c7677163b93c1b902af12a7a8f597741_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

c7677163b93c1b902af12a7a8f597741_JaffaCakes118
Size

91KB
MD5

c7677163b93c1b902af12a7a8f597741
SHA1

6c32cd5d7514da6deff29937348ce3c8184a097b
SHA256

3f47740b3a570877174d794a6c82f15aa9ce630aaf5adafb42e2fea6bdf6a2c1
SHA512

1b11609499027e99d2c2d9439b3204fb7911df339ae2cbba7d8dc271165cbb3352c52d8c465d6ffe8eeed3c7fa14b158a82d4b00173a6afdfd4acc62d988d961
SSDEEP

1536:zBouuMSl1CdCRm7bOk1DeuSlq/DENTggGvS+g+SO/CA3TRwTo+Lwbds+axi2jw:z2RMSlGCQZ1xSTuvXg+zDRe7EBsli

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c7677163b93c1b902af12a7a8f597741_JaffaCakes118

Files

c7677163b93c1b902af12a7a8f597741_JaffaCakes118
.exe windows:4 windows x86 arch:x86

189dc8e139d69e8a4998f4b937e6da05

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

adsldpc

ADsEnumClasses

kernel32

GetModuleHandleW
FreeResource
SearchPathW
EnterCriticalSection
GetCurrentThread
TlsSetValue
WaitForMultipleObjects
SetEvent
GlobalDeleteAtom
GetModuleFileNameW
LockResource
SystemTimeToFileTime
LoadResource
FileTimeToLocalFileTime
FlushFileBuffers
SizeofResource
GetSystemTimeAsFileTime
lstrcpyW
UnhandledExceptionFilter
LoadLibraryExA
CreateFileW
LeaveCriticalSection
GetVersionExA
GetThreadLocale
DeleteFileW
GetPrivateProfileIntW
CopyFileW
FindResourceExW
LocalFileTimeToFileTime
GetFullPathNameW
MulDiv
GetLastError
lstrcmpA
DeleteCriticalSection
VirtualProtect
TlsAlloc
GlobalHandle
GlobalLock
LoadLibraryA
MoveFileW
LockFile
SetThreadPriority
lstrcmpiA
LocalUnlock
lstrcatA
GlobalAlloc
SetFilePointer
IsDBCSLeadByte
SetEndOfFile
CreateSemaphoreW
lstrcmpiW
FindFirstFileW
GetDiskFreeSpaceW
ReadFile
LocalReAlloc
lstrcpynW
lstrcpynA
TerminateProcess
DelayLoadFailureHook
GetTempPathW
lstrlenA
GetStringTypeExW
FindResourceW
GetFileSize
GetProcAddress
WideCharToMultiByte
TlsGetValue
LoadLibraryW
WritePrivateProfileStringW
GlobalReAlloc
GlobalAddAtomW
FreeLibrary
VirtualQuery
CreateEventW
GetFileAttributesW
Sleep
InitializeCriticalSection
GlobalUnlock
GetCurrentThreadId
OutputDebugStringW
InterlockedIncrement
lstrcmpW
UnlockFile
LocalLock
TlsFree
GetCurrentProcess
GlobalSize
GetModuleHandleA
SuspendThread
GetVersionExW
GetProcessVersion
GetFileTime
GetProfileIntW
MultiByteToWideChar
ReleaseSemaphore
lstrcpyA
SetErrorMode
lstrlenW
FindNextFileW
SetFileTime
GetCurrentDirectoryW
InterlockedDecrement
GetTempFileNameW
QueryPerformanceCounter
SetUnhandledExceptionFilter
FileTimeToSystemTime
SetLastError
LocalFree
DuplicateHandle
GlobalGetAtomNameW
GetShortPathNameW
ResumeThread
LocalAlloc
GetUserDefaultLCID
lstrcatW
SetFileAttributesW
CloseHandle
WriteFile
GlobalFindAtomW
FormatMessageW
VirtualAlloc
GetVersion
ReleaseMutex
GetCurrentProcessId
InterlockedCompareExchange
GetSystemDirectoryA
GlobalFree
FindClose
GetTickCount
GetPrivateProfileStringW
WaitForSingleObject
GetVolumeInformationW
GlobalFlags
CreateMutexW
GetSystemInfo

