d80ac0bdd070bb0d8ebd15d8d445bee8_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

d80ac0bdd070bb0d8ebd15d8d445bee8_JaffaCakes118
Size

564KB
MD5

d80ac0bdd070bb0d8ebd15d8d445bee8
SHA1

cfd16e3314d35aae73d0f9ce37adb4fd9090dbd9
SHA256

53a39cac95df5873549dbf3c3c55a98c7d7fea9f09c9d5a32e27754941762fc8
SHA512

67470fcfc9c0c2d19e9208208305c2321df31775311874068a0b07c1e8ab999b36dcf39ee416aa03ce1b9d5920d16eb441186ae93e3ef69122e66b878cf19cd2
SSDEEP

6144:xD1y69ghIcyyePClPJ9rxffwdeXV4q2IQS7SdfyktPFLNJI4HmzxHv1LU+D:rz98I3PwBNl/2IGycFLNJ7HCxHvX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d80ac0bdd070bb0d8ebd15d8d445bee8_JaffaCakes118

Files

d80ac0bdd070bb0d8ebd15d8d445bee8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1df89f9cfe2c9f4d6cb09101cef396c2

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
IsBadWritePtr
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
IsBadReadPtr
VirtualFree
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
GetVersionExA
SetConsoleCtrlHandler
SetStdHandle
GetLocaleInfoW
CompareStringA
CompareStringW
SetEnvironmentVariableA
HeapCreate
HeapDestroy
FatalAppExitA
LCMapStringW
LCMapStringA
GetLocalTime
GetSystemTime
GetTimeZoneInformation
GetACP
HeapSize
HeapReAlloc
ExitThread
CreateThread
TerminateProcess
HeapFree
RaiseException
InterlockedExchange
ExitProcess
GetCommandLineA
GetStartupInfoA
HeapAlloc
RtlUnwind
FileTimeToLocalFileTime
FileTimeToSystemTime
SetErrorMode
SetFileAttributesA
SystemTimeToFileTime
LocalFileTimeToFileTime
GetFileSize
GetShortPathNameA
GetThreadLocale
GetStringTypeExA
GetVolumeInformationA
FindFirstFileA
FindClose
DeleteFileA
MoveFileA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
GetCurrentProcess
DuplicateHandle
GetCurrentDirectoryA
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
SizeofResource
GetOEMCP
GetCPInfo
SetLastError
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
GlobalFlags
GetProcessVersion
GetLastError
GetDiskFreeSpaceA
GetFileTime
SetFileTime
GetFullPathNameA
ResetEvent
GetTempFileNameA
GetFileAttributesA
MulDiv
SuspendThread
SetThreadPriority
ResumeThread
CloseHandle
GetModuleFileNameA
GlobalAlloc
GetCurrentThread
lstrcmpA
GlobalFree
FormatMessageA
LocalFree
MultiByteToWideChar
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
LoadLibraryA
FreeLibrary
FindResourceA
LoadResource
LockResource
GetCurrentThreadId
lstrcmpiA
GlobalFindAtomA
GlobalDeleteAtom
GetModuleHandleA
GetProcAddress
lstrcatA
GlobalLock
lstrcpynA
GlobalUnlock
GlobalGetAtomNameA
GlobalAddAtomA
lstrcpyA
lstrlenA
Sleep
GetExitCodeThread
CreateEventA
GetVersion
SetEvent
WaitForSingleObject
IsBadCodePtr

