c0fab5ba2d0e7a785475d243043d2b91_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

c0fab5ba2d0e7a785475d243043d2b91_JaffaCakes118
Size

10.8MB
MD5

c0fab5ba2d0e7a785475d243043d2b91
SHA1

69c50c3f2e5b918271c4ec1aeec15f791a59cbaf
SHA256

897aed410c75d8c2cdddfe38f690db012a813e3e18a3c295cab00826b66f6d68
SHA512

ca02598ccc870d4335465308af12c5834eaaac0ac4468d7ed1fd4cadebf3888c80bc8c9eff250486ba89e56171c271c097d93549c76c0e880abbf3e1bd84062b
SSDEEP

196608:xo1MOUGo0pv7lsLhueH807JM0u1/D2zVybWuZDaPCfQtLDjiF8d/t:xo1MOzoCzlsIe17JMjGVyjaPC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c0fab5ba2d0e7a785475d243043d2b91_JaffaCakes118

Files

c0fab5ba2d0e7a785475d243043d2b91_JaffaCakes118
.exe windows:5 windows x86 arch:x86

a75331168fb02ede145f591f0bcb969c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FreeEnvironmentStringsW
GetEnvironmentStringsW
FindFirstFileExW
ReadConsoleW
GetTimeZoneInformation
GetOEMCP
IsValidCodePage
GetConsoleMode
GetConsoleCP
EnumSystemLocalesW
IsValidLocale
GetTimeFormatW
GetDateFormatW
GetStdHandle
GetFileType
SetStdHandle
VirtualQuery
VirtualAlloc
HeapQueryInformation
SetEnvironmentVariableA
CreateThread
GetCommandLineW
GetCommandLineA
GetModuleHandleExW
RtlUnwind
FormatMessageA
AreFileApisANSI
SetFilePointerEx
GetFileInformationByHandle
DeviceIoControl
FindNextFileW
GetCPInfo
GetStringTypeW
QueryPerformanceFrequency
WriteConsoleW
ExitThread
GetThreadTimes
GetStartupInfoW
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
WaitForSingleObjectEx
ResetEvent
FindResourceExW
SystemTimeToTzSpecificLocalTime
GetFileSizeEx
GetFileAttributesExW
FileTimeToLocalFileTime
LocalReAlloc
LocalAlloc
GlobalHandle
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
GetProfileIntW
GetTickCount
FileTimeToSystemTime
GlobalReAlloc
GlobalGetAtomNameW
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
UnlockFile
SetEndOfFile
LockFile
GetFullPathNameW
GetFileSize
FlushFileBuffers
GlobalFlags
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
ResumeThread
SetThreadPriority
CreateEventW
SetEvent
GlobalFindAtomW
GlobalAddAtomW
LoadLibraryA
GlobalDeleteAtom
LoadLibraryExW
EncodePointer
GlobalSize
GlobalAlloc
GetModuleHandleA
OutputDebugStringA
FindFirstFileW
SearchPathW
GetVolumeInformationW
SetErrorMode
GetModuleFileNameA
VirtualProtect
DuplicateHandle
GlobalUnlock
GlobalLock
InterlockedExchange
FreeResource
lstrcpyW
MulDiv
LeaveCriticalSection
EnterCriticalSection
OutputDebugStringW
CompareStringW
SetFileTime
GetFileTime
VerifyVersionInfoW
VerSetConditionMask
lstrcmpA
Sleep
SetThreadAffinityMask
GetWindowsDirectoryW
GetSystemInfo
SetCurrentDirectoryW
GetCurrentDirectoryW
lstrcmpW
FindClose
GlobalFree
FreeLibrary
ReleaseSemaphore
ReleaseMutex
CreateSemaphoreW
CreateMutexW
GetUserDefaultLCID
GetACP
SetThreadLocale
GetUserDefaultLangID
GetLocaleInfoW
SetFilePointer
LoadLibraryW
GetSystemDirectoryW
GetCurrentThread
GetCurrentProcess
GetModuleHandleW
lstrcmpiW
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
LCMapStringW
WideCharToMultiByte
GetVersionExW
SizeofResource
ExitProcess
IsProcessorFeaturePresent
GetProcessHeap
DeleteCriticalSection
DecodePointer
HeapAlloc
RaiseException
HeapReAlloc
HeapSize
InitializeCriticalSectionAndSpinCount
HeapFree
CopyFileW
GetTempFileNameW
CreateDirectoryW
WriteFile
GetModuleFileNameW
MoveFileW
RemoveDirectoryW
DeleteFileW
ReadFile
CreateFileW
GetTempPathW
GetProcAddress
lstrcpynW
CloseHandle
GetExitCodeProcess
WaitForSingleObject
CreateProcessW
lstrlenW
MultiByteToWideChar
SetFileAttributesW
GetFileAttributesW
LocalFree
FormatMessageW
SetLastError
GetLastError
FindResourceW
LoadResource
LockResource
FreeLibraryAndExitThread