advapi32

RegCloseKey
RegOpenKeyW
SetFileSecurityW
RegEnumKeyW
RegCreateKeyExW
GetFileSecurityW
RegSetValueW
RegDeleteKeyW
RegOpenKeyExW
RegQueryValueExW
RegDeleteValueW
RegCreateKeyW
RegSetValueExW
RegQueryValueW

user32

SetPropW
GetTabbedTextExtentA
UnhookWindowsHookEx
SetWindowLongW
GetWindowTextLengthW
GetSystemMenu
LoadBitmapW
GetDialogBaseUnits
GetWindowLongW
FindWindowW
GetPropW
SetWindowPlacement
wsprintfW
DestroyMenu
CreateMenu
RegisterClipboardFormatW
MapWindowPoints
GetMenuItemID
FrameRect
GetMessagePos
DestroyIcon
DefFrameProcW
CharUpperW
SendDlgItemMessageW
IsIconic
IsWindow
InflateRect
SetParent
SetMenuItemBitmaps
SendDlgItemMessageA
ReleaseCapture
GetMenu
GetDlgItemInt
SetRect
IsWindowVisible
ShowWindow
CheckDlgButton
GetWindowTextW
OffsetRect
GetParent
LoadCursorW
SetTimer
SetMenu
TranslateMDISysAccel
DefWindowProcW
MsgWaitForMultipleObjects
ReleaseDC
SetDlgItemInt
RedrawWindow
UnionRect
SystemParametersInfoW
ShowOwnedPopups
SetCapture
BeginPaint
GetWindowRect
BringWindowToTop
CallWindowProcW
EndDialog
CopyRect
DrawEdge
IsZoomed
InvertRect
TranslateAcceleratorW
SetDlgItemTextW
DeferWindowPos
SetScrollRange
ClientToScreen
GetCursorPos
GetWindow
DefMDIChildProcW
GetDesktopWindow
GetNextDlgTabItem
ClipCursor
LoadIconW
DrawTextW
GetMessageW
EndPaint
RemovePropW
SetWindowPos
ScrollWindow
IsWindowEnabled
GetMessageTime
InvalidateRgn
TrackPopupMenu
ScreenToClient
SetScrollInfo
RegisterWindowMessageW
MapDialogRect
GetTabbedTextExtentW
GetFocus
GetKeyState
WaitMessage
PostMessageW
SetCursorPos
GetActiveWindow
SetRectEmpty
GetWindowPlacement
UnregisterClassW
GetScrollRange
GetAsyncKeyState
ModifyMenuW
PtInRect
CheckMenuItem
CreateDialogIndirectParamW
AppendMenuW
GetMenuItemCount
RegisterClassW
KillTimer
GetSystemMetrics
ValidateRect
SetWindowsHookExW
TabbedTextOutW
SetFocus
GetCapture
GetNextDlgGroupItem
LoadMenuW
SendMessageW
IntersectRect
GetSysColorBrush
UpdateWindow
FillRect
GetSysColor
LockWindowUpdate
ReuseDDElParam
CountClipboardFormats
GetWindowDC
SetWindowTextW
MessageBoxA
MoveWindow
DispatchMessageW
UnpackDDElParam
ScrollWindowEx
MessageBoxW
GetWindowThreadProcessId
SetForegroundWindow
MessageBeep
GetSubMenu
DestroyCursor
TranslateMessage
PostThreadMessageW
GetDlgItem
GetClientRect
GetClassNameW
BeginDeferWindowPos
wvsprintfW
DrawMenuBar
GetMenuCheckMarkDimensions
GetLastActivePopup
InvalidateRect
GetDC
GetDCEx
WinHelpW
EnableWindow
LoadStringW
EqualRect
CharNextW
GetClassInfoW
IsClipboardFormatAvailable
GetDlgCtrlID
GetMenuState
DeleteMenu
WindowFromPoint
InSendMessage
RemoveMenu
GetForegroundWindow
SetScrollPos
DrawFocusRect
CheckRadioButton
CopyAcceleratorTableW
GetDlgItemTextW
WindowFromDC
EnableMenuItem
AdjustWindowRectEx
SetActiveWindow
SetCursor
IsDialogMessageW
EndDeferWindowPos
GetScrollPos
GrayStringW
GetScrollInfo
IsChild
EnumChildWindows
PeekMessageW
CreateWindowExW
CallNextHookEx
GetTopWindow
SetWindowContextHelpId
SystemParametersInfoA
DestroyWindow
GetMenuStringW
LoadAcceleratorsW
InsertMenuW
IsRectEmpty
ShowScrollBar
PostQuitMessage
IsDlgButtonChecked

