cf77bf197c5a0fe604fecd18e57ee604_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

cf77bf197c5a0fe604fecd18e57ee604_JaffaCakes118
Size

160KB
MD5

cf77bf197c5a0fe604fecd18e57ee604
SHA1

49864f8499309567074e9e47b93ec5b6b75f159c
SHA256

aea9d3b893cf3300f282b3fae16c87bc95dce2fc7a0dbea9b70458558a9daf43
SHA512

db4d27b66a9309288d19546a6ed4bc787516ab37e30a80274da76f2a71cb821fe033e4b567ca8081ea433203b55051939cedb139f0bfbe846cf29743b3cc97a0
SSDEEP

3072:oVLkLwKgyuZXozk5MjwgntBQtYvyhrW9ARRu5pbozdzyibvO9zf20sReXYL:oVIviGgMjPq1hK9A/u3YWibX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
cf77bf197c5a0fe604fecd18e57ee604_JaffaCakes118

Files

cf77bf197c5a0fe604fecd18e57ee604_JaffaCakes118
.exe windows:5 windows x86 arch:x86

b89634285dd7447dc8310e317240ef2c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

rpcrt4

RpcStringFreeW

ole32

OleFlushClipboard
CLSIDFromString
StringFromGUID2
OleQueryLinkFromData
CLSIDFromProgID
OleCreateFromData
OleGetClipboard
CoTaskMemFree
CreateDataCache
RevokeDragDrop
CreateStreamOnHGlobal
OleDraw
CreateDataAdviseHolder
CoCreateInstance
CoGetClassObject
OleCreateStaticFromData
OleSave
OleGetIconOfClass
WriteClassStm
StgCreateDocfile
OleSetClipboard
WriteFmtUserTypeStg
ReleaseStgMedium
CreateItemMoniker
ProgIDFromCLSID
IIDFromString
CoRegisterMessageFilter
CreateOleAdviseHolder
ReadClassStg
OleRun
OleIsCurrentClipboard
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StringFromCLSID
CoCreateGuid
RegisterDragDrop
CoTaskMemAlloc
ReadClassStm
GetRunningObjectTable
OleCreateLinkFromData
OleSaveToStream
CreateBindCtx
OleQueryCreateFromData
WriteClassStg
DoDragDrop
StgOpenStorage

gdi32

GetROP2
CreateICA
EnumFontFamiliesA
CreateRectRgn
GetTextExtentPoint32A
SetROP2
SetTextColor
CreateFontIndirectW
SetPixel
StretchBlt
SetStretchBltMode
Rectangle
PlayMetaFile
CombineRgn
GetPaletteEntries
OffsetRgn
GetTextMetricsW
CreateBitmap
GetTextExtentPoint32W
GetWindowExtEx
SetMapMode
SetBrushOrgEx
CreateHatchBrush
CreateMetaFileA
PolylineTo
SelectPalette
CreateFontIndirectA
SetViewportExtEx
CreateSolidBrush
SetBkMode
GetClipRgn
LineTo
SelectObject
GetRegionData
SetViewportOrgEx
SaveDC
RealizePalette
RectVisible
CreateDCW
GetPixel
CloseMetaFile
CreateCompatibleBitmap
BitBlt
CreateCompatibleDC
UnrealizeObject
PatBlt
RestoreDC
GetWindowOrgEx
GetObjectType
GetBkColor
GetObjectA
GetDeviceCaps
GetMapMode
SetWindowExtEx
CreatePalette
CreateICW
ExtTextOutA
ExtTextOutW
GetStockObject
IntersectClipRect
DeleteMetaFile
CreatePen
SetWindowOrgEx
GetNearestColor
SetPixelV
DeleteDC
LPtoDP
GetTextFaceA
EnumFontFamiliesW
CreateRectRgnIndirect
GetObjectW
GetClipBox
SetBkColor
MoveToEx
GetCurrentObject
GetTextMetricsA
DeleteObject
CreatePatternBrush
ExcludeClipRect
SelectClipRgn
GetTextFaceW
CreateDCA

ntdll

NtUnloadDriver
NtAllocateVirtualMemory

comdlg32

GetSaveFileNameA
ChooseFontA
GetSaveFileNameW
ChooseColorA
GetOpenFileNameW
CommDlgExtendedError
ChooseColorW
ChooseFontW
GetOpenFileNameA

