d61bcad5ba465f4f88dd9fccf0d7f0a2_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

d61bcad5ba465f4f88dd9fccf0d7f0a2_JaffaCakes118
Size

1.2MB
MD5

d61bcad5ba465f4f88dd9fccf0d7f0a2
SHA1

379a9ec5cb139f658b4482cd63158a937290e030
SHA256

e3cf2846862d1c0352bb4cfbb411117785af6c3ac5687178701aa6b0fa756a97
SHA512

ce4139d28e209a522d828842a9a0aea15bf8e6b5b6ef5899984a405dd713b52dbcbf444a5a5414d9e1cdbe9cbe1262cdca94a6dd70f636e1494ea8c37a8383fb
SSDEEP

12288:mD2h+Ui8pgaI9BCE4Y8l0wvkoU4QiAq7b87Y4dvkyoxw0LB+haElKHY7xwgZFEq+:mD2h+UfpH+BCyolB+haElisxwaFEWru

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d61bcad5ba465f4f88dd9fccf0d7f0a2_JaffaCakes118

Files

d61bcad5ba465f4f88dd9fccf0d7f0a2_JaffaCakes118
.dll windows:4 windows x86 arch:x86

d57d22dbbed7ea094d4ec2e54509357b

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

sdisdk

SDI_isDot11RadioEnabled
SDI_getGUID
SDI_getIPXAddress
SDI_getIPSubnetMask
SDI_getIPDefaultGateway
SDI_getIPAddressSource
SDI_getIPAddress
SDI_getHostName
SDI_isDot11WepEnabled
SDI_FirewallIsEnabled
SDI_isDot3CableIn
SDI_recommendIPAddress
SDI_recommendPortName
SDI_recommendSubnetMask
SDI_validatePortName
SDI_isValidDot11NetworkName
SDI_isValidDot11WEPKey
SDI_isValidDot11RSNPassphrase
SDI_isValidIPAddress
SDI_isValidJetDirectCommunityName
SDI_isValidJetDirectPassword
SDI_isValidMACAddress
SDI_isValidSubnetMask
SDI_setDot11ValidationTimer
SDI_configureDot11
SDI_configureTCPIP
SDI_buildIPPrintPath
SDI_buildBlindIPPrintPath
SDI_getDot11SsidList
SDI_getDot11AuthenticationMode
SDI_getDot11Mode
SDI_getDot11CurrentSSID
SDI_getDot11ConfigurationSource
SDI_getDeviceCapabilities
SDI_getActiveFrontplane
SDI_enableDot11Radio
SDI_stopDiscoveringDevices
SDI_startDiscoveringDevices
SDI_saveDiscoveredDevices
SDI_restoreDiscoveredDevices
SDI_isDiscoveryDone
SDI_getNumDiscoveredDevices
SDI_discoverGUID
SDI_discoverMAC
SDI_discoverIP
SDI_discoverHostName
SDI_clearDiscoveredDevices
SDI_NdisRestoreConfiguration
SDI_NdisConfigureToHpsetup
SDI_NdisIsWireless
SDI_NdisIsSupported
SDI_NdisGetDot11SSID
SDI_NdisGetDot11Mode
SDI_isIPXAvailable
SDI_isIPAvailable
SDI_startup
SDI_isSetJetDirectPassword
SDI_validateJetDirectPassword
SDI_isSetJetDirectCommunityName
SDI_validateJetDirectCommunityName
SDI_isValidIPXAddress
SDI_isValidPortName
SDI_isValidIPHostname
SDI_shutdown
SDI_setLoggingLevel
SDI_recommendPrintPath
SDI_getModelName
SDI_getManufacturer
SDI_getDeviceID
SDI_getMACAddress

kernel32

InterlockedIncrement
CreateDirectoryA
DeviceIoControl
CreateFileA
InterlockedDecrement
GetFileAttributesA
GetCurrentProcess
GetDriveTypeA
GetLogicalDriveStringsA
GetModuleHandleA
FindClose
SearchPathA
FindFirstFileA
GetProcAddress
VirtualProtect
GlobalFree
lstrcpynA
GlobalUnlock
GlobalLock
GlobalAlloc
SetLastError
lstrcmpW
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
GetCurrentThreadId
FreeResource
EnumResourceLanguagesA
ConvertDefaultLocale
GetCurrentThread
ReadFile
WriteFile
SetFilePointer
FindResourceExA
LockFile
UnlockFile
SetEndOfFile
GetFileSize
DuplicateHandle
GetVolumeInformationA
GetFullPathNameA
FileTimeToSystemTime
FileTimeToLocalFileTime
GetFileTime
FindNextFileA
LeaveCriticalSection
GlobalReAlloc
GlobalHandle
EnterCriticalSection
TlsGetValue
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
SetErrorMode
GlobalFlags
GetCPInfo
GetOEMCP
GetCurrentDirectoryA
HeapAlloc
HeapFree
VirtualAlloc
GetSystemInfo
VirtualQuery
RtlUnwind
GetCommandLineA
GetSystemTimeAsFileTime
GetTimeFormatA
GetDateFormatA
IsBadReadPtr
ExitProcess
HeapReAlloc
TerminateProcess
HeapSize
HeapDestroy
HeapCreate
VirtualFree
IsBadWritePtr
LCMapStringA
LCMapStringW
SetUnhandledExceptionFilter
SetHandleCount
GetStdHandle
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
UnhandledExceptionFilter
GetTimeZoneInformation
QueryPerformanceCounter
GetCurrentProcessId
GetStringTypeA
GetStringTypeW
IsBadCodePtr
SetStdHandle
SetEnvironmentVariableA
LoadLibraryExA
GetUserDefaultLCID
FormatMessageA
OutputDebugStringA
CopyFileA
MulDiv
LoadLibraryA
FreeLibrary
GetTickCount
GetWindowsDirectoryA
DeleteFileA
WinExec
GetModuleFileNameA
GetTempPathA
lstrcatA
CreateProcessA
WritePrivateProfileStringA
InterlockedExchange
GetPrivateProfileStringA
lstrcmpA
LocalAlloc
LocalFree
Sleep
lstrcpyA
WaitForSingleObject
CloseHandle
CompareStringW
CompareStringA
lstrlenA
lstrcmpiA
GetVersion
FindResourceA
LoadResource
LockResource
SizeofResource
DeleteCriticalSection
InitializeCriticalSection
GetLastError
RaiseException
WideCharToMultiByte
MultiByteToWideChar
GetVersionExA
GetThreadLocale
GetLocaleInfoA
GetACP
FlushFileBuffers