user32

CopyIcon
LoadBitmapW
CopyAcceleratorTableW
DrawFrameControl
RemoveMenu
IsDlgButtonChecked
CheckDlgButton
CreateWindowExW
ReleaseDC
MapDialogRect
GetSysColor
DrawIconEx
RegisterClipboardFormatW
SetWindowRgn
CallNextHookEx
BeginDeferWindowPos
TrackMouseEvent
UnhookWindowsHookEx
EndDeferWindowPos
SetWindowsHookExW
InvertRect
HideCaret
MessageBeep
NotifyWinEvent
DrawFocusRect
GetMenuItemInfoW
GetMenuState
CharUpperW
LoadMenuW
CreatePopupMenu
GetMenuDefaultItem
SetMenuDefaultItem
CheckMenuItem
GetScrollPos
IsMenu
ValidateRect
DestroyMenu
EnableScrollBar
UpdateLayeredWindow
IsDialogMessageW
GrayStringW
TabbedTextOutW
SetScrollPos
GetMessageW
GetWindowDC
GetWindowPlacement
SetWindowPlacement
GetWindowRect
OffsetRect
GetKeyState
DestroyWindow
GetForegroundWindow
SetFocus
SetCursorPos
LoadCursorW
SetParent
SetCursor
GetClassLongW
OpenClipboard
CloseClipboard
EmptyClipboard
MapWindowPoints
SetClipboardData
IsClipboardFormatAvailable
MonitorFromWindow
IsZoomed
GetWindow
IsWindowVisible
ScreenToClient
WindowFromPoint
ShowWindow
GetAsyncKeyState
SetTimer
GetTopWindow
GetMenu
GetSysColorBrush
DefWindowProcW
CallWindowProcW
GetClassInfoW
TranslateAcceleratorW
CreateAcceleratorTableW
SetClassLongW
GetClassInfoExW
BeginPaint
ClientToScreen
LockWindowUpdate
BringWindowToTop
GetUpdateRect
SetRect
KillTimer
GetDesktopWindow
RegisterWindowMessageW
EndPaint
LoadAcceleratorsW
SetMenuItemInfoW
DeferWindowPos
GetDlgCtrlID
GetNextDlgTabItem
RegisterClassW
DrawMenuBar
InsertMenuItemW
WaitMessage
PostThreadMessageW
DestroyCursor
ShowScrollBar
GetMessagePos
GetMessageTime
CreateDialogIndirectParamW
EndDialog
IsWindowEnabled
SetActiveWindow
GetMenuStringW
SetDlgItemTextW
SetWindowTextW
GetWindowTextW
EnableWindow
SendMessageW
GetClientRect
GetDC
GetDlgItem
LoadImageW
LoadIconW
GetSystemMenu
AppendMenuW
DeleteMenu
UnionRect
EnableMenuItem
IsIconic
GetSystemMetrics
DrawIcon
ModifyMenuW
CharPrevW
UnregisterClassW
MessageBoxW
GetAncestor
GetWindowLongW
GetActiveWindow
EnumThreadWindows
GetLastActivePopup
GetClassNameW
EqualRect
MoveWindow
IntersectRect
MonitorFromPoint
GetMonitorInfoW
PtInRect
EnumDisplayMonitors
SetWindowLongW
InvalidateRect
SetWindowPos
GetComboBoxInfo
IsWindow
CharUpperBuffW
CharNextW
DestroyAcceleratorTable
DestroyIcon
EnumChildWindows
SystemParametersInfoW
PeekMessageW
PostQuitMessage
TranslateMessage
DispatchMessageW
DrawTextW
DrawTextExW
SetForegroundWindow
GetParent
PostMessageW
InsertMenuW
GetMenuItemCount
ReleaseCapture
UpdateWindow
SetRectEmpty
SetCapture
IsRectEmpty
IsChild
InflateRect
GetFocus
DrawStateW
CopyRect
RedrawWindow
GetCapture
FillRect
GetSubMenu
GetMenuItemID
GetCursorPos
SetMenu
TrackPopupMenu
ScrollWindow
SetScrollRange
GetScrollRange
SetPropW
GetPropW
RemovePropW
AdjustWindowRectEx
SetScrollInfo
GetScrollInfo
WinHelpW
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
GetKeyNameTextW
MapVirtualKeyW
SendDlgItemMessageA
GetWindowThreadProcessId
ShowOwnedPopups
RealChildWindowFromPoint
DrawEdge
SetLayeredWindowAttributes
ToUnicodeEx
GetKeyboardLayout
GetKeyboardState
UnpackDDElParam
ReuseDDElParam
SubtractRect
FrameRect
DefFrameProcW
DefMDIChildProcW
TranslateMDISysAccel
CopyImage
GetNextDlgGroupItem
GetIconInfo
IsCharLowerW
MapVirtualKeyExW
CreateMenu
GetDoubleClickTime
GetWindowRgn
GetWindowTextLengthW

