bcb143a280a6e13fd586b36775a13695_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

bcb143a280a6e13fd586b36775a13695_JaffaCakes118
Size

534KB
MD5

bcb143a280a6e13fd586b36775a13695
SHA1

4114b461b0f4c422e8254320c9ee224bb234b089
SHA256

c8a7e2223d6e7474c6f75478666de94efe6a8310741324d333dfa9f710cfbe4b
SHA512

d0223f5b83bd0cd487135e3ed77742c847c4e0145144fa2517aa710804b8f3fd28350360fcafc5fda7918a9433c0b0a6186b69ccdc7ac60198ee3d2e4ac03150
SSDEEP

12288:SJSzE47lfBV4MUMMnMMMMMlFTW5nIgU1NuIE9iI1ZnQjlLgo:SgzEIlbvUMMnMMMMMlY5bxhd1mj9X

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bcb143a280a6e13fd586b36775a13695_JaffaCakes118

Files

bcb143a280a6e13fd586b36775a13695_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8153d7a2d71fd9ae4084f4049705a5e6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

uxtheme

IsThemeActive
GetThemeBackgroundExtent
GetThemeColor
GetThemeFont
GetThemeMargins
DrawThemeBackground
OpenThemeData
GetThemeBackgroundContentRect
IsAppThemed
CloseThemeData
GetThemeAppProperties
GetThemePartSize
GetThemeMetric
DrawThemeParentBackground
SetWindowTheme

shell32

SHGetSpecialFolderLocation
SHGetInstanceExplorer
DragQueryFileW
SHAppBarMessage
SHBindToParent
Shell_NotifyIconW
SHGetFolderPathAndSubDirW
Shell_NotifyIconA
SHGetDataFromIDListW
ExtractIconW
SHPathPrepareForWriteW
ShellExecuteExW
SHGetPathFromIDListW
SHGetFolderPathW
SHGetPathFromIDListA
SHBrowseForFolderW
SHGetSpecialFolderPathW
ShellExecuteW
ExtractAssociatedIconExW
ExtractIconExW
SHSetLocalizedName
SHGetFileInfoW
SHGetFolderLocation
SHGetDesktopFolder
ShellAboutW
ShellExecuteA
SHChangeNotify
SHFileOperationW
SHCreateShellItem

ntdll

RtlAdjustPrivilege
RtlAddAccessAllowedObjectAce
NtSetIoCompletion
NtQuerySemaphore

rtutils

TraceDumpExA
TraceDumpExW

gdi32

GetDCOrgEx
SetViewportOrgEx
LineTo
CreateBitmap
LPtoDP
GetDIBits
GetLayout
GetObjectW
PlayEnhMetaFile
CreateFontIndirectW
GetTextExtentPoint32A
GetPixel
SetPaletteEntries
GetObjectA
GetTextMetricsW
OffsetRgn
TextOutA
GetDeviceCaps
CreatePalette
GetPaletteEntries
SetBrushOrgEx
DeleteObject
GetTextCharset
ExtTextOutW
CombineRgn
CreateRectRgnIndirect
CreateHalftonePalette
GetTextAlign
CreateDCW
BitBlt
SetBkColor
GetTextColor
SetMapMode
StretchBlt
CreatePen
SetStretchBltMode
CreateRectRgn
SetDCPenColor
SetTextColor
GetBkColor
SetLayout
EqualRgn
RestoreDC
CreateFontIndirectA
SetBkMode
CloseEnhMetaFile
DeleteDC
GetRgnBox
CloseMetaFile
CreateSolidBrush
CreateEnhMetaFileA
CreateCompatibleDC
SelectObject
GetClipBox
GetBrushOrgEx
CreateDIBSection
RealizePalette
CreateMetaFileW
RectVisible
TextOutW
CreatePolygonRgn
IntersectClipRect
GetTextExtentPointW
CreateDIBPatternBrushPt
GetStockObject
PatBlt
SetWindowExtEx
GetGlyphIndicesW
SetWindowOrgEx
SetViewportExtEx
SelectPalette
GetSystemPaletteEntries
ExtCreateRegion
CreateCompatibleBitmap
GetBkMode
CreateFontW
SetTextAlign
SaveDC
DeleteEnhMetaFile
CreatePatternBrush
StretchDIBits
CreateDCA
MoveToEx
SetRectRgn
Rectangle
GetTextExtentExPointI
GetRegionData
OffsetWindowOrgEx
GetTextExtentPoint32W

