ce68e3b56ac1ab93ff92144d5094dbf3_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

ce68e3b56ac1ab93ff92144d5094dbf3_JaffaCakes118
Size

952KB
MD5

ce68e3b56ac1ab93ff92144d5094dbf3
SHA1

b73d810f2369608673d89ea053dffde57d3ccf8d
SHA256

414f627af9d314e48e227a417af5913afd5f491f6afb3014cef9024f055e378d
SHA512

0b1c40e8b45b859fddd4d71de028ad37a767dee1edbaba76c35c883c65e8b1610573f33c8066ec86db81a6ec155f154908f6d4daf02e0a3f9e9a4cbca45f82e5
SSDEEP

12288:8AFwB8UwLPUSF28pu/Cg27QY0kBSmJUxpBTmv0R5WzORTlnXBIIZumu/q9nbNN:8A6B8UwLX9oCL30kkjRgORTlxhN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ce68e3b56ac1ab93ff92144d5094dbf3_JaffaCakes118

Files

ce68e3b56ac1ab93ff92144d5094dbf3_JaffaCakes118
.exe windows:6 windows x86 arch:x86

8c87eb5c0d4b6bf847fcbdbb6e3ca77e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetPriorityClass
GetVersionExA
WideCharToMultiByte
GlobalAlloc
GlobalSize
GlobalLock
GlobalUnlock
VirtualAlloc
CreateIoCompletionPort
ReleaseSemaphore
WaitForMultipleObjects
GetFileInformationByHandle
GetFileTime
MulDiv
OpenFile
_lclose
OpenSemaphoreA
GetTempPathA
GetCurrentDirectoryA
GetFileAttributesA
CopyFileA
MultiByteToWideChar
FillConsoleOutputCharacterA
SetEndOfFile
CreateFileW
SetEnvironmentVariableA
ReadConsoleW
SetStdHandle
HeapReAlloc
FreeEnvironmentStringsW
GetEnvironmentStringsW
GetSystemTimeAsFileTime
GetCurrentProcessId
QueryPerformanceCounter
GetModuleFileNameA
GetOEMCP
GetACP
IsValidCodePage
OutputDebugStringW
SetFilePointerEx
GetConsoleMode
GetConsoleCP
FlushFileBuffers
GetProcessHeap
SetPriorityClass
HeapSize
AreFileApisANSI
ExitProcess
EnumSystemLocalesW
GetUserDefaultLCID
IsValidLocale
GetLocaleInfoW
LCMapStringW
CompareStringW
GetModuleHandleW
GetStartupInfoW
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
GetCurrentProcess
InitializeCriticalSectionAndSpinCount
SetLastError
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCPInfo
GetCommandLineA
LoadLibraryExW
ExitThread
GetCurrentThreadId
HeapAlloc
RtlUnwind
RaiseException
WriteConsoleW
GetModuleHandleExW
GetModuleFileNameW
GetFileType
GetStdHandle
HeapFree
IsProcessorFeaturePresent
GetStringTypeW
DecodePointer
EncodePointer
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
CreateFileA
GetProcessVersion
GetModuleHandleA
LoadLibraryA
CreateEventA
lstrlenA
lstrcatA
lstrcpyA
lstrcmpiA
lstrcmpA
FileTimeToSystemTime
GetTimeZoneInformation
SystemTimeToTzSpecificLocalTime
CloseHandle
ReadFile
FreeLibrary
WriteFile
Sleep
WaitForSingleObject
ResetEvent
SetEvent
GetLastError
CreateThread
TerminateProcess
OpenProcess
GetProcessTimes
GetProcAddress
IsDebuggerPresent

