SetFilePointer
GetDriveTypeA
GetVersionExA
GetVersion
SetEnvironmentVariableA
CreateMutexA
CreateThread
GetExitCodeThread
LocalAlloc
GetShortPathNameA
FormatMessageA
LocalFree
GetCurrentProcess
ExpandEnvironmentStringsA
OpenProcess
WaitForSingleObject
LoadLibraryExA
GetFileTime
CompareFileTime
GetCurrentDirectoryA
ExitProcess
GlobalAddAtomA
MultiByteToWideChar
lstrcmpiA
GetModuleHandleA
GetDiskFreeSpaceA
GetProcAddress
CreateProcessA
GetExitCodeProcess
OpenMutexA
ResumeThread
GetDateFormatA
SetCurrentDirectoryA
MoveFileExA
GetSystemDefaultLangID
lstrcmpA
CreateDirectoryA
GetUserDefaultLangID
RemoveDirectoryA
GetModuleFileNameA
GetFileAttributesA
lstrcpynA
LeaveCriticalSection
InitializeCriticalSection
DeleteCriticalSection
LocalFileTimeToFileTime
SetFileTime
lstrcpyA
lstrcatA
WinExec
FindNextFileA
LoadLibraryA
FindFirstFileA
GetWindowsDirectoryA
FindClose
GetSystemDirectoryA
lstrlenA
SetLastError
GetProfileStringA
MoveFileA
Sleep
CopyFileA
GetEnvironmentVariableA
DeleteFileA
CreateFileA
CloseHandle
SetFileAttributesA
GetTempPathA
FindResourceA
SizeofResource
LoadResource
GlobalAlloc
GlobalLock
GlobalUnlock
FreeLibrary
GetProcessVersion
SuspendThread
FlushFileBuffers
LockFile
HeapSize
ExitThread
GetLocaleInfoW
CompareStringW
CompareStringA
GetUserDefaultLCID
EnumSystemLocalesA
IsValidCodePage
IsValidLocale
IsBadCodePtr
IsBadReadPtr
GetStringTypeW
GetStringTypeA
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
SetEnvironmentVariableW
LCMapStringW
LCMapStringA
FileTimeToLocalFileTime
GetACP
GetCommandLineA
HeapReAlloc
SetUnhandledExceptionFilter
GetStdHandle
SetHandleCount
HeapCreate
HeapDestroy
CreateEventA
GetLocalTime
GetSystemTime
GetStartupInfoA
TerminateProcess
GetFileType
GetTimeZoneInformation
HeapAlloc
RtlUnwind
HeapFree
FindResourceExA
InterlockedExchange
RaiseException
InterlockedDecrement
GlobalDeleteAtom
GlobalFindAtomA
GlobalGetAtomNameA
GetCurrentThreadId
DuplicateHandle
WriteFile
SetStdHandle
GetCurrentThread
UnlockFile
SetEndOfFile
GetVolumeInformationA
GetFullPathNameA
MulDiv
GlobalFree
FileTimeToSystemTime
TlsAlloc
GlobalHandle
SetEvent
SetThreadPriority
TlsSetValue
LocalReAlloc
GetPrivateProfileStringA
WritePrivateProfileStringA
GlobalFlags
TlsFree
GlobalReAlloc
TlsGetValue
GetOEMCP
GetCPInfo
SetErrorMode