kernel32

VirtualAlloc

ddraw

DirectDrawCreate

advapi32

RegSetValueExA
CryptReleaseContext
GetTraceEnableLevel
CryptAcquireContextW
OpenProcessToken
RegCreateKeyExA
RegQueryValueExA
CryptHashData
CryptCreateHash
RegCreateKeyExW
SetThreadToken
CryptGetHashParam
RegEnumKeyW
RegOpenKeyW
UnregisterTraceGuids
GetTraceEnableFlags
RegOpenCurrentUser
GetUserNameW
RegCloseKey
RegQueryValueExW
RegDeleteValueW
RegSetValueExW
RegQueryValueW
ConvertStringSecurityDescriptorToSecurityDescriptorW
OpenThreadToken
TraceMessage
IsTextUnicode
GetTraceLoggerHandle
RegEnumValueW
RegDeleteKeyW
RegEnumKeyExW
RegOpenKeyExW
CryptDestroyHash
RegDeleteValueA
ConvertSidToStringSidW
RegEnumValueA
TraceEvent
RegOpenKeyExA
DuplicateTokenEx
CreateProcessAsUserW
GetTokenInformation
GetLengthSid
RegCreateKeyA
SetTokenInformation
ImpersonateSelf
ConvertStringSidToSidW
RegDeleteKeyA
RegQueryInfoKeyW
RegisterTraceGuidsW