user32

IsRectEmpty
AppendMenuA
DeleteMenu
GetSystemMenu
CharToOemA
OemToCharA
CreateDialogIndirectParamA
EndDialog
PostQuitMessage
ShowOwnedPopups
GetCursorPos
ValidateRect
TranslateMessage
GetMessageA
DestroyCursor
LoadCursorA
SetRect
FillRect
FindWindowA
LoadStringA
wvsprintfA
GetSysColorBrush
GetClassNameA
ClientToScreen
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
SetTimer
KillTimer
WindowFromPoint
InflateRect
SetCapture
InvertRect
GetDCEx
LockWindowUpdate
GetDialogBaseUnits
InsertMenuA
GetMenuStringA
DestroyIcon
GetTabbedTextExtentA
CharUpperA
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetNextDlgTabItem
MoveWindow
SetWindowTextA
IsDialogMessageA
ScrollWindowEx
IsDlgButtonChecked
SetDlgItemTextA
SetDlgItemInt
GetDlgItemTextA
GetDlgItemInt
CheckRadioButton
CheckDlgButton
SendDlgItemMessageA
MapWindowPoints
GetSysColor
DispatchMessageA
ScreenToClient
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
ScrollWindow
GetScrollInfo
SetScrollInfo
SetParent
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
MessageBoxA
IsChild
RegisterClassA
TrackPopupMenu
SetWindowPlacement
GetWindowTextLengthA
GetWindowTextA
DefWindowProcA
DestroyWindow
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetForegroundWindow
SetForegroundWindow
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
GetSystemMetrics
GetLastActivePopup
IsWindowVisible
IsIconic
GetFocus
EqualRect
CopyRect
GetDlgItem
InvalidateRect
GetKeyState
GetDlgCtrlID
UnpackDDElParam
ReuseDDElParam
SetActiveWindow
WinHelpA
SetMenu
LoadIconA
GetClassInfoA
LoadMenuA
DestroyMenu
SetFocus
GetDesktopWindow
GetWindow
IsWindowEnabled
SetCursor
PeekMessageA
GetCapture
ReleaseCapture
LoadAcceleratorsA
SetRectEmpty
RegisterWindowMessageA
GetActiveWindow
wsprintfA
GetParent
GetMenuItemID
AdjustWindowRectEx
RedrawWindow
SetWindowPos
GetClientRect
GetWindowLongA
SetWindowLongA
IsWindow
DefMDIChildProcA
DrawMenuBar
PtInRect
GetDC
ReleaseDC
IsZoomed
ShowScrollBar
GetMenuCheckMarkDimensions
TranslateAcceleratorA
TranslateMDISysAccel
DefFrameProcA
CreateWindowExA
BringWindowToTop
GetMenu
GetMenuItemCount
GetSubMenu
SendMessageA
LoadStringW
ShowWindow
EnableWindow
UpdateWindow
PostMessageA
SetWindowsHookExA
UnregisterClassA

gdi32

PatBlt
GetStockObject
Rectangle
DPtoLP
CreatePen
GetViewportOrgEx
AbortDoc
EndDoc
EndPage
StartPage
StartDocA
SetAbortProc
CreateDCA
LPtoDP
SaveDC
RestoreDC
SelectPalette
SetBkMode
SetPolyFillMode
SetROP2
SetStretchBltMode
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
OffsetClipRgn
MoveToEx
LineTo
SetTextAlign
SetTextJustification
SetTextCharacterExtra
SetMapperFlags
GetCurrentPositionEx
GetDeviceCaps
SetArcDirection
PolyDraw
PolylineTo
SetColorAdjustment
PolyBezierTo
GetClipRgn
CreateRectRgn
SelectClipPath
ExtSelectClipRgn
PlayMetaFileRecord
GetObjectType
EnumMetaFile
PlayMetaFile
GetViewportExtEx
GetWindowExtEx
ExtCreatePen
CreateSolidBrush
CreateHatchBrush
CreatePatternBrush
CreateDIBPatternBrushPt
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
CreateFontIndirectA
BitBlt
GetBkColor
GetNearestColor
GetTextColor
GetStretchBltMode
GetPolyFillMode
GetTextAlign
GetBkMode
GetROP2
GetTextFaceA
GetWindowOrgEx
GetMapMode
SetRectRgn
CombineRgn
CreateRectRgnIndirect
GetCharWidthA
CreateFontA
DeleteObject
CreateCompatibleBitmap
CreateCompatibleDC
StretchDIBits
DeleteDC
GetTextMetricsA
SelectObject
GetTextExtentPoint32A
CreateBitmap
GetObjectA
SetBkColor
SetTextColor
GetClipBox
ArcTo
GetDCOrgEx

comdlg32

GetFileTitleA
PrintDlgA
PageSetupDlgA
CommDlgExtendedError
GetSaveFileNameA
GetOpenFileNameA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegCreateKeyA
RegSetValueExA
RegCreateKeyExA
GetFileSecurityA
SetFileSecurityA
RegOpenKeyExA
RegQueryValueExA
RegDeleteKeyA
RegOpenKeyA
RegEnumKeyA
RegCloseKey
RegQueryValueA
RegSetValueA
RegDeleteValueA

shell32

DragFinish
DragAcceptFiles
ExtractIconA
SHGetFileInfoA
DragQueryFileA

comctl32

ord17

Exports

Exports

Run

Sections

.text
Size: 344KB - Virtual size: 343KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 60KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 28KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1df89f9cfe2c9f4d6cb09101cef396c2

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

Exports

Exports

Sections

.text Size: 344KB - Virtual size: 343KB

.rdata Size: 60KB - Virtual size: 57KB

.data Size: 16KB - Virtual size: 31KB

.idata Size: 16KB - Virtual size: 13KB

.rsrc Size: 96KB - Virtual size: 95KB

.reloc Size: 28KB - Virtual size: 24KB

.text
Size: 344KB - Virtual size: 343KB

.rdata
Size: 60KB - Virtual size: 57KB

.data
Size: 16KB - Virtual size: 31KB

.idata
Size: 16KB - Virtual size: 13KB

.rsrc
Size: 96KB - Virtual size: 95KB

.reloc
Size: 28KB - Virtual size: 24KB