shell32

ExtractIconA
ExtractIconW

advapi32

RegCloseKey
RegQueryValueW
RegDeleteKeyW
RegOpenKeyW
RegEnumKeyW
CreateServiceW
RegOpenKeyExW
ConvertSidToStringSidA
ControlTraceA
RegOpenKeyExA
RegSetValueExA
BuildTrusteeWithNameA
RegOpenKeyA
RegQueryValueA
RegCreateKeyW
RegCreateKeyA
RegQueryValueExW
RegEnumKeyExW
CredRenameW
CancelOverlappedAccess
RegEnumKeyA
RegDeleteKeyA
RegEnumKeyExA

user32

ShowCaret
IntersectRect
CreateWindowExW
SetFocus
LoadAcceleratorsW
ValidateRect
GetDoubleClickTime
GetMessagePos
CallWindowProcW
LoadAcceleratorsA
CreateAcceleratorTableA
CharLowerW
WinHelpW
GetClipboardFormatNameW
CharNextW
AppendMenuW
GetClassNameA
RemovePropW
RegisterWindowMessageW
GetKeyboardLayoutList
SetPropA
LoadCursorW
GetFocus
DestroyMenu
MessageBoxIndirectW
GetMessageTime
GetKeyboardLayout
GetClipboardFormatNameA
ModifyMenuW
RegisterClipboardFormatW
PeekMessageW
GetWindowTextA
SendMessageA
IsWindow
RegisterWindowMessageA
ChildWindowFromPointEx
CharUpperA
LoadMenuA
DefWindowProcA
LoadStringA
AppendMenuA
ScrollDC
GetUpdateRect
SetCaretPos
EnumWindows
ScrollWindowEx
GetSystemMetrics
LoadMenuW
UnregisterClassW
InvalidateRgn
EndDialog
GetAsyncKeyState
InflateRect
UnhookWindowsHookEx
SendMessageW
UpdateWindow
MoveWindow
TranslateAcceleratorW
GetCursorPos
SystemParametersInfoA
DialogBoxIndirectParamW
CreateIconIndirect
BeginPaint
ShowWindow
SystemParametersInfoW
GetWindowLongA
LoadCursorA
GetIconInfo
DrawFrameControl
CharLowerA
AdjustWindowRect
GetWindowThreadProcessId
SetRectEmpty
RedrawWindow
LoadStringW
GetDlgItem
GetCapture
CallNextHookEx
SetCursor
GetActiveWindow
GetWindow
ActivateKeyboardLayout
MessageBoxIndirectA
EndDeferWindowPos
ScreenToClient
GetMenuStringA
GetWindowTextW
ReleaseDC
GetClassNameW
InvertRect
GetKeyState
DialogBoxParamA
InsertMenuW
SetDlgItemTextA
SetRect
GetForegroundWindow
IsIconic
SetPropW
GetMenuItemID
PeekMessageA
EnableMenuItem
EnumChildWindows
GetDlgItemTextW
LoadBitmapW
CopyImage
TranslateAcceleratorA
WindowFromPoint
CheckDlgButton
DestroyWindow
SubtractRect
MapWindowPoints
CopyAcceleratorTableA
SetTimer
CheckMenuItem
IsDlgButtonChecked
PostMessageW
GetMenuStringW
KillTimer
VkKeyScanW
LoadBitmapA
CreateDialogParamA
GetClassInfoA
InsertMenuA
GetPropW
DestroyAcceleratorTable
OffsetRect
SetWindowLongW
GetDC
WinHelpA
wvsprintfA
LockWindowUpdate
IsDialogMessageA
CharUpperW
SetWindowRgn
ClipCursor
GetClientRect
CreateAcceleratorTableW
GetClassInfoW
GetWindowTextLengthA
DrawTextA
EnableWindow
FindWindowA
GetUpdateRgn
SetWindowTextA
GetParent
DeferWindowPos
CreateDialogParamW
SetWindowsHookExW
GetDialogBaseUnits
IsRectEmpty
RegisterClassA
GetCursor
BringWindowToTop
FillRect
RegisterClassW
MessageBoxW
EqualRect
IsWindowVisible
SetDlgItemTextW
CallWindowProcA
CreateWindowExA
HideCaret
GetDCEx
TrackPopupMenu
IsChild
InvalidateRect
GetMessageA
GetSysColor
GetPropA
DispatchMessageA
CopyAcceleratorTableW
RegisterClipboardFormatA
ClientToScreen
SetWindowTextW
DrawTextW
CharPrevW
GetWindowTextLengthW
wvsprintfW
ReleaseCapture
ModifyMenuA
GetDlgItemTextA
DestroyCursor
DrawFocusRect
LoadIconW
LoadIconA
SetCapture
GetWindowDC
UnregisterClassA
IsDialogMessageW
EndPaint
SetWindowPos
VkKeyScanA
PostMessageA
SendDlgItemMessageW
GetSubMenu
DialogBoxIndirectParamA
GetWindowRect
DialogBoxParamW
SetWindowLongA
GetWindowLongW
BeginDeferWindowPos
GetMessageW
FindWindowW
DispatchMessageW
GetMenuItemCount
RemovePropA
DefWindowProcW
PtInRect
DeleteMenu
CreateCaret
SetWindowsHookExA

