d893d8347ecad1a3d85064d2f5bded4f_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

d893d8347ecad1a3d85064d2f5bded4f_JaffaCakes118
Size

735KB
MD5

d893d8347ecad1a3d85064d2f5bded4f
SHA1

46c479dfd30d125df6a994d35e7bdd34a798b872
SHA256

e7b0f2bc7bf690c704dd2411114c0f985d2c1994a6d9e0941aa50efb3515bd6e
SHA512

7373806c5d24bd5af3439d0c19e5bd26ea3e5918374d2182f1e01b104d9176caec9d6b0160c8e66fde2e5d7c68340a6247bc71b335d8383e9fd072aca4282048
SSDEEP

12288:3W68EkTM44pJrvmHazHj/5lkF128bC2XIcxZ+Db7NX0j:MFgdbvmHazDgF12CBXVnabpXq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d893d8347ecad1a3d85064d2f5bded4f_JaffaCakes118

Files

d893d8347ecad1a3d85064d2f5bded4f_JaffaCakes118
.exe windows:5 windows x86 arch:x86

d7969c69c9b2c818f99f44f53dfbd0ff

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CompareStringW
SetEnvironmentVariableA
RaiseException
GetCommandLineW
GetFullPathNameA
lstrlenA
LCMapStringW
FreeLibrary
WaitForSingleObject
SetEvent
GetConsoleTitleA
FormatMessageA
CreateEventA
GetLastError
SetLastError
LCMapStringA
GetConsoleMode
GetConsoleCP
lstrcmpiA
GetProcAddress
GetLongPathNameA
VirtualAlloc
GetLocalTime
LoadLibraryA
OutputDebugStringA
GetVersionExA
LocalFree
FreeResource
LockResource
LoadResource
FindResourceA
GlobalFree
GlobalUnlock
GlobalLock
GetTimeZoneInformation
GetStringTypeW
SizeofResource
GetModuleHandleA
GetStringTypeA
InitializeCriticalSectionAndSpinCount
QueryPerformanceCounter
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
lstrcmpW
MultiByteToWideChar
CompareStringA
WideCharToMultiByte
GlobalDeleteAtom
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
GetCurrentThreadId
GlobalAlloc
lstrcmpA
InterlockedExchange
GetLocaleInfoA
GetModuleFileNameA
EnumResourceLanguagesA
ConvertDefaultLocale
GetCurrentThread
GetCurrentProcessId
GetPrivateProfileIntA
WritePrivateProfileStringA
GetPrivateProfileStringA
CloseHandle
SetThreadPriority
ResumeThread
SuspendThread
GetFileAttributesA
SetFileTime
GetFileTime
GetTempFileNameA
GetDiskFreeSpaceA
MulDiv
GetModuleFileNameW
InterlockedDecrement
MoveFileA
DeleteFileA
GetStringTypeExA
GetThreadLocale
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
GetFileSize
DuplicateHandle
GetCurrentProcess
FindClose
FindFirstFileA
GetVolumeInformationA
GetShortPathNameA
CreateFileA
InitializeCriticalSection
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
GlobalFlags
LocalAlloc
TlsGetValue
GlobalReAlloc
GlobalHandle
FreeEnvironmentStringsA
IsValidCodePage
GetACP
GetStdHandle
HeapCreate
VirtualFree
VirtualQuery
GetSystemInfo
VirtualProtect
HeapSize
HeapReAlloc
CreateThread
ExitProcess
Sleep
RtlUnwind
HeapFree
GetStartupInfoA
GetCommandLineA
GetSystemTimeAsFileTime
TlsAlloc
TlsSetValue
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
HeapAlloc
GetTickCount
GetModuleHandleW
SetErrorMode
GetFileSizeEx
SystemTimeToFileTime
LocalFileTimeToFileTime
GetFileAttributesExA
FileTimeToLocalFileTime
FileTimeToSystemTime
GetCurrentDirectoryA
GetOEMCP
GetCPInfo
InterlockedIncrement
TlsFree
LocalReAlloc
ExitThread

