d1b03cc881a26be77ad13fc58f311bcb_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

d1b03cc881a26be77ad13fc58f311bcb_JaffaCakes118
Size

1.3MB
MD5

d1b03cc881a26be77ad13fc58f311bcb
SHA1

e5ae6bb573f7fd3a4a78137a9dbc1551aecaf371
SHA256

34dfcb480427ea3bb7b6a4dc311b73c4bc742e24a88aea30c8182072224b2109
SHA512

7b79aed769a792c9f29f741fbae30a21f6b8d41f3a84d2c1b16342ead79efb35d58a0c2b1ff3be574d26b56e25da51f19ee68061ea7fe6ba4485900d13f522f0
SSDEEP

24576:aauyVGqxjnJfDMakP3Z7aC+GJbVAWWGW9WeI8P6E/TpyvCU:tLnJfGtLoGoWetP/74vCU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d1b03cc881a26be77ad13fc58f311bcb_JaffaCakes118

Files

d1b03cc881a26be77ad13fc58f311bcb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4b6cd9cf9b52adac0d56e80de9560940

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

timeGetTime

version

GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA

kernel32

LCMapStringW
SetHandleCount
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
SetUnhandledExceptionFilter
VirtualAlloc
IsBadWritePtr
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetTickCount
LCMapStringA
SetCurrentDirectoryA
GetCurrentDirectoryA
MulDiv
GetProcAddress
LoadLibraryA
FreeLibrary
CloseHandle
UnmapViewOfFile
GetFileSize
MapViewOfFile
CreateFileMappingA
GetVersionExA
RemoveDirectoryA
CreateDirectoryA
LoadResource
FindResourceA
LockResource
GlobalFree
GlobalUnlock
GlobalLock
GetModuleHandleA
lstrcpyA
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
lstrcmpiA
GlobalGetAtomNameA
GetTimeZoneInformation
HeapSize
HeapReAlloc
GetACP
GetFileType
SetStdHandle
TerminateProcess
HeapFree
HeapAlloc
RaiseException
ExitProcess
GetCommandLineA
GetStartupInfoA
RtlUnwind
FindResourceExA
FileTimeToLocalFileTime
FileTimeToSystemTime
SetErrorMode
GetOEMCP
GetCPInfo
GetProcessVersion
GetCurrentThreadId
lstrcatA
GetVersion
InterlockedIncrement
GetProfileStringA
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
SizeofResource
GlobalFlags
GetShortPathNameA
GetThreadLocale
GetStringTypeExA
GetVolumeInformationA
DeleteFileA
MoveFileA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
GetCurrentProcess
DuplicateHandle
SetLastError
SetFileAttributesA
CreateFileA
SystemTimeToFileTime
InterlockedDecrement
LocalFileTimeToFileTime
FindFirstFileA
FindClose
GetLastError
GetDiskFreeSpaceA
GetFileTime
SetFileTime
GetFullPathNameA
GetTempFileNameA
GetFileAttributesA
lstrcpynA
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
GetModuleFileNameA
GlobalAlloc
lstrcmpA
GetCurrentThread
FormatMessageA
LocalFree
MultiByteToWideChar
WideCharToMultiByte
lstrlenA

user32

GetDCEx
LockWindowUpdate
RegisterClipboardFormatA
PostThreadMessageA
InsertMenuA
GetSysColorBrush
GetClassNameA
CharUpperA
SetParent
KillTimer
SetTimer
UnionRect
IsZoomed
BringWindowToTop
UnpackDDElParam
ReuseDDElParam
SetMenu
LoadMenuA
TranslateAcceleratorA
LoadAcceleratorsA
SetRectEmpty
WindowFromPoint
GetWindowThreadProcessId
GetDesktopWindow
WaitMessage
DestroyMenu
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
ClientToScreen
IsRectEmpty
FindWindowA
GetAsyncKeyState
LoadStringA
MapDialogRect
SetWindowContextHelpId
GetMessageA
TranslateMessage
ValidateRect
GetCursorPos
ShowOwnedPopups
PostQuitMessage
wvsprintfA
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
EnableMenuItem
ShowWindow
MoveWindow
SetWindowTextA
InflateRect
LoadIconA
MapWindowPoints
GetSysColor
PeekMessageA
DispatchMessageA
GetFocus
SetFocus
AdjustWindowRectEx
EqualRect
DeferWindowPos
BeginDeferWindowPos
CopyRect
EndDeferWindowPos
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
MessageBoxA
IsChild
GetCapture
WinHelpA
wsprintfA
GetClassInfoA
RegisterClassA
GetMenuItemCount
GetSubMenu
GetMenuItemID
TrackPopupMenu
SetWindowPlacement
GetWindowTextLengthA
DrawFocusRect
DefDlgProcA
IsWindowUnicode
GetWindowTextA
GetDlgCtrlID
GetKeyState
DefWindowProcA
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
GetWindow
SetWindowLongA
SetWindowPos
GetNextDlgGroupItem
CopyAcceleratorTableA
CharNextA
DestroyIcon
IsDialogMessageA
DeleteMenu
RegisterWindowMessageA
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetNextDlgTabItem
EndDialog
GetActiveWindow
SetActiveWindow
IsWindow
GetSystemMetrics
CreateDialogIndirectParamA
DestroyWindow
GetWindowLongA
GetDlgItem
IsWindowEnabled
CopyImage
GetParent
GetWindowRect
CheckMenuItem
CheckMenuRadioItem
GetMessagePos
PostMessageA
CreatePopupMenu
AppendMenuA
ScreenToClient
SetCapture
PtInRect
LoadCursorA
GetCursor
SetCursor
GetMenu
GetMenuStringA
MessageBeep
ReleaseCapture
IsWindowVisible
OffsetRect
SetRect
IntersectRect
GetClientRect
InvalidateRect
SendMessageA
UpdateWindow
EnableWindow
ExcludeUpdateRgn
ShowCaret
HideCaret
UnregisterClassA
SendDlgItemMessageA