user32

GetMenuItemID
GetDlgCtrlID
GetMenu
RegisterClassA
GetClassInfoA
wsprintfA
GetCapture
DestroyWindow
IsWindowVisible
EndDeferWindowPos
BeginDeferWindowPos
DeferWindowPos
EqualRect
AdjustWindowRectEx
SetActiveWindow
DispatchMessageA
PeekMessageA
MapWindowPoints
SendDlgItemMessageA
SetPropA
IsDlgButtonChecked
IsDialogMessageA
MoveWindow
IsWindowEnabled
CallNextHookEx
SetWindowsHookExA
DefWindowProcA
SetMenuItemBitmaps
ModifyMenuA
GetMenuState
LoadBitmapA
GetMenuCheckMarkDimensions
CharUpperA
ClientToScreen
GetWindowDC
BeginPaint
EndPaint
CreateDialogIndirectParamA
GetActiveWindow
DrawFocusRect
WindowFromPoint
GetCursorPos
ValidateRect
TranslateMessage
GetMessageA
SetRectEmpty
LoadAcceleratorsA
TranslateAcceleratorA
DestroyMenu
LoadMenuA
SetMenu
ReuseDDElParam
UnpackDDElParam
BringWindowToTop
PostQuitMessage
ShowOwnedPopups
GetAsyncKeyState
MapDialogRect
CheckMenuItem
GetNextDlgTabItem
EnableMenuItem
IsWindowUnicode
ShowCaret
HideCaret
GetMenuItemCount
GetSubMenu
WinHelpA
GetKeyState
GetFocus
IsChild
RedrawWindow
DestroyCursor
LoadStringA
ReleaseCapture
SystemParametersInfoA
SetRect
AdjustWindowRect
GetSystemMetrics
OffsetRect
SetCapture
GetSysColorBrush
GetTopWindow
ExitWindowsEx
GetWindowTextLengthA
EnumChildWindows
CopyRect
GrayStringA
DrawTextA
TabbedTextOutA
SetWindowPos
SetWindowTextA
ShowWindow
CreateWindowExA
GetDlgItem
GetWindowTextA
EndDialog
SetFocus
SetForegroundWindow
UpdateWindow
GetWindowThreadProcessId
GetForegroundWindow
PostMessageA
GetDesktopWindow
GetWindow
GetClassNameA
GetWindowLongA
FindWindowA
DrawIcon
LoadCursorA
CopyIcon
GetParent
InflateRect
IsWindow
SetCursor
GetMessagePos
ScreenToClient
PtInRect
InvalidateRect
SetTimer
MessageBeep
SetWindowLongA
KillTimer
BroadcastSystemMessage
GetWindowRect
MessageBoxA
LoadIconA
SendMessageA
EnableWindow
MessageBoxExA
GetDC
ReleaseDC
GetSysColor
FillRect
GetClientRect
RegisterWindowMessageA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetLastActivePopup
IntersectRect
IsIconic
GetWindowPlacement
CharNextA
DefDlgProcA
GetClassLongA
ExcludeUpdateRgn
UnregisterClassA

gdi32

CreateDIBitmap
GetTextExtentPointA
CreateFontA
Escape
GetTextFaceA
TextOutA
RectVisible
ExtTextOutA
GetDeviceCaps
GetCurrentObject
PtVisible
GetObjectA
CreateFontIndirectA
GetStockObject
BitBlt
CreateCompatibleDC
GetTextExtentPoint32A
DeleteDC
SelectObject
CreateCompatibleBitmap
EnumFontFamiliesExA
GetClipBox
SetTextColor
SetBkColor
CreateBitmap
SaveDC
RestoreDC
SetBkMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
IntersectClipRect
MoveToEx
LineTo
DeleteObject
CreatePen
CreateSolidBrush
GetTextMetricsA
PatBlt
DPtoLP

shell32

SHGetMalloc
SHBrowseForFolderA
SHGetPathFromIDListA
ShellExecuteA
SHChangeNotify
DragFinish
DragQueryFileA

ole32

CreateStreamOnHGlobal
CoCreateInstance
CoInitialize
CoUninitialize
CoInitializeEx

oleaut32

OleLoadPicture
VarBstrFromDate
VariantClear

comctl32

ord17
PropertySheetA

wsock32

ioctlsocket
htons
socket
WSAStartup
closesocket
connect
WSACleanup

winspool.drv

ClosePrinter
OpenPrinterA
DocumentPropertiesA

comdlg32

GetFileTitleA

Sections

.text
Size: 884KB - Virtual size: 880KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 144KB - Virtual size: 193KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 792KB - Virtual size: 808KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

224225d08653b2d9858a555d300785ee

Headers

File Characteristics

Imports

version

kernel32

user32

gdi32

shell32

ole32

oleaut32

comctl32

wsock32

winspool.drv

comdlg32

Sections

.text Size: 884KB - Virtual size: 880KB

.rdata Size: 108KB - Virtual size: 107KB

.data Size: 144KB - Virtual size: 193KB

.rsrc Size: 792KB - Virtual size: 808KB

.text
Size: 884KB - Virtual size: 880KB

.rdata
Size: 108KB - Virtual size: 107KB

.data
Size: 144KB - Virtual size: 193KB

.rsrc
Size: 792KB - Virtual size: 808KB