user32

DeleteMenu
GetMessageW
MonitorFromRect
RegisterClassExW
OffsetRect
FindWindowExW
SetWindowPlacement
GetWindowLongW
SystemParametersInfoW
EnumDisplaySettingsW
DdeInitializeW
DdeUninitialize
GetDlgItem
GetSystemMetrics
DestroyWindow
DrawTextExW
UpdateLayeredWindow
GetWindowDC
ShowWindow
SetPropW
GetDialogBaseUnits
CreateMenu
GetWindowPlacement
DdeConnect
CreateIconIndirect
LoadMenuW
EmptyClipboard
DdeCreateStringHandleW
DispatchMessageW
TranslateAcceleratorW
InsertMenuItemW
RegisterClipboardFormatW
CharNextA
CharPrevA
GetDoubleClickTime
GetMenuItemInfoW
MapDialogRect
DefWindowProcW
LoadCursorA
IntersectRect
GetClassNameW
TranslateMessage
GetSubMenu
EnumChildWindows
GetClipboardFormatNameW
RemoveMenu
UnionRect
SetClipboardData
MessageBoxW
KillTimer
MsgWaitForMultipleObjects
MessageBoxExW
LoadAcceleratorsW
DdeCreateDataHandle
SendMessageTimeoutA
CharNextW
GetDlgItemTextW
DdeGetData
IsCharAlphaNumericW
GetCursorPos
ShowCaret
GetMenuStringW
LoadStringA
GetSystemMenu
PostThreadMessageW
DrawFocusRect
PostMessageW
SetWindowTextW
DdeFreeDataHandle
DialogBoxIndirectParamW
WaitMessage
EnumDesktopWindows
GetPropW
GetClassWord
SendDlgItemMessageW
SetFocus
LoadCursorW
SetWindowLongA
GetWindowTextLengthW
AppendMenuW
GetClassInfoExW
SendMessageA
DispatchMessageA
GetPropA
IsHungAppWindow
GetKeyNameTextW
ClientToScreen
GetMessageTime
MsgWaitForMultipleObjectsEx
HideCaret
RegisterWindowMessageA
GetWindowInfo
CharLowerBuffW
GetSysColorBrush
EqualRect
SetActiveWindow
RegisterWindowMessageW
EnableMenuItem
SetScrollInfo
SystemParametersInfoA
IsIconic
GetDlgCtrlID
GetFocus
DdeNameService
DrawTextW
GetMenuItemID
ScreenToClient
GetComboBoxInfo
CreateDialogParamW
GetClassLongW
SetMenuDefaultItem
GetKeyState
PostThreadMessageA
GetWindow
MessageBoxExA
IsChild
GetCursor
LoadImageW
IsMenu
FindWindowW
CheckRadioButton
LoadBitmapW
DialogBoxIndirectParamA
SetWindowPos
RemovePropA
GetWindowThreadProcessId
IsDlgButtonChecked
GetLastInputInfo
SetWindowRgn
GetDesktopWindow
InflateRect
wsprintfW
ReleaseDC
IsWindow
SetForegroundWindow
TrackMouseEvent
GetMenuState
EnumWindows
MonitorFromWindow
FillRect
ChangeClipboardChain
SetPropA
GetAncestor
SetScrollPos
IsRectEmpty
ReleaseCapture
SetMenuItemInfoW
GetProcessWindowStation
GetClipboardData
LoadIconW
DrawEdge
GetActiveWindow
GetSysColor
SetWindowsHookExW
GetMessagePos
GetClassInfoW
PeekMessageA
GetForegroundWindow
CharPrevW
LockSetForegroundWindow
GetWindowRgnBox
EnableWindow
CharLowerW
DialogBoxParamA
NotifyWinEvent
DdeClientTransaction
SetWindowLongW
SetMenu
EndPaint
CallMsgFilterW
IsWindowEnabled
DialogBoxParamW
MessageBeep
SetDlgItemTextW
CheckMenuItem
DeferWindowPos
DestroyMenu
RemovePropW
SetMenuItemBitmaps
GetScrollInfo
CallNextHookEx
FindWindowA
GetIconInfo
GetWindowRect
SendMessageTimeoutW
SetClipboardViewer
AdjustWindowRectEx
IsDialogMessageW
SetDlgItemInt
BeginDeferWindowPos
CallWindowProcW
RegisterClipboardFormatA
CharUpperW
UnregisterClassW
CreatePopupMenu
PostQuitMessage
GetWindowLongA
DefWindowProcA
SendNotifyMessageW
OpenClipboard
WindowFromPoint
GetMenuDefaultItem
GetWindowTextW
SetCursorPos
DestroyIcon
GetShellWindow
EndDialog
MessageBoxIndirectW
DestroyAcceleratorTable
SetTimer
MessageBoxIndirectA
MoveWindow
GetKeyboardLayout
CheckMenuRadioItem
GetDC
GetNextDlgTabItem
MapWindowPoints
DrawIconEx
InvalidateRect
DdeQueryStringW
CopyRect
UnhookWindowsHookEx
LoadStringW
GetMonitorInfoW
RegisterClassW
SendMessageW
SetCursor
UpdateWindow
EndDeferWindowPos
DdeFreeStringHandle
PeekMessageW
IsWindowUnicode
SetRect
TrackPopupMenuEx
EndMenu
IsWindowVisible
AttachThreadInput
CopyImage
WinHelpW
ChildWindowFromPoint
CheckDlgButton
AdjustWindowRect
GetLastActivePopup
InsertMenuW
SetCapture
GetMessageA
CopyIcon
DrawFrameControl
SetParent
RedrawWindow
GetAsyncKeyState
GetCapture
GetMenuItemCount
BeginPaint
AllowSetForegroundWindow
ShowOwnedPopups
PtInRect
ShowScrollBar
PostMessageA
SetRectEmpty
EnumThreadWindows
GetTopWindow
CreateWindowExW
VkKeyScanExW
CloseClipboard
MonitorFromPoint
DdeDisconnect
WaitForInputIdle
AnimateWindow
GetClientRect
GetMenuItemInfoA
MapVirtualKeyW
TrackPopupMenu
GetParent

psapi

GetProcessImageFileNameW

Sections

.text
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 193KB - Virtual size: 2.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 68KB - Virtual size: 67KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 258KB - Virtual size: 257KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8153d7a2d71fd9ae4084f4049705a5e6

Headers

File Characteristics

Imports

uxtheme

shell32

ntdll

rtutils

gdi32

kernel32

ddraw

advapi32

user32

psapi

Sections

.text Size: 1024B - Virtual size: 1000B

.data Size: 193KB - Virtual size: 2.0MB

.rsrc Size: 68KB - Virtual size: 67KB

.idata Size: 12KB - Virtual size: 12KB

.rdata Size: 258KB - Virtual size: 257KB

.text
Size: 1024B - Virtual size: 1000B

.data
Size: 193KB - Virtual size: 2.0MB

.rsrc
Size: 68KB - Virtual size: 67KB

.idata
Size: 12KB - Virtual size: 12KB

.rdata
Size: 258KB - Virtual size: 257KB