kernel32

FreeLibrary
GetEnvironmentVariableW
FindResourceW
GetModuleHandleW
LockResource
GetCommandLineA
MultiByteToWideChar
EnterCriticalSection
CreateDirectoryW
GetStdHandle
IsValidCodePage
WideCharToMultiByte
FindFirstFileW
SearchPathW
GetEnvironmentStringsW
GetStringTypeW
HeapAlloc
SetLastError
SetCurrentDirectoryW
IsValidLocale
LCMapStringW
HeapReAlloc
Sleep
HeapFree
_lwrite
GetSystemDefaultLCID
GetStartupInfoA
lstrlenW
FindFirstFileA
GetModuleFileNameA
RtlUnwind
GlobalFree
InitializeCriticalSection
GetFullPathNameA
GetSystemDirectoryA
OutputDebugStringA
CompareStringA
FreeEnvironmentStringsA
CreateDirectoryA
SetCurrentDirectoryA
GetStringTypeA
VirtualAlloc
GetCurrentProcessId
GetFullPathNameW
SetHandleCount
GetCurrentDirectoryA
GetProcessHeap
GetCPInfo
LCMapStringA
GetOEMCP
GetWindowsDirectoryA
GetTickCount
FreeEnvironmentStringsW
GlobalLock
DeleteFileW
SetFilePointer
_lread
InterlockedIncrement
GetFileAttributesW
WriteFile
CreateFileW
GetWindowsDirectoryW
SearchPathA
GlobalAlloc
GetUserDefaultLCID
GetModuleFileNameW
LoadLibraryA
TlsAlloc
ExitProcess
FormatMessageA
GetConsoleMode
SetEndOfFile
HeapSize
OpenFile
GetSystemInfo
WriteConsoleA
LoadLibraryExA
GetCurrentProcess
FormatMessageW
WriteConsoleW
UnhandledExceptionFilter
GetConsoleOutputCP
QueryPerformanceCounter
GetConsoleCP
TlsFree
LeaveCriticalSection
GetLocaleInfoA
GetUserDefaultLangID
GlobalUnlock
GetVersionExA
GetProcAddress
GetCurrentThreadId
HeapDestroy
GetSystemTimeAsFileTime
GetFileAttributesA
GlobalSize
GetSystemDirectoryW
GetLocaleInfoW
OutputDebugStringW
LoadLibraryExW
GetModuleHandleA
IsDebuggerPresent
_llseek
SetUnhandledExceptionFilter
GetEnvironmentStrings
InterlockedDecrement
MulDiv
IsDBCSLeadByte
TerminateProcess
CloseHandle
GetProfileIntA
EnumSystemLocalesA
FreeResource
_lclose
DeleteCriticalSection
CompareStringW
VirtualFree
LoadResource
GetCurrentDirectoryW
TlsGetValue
FindResourceA
HeapCreate
CreateFileA
GetLastError
TlsSetValue
GetACP
GetFileType
SizeofResource

Sections

.text
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 100KB - Virtual size: 352KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 38KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 36B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b89634285dd7447dc8310e317240ef2c

Headers

DLL Characteristics

File Characteristics

Imports

rpcrt4

ole32

gdi32

ntdll

comdlg32

shell32

advapi32

user32

kernel32

Sections

.text Size: 17KB - Virtual size: 16KB

.data Size: 100KB - Virtual size: 352KB

.rsrc Size: 38KB - Virtual size: 37KB

.rdata Size: 3KB - Virtual size: 3KB

.reloc Size: 512B - Virtual size: 36B

.text
Size: 17KB - Virtual size: 16KB

.data
Size: 100KB - Virtual size: 352KB

.rsrc
Size: 38KB - Virtual size: 37KB

.rdata
Size: 3KB - Virtual size: 3KB

.reloc
Size: 512B - Virtual size: 36B