bcc76b92590833467c33774388a5032c_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

bcc76b92590833467c33774388a5032c_JaffaCakes118
Size

588KB
MD5

bcc76b92590833467c33774388a5032c
SHA1

30f1a76d0239e82ee6554f08d46332576d767ed8
SHA256

a6c488e07bd9c564dc6638a96837ca82441a822ac0ffd912b23909f5d61eccb3
SHA512

312abd80f856317da2cc9abf6cb43449c6fd247f2990c97d9118b133ce034f6a8cd1cd74e317cf076de7d4a3c5467078287597b27d036da82c9dd492416d4fc9
SSDEEP

6144:eFCaG08f/ETzQkQPtJy67Z+0csSUkDndoeJ+ohRY5YSFRjaS:+CaR8fcTzQkQV7bcQ0oeEoU5YSF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
bcc76b92590833467c33774388a5032c_JaffaCakes118

Files

bcc76b92590833467c33774388a5032c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

963ed7c0ea1f082a99afc1b6a844d94d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

k:\txafgxdck\ewrpyf\wiee\etla\ooa

Imports

ole32

OleInitialize
CoLockObjectExternal
CLSIDFromProgID
OleGetClipboard
RevokeDragDrop
CoInitializeSecurity
CoTaskMemFree
OleRegEnumVerbs
OleSetClipboard
CreateILockBytesOnHGlobal
OleRun
CoFreeUnusedLibraries
StgCreateDocfile
CreateGenericComposite
StringFromGUID2
OleLockRunning
OleUninitialize
ReleaseStgMedium
CreateItemMoniker
CoRevokeClassObject
CreateFileMoniker
OleFlushClipboard
OleRegGetMiscStatus
CoRegisterClassObject
StgCreateDocfileOnILockBytes
CoTaskMemAlloc
OleLoad
CoUninitialize
RegisterDragDrop
OleDuplicateData
CoRegisterMessageFilter
CoDisconnectObject
OleCreateFromData
CreateStreamOnHGlobal
CoCreateInstance
OleRegGetUserType
CoGetClassObject
CreateBindCtx
CoInitialize
OleIsCurrentClipboard
StgOpenStorageOnILockBytes
StringFromCLSID
CLSIDFromString

winspool.drv

ord204
DocumentPropertiesA
OpenPrinterA

gdi32

CreateICA
UnrealizeObject
GetViewportExtEx
SetPixelV
GetTextAlign
PolyPolygon
Polyline
GetMapMode
BitBlt
SetBitmapBits
TextOutA
CreateEllipticRgnIndirect
GetCharABCWidthsA
GetBoundsRect
PathToRegion
SetArcDirection
AbortDoc
PatBlt
GetCharWidthA
ExtTextOutA
Rectangle
CreatePatternBrush
SelectPalette
CreateEllipticRgn
SetBkColor
PolylineTo
RectVisible
FloodFill
PlayEnhMetaFile
SetViewportOrgEx
OffsetClipRgn
CreateBitmap
CreateSolidBrush

