d3f2742f51910fb4a22103fdf1b21487_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

d3f2742f51910fb4a22103fdf1b21487_JaffaCakes118
Size

336KB
MD5

d3f2742f51910fb4a22103fdf1b21487
SHA1

ae106a029a3c157ece018ea2b23e97fc4a039357
SHA256

b464d0c13debdd28629b1b90a007540ceb7fc4126948c56e46df11c84dbb5038
SHA512

5d4638b814d939c600369cf0f3c4dc24e2d9be85752d9450b5d8c05b216bea2761b70e76fd99b48f6f1891a87d2b0d494527fa4cc1c17236f354bfa8953fc991
SSDEEP

6144:6dVu4o9uXRkondkyLVLcHBf0CNI4W8WOAHAU9M8NVgEzeJgF6vE8O5:yVuzaRkondlVLchfazOAgU9MQbzeJe

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
d3f2742f51910fb4a22103fdf1b21487_JaffaCakes118

Files

d3f2742f51910fb4a22103fdf1b21487_JaffaCakes118
.exe windows:5 windows x86 arch:x86

fe8498a2f42cef7d0f278d40d74356cb

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

RegisterShellHookWindow
SetWindowLongA
IsWindowUnicode
CreateAcceleratorTableW
FindWindowW
ReleaseCapture
RegisterClassExW
CreateDialogIndirectParamW
GetCapture
DragDetect
AppendMenuW
RegisterWindowMessageW
ShowCursor
IsWindow
DestroyCursor
CreateCursor
ScrollWindow
SetScrollInfo
InsertMenuItemW
LoadStringW
SetMenuItemInfoW
DispatchMessageW
TranslateMessage
TranslateAcceleratorW
GetMessageA
GetMessageW
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
GetMonitorInfoW
DdeAccessData
SetWindowPlacement
CheckMenuRadioItem
EnableMenuItem
CheckMenuItem
DestroyAcceleratorTable
GetSubMenu
GetMenuItemID
ModifyMenuW
DialogBoxIndirectParamW
DialogBoxParamW
RemoveMenu
LoadIconW
DestroyIcon
mouse_event
GetDesktopWindow
GetDCEx
WindowFromPoint
PtInRect
LockWindowUpdate
SetDlgItemInt
MapWindowPoints
GetKeyState
TrackPopupMenu
GetWindowTextW
MessageBoxA
SetCapture
GetActiveWindow
IsChild
GetDlgCtrlID
RedrawWindow
GetCursorPos
SetWindowsHookExW
UnhookWindowsHookEx
SetParent
SetWindowTextW
LoadBitmapW
CallNextHookEx
CreatePopupMenu
CreateMenu
InsertMenuW
DestroyMenu
CallWindowProcA
CharUpperW
CharLowerW
DrawIcon
EndDialog
ScreenToClient
GetDlgItemTextW
SetDlgItemTextW
GetDlgItemInt
CreateDialogParamW
DrawFocusRect
DdeCreateDataHandle
DdeClientTransaction
DdeNameService
DdePostAdvise
DdeSetUserHandle
DdeQueryConvInfo
DdeDisconnect
DdeConnect
DdeUninitialize
DdeInitializeA
DialogBoxParamA
SetDlgItemTextA
wvsprintfA
SetForegroundWindow
GetScrollPos
FillRect
FrameRect
SetWindowLongW
GetWindowLongW
GetSysColor
GetClassNameW
PostQuitMessage
LoadMenuW
InflateRect
ClientToScreen
CallWindowProcW
IsWindowVisible
GetWindowRect
ShowWindow
SetWindowPos
SetClipboardViewer
ChangeClipboardChain
SendDlgItemMessageW
IsClipboardFormatAvailable