gdi32

DPtoLP
DeleteDC
SaveDC
RestoreDC
SelectObject
GetStockObject
SelectPalette
SetBkMode
SetStretchBltMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
MoveToEx
LineTo
GetObjectA
DeleteObject
GetViewportExtEx
GetWindowExtEx
CreateSolidBrush
CreatePatternBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
CreateRectRgnIndirect
StretchDIBits
GetCharWidthA
CreateFontA
GetTextMetricsA
CreateFontIndirectA
GetTextColor
GetBkColor
EnumFontFamiliesExA
GetMapMode
SetRectRgn
CombineRgn
SetBkColor
SetTextColor
GetClipBox
GetNearestPaletteIndex
CreateHalftonePalette
GetBitmapBits
SetBitmapBits
SetPaletteEntries
GetDIBColorTable
SetDIBColorTable
RealizePalette
CreateBitmap
MaskBlt
CreateDIBSection
CreatePalette
GetDeviceCaps
CreatePen
GetPaletteEntries
GetTextExtentPoint32A
LPtoDP
CreateRectRgn
CreateCompatibleDC
CreateCompatibleBitmap
PatBlt
BitBlt
GetTextExtentPointA
CreateDIBitmap
StretchBlt

comdlg32

GetFileTitleA
GetSaveFileNameA
GetOpenFileNameA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegSetValueA
RegCloseKey
RegOpenKeyExA
RegQueryValueA
RegEnumKeyA
RegOpenKeyA
RegDeleteKeyA
RegCreateKeyExA
RegSetValueExA
RegDeleteValueA
SetFileSecurityA
GetFileSecurityA
RegCreateKeyA
RegQueryValueExA

shell32

SHGetFileInfoA
DragQueryFileA
DragFinish
DragAcceptFiles
ExtractIconA

comctl32

ImageList_Add
ord17
PropertySheetA
DestroyPropertySheetPage
CreatePropertySheetPageA
ImageList_Destroy
ImageList_Create
ImageList_LoadImageA

oledlg

ord8

ole32

CoFreeUnusedLibraries
OleUninitialize
OleInitialize
CoRevokeClassObject
CoTaskMemAlloc
CoTaskMemFree
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
OleFlushClipboard
CoRegisterMessageFilter
OleIsCurrentClipboard

olepro32

ord253

oleaut32

SysStringLen
VariantCopy
SysAllocStringByteLen
SysAllocString
VariantChangeType
VariantTimeToSystemTime
VariantClear
SysAllocStringLen
SysFreeString

Sections

.text
Size: 780KB - Virtual size: 777KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 116KB - Virtual size: 113KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 28KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 432KB - Virtual size: 430KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4b6cd9cf9b52adac0d56e80de9560940

Headers

File Characteristics

Imports

winmm

version

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

Sections

.text Size: 780KB - Virtual size: 777KB

.rdata Size: 116KB - Virtual size: 113KB

.data Size: 28KB - Virtual size: 41KB

.rsrc Size: 432KB - Virtual size: 430KB

.text
Size: 780KB - Virtual size: 777KB

.rdata
Size: 116KB - Virtual size: 113KB

.data
Size: 28KB - Virtual size: 41KB

.rsrc
Size: 432KB - Virtual size: 430KB