badc31680661351fe7a5aaf9563ee5ea_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

badc31680661351fe7a5aaf9563ee5ea_JaffaCakes118
Size

916KB
MD5

badc31680661351fe7a5aaf9563ee5ea
SHA1

962c54498c8d61bc8abdabf8b346b2d000b19260
SHA256

70b7d560cca428748b3cec22307ed52c5995c8e77e22297309ac00333840ae2b
SHA512

080a1bc997826589c1fe1e09a5d8e7a66668bf28cb29fc47dfea0b5d94493342279f3b319336afb3a29a28794376cdae5893d377cfb9ef8865d35c12160aabb7
SSDEEP

12288:d/l3b0/6VdYXHwn31cc6PgQ0CR2NldXdr:dt3b0iVdsHwn31tYgjRdXdr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
badc31680661351fe7a5aaf9563ee5ea_JaffaCakes118

Files

badc31680661351fe7a5aaf9563ee5ea_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bd143d606f526d70972f8b89e1b2b3d1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
GetCurrentProcess
SetPriorityClass
ReleaseSemaphore
CopyFileA
WaitForSingleObject
CreateSemaphoreA
SetEvent
CreateProcessA
GetLastError
GetPrivateProfileStructA
lstrcmpA
GetSystemTimeAsFileTime
GlobalReAlloc
MultiByteToWideChar
CreateDirectoryA
CreateEventA
WritePrivateProfileStructA
WideCharToMultiByte
GetACP
lstrlenA
MulDiv
GetFullPathNameA
GetCurrentThreadId
GlobalUnlock
GlobalLock
InterlockedIncrement
InterlockedDecrement
FlushInstructionCache
GetCurrentThread
SetThreadPriority
CreateThread
CloseHandle
GetModuleHandleA
GetTickCount
GetModuleFileNameA
FindResourceA
LoadResource
LockResource
GlobalAlloc
FindNextFileA
lstrcpynA
TerminateThread
GetTempFileNameA
MoveFileA
CreateFileA
ReadFile
SetFilePointer
WriteFile
SetEndOfFile
LoadLibraryA
GetProcAddress
FreeLibrary
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
lstrcpyA
VirtualAlloc
VirtualFree
FindFirstFileA
FindClose
lstrcmpiA
DeleteFileA
GetTempPathA
GetPrivateProfileIntA
SetCurrentDirectoryA
GetCurrentDirectoryA
WritePrivateProfileStringA
GetPrivateProfileStringA
Sleep
HeapDestroy
lstrlenW
SystemTimeToFileTime
GetSystemTime
GetCPInfo
GetStartupInfoA
RtlUnwind
GetCommandLineA
HeapCreate
HeapFree
TerminateProcess
SetHandleCount
GetStdHandle
GetFileType
LCMapStringA
LCMapStringW
HeapAlloc
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GlobalFree
GetStringTypeA
GetStringTypeW
HeapReAlloc
IsBadWritePtr
GetVersion
GetOEMCP
SetStdHandle
FlushFileBuffers
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
RaiseException

