bc9a646101e8dab2e4f484cad4996901_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

bc9a646101e8dab2e4f484cad4996901_JaffaCakes118
Size

1.8MB
MD5

bc9a646101e8dab2e4f484cad4996901
SHA1

7fe3e6533c89c909c2e3c8dfe5a324c8393f5165
SHA256

6a9455ad4f1c97c63d3ea641cf473583f1329d09c130171fcc3eacce8f28b4f4
SHA512

86b292dff2a374015524a87a0bcefd284631bb75a9ad3d25260dcccca0d76286bae243c73a718dae6a1234c04decce66020b1fc1d2ff5f9703199b84aab708fc
SSDEEP

24576:IlaRv/VDdWR9CYENUfR2Ow+ydF3CvqttxRIgnsaXpbpGqzH:dLWR9GNH+QhCyttfIo5ZbpGkH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bc9a646101e8dab2e4f484cad4996901_JaffaCakes118

Files

bc9a646101e8dab2e4f484cad4996901_JaffaCakes118
.exe windows:4 windows x86 arch:x86

78697fc1b1eb47d1fd1d4d6e17ed10ca

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA

kernel32

DeleteCriticalSection
GlobalFlags
GetProcessVersion
GlobalSize
GlobalReAlloc
TlsAlloc
GlobalHandle
TlsFree
TlsSetValue
LocalReAlloc
TlsGetValue
GetCPInfo
GetOEMCP
SetErrorMode
FindResourceExA
GetTempFileNameA
RtlUnwind
RaiseException
HeapFree
GetStartupInfoA
GetCommandLineA
ExitProcess
GetTimeZoneInformation
GetSystemTime
GetLocalTime
GetACP
TerminateProcess
ExitThread
HeapSize
HeapReAlloc
FatalAppExitA
LCMapStringA
LCMapStringW
SetUnhandledExceptionFilter
GetEnvironmentVariableA
VirtualFree
VirtualAlloc
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetStringTypeA
GetStringTypeW
SetFileTime
IsBadCodePtr
CompareStringA
CompareStringW
SetStdHandle
IsValidLocale
IsValidCodePage
EnumSystemLocalesA
GetUserDefaultLCID
SetConsoleCtrlHandler
GetLocaleInfoW
GetModuleFileNameA
HeapDestroy
HeapAlloc
HeapCreate
LocalFree
FormatMessageA
GetLastError
MoveFileA
CreateDirectoryA
GetDriveTypeA
GetFileAttributesA
GetDiskFreeSpaceA
GetProcAddress
GetModuleHandleA
FindClose
lstrcmpA
FindNextFileA
FindFirstFileA
MultiByteToWideChar
GetTempPathA
GetVolumeInformationA
GetVersionExA
lstrcpyA
lstrcmpiA
CloseHandle
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
lstrlenA
GetLocaleInfoA
GetThreadLocale
GetTimeFormatA
GetDateFormatA
GetNumberFormatA
CreateFileA
GetFileTime
GlobalAlloc
GetCurrentThread
VirtualProtect
GetStringTypeExA
GetFullPathNameA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
GetCurrentProcess
DuplicateHandle
GetCurrentThreadId
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
MulDiv
GlobalLock
GlobalUnlock
GlobalFree
InterlockedExchange
GetProfileStringA
lstrcpynA
GetProfileIntA
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
InterlockedDecrement
InterlockedIncrement
LockResource
GetUserDefaultLangID
GetSystemDefaultLangID
Sleep
GlobalMemoryStatus
GetCurrentDirectoryA
SetCurrentDirectoryA
GetFileSize
IsBadWritePtr
GetTickCount
FileTimeToLocalFileTime
FileTimeToSystemTime
SystemTimeToFileTime
LocalFileTimeToFileTime
LocalAlloc
lstrcatA
WinExec
GetWindowsDirectoryA
lstrlenW
WideCharToMultiByte
FindResourceA
SizeofResource
LoadResource
CopyFileA
SetEnvironmentVariableA
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
TerminateThread
ResumeThread
SuspendThread
SetThreadPriority
GetThreadPriority
WaitForMultipleObjects
WaitForSingleObject
SetEvent
CreateEventA
CreateThread
FreeLibrary
LoadLibraryA
GetVersion
GetShortPathNameA
CreateMutexA
RemoveDirectoryA
SetLastError
DeleteFileA
SetFileAttributesA
WriteFile
ReadFile
IsBadReadPtr