gdi32

GetTextFaceW
RectVisible
GetWindowExtEx
SelectObject
ScaleWindowExtEx
GetBkColor
CreatePalette
Rectangle
RealizePalette
GetPaletteEntries
PtInRegion
Polygon
SetPixelV
CreatePolygonRgn
GetNearestPaletteIndex
FrameRgn
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt
CreateRectRgnIndirect
SetPaletteEntries
CreateDIBSection
CreateSolidBrush
CreatePen
CreateRoundRectRgn
SetDCBrushColor
SetBkMode
CreateRectRgn
SelectClipRgn
SetLayout
GetLayout
DPtoLP
CreateDCW
GetOutlineTextMetricsW
GetClipBox
GetRgnBox
FillRgn
StretchBlt
PatBlt
CopyMetaFileW
CreateBitmap
CreateHatchBrush
CreatePatternBrush
ExcludeClipRect
GetStockObject
GetPixel
LineTo
ExtSelectClipRgn
SelectPalette
SetPolyFillMode
SetROP2
SetTextAlign
TextOutW
OffsetWindowOrgEx
CombineRgn
CreateEllipticRgn
Ellipse
Polyline
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
SetRectRgn
GetSystemPaletteEntries
OffsetRgn
SetPixel
SetDIBColorTable
ExtFloodFill
LPtoDP
RoundRect
GetBoundsRect
EnumFontFamiliesExW
SetWindowOrgEx
SetWindowExtEx
OffsetViewportOrgEx
GetWindowOrgEx
SetViewportExtEx
GetDeviceCaps
GetTextMetricsW
GetTextAlign
SetTextColor
ScaleViewportExtEx
SetViewportOrgEx
GetObjectW
GetViewportExtEx
GetTextColor
MoveToEx
SetBkColor
RestoreDC
DeleteObject
GetTextExtentPoint32W
DeleteDC
IntersectClipRect
GetViewportOrgEx
ExtTextOutW
PtVisible
Escape
CreateFontIndirectW
GetObjectType
SaveDC
SetMapMode

msimg32

TransparentBlt
AlphaBlend

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

advapi32

RegEnumKeyW
RegCreateKeyExW
RegSetValueExW
RegCloseKey
RegSaveKeyW
RegRestoreKeyW
CryptAcquireContextW
RegEnumValueW
RegEnumKeyExW
RegQueryValueW
RegDeleteValueW
RegQueryValueExW
RegDeleteKeyW
RegOpenKeyExW
GetUserNameW
CryptGenRandom
CryptReleaseContext

shell32

SHGetSpecialFolderPathW
SHChangeNotify
SHGetSpecialFolderLocation
SHBrowseForFolderW
SHGetPathFromIDListW
SHGetFileInfoW
DragQueryFileW
DragFinish
SHAppBarMessage
SHGetDesktopFolder
ShellExecuteW
SHGetFolderPathW