OpenClipboard
GetClipboardData
RegisterClipboardFormatW
CloseClipboard
MessageBoxW
RegisterClassW
BeginPaint
EndPaint
GetFocus
PostMessageW
LoadCursorW
SetCursor
DestroyWindow
CreateCaret
DestroyCaret
GetSystemMetrics
GetWindowPlacement
CreateWindowExW
wsprintfA
GetScrollRange
UpdateWindow
DefWindowProcW
DrawFrameControl
GetMenu
ShowCaret
MessageBeep
DrawTextW
SetCaretPos
HideCaret
GetParent
ShowScrollBar
SetScrollRange
InvalidateRect
SetScrollPos
GetKeyboardState
ToAscii
wsprintfW
GetDC
DrawEdge
DrawTextExW
ReleaseDC
GetClientRect
MoveWindow
SetFocus
LoadImageW
DrawIconEx
GetDlgItem
SendMessageW
EnableWindow
SystemParametersInfoW
SetMenu
IsDialogMessageW
IsDialogMessageA
PeekMessageW
IsZoomed
DeleteMenu
RealChildWindowFromPoint
IsIconic
DrawMenuBar
GetMenuItemCount
GetMenuStringW
EmptyClipboard
SetClipboardData
GetMenuState
MonitorFromWindow
GetKeyboardType
LoadStringA
CharNextA
CreateWindowExA
WaitMessage
ValidateRect
UnregisterClassA
UnionRect
TranslateMDISysAccel
TabbedTextOutA
SystemParametersInfoA
ShowOwnedPopups
SetWindowRgn
SetWindowsHookExA
SetWindowTextA
SetTimer
SetRect
SetPropA
SetMenuItemInfoA
SetKeyboardState
SetClassLongA
SetActiveWindow
SendMessageA
SendDlgItemMessageA
ScrollWindowEx
RemovePropA
RegisterWindowMessageA
RegisterClipboardFormatA
RegisterClassA
PostMessageA
PeekMessageA
OffsetRect
OemToCharA
MsgWaitForMultipleObjects
MapVirtualKeyA
MapDialogRect
LookupIconIdFromDirectoryEx
LoadMenuIndirectA
LoadKeyboardLayoutA
LoadIconA
LoadCursorA
LoadBitmapA
KillTimer
IsWindowEnabled
IsRectEmpty
IsCharAlphaNumericA
IsCharAlphaA
IntersectRect
InsertMenuItemA
InsertMenuA
GetWindowThreadProcessId
GetWindowTextA
GetWindowLongA
GetWindowDC
GetUpdateRect
GetTopWindow
GetSystemMenu
GetSysColorBrush
GetScrollInfo
GetPropA
GetWindow
GetMessageTime
GetMessagePos
GetMenuStringA
GetMenuItemInfoA
GetLastActivePopup
GetKeyboardLayoutNameA
GetKeyboardLayoutList
GetKeyboardLayout
GetKeyNameTextA
GetIconInfo
GetForegroundWindow
GetDoubleClickTime
GetCursor
GetClassNameA
GetClassLongA
GetClassInfoA
GetCaretPos
GetAsyncKeyState
FindWindowA
EqualRect
EnumWindows
EnumThreadWindows
EnumClipboardFormats
EnumChildWindows
EnableScrollBar
DrawTextA
DispatchMessageA
DefWindowProcA
DefMDIChildProcA
DefFrameProcA
CreateIconFromResourceEx
CreateIcon
CreateDialogIndirectParamA
ChildWindowFromPoint
BringWindowToTop
CharLowerBuffA
CharLowerA
CharUpperBuffA
CharToOemA
AdjustWindowRectEx
ActivateKeyboardLayout
DdeCmpStringHandles
DdeFreeStringHandle
DdeQueryStringA
DdeCreateStringHandleA
DdeGetLastError
DdeFreeDataHandle
DdeUnaccessData