user32

RegisterClipboardFormatA
UnregisterClassA
WindowFromPoint
GetTabbedTextExtentA
PostThreadMessageA
CreateMenu
MessageBeep
GetNextDlgGroupItem
InvalidateRgn
CopyAcceleratorTableA
CharNextA
DestroyIcon
DeleteMenu
GetMenuItemInfoA
InflateRect
GetMenuStringA
InsertMenuA
GetSysColorBrush
CharUpperA
UnpackDDElParam
ReuseDDElParam
LoadMenuA
DestroyMenu
LoadAcceleratorsA
InsertMenuItemA
CreatePopupMenu
BringWindowToTop
TranslateAcceleratorA
SetRectEmpty
IsZoomed
GetWindowDC
GrayStringA
DrawTextExA
DrawTextA
TabbedTextOutA
ReleaseCapture
SetCapture
KillTimer
SetTimer
SetWindowRgn
DrawIcon
IsRectEmpty
FillRect
LoadCursorA
DestroyCursor
InvalidateRect
SetRect
GetMessageA
TranslateMessage
ValidateRect
SetWindowContextHelpId
MapDialogRect
EnableWindow
UpdateWindow
SendMessageA
GetClientRect
GetClassLongA
ShowOwnedPopups
SetCursor
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
IsDlgButtonChecked
SetDlgItemTextA
CheckRadioButton
RegisterWindowMessageA
LoadIconA
SendDlgItemMessageA
WinHelpA
IsChild
GetCapture
SetWindowsHookExA
CallNextHookEx
GetClassNameA
SetPropA
GetPropA
RemovePropA
SetFocus
GetWindowTextLengthA
GetWindowTextA
GetForegroundWindow
GetLastActivePopup
DispatchMessageA
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
GetWindowThreadProcessId
ModifyMenuA
EndMenu
SendMessageW
RemoveMenu
GetMenuItemCount
AppendMenuA
EnumDesktopsA
GetCursorPos
GetSysColor
DefWindowProcA
GetDlgItem
SetClassLongA
ReleaseDC
GetMenu
GetDC
GetIconInfo
BeginPaint
GetMenuCheckMarkDimensions
MenuItemFromPoint
wsprintfA
LoadBitmapA
GetMenuItemID
PostQuitMessage
SetActiveWindow
ClientToScreen
EndPaint
CheckMenuItem
EnableMenuItem
GetMenuState
GetParent
GetFocus
SetMenuItemBitmaps
EndDialog
GetNextDlgTabItem
IsWindowEnabled
GetWindowLongA
IsWindow
DestroyWindow
CreateDialogIndirectParamA
GetActiveWindow
GetDesktopWindow
GetWindow
GetSystemMetrics
GetWindowRect
GetWindowPlacement
IsIconic
SystemParametersInfoA
IntersectRect
OffsetRect
SetWindowPos
SetWindowLongA
PtInRect
CallWindowProcA
GetDlgCtrlID
CopyRect
SetScrollInfo
GetScrollInfo
DeferWindowPos
EqualRect
ScreenToClient
AdjustWindowRectEx
RegisterClassA
GetClassInfoA
GetClassInfoExA
CreateWindowExA
MessageBoxA
GetSubMenu
PostMessageA
IsWindowVisible
ShowScrollBar
SetForegroundWindow
GetScrollPos
SetScrollPos
PeekMessageA
MapWindowPoints
ScrollWindow
TrackPopupMenu
GetKeyState
SetMenu
SetScrollRange
GetScrollRange

gdi32

SetAbortProc
EndPage
StartPage
StartDocA
GetStockObject
Rectangle
DPtoLP
GetViewportOrgEx
GetDeviceCaps
CreatePen
CreateRectRgnIndirect
GetClipBox
CreateBitmap
BeginPath
BitBlt
PatBlt
GetTextExtentPoint32A
SetTextColor
DeleteDC
CreateDIBSection
SetBkColor
ExcludeClipRect
GdiFlush
SetBkMode
DeleteObject
SelectObject
EnumFontFamiliesExA
CreateCompatibleDC
CreateCompatibleBitmap
ChoosePixelFormat
SetPixelFormat
GetObjectA
SwapBuffers
ExtTextOutA
GetViewportExtEx
GetWindowExtEx
GetPixel
PtVisible
RectVisible
TextOutA
Escape
SetViewportOrgEx
AbortDoc
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
GetCurrentPositionEx
ExtSelectClipRgn
CreatePatternBrush
CreateSolidBrush
GetTextMetricsA
GetCharWidthA
CreateFontA
StretchDIBits
CreateFontIndirectA
GetBkColor
GetTextColor
GetRgnBox
GetMapMode
GetNearestColor
GetBkMode
GetPolyFillMode
GetROP2
GetStretchBltMode
GetTextAlign
GetTextFaceA
GetTextExtentPointA
GetWindowOrgEx
EndDoc
CreateDCA
LPtoDP
CreateEllipticRgn
Ellipse
SaveDC
RestoreDC
SetPolyFillMode
SetROP2
SetStretchBltMode
SetMapMode
IntersectClipRect
LineTo
MoveToEx
SetTextAlign
OffsetViewportOrgEx