user32

ReuseDDElParam
UnpackDDElParam
InsertMenuA
RemoveMenu
GetDialogBaseUnits
WaitMessage
GetWindowThreadProcessId
DeleteMenu
CharNextA
CopyAcceleratorTableA
GetNextDlgGroupItem
RegisterClipboardFormatA
PostThreadMessageA
IsDialogMessageA
ScrollWindowEx
IsDlgButtonChecked
SetDlgItemTextA
SetDlgItemInt
GetDlgItemTextA
GetDlgItemInt
CheckRadioButton
CheckDlgButton
SendDlgItemMessageA
MapWindowPoints
PeekMessageA
AdjustWindowRectEx
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
GetClassInfoA
RegisterClassA
SetWindowPlacement
GetWindowTextLengthA
GetDlgCtrlID
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
RemovePropA
DefWindowProcA
GetMessageTime
IntersectRect
EndPaint
SetMenu
GetWindowDC
EndDialog
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
GetDlgItem
SetFocus
IsClipboardFormatAvailable
GetMenuCheckMarkDimensions
GetMenuState
SetMenuItemBitmaps
CheckMenuItem
GetLastActivePopup
IsWindowEnabled
wsprintfA
OemToCharA
CharToOemA
LoadStringA
GetWindowTextA
EnumChildWindows
GetMenuStringA
GetMenuItemID
ModifyMenuA
MapDialogRect
GetWindowPlacement
WinHelpA
IsChild
GetMenu
IsMenu
GetCapture
CopyIcon
SetCursor
RedrawWindow
MessageBeep
DestroyCursor
SystemParametersInfoA
SetRect
AdjustWindowRect
OffsetRect
GetSysColorBrush
LoadCursorA
EqualRect
DrawStateA
GrayStringA
DrawTextA
TabbedTextOutA
GetNextDlgTabItem
InflateRect
TrackPopupMenu
LoadMenuA
ShowCaret
ExcludeUpdateRgn
DefDlgProcA
IsWindowUnicode
GetSubMenu
SetMenuDefaultItem
LoadAcceleratorsA
TranslateAcceleratorA
SetRectEmpty
SetWindowContextHelpId
GetMessageA
ValidateRect
ShowOwnedPopups
PostQuitMessage
DestroyMenu
GetAsyncKeyState
CharUpperA
wvsprintfA
BeginPaint
MoveWindow
LoadImageA
DestroyIcon
RegisterWindowMessageA
GetDC
ReleaseDC
EnableMenuItem
IsWindowVisible
DrawIcon
KillTimer
GetSystemMenu
SetTimer
LoadIconA
IsIconic
ShowWindow
BringWindowToTop
GetForegroundWindow
GetDesktopWindow
SetForegroundWindow
GetClassNameA
EnumWindows
GetWindow
ReleaseCapture
WindowFromPoint
SetCapture
UpdateWindow
IsWindow
FillRect
DrawFocusRect
GetFocus
GetWindowLongA
PtInRect
GetMessagePos
ScreenToClient
PostMessageA
TranslateMessage
DispatchMessageA
DrawFrameControl
CopyRect
GetSysColor
LoadBitmapA
InvalidateRect
CreatePopupMenu
AppendMenuA
ClientToScreen
GetCursorPos
EnableWindow
SetWindowLongA
GetSystemMetrics
SetWindowPos
GetClientRect
GetParent
CallWindowProcA
GetWindowRect
GetKeyState
SendMessageA
MessageBoxA
SetWindowTextA
HideCaret
UnregisterClassA
GetMenuItemCount

gdi32

SetDIBitsToDevice
CreateDIBSection
SetTextJustification
PatBlt
CreateRectRgnIndirect
CreateBitmap
DeleteDC
StartDocA
SaveDC
RestoreDC
SelectPalette
SetBkColor
SetBkMode
SetPolyFillMode
SetROP2
SetStretchBltMode
SetTextColor
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
GetClipBox
SelectClipRgn
ExcludeClipRect
IntersectClipRect
OffsetClipRgn
MoveToEx
LineTo
SetTextAlign
SetTextCharacterExtra
SetMapperFlags
GetPixel
ArcTo
SetArcDirection
PolyDraw
PolylineTo
SetColorAdjustment
PolyBezierTo
DeleteObject
GetClipRgn
CreateRectRgn
SelectClipPath
ExtSelectClipRgn
PlayMetaFileRecord
GetObjectType
EnumMetaFile
PlayMetaFile
GetDeviceCaps
GetViewportExtEx
GetWindowExtEx
CreatePen
ExtCreatePen
CreateSolidBrush
CreateHatchBrush
CreatePatternBrush
CreateDIBPatternBrushPt
GetDCOrgEx
GetMapMode
SetRectRgn
CombineRgn
DPtoLP
CopyMetaFileA
CreateDCA
EnumFontFamiliesExA
GetTextColor
GetBkColor
LPtoDP
SetPixelV
GetTextFaceA
GetStockObject
SelectObject
StretchBlt
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
CreateCompatibleBitmap
CreateCompatibleDC
GetCurrentObject
Rectangle
BitBlt
GetTextMetricsA
GetTextExtentPoint32A
GetObjectA
CreateFontIndirectA
GetTextExtentPointA
GetCurrentPositionEx
CreateDIBitmap
CreateFontA