comdlg32

GetSaveFileNameW
GetOpenFileNameW
ChooseColorW
PrintDlgW

shell32

SHChangeNotify
SHGetDataFromIDListA
SHGetDesktopFolder
SHGetPathFromIDListA
SHBrowseForFolderA
SHGetFileInfoA
ShellExecuteA
ShellExecuteExA
DragFinish
SHBrowseForFolderW
SHFileOperationA
Shell_NotifyIconW
SHGetPathFromIDListW
SHGetMalloc
SHGetFolderPathW
SHGetSpecialFolderLocation
ShellExecuteW
DragQueryPoint
DragQueryFileW

ole32

CLSIDFromString
CoCreateInstance
StringFromCLSID
CoTaskMemAlloc
CoTaskMemFree
OleInitialize
OleUninitialize
RegisterDragDrop
RevokeDragDrop
DoDragDrop
OleGetClipboard
ReleaseStgMedium
CoInitialize
CoUninitialize

advapi32

RegQueryValueExW
RegCreateKeyExA
RegDeleteKeyA
RegDeleteValueA
RegEnumKeyExA
RegCloseKey
RegEnumKeyExW
RegOpenKeyExW
RegSetValueExW
RegCreateKeyExW
RegDeleteValueW
RegDeleteKeyW
IsTextUnicode
RegQueryInfoKeyW
RegQueryValueExA
RegOpenKeyExA
RegSetValueExA
RegQueryInfoKeyA
RegFlushKey
RegEnumValueA
RegEnumKeyA

gdi32

GetDIBColorTable
GetDIBits
GetEnhMetaFileBits
GetEnhMetaFileHeader
GetEnhMetaFilePaletteEntries
GetNearestPaletteIndex
GetObjectA
GetObjectType
GetDCOrgEx
GetRgnBox
GetSystemPaletteEntries
GetTextExtentPoint32A
GetTextExtentPointA
GetTextMetricsA
GetWinMetaFileBits
GetWindowOrgEx
IntersectClipRect
GetCurrentPositionEx
GetClipBox
GetBrushOrgEx
GetPaletteEntries
GetBitmapBits
MaskBlt
PlayEnhMetaFile
PolyPolyline
Polygon
Polyline
RealizePalette
RectVisible
RoundRect
SelectClipRgn
GdiFlush
SetAbortProc
SetDIBColorTable
SetEnhMetaFileBits
SetMapMode
SetPixel
SetStretchBltMode
SetViewportExtEx
SetViewportOrgEx
SetWinMetaFileBits
SetWindowExtEx
StartDocA
StretchBlt
StretchDIBits
UnrealizeObject
SelectObject
DeleteDC
SetBkMode
DeleteObject
Rectangle
CreatePen
GetStockObject
SetROP2
GetROP2
GetTextExtentPoint32W
CreateSolidBrush
SetTextColor
GetPixel
CreateFontIndirectW
GetTextExtentPointW
GetDeviceCaps
DPtoLP
StartDocW
StartPage
SetTextAlign
ExtTextOutW
EndPage
EndDoc
EnumFontFamiliesExW
CreateBitmap
CreatePatternBrush
SetBrushOrgEx
PatBlt
OffsetWindowOrgEx
SetWindowOrgEx
SetBkColor
CreateCompatibleDC
GetObjectW
CreateCompatibleBitmap
BitBlt
CreateFontW
SaveDC
RestoreDC
MoveToEx
LineTo
CreateHatchBrush
GetTextMetricsW
ExtTextOutA
ExtCreatePen
ExcludeClipRect
DeleteEnhMetaFile
CreateRoundRectRgn
CreateRectRgn
CreatePenIndirect
CreatePalette
CreateICA
CreateHalftonePalette
CreateFontIndirectA
CreateDIBitmap
CombineRgn
CopyEnhMetaFileA
CreateBrushIndirect
CreateDCA
SelectPalette
CreateDIBSection

comctl32

ImageList_DragShowNolock
ImageList_Add
ImageList_DragMove
ImageList_GetImageCount
ImageList_BeginDrag
ImageList_EndDrag
InitCommonControlsEx
ImageList_SetIconSize
ImageList_AddMasked
ImageList_Destroy
ImageList_Create
ImageList_ReplaceIcon
_TrackMouseEvent
ImageList_GetImageInfo
ImageList_DragEnter
ImageList_Draw

netapi32

NetEnumerateComputerNames

shlwapi

PathStripPathW
PathRemoveExtensionW
PathFileExistsW
PathFindExtensionW
PathFindFileNameW
PathCompactPathExW
PathIsDirectoryW
PathMatchSpecW
PathRemoveFileSpecW
PathAppendW
PathAddExtensionW
PathIsRelativeW

