ce4afaf8278b2c0ec893f822ea844f46_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

ce4afaf8278b2c0ec893f822ea844f46_JaffaCakes118
Size

9.6MB
MD5

ce4afaf8278b2c0ec893f822ea844f46
SHA1

9e44defdd8479cb5b5e4863b5883b89450da3370
SHA256

2f5f2b6ca830ea72b6e46d90bbb6761ce1894ccd1ca96ba4359310cc96b7f8e6
SHA512

7bad6f2982d11ab2d967f7df908acae0cdfffb94ddc8d527bf39e20d72a92430b1ad015a184d558866e06c3ffa99e36f0607094970a3462e7739183febf4cf20
SSDEEP

24576:wCqCXzRYR6uiCqCXzRYR6uzXROfMJORRpXROfMJORR:wCql2CqlnXRqBpXRqB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ce4afaf8278b2c0ec893f822ea844f46_JaffaCakes118

Files

ce4afaf8278b2c0ec893f822ea844f46_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e6e9e3aa4a0c5416c49407beb1be5f12

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

hid

HidD_GetAttributes
HidD_GetSerialNumberString
HidD_GetHidGuid
HidD_FlushQueue

winmm

sndPlaySoundA

cfgmgr32

CM_Disconnect_Machine
CM_Locate_DevNode_ExA
CM_Connect_MachineA
CM_Get_DevNode_Registry_Property_ExA
CM_Get_Sibling_Ex
CM_Get_Device_ID_ExA
CM_Get_Child_Ex

setupapi

SetupDiDestroyDeviceInfoList
SetupDiGetDeviceInterfaceDetailA
SetupDiEnumDeviceInterfaces
SetupDiGetClassDevsA

kernel32

LeaveCriticalSection
EnterCriticalSection
LocalAlloc
TlsAlloc
GlobalHandle
TlsFree
GlobalReAlloc
TlsSetValue
LocalReAlloc
TlsGetValue
GlobalFlags
GetProcessVersion
GetCPInfo
GetOEMCP
WritePrivateProfileStringA
RtlUnwind
ExitProcess
GetTimeZoneInformation
GetSystemTime
GetLocalTime
HeapAlloc
HeapFree
GetFileType
GetStartupInfoA
GetCommandLineA
RaiseException
CreateThread
ExitThread
GetACP
HeapSize
HeapReAlloc
LCMapStringA
LCMapStringW
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
SetStdHandle
SetHandleCount
GetStdHandle
WriteConsoleA
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetStringTypeA
GetStringTypeW
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetProfileStringA
SetConsoleMode
GetConsoleMode
CreateFileA
GetDriveTypeA
CloseHandle
GetLastError
DeviceIoControl
FlushFileBuffers
FindClose
FindFirstFileA
GetTempPathA
Sleep
MultiByteToWideChar
GetFullPathNameA
lstrcpynA
FreeResource
LockResource
LoadResource
FindResourceA
GlobalUnlock
GlobalLock
GlobalAlloc
SizeofResource
GetCurrentProcess
FreeLibrary
GetProcAddress
LoadLibraryA
GetDiskFreeSpaceA
GetSystemDefaultLCID
TerminateProcess
OpenProcess
Process32Next
Process32First
CreateToolhelp32Snapshot
GetLogicalDrives
GetShortPathNameA
WaitForSingleObject
ResetEvent
CreateEventA
OutputDebugStringA
GetVersion
SetCurrentDirectoryA
GetCurrentDirectoryA
CreateDirectoryA
CopyFileA
DeleteFileA
SetFileAttributesA
GetModuleFileNameA
SetErrorMode
AllocConsole
GetVersionExA
GetThreadLocale
DeleteCriticalSection
SetThreadPriority
UnmapViewOfFile
MapViewOfFile
CreateFileMappingA
OpenFileMappingA
ReadFile
WriteFile
GlobalFree
WideCharToMultiByte
GetComputerNameA
InterlockedIncrement
InterlockedDecrement
lstrlenA
LocalFree
GetModuleHandleA
lstrcpyA
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
lstrcmpiA
GlobalGetAtomNameA
GetCurrentThreadId
lstrcatA
SetLastError
MulDiv
SetEvent
ResumeThread
SuspendThread
GetFileAttributesA
GetFileSize
GetFileTime
DuplicateHandle
SetFilePointer
LockFile
UnlockFile
SetEndOfFile
GetVolumeInformationA
FileTimeToSystemTime
FileTimeToLocalFileTime
GetCurrentThread
lstrcmpA
CreateMutexA
ReleaseMutex
InitializeCriticalSection
ReadConsoleInputA