user32

GetClassNameA
GetWindow
GetWindowTextLengthA
GetSysColor
SetFocus
GetFocus
FillRect
GetClassInfoExA
CreateAcceleratorTableA
InvalidateRgn
GetCursorPos
EnableWindow
EndDialog
LoadCursorA
SetCursor
DefWindowProcA
SetWindowLongA
GetWindowLongA
SetWindowPos
DialogBoxParamA
ClientToScreen
RedrawWindow
RegisterClassExA
CheckMenuItem
GetUpdateRect
BeginPaint
EndPaint
LoadImageA
GetForegroundWindow
GetWindowDC
DdeInitializeA
DdeCreateStringHandleA
DdeConnect
CheckRadioButton
DrawIconEx
DdeGetLastError
DdeFreeStringHandle
DdeDisconnect
DdeUninitialize
SystemParametersInfoA
DrawTextA
GetWindowRect
LoadBitmapA
GetClientRect
IsWindowVisible
InsertMenuA
GetMenuItemInfoA
InvalidateRect
GetDC
ReleaseDC
GetAsyncKeyState
GetWindowTextA
SetWindowTextA
wsprintfA
SetTimer
KillTimer
CharPrevA
SetWindowRgn
wvsprintfA
PostMessageA
GetDlgItemInt
SetDlgItemInt
ShowWindow
SetCursorPos
IsWindow
IsDlgButtonChecked
GetDlgItem
SendMessageA
SetForegroundWindow
CallWindowProcA
RemoveMenu
InsertMenuItemA
CreateWindowExA
GetClassInfoA
RegisterWindowMessageA
LoadStringA
FindWindowA
LoadAcceleratorsA
GetMessageA
IsDialogMessageA
IsChild
DestroyWindow
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
DestroyMenu
CharNextA
SendDlgItemMessageA
GetDlgItemTextA
PeekMessageA
SetDlgItemTextA
SetClassLongA
CreateDialogParamA
GetSystemMenu
GetParent
CheckDlgButton
UpdateWindow
FindWindowExA
PostQuitMessage
DdeCreateDataHandle
LoadMenuA
DdeClientTransaction
SetCapture
MessageBoxA
ScreenToClient
GetSubMenu
ReleaseCapture
TrackPopupMenu
RegisterClassA
LoadIconA
CreatePopupMenu

gdi32

MoveToEx
DeleteObject
BitBlt
StretchBlt
SetStretchBltMode
CreateCompatibleBitmap
SelectObject
CreateCompatibleDC
SetBkColor
SetTextColor
GetTextMetricsA
CreateFontA
SetMapMode
SetBkMode
CreateBrushIndirect
GetNearestColor
GetPixel
CreatePalette
GetDIBColorTable
CreateDIBSection
GetDeviceCaps
DeleteDC
RealizePalette
SelectPalette
ExtSelectClipRgn
Rectangle
IntersectClipRect
GetStockObject
UpdateColors
CreateRectRgn
CreatePolyPolygonRgn
CreateSolidBrush
LineTo
CreatePen

comdlg32

GetSaveFileNameA
GetOpenFileNameA

advapi32

RegDeleteValueA
RegCloseKey
RegQueryValueExA
RegOpenKeyA
RegDeleteKeyA
RegSetValueExA
RegCreateKeyA

shell32

Shell_NotifyIconA
DragQueryPoint
DragQueryFileA
DragFinish
SHBrowseForFolderA
SHGetPathFromIDListA
SHFileOperationA
ShellExecuteA
SHGetMalloc

comctl32

PropertySheetA
ord17

ole32

CoTaskMemAlloc
CLSIDFromString
CLSIDFromProgID
OleUninitialize
OleInitialize
OleLockRunning
StringFromCLSID
CoTaskMemFree
CreateStreamOnHGlobal
CoCreateInstance
CoInitialize
CoUninitialize

oleaut32

LoadRegTypeLi
SysAllocStringLen
VariantClear
SysAllocString
SysFreeString
SysStringLen

Sections

.text
Size: 256KB - Virtual size: 254KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 580KB - Virtual size: 576KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.prdata
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

bd143d606f526d70972f8b89e1b2b3d1

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

comctl32

ole32

oleaut32

Sections

.text Size: 256KB - Virtual size: 254KB

.rdata Size: 16KB - Virtual size: 13KB

.data Size: 32KB - Virtual size: 102KB

.rsrc Size: 580KB - Virtual size: 576KB

.prdata Size: 28KB - Virtual size: 28KB

.text
Size: 256KB - Virtual size: 254KB

.rdata
Size: 16KB - Virtual size: 13KB

.data
Size: 32KB - Virtual size: 102KB

.rsrc
Size: 580KB - Virtual size: 576KB

.prdata
Size: 28KB - Virtual size: 28KB