kernel32

CompareStringA
GetACP
WideCharToMultiByte
Sleep
VirtualAlloc
GetLocaleInfoW
SetStdHandle
ReadFile
HeapAlloc
HeapFree
CreateMutexA
TlsGetValue
GetModuleHandleA
UnhandledExceptionFilter
WriteConsoleA
SetConsoleCtrlHandler
LCMapStringA
InterlockedIncrement
CloseHandle
FlushFileBuffers
GetModuleFileNameA
WriteConsoleW
FreeEnvironmentStringsA
InterlockedExchange
HeapSize
SetUnhandledExceptionFilter
GetCurrentThread
GetStdHandle
GetCommandLineA
GetProcessHeap
InitializeCriticalSection
InterlockedDecrement
GetEnvironmentStrings
GetUserDefaultLCID
VirtualFree
TerminateProcess
GetFileType
TlsFree
SetEnvironmentVariableA
LCMapStringW
GetVersionExA
GetConsoleOutputCP
DeleteCriticalSection
CompareStringW
HeapDestroy
GetConsoleMode
QueryPerformanceCounter
GetDateFormatA
GetLastError
ExitProcess
LoadLibraryA
RtlUnwind
HeapReAlloc
FreeEnvironmentStringsW
EnumSystemLocalesA
LeaveCriticalSection
GetEnvironmentStringsW
WriteFile
GetProcAddress
GetCurrentProcess
EnterCriticalSection
CreateFileA
GetCurrentProcessId
GetCPInfo
GetOEMCP
GetLocaleInfoA
GetCurrentThreadId
GetConsoleCP
GetStartupInfoA
IsValidLocale
IsDebuggerPresent
MultiByteToWideChar
TlsSetValue
FatalAppExitA
GetTimeZoneInformation
FreeLibrary
GetTickCount
SetHandleCount
VirtualQuery
SetLastError
GetSystemTimeAsFileTime
HeapCreate
GetStringTypeA
TlsAlloc
IsValidCodePage
GetStringTypeW
SetFilePointer
GetTimeFormatA

winmm

timeEndPeriod
waveOutReset
PlaySoundA
waveInStop
waveOutGetDevCapsA

user32

GetMenuState
EndDialog
SetWindowPos
ExitWindowsEx
IsZoomed
GetClassLongA
CharUpperA
PostMessageA
SetMenuItemInfoA
AppendMenuA
EnableMenuItem
CopyIcon
ClientToScreen
SetActiveWindow
GetSysColor
GetFocus
IsDlgButtonChecked
UnregisterClassA
RemoveMenu
GetActiveWindow
SetParent
SetCapture
ShowWindow
CheckMenuItem
BeginPaint
GetSystemMetrics
FillRect
SetRect
wsprintfA
LoadStringA
CloseClipboard
RegisterClassA
DispatchMessageA
SetDlgItemTextA
GetClassInfoExA
EnableWindow
PostQuitMessage
RegisterWindowMessageA
IsMenu
GetMenuItemCount
LoadBitmapA
DefWindowProcA
SetFocus
SendMessageA
SetCaretPos
RemovePropA
IsWindowVisible
SetWindowLongA
EnumChildWindows
TabbedTextOutA
GetKeyState
ScrollWindow
DestroyWindow
GetCursorPos
DestroyCaret
PostThreadMessageA
CreatePopupMenu
SetForegroundWindow
EnumWindows
GetWindowDC
GetWindowPlacement
InflateRect
GetMessagePos
SendMessageTimeoutA
WinHelpA
GetIconInfo
CreateWindowExA
GetWindowLongA
GetParent
ReleaseCapture
DrawMenuBar
MessageBoxA
GetDCEx
GetWindowTextLengthA
IsDialogMessageA
PeekMessageA
RegisterClassExA
SystemParametersInfoA
InvalidateRect
DestroyCursor
KillTimer
EndPaint

shell32

Shell_NotifyIconA
SHGetPathFromIDListA
SHGetFileInfoA
DragAcceptFiles
SHGetSpecialFolderLocation
ord155
ShellExecuteExA

advapi32

RegCloseKey
RegQueryValueExA
RegQueryInfoKeyA
RegCreateKeyExA
FreeSid

Sections

.text
Size: 90KB - Virtual size: 90KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 250KB - Virtual size: 250KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 96KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 136KB - Virtual size: 136KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

963ed7c0ea1f082a99afc1b6a844d94d

Headers

File Characteristics

PDB Paths

Imports

ole32

winspool.drv

gdi32

kernel32

winmm

user32

shell32

advapi32

Sections

.text Size: 90KB - Virtual size: 90KB

.rdata Size: 250KB - Virtual size: 250KB

.data Size: 96KB - Virtual size: 96KB

.rsrc Size: 136KB - Virtual size: 136KB

.text
Size: 90KB - Virtual size: 90KB

.rdata
Size: 250KB - Virtual size: 250KB

.data
Size: 96KB - Virtual size: 96KB

.rsrc
Size: 136KB - Virtual size: 136KB