wininet

InternetSetStatusCallbackW
FtpPutFileW
InternetGetLastResponseInfoW
InternetCloseHandle
FtpSetCurrentDirectoryW
InternetOpenW
InternetErrorDlg
InternetSetOptionExW
InternetFindNextFileW
InternetWriteFile
InternetSetCookieW
InternetCrackUrlW
InternetQueryDataAvailable
InternetSetFilePointer
FtpRemoveDirectoryW
InternetQueryOptionW
FtpCreateDirectoryW
GopherFindFirstFileW
HttpSendRequestW
InternetCanonicalizeUrlW
FtpFindFirstFileW
HttpEndRequestW
FtpGetFileW
InternetGetCookieW
HttpSendRequestExW
HttpAddRequestHeadersW
FtpRenameFileW
GopherGetAttributeW
FtpDeleteFileW
InternetReadFile
InternetOpenUrlW
InternetConnectW
FtpGetCurrentDirectoryW
HttpQueryInfoW
GopherOpenFileW
FtpOpenFileW
GopherCreateLocatorW
HttpOpenRequestW

ole32

CoRegisterMessageFilter
CoTreatAsClass
OleDuplicateData
OleSetMenuDescriptor
CoFreeUnusedLibraries
CoGetClassObject
OleDestroyMenuDescriptor
CLSIDFromString
DoDragDrop
WriteClassStm
RevokeDragDrop
CoRevokeClassObject
OleCreateLinkToFile
OleSaveToStream
OleCreateFromData
GetClassFile
OleCreateFromFile
StringFromGUID2
CoLockObjectExternal
CreateStreamOnHGlobal
GetHGlobalFromILockBytes
ReadClassStm
CreateDataAdviseHolder
StgOpenStorage
IsAccelerator
CreateILockBytesOnHGlobal
CoTaskMemAlloc
CoUninitialize
CoCreateInstance
ReleaseStgMedium
RegisterDragDrop
GetRunningObjectTable
OleCreateLinkFromData
OleCreate
OleInitialize
CreateBindCtx
CreateOleAdviseHolder
StgCreateDocfile
CoRegisterClassObject
CreateDataCache
OleLoad
CLSIDFromProgID
OleRegGetUserType
CreateFileMoniker
OleLockRunning
StringFromCLSID
OleIsRunning
OleIsCurrentClipboard
CoGetMalloc
StgCreateDocfileOnILockBytes
OleLoadFromStream
OleRegGetMiscStatus
OleCreateStaticFromData
WriteClassStg
OleQueryLinkFromData
CoTaskMemFree
OleUninitialize
ReadFmtUserTypeStg
OleRun
OleCreateMenuDescriptor
OleGetIconOfClass
OleGetClipboard
OleSetContainedObject
WriteFmtUserTypeStg
SetConvertStg
StgOpenStorageOnILockBytes
CreateGenericComposite
CoInitialize
OleSave
OleQueryCreateFromData
OleRegEnumVerbs
OleFlushClipboard
ReadClassStg
OleTranslateAccelerator
OleSetClipboard
CoDisconnectObject
StgIsStorageFile
CreateItemMoniker