user32

CreateWindowExA
IsWindow
DestroyWindow
ShowWindow
PostMessageA
SendMessageA
PeekMessageA
DispatchMessageA
TranslateMessage
PtInRect
GetWindowLongA
SetRect
FillRect
GetSysColor
ScreenToClient
SetWindowLongA
GetCursorPos
SetCursor
MessageBoxW
GetWindowTextW
MoveWindow
SetWindowPos
IsWindowVisible
DialogBoxParamA
EndDialog
GetDlgItem
CheckDlgButton
IsDlgButtonChecked
SetFocus
SetTimer
GetSystemMetrics
CreatePopupMenu
DestroyMenu
GetSubMenu
AppendMenuA
TrackPopupMenu
SetWindowTextA
GetWindowTextA
GetWindowTextLengthA
GetClientRect
FindWindowExA
GetTopWindow
LoadCursorA
SystemParametersInfoA
wsprintfA
HideCaret
GetWindowRect
MessageBoxA
GetClassLongA
GetDesktopWindow
GetParent
GetClassNameA
GetWindowThreadProcessId
GetWindow
SetWindowRgn
EndPaint
BeginPaint
ReleaseDC
GetDC
UpdateWindow
InsertMenuItemA
EnableWindow
GetKeyState
EmptyClipboard
RegisterClipboardFormatA
GetClipboardData
SetClipboardData
CloseClipboard
OpenClipboard
SetDlgItemTextA
SetDlgItemInt
CreateDialogParamA
BringWindowToTop
IsIconic
IsChild
CallWindowProcA
GetMessageA
IsDialogMessageA
LoadIconA
ClientToScreen

gdi32

DeleteDC
DeleteObject
CreatePen
CreateFontIndirectA
CreateCompatibleDC
CombineRgn
CreateFontA
EnumFontFamiliesA
GetRgnBox
LineTo
SelectObject
SetBkColor
SetPixel
SetRectRgn
SetTextColor
SetTextAlign
GetTextMetricsA
CreateDIBSection
MoveToEx
TextOutA
ExtTextOutW
SetWindowExtEx
CreateRectRgn
GetStockObject

winspool.drv

AddPrinterA

comdlg32

ChooseColorA
ChooseFontA
GetSaveFileNameA

advapi32

RegCloseKey
RegCreateKeyA
RegOpenKeyA
RegQueryValueExA
ClearEventLogA
RegSetValueExA

shell32

SHGetDesktopFolder
ExtractIconA

ole32

CreateStreamOnHGlobal
GetHGlobalFromStream
OleIsCurrentClipboard
OleFlushClipboard
OleSetClipboard
OleUninitialize
OleInitialize
CoMarshalInterThreadInterfaceInStream
CoMarshalInterface

oleaut32

OleLoadPicturePath
VarAdd

odbc32

ord24

psapi

EnumDeviceDrivers

comctl32

ImageList_Destroy
ImageList_Create
ord17
PropertySheetA
ImageList_SetBkColor
ImageList_Remove
ImageList_GetImageCount
ImageList_ReplaceIcon

winmm

mmioGetInfo
mmioSetInfo
mmioAdvance
mmioDescend
mmioSeek

ws2_32

WSACreateEvent
closesocket
WSASocketA
shutdown
WSAGetLastError

shlwapi

PathUnExpandEnvStringsW
UrlUnescapeA
UrlUnescapeW
SHCreateStreamOnFileA
PathStripToRootW
PathUnmakeSystemFolderW

urlmon

UrlMkGetSessionOption

wininet

HttpOpenRequestA
InternetSetOptionA
InternetConnectA
InternetCloseHandle
InternetOpenA
HttpSendRequestA

Sections

.text
Size: 211KB - Virtual size: 210KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 78KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 512B - Virtual size: 4B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 639KB - Virtual size: 638KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8c87eb5c0d4b6bf847fcbdbb6e3ca77e

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

comdlg32

advapi32

shell32

ole32

oleaut32

odbc32

psapi

comctl32

winmm

ws2_32

shlwapi

urlmon

wininet

Sections

.text Size: 211KB - Virtual size: 210KB

.rdata Size: 78KB - Virtual size: 78KB

.data Size: 8KB - Virtual size: 19KB

.tls Size: 512B - Virtual size: 4B

.rsrc Size: 639KB - Virtual size: 638KB

.reloc Size: 14KB - Virtual size: 13KB

.text
Size: 211KB - Virtual size: 210KB

.rdata
Size: 78KB - Virtual size: 78KB

.data
Size: 8KB - Virtual size: 19KB

.tls
Size: 512B - Virtual size: 4B

.rsrc
Size: 639KB - Virtual size: 638KB

.reloc
Size: 14KB - Virtual size: 13KB