user32

IsWindow
RemovePropA
GetPropA
SetPropA
GetClassNameA
GetClassInfoExA
GetClassLongA
CallNextHookEx
SetWindowsHookExA
CreateWindowExA
WinHelpA
GetMenuCheckMarkDimensions
CheckMenuItem
ModifyMenuA
SetMenuItemBitmaps
EndDialog
GetNextDlgTabItem
CreateDialogIndirectParamA
GetDesktopWindow
TabbedTextOutA
DrawTextA
DrawTextExA
GrayStringA
ClientToScreen
BeginPaint
EndPaint
PostQuitMessage
SetCursor
ValidateRect
GetCursorPos
GetMessageA
DestroyMenu
GetSysColorBrush
LoadCursorA
SetForegroundWindow
GetMenu
GetSysColor
AdjustWindowRectEx
ScreenToClient
GetClassInfoA
RegisterClassA
GetForegroundWindow
DefWindowProcA
CallWindowProcA
IsIconic
GetWindowPlacement
GetSystemMetrics
CopyRect
PtInRect
GetWindowTextLengthA
GetDlgCtrlID
IsDialogMessageA
SetDlgItemTextA
SendDlgItemMessageA
GetMenuState
GetMenuItemID
GetMenuItemCount
GetSubMenu
MapDialogRect
GetCapture
SetActiveWindow
GetAsyncKeyState
GetDlgItem
IsWindowEnabled
LoadStringA
FindWindowA
SystemParametersInfoA
BeginDeferWindowPos
DeferWindowPos
EndDeferWindowPos
RegisterWindowMessageA
SetWindowPos
GetWindow
ReleaseDC
LoadBitmapA
SetFocus
IsWindowVisible
TranslateMessage
DispatchMessageA
GetNextDlgGroupItem
UpdateWindow
LoadImageA
MessageBoxA
GetDC
GetActiveWindow
GetSystemMenu
EnableMenuItem
wsprintfA
ShowWindow
GetWindowLongA
SetWindowLongA
InvalidateRect
GetParent
GetFocus
GetClientRect
GetWindowTextA
SetWindowTextA
KillTimer
SetTimer
UnregisterClassA
PostMessageA
SendMessageA
EnableWindow
GetWindowRect
CharUpperA
GetLastActivePopup
GetTopWindow
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
LoadIconA
PeekMessageA
MapWindowPoints
GetKeyState
MoveWindow

gdi32

GetDeviceCaps
GetTextExtentPoint32A
GetTextMetricsA
SelectObject
CreateBitmap
CreateCompatibleBitmap
RestoreDC
SaveDC
GetClipBox
GetMapMode
SetMapMode
BitBlt
SetBkColor
CreateCompatibleDC
GetObjectA
DeleteObject
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
GetStockObject
CreateFontIndirectA
DPtoLP
EnumFontFamiliesExA
SetTextColor
DeleteDC

comdlg32

GetFileTitleA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegSetValueExA
RegOpenKeyA
RegCloseKey
RegQueryValueA
RegEnumKeyA
RegDeleteKeyA
RegQueryValueExA
RegCreateKeyExA
RegOpenKeyExA

shell32

ShellExecuteExA

comctl32

DestroyPropertySheetPage
CreatePropertySheetPageA
ord17
ImageList_Destroy
PropertySheetA

shlwapi

PathFindExtensionA
PathFindFileNameA
PathStripToRootA
PathAppendA
PathAddBackslashA
PathIsUNCA

ole32

CoCreateInstance
OleRun
CoInitialize

oleaut32

SysFreeString
SysAllocStringLen
SysAllocString
VariantInit
VariantClear
VariantChangeType
GetErrorInfo

rpcrt4

UuidCreate

Exports

Exports

CreateNtwkPort
RunNtwkSetupDialogs

Sections

.text
Size: 548KB - Virtual size: 547KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 176KB - Virtual size: 175KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 192KB - Virtual size: 207KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 236KB - Virtual size: 232KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 88KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d57d22dbbed7ea094d4ec2e54509357b

Headers

File Characteristics

Imports

sdisdk

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

rpcrt4

Exports

Exports

Sections

.text Size: 548KB - Virtual size: 547KB

.rdata Size: 176KB - Virtual size: 175KB

.data Size: 192KB - Virtual size: 207KB

.rsrc Size: 236KB - Virtual size: 232KB

.reloc Size: 88KB - Virtual size: 84KB

.text
Size: 548KB - Virtual size: 547KB

.rdata
Size: 176KB - Virtual size: 175KB

.data
Size: 192KB - Virtual size: 207KB

.rsrc
Size: 236KB - Virtual size: 232KB

.reloc
Size: 88KB - Virtual size: 84KB