msvcrt

__CxxFrameHandler
clearerr
_wcsupr
_wtoi
_CxxThrowException
_ultow
gmtime
iswdigit
wcstol
calloc
__dllonexit
free
__argc
_onexit
_itow
wcschr
wcscpy
wcstod
mktime
fclose
_snwprintf
_fdopen
_wfullpath
fwrite
_wcsdup
wcsspn
wcspbrk
wcsftime
malloc
floor
_beginthreadex
_wcsrev
_initterm
fgetws
abort
iswspace
wcscmp
_wtol
modf
fread
memmove
_wcsnicmp
_open_osfhandle
swprintf
vswprintf
__wargv
_wcslwr
fflush
fputws
realloc
wcsrchr
ceil
_endthreadex
__doserrno
_msize
wcsncpy
_ltow
wcscspn
wcsncmp
_get_osfhandle
wcstoul
_expand
_adjust_fdiv
_purecall
wcslen
_except_handler3
ftell
wcsstr
time
_wsplitpath
localtime
fseek

gdi32

RestoreDC
SetViewportExtEx
StartDocW
SelectClipPath
GetROP2
CreateSolidBrush
SetAbortProc
CreateFontIndirectW
GetTextExtentPoint32W
SetBrushOrgEx
SetRectRgn
GetTextAlign
BitBlt
CreateDCW
SetROP2
PolyDraw
PolylineTo
EndPage
UnrealizeObject
SetMapMode
CreatePatternBrush
GetObjectW
EnumFontFamiliesExW
CreateDIBPatternBrushPt
CreateBitmap
OffsetWindowOrgEx
GetBkColor
GetWindowExtEx
CreatePalette
LineTo
GetPaletteEntries
SetTextAlign
EnumMetaFile
OffsetViewportOrgEx
GetTextColor
DPtoLP
GetBkMode
MoveToEx
CloseMetaFile
Rectangle
OffsetClipRgn
SelectPalette
CopyMetaFileW
ScaleWindowExtEx
StartPage
SetMapperFlags
GetDeviceCaps
SetArcDirection
PatBlt
PolyBezierTo
CreateRectRgn
GetStretchBltMode
ExtSelectClipRgn
SetBkColor
SetTextColor
EndDoc
ArcTo
GetTextMetricsW
GetTextFaceW
SetColorAdjustment
DeleteObject
SetTextCharacterExtra
GetCharWidthW
CreatePen
SetViewportOrgEx
GetPolyFillMode
GetPixel
CreateRectRgnIndirect
SetWindowOrgEx
TextOutW
DeleteDC
CreateHatchBrush
GetNearestColor
GetMapMode
RectVisible
CreateFontW
ExtTextOutW
GetWindowOrgEx
StretchDIBits
LPtoDP
GetObjectType
AbortDoc
PlayMetaFileRecord
GetClipBox
SetTextJustification
SelectObject
SetPolyFillMode
GetClipRgn
EnumFontFamiliesW
OffsetRgn
RealizePalette
PlayMetaFile
ExtCreatePen
DeleteMetaFile
GetViewportOrgEx
CreateCompatibleBitmap
SelectClipRgn
SetBkMode
GetCurrentPositionEx
PtVisible
CombineRgn
CreateMetaFileW
SetWindowExtEx
GetViewportExtEx
SetStretchBltMode
IntersectClipRect
GetStockObject
GetTextExtentPoint32A
SaveDC
Escape
CreateCompatibleDC
ScaleViewportExtEx
ExcludeClipRect

ws2_32

WSAGetLastError

ntdll

NtCreateKey

Sections

.textbss
Size: - Virtual size: 656KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 512B - Virtual size: 444B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 772B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.idata
Size: 88KB - Virtual size: 88KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

189dc8e139d69e8a4998f4b937e6da05

Headers

DLL Characteristics

File Characteristics

Imports

adsldpc

kernel32

advapi32

user32

wininet

ole32

msvcrt

gdi32

ws2_32

ntdll

Sections

.textbss Size: - Virtual size: 656KB

.text Size: 512B - Virtual size: 444B

.rdata Size: 512B - Virtual size: 32B

.reloc Size: 1024B - Virtual size: 772B

.idata Size: 88KB - Virtual size: 88KB

.textbss
Size: - Virtual size: 656KB

.text
Size: 512B - Virtual size: 444B

.rdata
Size: 512B - Virtual size: 32B

.reloc
Size: 1024B - Virtual size: 772B

.idata
Size: 88KB - Virtual size: 88KB