c7bd0ab84b1b1128e5a8b4d0899f0aa7_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

c7bd0ab84b1b1128e5a8b4d0899f0aa7_JaffaCakes118
Size

295KB
MD5

c7bd0ab84b1b1128e5a8b4d0899f0aa7
SHA1

2f8021a170068427c6e47590b18295779ab9ecd7
SHA256

5cbeabcae165ae7ec30fdc361bf3af1610171e0efc1eef9367e75d32c5a4a9ca
SHA512

020d2ca984f299168f3362b7319f1d4b61082da4daa834013a49ae7d227eac83f57c34e3c98668ee808f31f46bea874ddabd354cb4ac0e2a571276320ca4204c
SSDEEP

3072:UMLCkRnDDWtCi1yYiU6H2CJut9biRcJ2G39UcSHJJ1AUMXk0wBHaOALc4XmOm2Mg:9RSCi1yYiUog9bLJUlKZOAug

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c7bd0ab84b1b1128e5a8b4d0899f0aa7_JaffaCakes118

Files

c7bd0ab84b1b1128e5a8b4d0899f0aa7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7424ec0ae621d26a3e97f100a8539e75

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ufddll

??1CUsblib@@UAE@XZ
?Usblib_SPTICMD_Stop@CUsblib@@QAEXPAU_Storage_Struct@@@Z
?Usblib_SPTICMD_Start@CUsblib@@QAEHPAU_Storage_Struct@@@Z
?Usblib_SCSIBusScan@CUsblib@@QAEXPAU_Storage_Struct@@@Z
?Usblib_BuildISOFile@CUsblib@@QAEHPAD00PAUUFDSrcStruct@@@Z
?Usblib_RunBurnAutorun@CUsblib@@QAEXPAU_Storage_Struct@@PAU_VendorData_Struct@@@Z
?Usblib_ASPICMD_Stop@CUsblib@@QAEXXZ
??0CUsblib@@QAE@XZ
?Usblib_ASPICMD_Start@CUsblib@@QAEHPAE@Z

kernel32

SetFilePointer
LockFile
UnlockFile
SetEndOfFile
GetFullPathNameA
GetTickCount
GetFileAttributesA
GetFileSize
GetFileTime
RtlUnwind
ExitProcess
HeapFree
HeapAlloc
GetStartupInfoA
GetCommandLineA
ExitThread
CreateThread
HeapReAlloc
HeapSize
GetACP
LCMapStringA
LCMapStringW
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
SetUnhandledExceptionFilter
WriteFile
GetStringTypeW
GetTimeZoneInformation
VirtualProtect
GetSystemInfo
VirtualQuery
IsBadReadPtr
IsBadCodePtr
GetLocaleInfoA
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetProfileStringA
GetEnvironmentVariableA
GetLastError
GetCurrentProcess
GetCurrentThreadId
SetLastError
CreateMutexA
lstrcmpiA
GetVersionExA
GetDriveTypeA
FindClose
FlushFileBuffers
FindFirstFileA
SetEvent
Sleep
CreateEventA
GetVolumeInformationA
GetLogicalDrives
FindNextFileA
CopyFileA
GetWindowsDirectoryA
ReadFile
CreateFileA
DuplicateHandle
SetErrorMode
GetThreadLocale
WritePrivateProfileStringA
FileTimeToLocalFileTime
GetTempPathA
ResetEvent
WaitForSingleObject
GetProcAddress
FreeLibrary
LocalAlloc
InterlockedExchange
RaiseException
LoadLibraryA
FileTimeToSystemTime
GetOEMCP
GetCPInfo
SizeofResource
GlobalFlags
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
GetProcessVersion
SuspendThread
SetThreadPriority
ResumeThread
CloseHandle
GetModuleFileNameA
GlobalAlloc
GetCurrentThread
lstrcmpA
MulDiv
FormatMessageA
MultiByteToWideChar
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
LocalFree
GetVersion
lstrcatA
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcpyA
GetModuleHandleA
GlobalLock
GlobalUnlock
GlobalFree
LockResource
FindResourceA
LoadResource
lstrlenA
lstrcpynA
GetStringTypeA