kernel32

GlobalFindAtomA
GlobalDeleteAtom
GlobalAlloc
GlobalAddAtomA
GetWindowsDirectoryA
GetVersion
GetTempPathA
GetTempFileNameA
GetSystemInfo
GetSystemDefaultLCID
GetShortPathNameA
GetProfileStringA
GetLocalTime
GetFullPathNameA
GetFileSize
GetFileAttributesA
GetExitCodeThread
GetDiskFreeSpaceA
GetACP
FreeResource
FormatMessageA
FlushViewOfFile
FindResourceA
FindNextFileA
FindNextChangeNotification
FindFirstChangeNotificationA
FindCloseChangeNotification
FileTimeToDosDateTime
GlobalHandle
DeleteFileA
CreateSemaphoreA
CreateProcessA
CreatePipe
CreateFileMappingA
CreateEventA
CreateDirectoryA
SetFilePointerEx
GetFileSizeEx
FindNextVolumeA
FindFirstVolumeA
GetCPInfoExA
GetLongPathNameA
ExpandEnvironmentStringsA
GetEnvironmentVariableA
lstrcmpiA
SetFileTime
CompareFileTime
SearchPathA
lstrcatA
CopyFileA
GetUserDefaultLangID
lstrcpyA
GetSystemDirectoryA
WaitForSingleObject
GetExitCodeProcess
WritePrivateProfileStringA
GetPrivateProfileStringA
GlobalSize
LoadResource
LockResource
MapViewOfFile
MoveFileA
MoveFileExA
MulDiv
OpenSemaphoreA
ReleaseSemaphore
RemoveDirectoryA
ResetEvent
ResumeThread
SetErrorMode
SetEvent
SetFileAttributesA
SetThreadLocale
SetThreadPriority
SizeofResource
Sleep
SystemTimeToFileTime
TerminateThread
UnmapViewOfFile
VirtualQuery
WaitForMultipleObjects
CreateThread
ExitThread
FindClose
FindFirstFileA
GetThreadLocale
LoadLibraryExA
lstrcpynA
lstrlenA
SetCurrentDirectoryA
HeapSize
CompareStringW
CompareStringA
GetDriveTypeA
SetEndOfFile
CreateFileA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetEnvironmentVariableA
GetLocaleInfoW
SetStdHandle
IsValidLocale
EnumSystemLocalesA
GetUserDefaultLCID
GetLocaleInfoA
GetTickCount
QueryPerformanceCounter
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
HeapReAlloc
VirtualAlloc
WideCharToMultiByte
MultiByteToWideChar
lstrcmpW
lstrcatW
GetModuleFileNameW
lstrlenW
lstrcpyW
DeleteFileW
lstrcmpiW
GetLongPathNameW
GetFullPathNameW
MoveFileW
SetFileAttributesW
GetFileAttributesW
GlobalUnlock
GlobalLock
GetLastError
GetCurrentThreadId
GetModuleHandleW
SetCurrentDirectoryW
GetCurrentDirectoryW
FreeLibrary
GlobalFree
CloseHandle
GetCurrentProcess
GetCurrentProcessId
CreateFileW
GetProcAddress
LoadLibraryW
LocalFree
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
RtlUnwind
RaiseException
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
ReadFile
FileTimeToSystemTime
FileTimeToLocalFileTime
GetDriveTypeW
GetSystemTimeAsFileTime
GetModuleHandleA
ExitProcess
HeapFree
GetCommandLineA
GetVersionExA
HeapAlloc
GetProcessHeap
GetStartupInfoA
LCMapStringA
LCMapStringW
GetCPInfo
GetStringTypeA
GetStringTypeW
TlsGetValue
TlsAlloc
TlsSetValue
TlsFree
GetOEMCP
IsValidCodePage
GetTimeZoneInformation
SetFilePointer
SetHandleCount
GetStdHandle
GetFileType
GetCurrentDirectoryA
GetTimeFormatA
GetDateFormatA
WriteFile
GetModuleFileNameA
GetConsoleCP
GetConsoleMode
FlushFileBuffers
LocalUnlock
LoadLibraryA
HeapDestroy
HeapCreate
VirtualFree
GetCommandLineW
LocalAlloc
InterlockedIncrement
SetLastError
InterlockedDecrement
InitializeCriticalSectionAndSpinCount
EnumCalendarInfoA

Sections

.text
Size: 85KB - Virtual size: 84KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 15KB - Virtual size: 345KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 208KB - Virtual size: 207KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fe8498a2f42cef7d0f278d40d74356cb

Headers

DLL Characteristics

File Characteristics

Imports

user32

comdlg32

shell32

ole32

advapi32

gdi32

comctl32

netapi32

shlwapi

kernel32

Sections

.text Size: 85KB - Virtual size: 84KB

.rdata Size: 27KB - Virtual size: 26KB

.data Size: 15KB - Virtual size: 345KB

.rsrc Size: 208KB - Virtual size: 207KB

.text
Size: 85KB - Virtual size: 84KB

.rdata
Size: 27KB - Virtual size: 26KB

.data
Size: 15KB - Virtual size: 345KB

.rsrc
Size: 208KB - Virtual size: 207KB