bc17a44e1b92594b38b59edb19412686_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

bc17a44e1b92594b38b59edb19412686_JaffaCakes118
Size

185KB
MD5

bc17a44e1b92594b38b59edb19412686
SHA1

d83699987813af2b8bd509ad0a7126c91dc422ad
SHA256

59b5f0cf507065b4db9eeeb2f7e015e3283a129496217c0e8ffcda910758a5ac
SHA512

4533277b7a04b1f6e1ea0006838fed3b70844ac6304cad3333c8cd0d4a15bebe051cd13e6b1b8e7487c428e608209711a5ae6b4fa00fecf34ba6a1f704181ba7
SSDEEP

3072:hDF6tkuaoPiQWRC0uIOiCWZNaga72+ZT2RI/WmxryBRn9aJyI7qB:ntoP4luI2WZk72A/WmxGBRg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bc17a44e1b92594b38b59edb19412686_JaffaCakes118

Files

bc17a44e1b92594b38b59edb19412686_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4f0485c98c5e7a8acfd0857ac9934197

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCurrentDirectoryW
GetCommandLineA
GetCommandLineW
FindClose
FindFirstFileA
FindFirstFileW
GetModuleFileNameA
GetModuleFileNameW
GetFullPathNameA
GetFullPathNameW
CreateFileA
CreateFileW
ReadFile
WriteFile
HeapAlloc
HeapFree
GetCurrentDirectoryA
CreateProcessW
GetCurrentThreadId
WideCharToMultiByte
GetFileSize
FindNextFileA
FindNextFileW
ExpandEnvironmentStringsA
ExpandEnvironmentStringsW
GetFileTime
GetFileAttributesA
GetFileAttributesW
SetFilePointer
SetFileTime
SetFileAttributesA
SetFileAttributesW
lstrcatW
lstrcatA
MultiByteToWideChar
lstrcmpW
lstrcmpA
GetProcessHeap
GetWindowsDirectoryW
GetACP
GetOEMCP
GetUserDefaultLangID
GetLocaleInfoW
GetLocaleInfoA
GetModuleHandleA
GetStartupInfoA
CreateMutexA
GetLastError
WaitForSingleObject
GetProcAddress
lstrcpynA
LoadLibraryA
GetModuleHandleW
GetStartupInfoW
CreateMutexW
lstrcpynW
LoadLibraryW
FreeLibrary
SearchPathW
lstrlenW
SetCurrentDirectoryW
lstrcmpiW
MulDiv
SearchPathA
ReleaseMutex
CloseHandle
lstrlenA
Sleep
GlobalLock
GlobalUnlock
SetCurrentDirectoryA
lstrcmpiA
lstrcpyW
lstrcpyA
CompareFileTime
ExitProcess
GlobalFree
CreateProcessA
GlobalAlloc