comdlg32

GetFileTitleA
GetSaveFileNameA
GetOpenFileNameA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

shell32

DragAcceptFiles
Shell_NotifyIconA
ShellExecuteA
DragQueryFileA
DragFinish
SHBrowseForFolderA
SHGetFileInfoA
SHGetMalloc
SHGetSpecialFolderLocation
SHGetPathFromIDListA
ExtractIconA

comctl32

DestroyPropertySheetPage
PropertySheetA
ImageList_Write
ImageList_Read
ImageList_Merge
ImageList_LoadImageA
ImageList_Create
ImageList_Destroy
ord14
ord13
ord17
ImageList_GetImageCount
ImageList_GetIcon
_TrackMouseEvent
ImageList_GetImageInfo
ImageList_SetBkColor
ImageList_Draw
ImageList_DrawEx
ImageList_GetIconSize
ImageList_AddMasked
CreatePropertySheetPageA

oledlg

ord8

ole32

StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CoTreatAsClass
StringFromCLSID
ReadClassStg
ReadFmtUserTypeStg
OleRegGetUserType
WriteClassStg
WriteFmtUserTypeStg
SetConvertStg
CreateBindCtx
CoTaskMemAlloc
CreateILockBytesOnHGlobal
CoDisconnectObject
CLSIDFromString
CLSIDFromProgID
OleGetClipboard
CoTaskMemFree
RevokeDragDrop
CoLockObjectExternal
RegisterDragDrop
CoInitializeEx
CoInitialize
CoUninitialize
CoCreateInstance
ReleaseStgMedium
OleIsCurrentClipboard
OleFlushClipboard
OleRun
OleInitialize
OleUninitialize
CoFreeUnusedLibraries
CoRegisterMessageFilter
CoRegisterClassObject
CreateStreamOnHGlobal
CoRevokeClassObject
OleDuplicateData
OleSetClipboard

olepro32

ord253

oleaut32

LoadTypeLi
SysReAllocStringLen
SysStringLen
VariantTimeToSystemTime
SafeArrayDestroyDescriptor
SafeArrayDestroyData
SafeArrayDestroy
SafeArrayUnlock
SafeArrayLock
SafeArrayPutElement
SafeArrayPtrOfIndex
SafeArrayGetElement
SafeArrayAllocDescriptor
SafeArrayAllocData
SafeArrayCopy
VarBstrFromDate
VarDateFromStr
VarBstrFromCy
VarCyFromStr
SysStringByteLen
VariantChangeType
SysAllocStringByteLen
SysAllocString
VariantCopy
SafeArrayRedim
VariantClear
SafeArrayCreate
SafeArrayGetDim
SafeArrayGetElemsize
SafeArrayGetLBound
SafeArrayGetUBound
SafeArrayAccessData
SafeArrayUnaccessData
SysAllocStringLen
SysFreeString

shlwapi

SHDeleteKeyA

Sections

.text
Size: 928KB - Virtual size: 924KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 152KB - Virtual size: 150KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 88KB - Virtual size: 108KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 20KB - Virtual size: 17KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.didat
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 604KB - Virtual size: 603KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 68KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

78697fc1b1eb47d1fd1d4d6e17ed10ca

Headers

File Characteristics

Imports

version

kernel32

user32

gdi32

comdlg32

winspool.drv

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

shlwapi

Sections

.text Size: 928KB - Virtual size: 924KB

.rdata Size: 152KB - Virtual size: 150KB

.data Size: 88KB - Virtual size: 108KB

.idata Size: 20KB - Virtual size: 17KB

.didat Size: 4KB - Virtual size: 2KB

.rsrc Size: 604KB - Virtual size: 603KB

.reloc Size: 68KB - Virtual size: 66KB

.text
Size: 928KB - Virtual size: 924KB

.rdata
Size: 152KB - Virtual size: 150KB

.data
Size: 88KB - Virtual size: 108KB

.idata
Size: 20KB - Virtual size: 17KB

.didat
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 604KB - Virtual size: 603KB

.reloc
Size: 68KB - Virtual size: 66KB