user32

GetSysColorBrush
DestroyMenu
CharNextA
CopyAcceleratorTableA
SetRect
GetNextDlgGroupItem
MessageBeep
CharUpperA
RegisterClipboardFormatA
PostThreadMessageA
PostQuitMessage
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
ClientToScreen
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
MoveWindow
SetWindowTextA
IsDialogMessageA
SetDlgItemTextA
PostMessageA
UpdateWindow
SendDlgItemMessageA
MapWindowPoints
PeekMessageA
AdjustWindowRectEx
ScreenToClient
CopyRect
IsWindowVisible
GetTopWindow
MessageBoxA
IsChild
GetCapture
WinHelpA
GetClassInfoA
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
GetKeyState
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
GetWindow
SetWindowLongA
SetWindowPos
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
GetNextDlgTabItem
EndDialog
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
GetWindowLongA
GetDlgItem
GetFocus
IsWindowEnabled
SetFocus
RegisterWindowMessageA
MapDialogRect
SetWindowContextHelpId
GetMessageA
TranslateMessage
ValidateRect
GetCursorPos
SetCursor
DispatchMessageA
GetClassNameA
KillTimer
SetTimer
GetDesktopWindow
GetSystemMetrics
DrawIcon
LoadIconA
FindWindowA
SetForegroundWindow
IsIconic
ShowWindow
GrayStringA
DrawTextA
TabbedTextOutA
RedrawWindow
IsWindow
GetSysColor
GetThreadDesktop
GetUserObjectInformationA
wsprintfA
PtInRect
InvalidateRect
InflateRect
GetClientRect
DefWindowProcA
LoadCursorA
RegisterClassA
LoadStringA
EnableWindow
GetParent
SendMessageA
IsWindowUnicode
DefDlgProcA
DrawFocusRect
ExcludeUpdateRgn
ShowCaret
HideCaret
UnregisterClassA
GetMenu

gdi32

Rectangle
CreateRectRgn
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetClipBox
SetTextColor
SetBkColor
CreateBitmap
DeleteDC
SaveDC
RestoreDC
SelectObject
SetBkMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
IntersectClipRect
MoveToEx
LineTo
Ellipse
DeleteObject
GetDeviceCaps
GetViewportExtEx
GetWindowExtEx
CreateSolidBrush
GetMapMode
PatBlt
DPtoLP
GetTextColor
GetBkColor
LPtoDP
GetPixel
FloodFill
CreateCompatibleDC
CreateCompatibleBitmap
BitBlt
GetStockObject
GetObjectA
GetTextExtentPointA
CreateDIBitmap
CreateFontIndirectA

comdlg32

GetFileTitleA
GetOpenFileNameA
CommDlgExtendedError
GetSaveFileNameA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

shell32

SHBrowseForFolderA
SHGetPathFromIDListA
SHGetMalloc

comctl32

ord17

oledlg

ord8

ole32

OleUninitialize
CoCreateInstance
OleRun
CLSIDFromString
CLSIDFromProgID
CoInitialize
CoFreeUnusedLibraries
CoRegisterMessageFilter
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CoTaskMemFree
OleInitialize
OleIsCurrentClipboard
OleFlushClipboard
CoRevokeClassObject
CoTaskMemAlloc

olepro32

ord253

oleaut32

VariantTimeToSystemTime
VariantCopy
SysAllocStringByteLen
SysStringLen
SysAllocStringLen
SysAllocString
VariantClear
SysFreeString
VariantChangeType

Sections

.text
Size: 192KB - Virtual size: 189KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 48KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.crdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

7424ec0ae621d26a3e97f100a8539e75

Headers

File Characteristics

Imports

ufddll

kernel32

user32

gdi32

comdlg32

winspool.drv

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

Sections

.text Size: 192KB - Virtual size: 189KB

.rdata Size: 48KB - Virtual size: 44KB

.data Size: 12KB - Virtual size: 28KB

.rsrc Size: 20KB - Virtual size: 16KB

.crdata Size: 20KB - Virtual size: 20KB

.text
Size: 192KB - Virtual size: 189KB

.rdata
Size: 48KB - Virtual size: 44KB

.data
Size: 12KB - Virtual size: 28KB

.rsrc
Size: 20KB - Virtual size: 16KB

.crdata
Size: 20KB - Virtual size: 20KB