user32

GetSysColor
GetSystemMetrics
SetClassLongA
GetClientRect
DrawMenuBar
DeleteMenu
GetSubMenu
CreateWindowExA
DefFrameProcW
GetMenuStringW
DispatchMessageW
GetMenuStringA
SetClassLongW
CreateWindowExW
TranslateAcceleratorW
IsDialogMessageW
GetMessageW
RegisterClassW
FindWindowW
TranslateAcceleratorA
IsDialogMessageA
GetMessageA
RegisterClassA
LoadCursorA
FindWindowA
GetClassNameA
GetClassNameW
SetWindowPos
DrawTextExA
DrawTextExW
CharUpperA
CharUpperW
ModifyMenuA
InsertMenuA
ModifyMenuW
InsertMenuW
CallNextHookEx
GetKeyState
GetKeyNameTextA
MapVirtualKeyA
GetKeyNameTextW
MapVirtualKeyW
UnhookWindowsHookEx
EndDialog
SetDlgItemTextA
SetDlgItemTextW
GetFocus
ActivateKeyboardLayout
GetKeyboardLayout
ReleaseDC
GetDC
SetForegroundWindow
MoveWindow
GetWindow
LoadMenuA
LoadMenuW
LoadAcceleratorsA
LoadAcceleratorsW
LoadIconA
LoadIconW
LoadImageA
LoadImageW
LoadStringA
LoadStringW
CreateDialogParamA
CreateDialogParamW
DialogBoxParamA
DialogBoxParamW
EnumThreadWindows
WaitForInputIdle
CheckMenuRadioItem
SetWindowsHookExA
GetWindowTextA
EnableWindow
SetWindowTextA
GetWindowTextW
SetWindowTextW
DrawTextA
DrawTextW
GetWindowTextLengthA
GetWindowTextLengthW
GetDlgItemInt
SetDlgItemInt
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
GetClipboardData
IsCharLowerA
CharLowerA
CharLowerBuffA
CharUpperBuffA
IsCharLowerW
CharLowerW
CharLowerBuffW
CharUpperBuffW
GetDlgItemTextA
GetDlgItemTextW
ShowCaret
HideCaret
FindWindowExA
FindWindowExW
DestroyCursor
DestroyAcceleratorTable
DestroyMenu
PostQuitMessage
DefFrameProcA
GetClassLongW
ScreenToClient
GetSystemMenu
SetCapture
SetCursor
GetClassLongA
ReleaseCapture
CreateMDIWindowW
DestroyWindow
DestroyIcon
CreateMDIWindowA
CallWindowProcW
SendMessageW
DefWindowProcW
CallWindowProcA
MessageBeep
SystemParametersInfoA
GetScrollInfo
DefWindowProcA
GetCursorPos
SetWindowLongW
DefMDIChildProcW
SetWindowLongA
InvalidateRect
GetDlgItem
DefMDIChildProcA
wsprintfW
MessageBoxW
PostMessageW
GetWindowLongW
SetFocus
wsprintfA
MessageBoxA
PostMessageA
ShowWindow
UpdateWindow
GetQueueStatus
GetKeyboardState
PeekMessageA
TranslateMessage
DispatchMessageA
ShowScrollBar
CheckMenuItem
ClientToScreen
GetWindowRect
EnableMenuItem
TrackPopupMenu
GetParent
GetWindowLongA
SendMessageA
PeekMessageW

gdi32

StartDocW
GetTextMetricsW
StartDocA
GetTextMetricsA
StartPage
EndPage
EndDoc
DeleteDC
CreateFontIndirectW
GetCharWidthW
CreateFontIndirectA
SelectObject
GetCharWidthA
DeleteObject
CreateDCW
CreateDCA
GetDeviceCaps
GetObjectW
GetObjectA
GetStockObject

advapi32

RegQueryValueExA
RegSetValueExA
RegCloseKey
RegOpenKeyExA
RegSetValueExW
RegQueryValueExW
RegCreateKeyExW
RegDeleteKeyW
RegEnumKeyExW
RegDeleteKeyA
RegEnumKeyExA
RegEnumValueW
RegDeleteValueW
RegEnumValueA
RegDeleteValueA
RegOpenKeyExW
RegCreateKeyExA

shell32

SHGetMalloc
DragAcceptFiles
DragQueryFileW
DragQueryFileA
DragFinish
ShellExecuteW
ShellExecuteA
SHChangeNotify

comctl32

ImageList_SetBkColor
ImageList_Create
ord17
PropertySheetA
ImageList_Destroy
ImageList_ReplaceIcon
PropertySheetW

comdlg32

PrintDlgW
GetOpenFileNameA
PrintDlgA
GetSaveFileNameA
GetSaveFileNameW
ChooseColorW
ChooseColorA
ChooseFontW
ChooseFontA
PageSetupDlgW
GetOpenFileNameW
PageSetupDlgA

version

GetFileVersionInfoW
VerQueryValueW
GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeW

ole32

ReleaseStgMedium

Sections

.text
Size: 145KB - Virtual size: 145KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 14KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 4KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4f0485c98c5e7a8acfd0857ac9934197

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

comctl32

comdlg32

version

ole32

Sections

.text Size: 145KB - Virtual size: 145KB

.rdata Size: 14KB - Virtual size: 14KB

.data Size: 4KB - Virtual size: 53KB

.rsrc Size: 19KB - Virtual size: 19KB

.text
Size: 145KB - Virtual size: 145KB

.rdata
Size: 14KB - Virtual size: 14KB

.data
Size: 4KB - Virtual size: 53KB

.rsrc
Size: 19KB - Virtual size: 19KB