user32

ReleaseDC
GetWindowDC
TabbedTextOutA
DrawTextA
GrayStringA
CreateDialogIndirectParamA
EndDialog
ValidateRect
TranslateMessage
GetMessageA
CharUpperA
GetSysColorBrush
DestroyMenu
InflateRect
GetDlgItemTextA
CheckDlgButton
SendDlgItemMessageA
MapWindowPoints
GetSysColor
PeekMessageA
DispatchMessageA
GetFocus
SetActiveWindow
IsWindow
SetFocus
ScreenToClient
CopyRect
IsWindowVisible
GetTopWindow
WinHelpA
GetClassInfoA
RegisterClassA
GetDC
GetMenuItemCount
GetSubMenu
CheckMenuItem
GetDlgItem
GetWindowTextLengthA
GetKeyState
DestroyWindow
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessagePos
GetForegroundWindow
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetSystemMetrics
GetParent
IsWindowEnabled
GetWindowLongA
MessageBoxA
LoadStringA
GetLastActivePopup
GetActiveWindow
BeginPaint
EndPaint
ClientToScreen
AdjustWindowRectEx
MoveWindow
GetDlgCtrlID
RedrawWindow
PostQuitMessage
SetRect
GetClassNameA
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
DefDlgProcA
SendMessageTimeoutA
EnumWindows
SetForegroundWindow
IsIconic
ShowWindow
GetWindow
LoadIconA
KillTimer
SetTimer
GetWindowRect
SetWindowRgn
LoadCursorA
SetCursor
GetWindowTextA
PostMessageA
GetCursorPos
WindowFromPoint
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuA
GetMenu
SetMenuItemBitmaps
wsprintfA
SendMessageA
EnableWindow
SetCapture
GetCapture
InvalidateRect
EnableMenuItem
GetNextDlgTabItem
SetWindowTextA
GetMenuItemID
IsDialogMessageA
CharNextA
IsWindowUnicode
SetDlgItemTextA
UpdateWindow
GetClientRect
LoadBitmapA
PtInRect
ReleaseCapture
IsDlgButtonChecked
GetMessageTime

gdi32

CreateEllipticRgn
CreateRectRgn
BitBlt
CreateDIBitmap
CombineRgn
PatBlt
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
CreateSolidBrush
GetDeviceCaps
IntersectClipRect
ScaleWindowExtEx
SetWindowExtEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetBkMode
GetStockObject
RestoreDC
SaveDC
DeleteDC
CreateBitmap
SetBkColor
SetTextColor
GetClipBox
DeleteObject
SelectObject
GetTextMetricsA
GetTextExtentPointA
CreateFontA
GetObjectA
CreateFontIndirectA
OffsetRgn
CreateCompatibleDC

comdlg32

GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegEnumKeyExA
RegCreateKeyExA
RegSetValueExA
RegDeleteKeyA
RegDeleteValueA
RegSaveKeyA
RegRestoreKeyA
RegLoadKeyA
RegEnumKeyA
RegOpenKeyA
RegFlushKey

shell32

ShellExecuteA
SHChangeNotify

comctl32

ord17

olepro32

ord251

ole32

CreateStreamOnHGlobal
CoInitialize
CoCreateInstance

Sections

.text
Size: 363KB - Virtual size: 363KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 38KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8.3MB - Virtual size: 8.3MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 856KB - Virtual size: 856KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

e6e9e3aa4a0c5416c49407beb1be5f12

Headers

File Characteristics

Imports

hid

winmm

cfgmgr32

setupapi

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

olepro32

ole32

Sections

.text Size: 363KB - Virtual size: 363KB

.rdata Size: 38KB - Virtual size: 38KB

.data Size: 8.3MB - Virtual size: 8.3MB

.rsrc Size: 856KB - Virtual size: 856KB

.text
Size: 363KB - Virtual size: 363KB

.rdata
Size: 38KB - Virtual size: 38KB

.data
Size: 8.3MB - Virtual size: 8.3MB

.rsrc
Size: 856KB - Virtual size: 856KB