comctl32

ImageList_GetImageCount
ImageList_Remove
ImageList_AddMasked
ImageList_GetImageInfo
ImageList_ReplaceIcon

shlwapi

PathIsDirectoryW
SHDeleteValueW
PathStripToRootW
SHGetValueW
PathCombineW
SHDeleteKeyW
PathRelativePathToW
PathAppendW
PathRemoveFileSpecW
PathSetDlgItemPathW
PathFileExistsW
PathQuoteSpacesW
PathFindNextComponentW
StrIsIntlEqualW
PathRemoveBackslashW
PathRemoveBlanksW
PathSearchAndQualifyW
PathCommonPrefixW
PathGetCharTypeW
PathIsRelativeW
PathFindFileNameW
PathRemoveExtensionW
PathFindExtensionW
PathAddExtensionW
SHSetValueW
PathIsUNCW
StrFormatKBSizeW
PathCanonicalizeW

uxtheme

GetCurrentThemeName
IsAppThemed
GetThemeSysColor
IsThemeBackgroundPartiallyTransparent
GetWindowTheme
GetThemePartSize
DrawThemeBackground
DrawThemeText
OpenThemeData
CloseThemeData
GetThemeColor
DrawThemeParentBackground

ole32

OleLockRunning
IsAccelerator
OleTranslateAccelerator
OleCreateMenuDescriptor
CoDisconnectObject
RevokeDragDrop
RegisterDragDrop
CoLockObjectExternal
DoDragDrop
OleGetClipboard
CreateStreamOnHGlobal
CoInitializeEx
CoCreateGuid
ReleaseStgMedium
OleDuplicateData
CoTaskMemAlloc
CoCreateInstance
CoInitialize
CoUninitialize
OleDestroyMenuDescriptor
CoTaskMemFree

oleaut32

VariantTimeToSystemTime
SystemTimeToVariantTime
SysStringLen
LoadTypeLi
VariantCopy
VariantInit
SysAllocString
SysAllocStringLen
SysFreeString
VarBstrFromDate
VariantChangeType
VariantClear

version

VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW

gdiplus

GdipCreateBitmapFromHBITMAP
GdipDrawImageRectI
GdipAlloc
GdipCloneImage
GdiplusStartup
GdipGetImageHeight
GdipGetImageWidth
GdipGetImageGraphicsContext
GdipGetImagePixelFormat
GdipGetImagePalette
GdipGetImagePaletteSize
GdipCreateBitmapFromStream
GdipCreateBitmapFromScan0
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipDrawImageI
GdiplusShutdown
GdipDeleteGraphics
GdipCreateFromHDC
GdipFree
GdipSetInterpolationMode
GdipDisposeImage

oleacc

LresultFromObject
AccessibleObjectFromWindow
CreateStdAccessibleObject

imm32

ImmGetContext
ImmGetOpenStatus
ImmReleaseContext

winmm

PlaySoundW

Sections

.text
Size: 1.9MB - Virtual size: 1.9MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 434KB - Virtual size: 433KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 38KB - Virtual size: 77KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.gfids
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.giats
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 9B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8.1MB - Virtual size: 8.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 153KB - Virtual size: 152KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a75331168fb02ede145f591f0bcb969c

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

version

gdiplus

oleacc

imm32

winmm

Sections

.text Size: 1.9MB - Virtual size: 1.9MB

.rdata Size: 434KB - Virtual size: 433KB

.data Size: 38KB - Virtual size: 77KB

.gfids Size: 92KB - Virtual size: 91KB

.giats Size: 512B - Virtual size: 16B

.tls Size: 512B - Virtual size: 9B

.rsrc Size: 8.1MB - Virtual size: 8.1MB

.reloc Size: 153KB - Virtual size: 152KB

.text
Size: 1.9MB - Virtual size: 1.9MB

.rdata
Size: 434KB - Virtual size: 433KB

.data
Size: 38KB - Virtual size: 77KB

.gfids
Size: 92KB - Virtual size: 91KB

.giats
Size: 512B - Virtual size: 16B

.tls
Size: 512B - Virtual size: 9B

.rsrc
Size: 8.1MB - Virtual size: 8.1MB

.reloc
Size: 153KB - Virtual size: 152KB