msimg32

GradientFill

comdlg32

CommDlgExtendedError
GetOpenFileNameA
GetFileTitleA

winspool.drv

GetJobA
ClosePrinter
OpenPrinterA
DocumentPropertiesA

advapi32

LogonUserA
RegCreateKeyA
RegSetValueA
GetFileSecurityA
SetFileSecurityA
RegDeleteValueA
RegSetValueExA
RegCreateKeyExA
RegQueryValueA
RegOpenKeyA
RegEnumKeyA
RegDeleteKeyA
RegOpenKeyExA
RegQueryValueExA
RegCloseKey
ImpersonateLoggedOnUser

shell32

DragQueryFileA
ExtractIconA
SHGetFileInfoA
SHOpenFolderAndSelectItems
CommandLineToArgvW
DragFinish
SHParseDisplayName
ord155
ord189

shlwapi

PathRemoveExtensionA
PathIsDirectoryW
PathFileExistsA
PathFileExistsW
PathIsDirectoryEmptyW
PathFindExtensionA
PathFindFileNameA
PathRemoveFileSpecW
PathStripToRootA
PathIsUNCA

oledlg

ord8

ole32

OleInitialize
CoFreeUnusedLibraries
OleCreateMenuDescriptor
IsAccelerator
OleTranslateAccelerator
CoRevokeClassObject
OleIsCurrentClipboard
OleFlushClipboard
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CoTaskMemAlloc
CoInitializeEx
CoTaskMemFree
CoUninitialize
CLSIDFromString
CLSIDFromProgID
CoInitialize
CreateStreamOnHGlobal
CoCreateInstance
CoRegisterMessageFilter
OleUninitialize
OleDestroyMenuDescriptor

oleaut32

SysAllocString
VariantTimeToSystemTime
SystemTimeToVariantTime
SysFreeString
VariantClear
VariantChangeType
VariantInit
SysAllocStringLen
SysStringLen
SysAllocStringByteLen
OleCreateFontIndirect
SafeArrayDestroy
VariantCopy

urlmon

CreateFormatEnumerator

iphlpapi

_PfDeleteInterface@4
_PfCreateInterface@24
_PfAddFiltersToInterface@24
GetAdaptersInfo
_PfBindInterfaceToIPAddress@12

msvfw32

ICCompressorChoose

winmm

mmioCreateChunk
mmioOpenA
mmioWrite

activeds

ord9

secur32

QuerySecurityPackageInfoA

opengl32

glBegin
wglMakeCurrent
glColor3d
wglGetCurrentDC
glVertex3d
glEnd
glClearColor
glClear
wglCreateContext
glFlush
wglDeleteContext
glLoadIdentity
glMatrixMode

glu32

gluLookAt
gluPerspective

oleacc

AccessibleObjectFromWindow
CreateStdAccessibleObject
LresultFromObject

setupapi

SetupDiDestroyDeviceInfoList
SetupDiEnumDeviceInterfaces
SetupDiGetClassDevsA

authz

AuthzInitializeResourceManager

ntdsapi

DsGetRdnW

eappcfg

EapHostPeerInvokeInteractiveUI
EapHostPeerFreeErrorMemory
EapHostPeerFreeMemory

tapi32

lineHold
lineMonitorDigits

Sections

.text
Size: 372KB - Virtual size: 371KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 101KB - Virtual size: 101KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 247KB - Virtual size: 246KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d7969c69c9b2c818f99f44f53dfbd0ff

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

shlwapi

oledlg

ole32

oleaut32

urlmon

iphlpapi

msvfw32

winmm

activeds

secur32

opengl32

glu32

oleacc

setupapi

authz

ntdsapi

eappcfg

tapi32

Sections

.text Size: 372KB - Virtual size: 371KB

.rdata Size: 101KB - Virtual size: 101KB

.data Size: 14KB - Virtual size: 28KB

.rsrc Size: 247KB - Virtual size: 246KB

.text
Size: 372KB - Virtual size: 371KB

.rdata
Size: 101KB - Virtual size: 101KB

.data
Size: 14KB - Virtual size: 28KB

.rsrc
Size: 247KB - Virtual size: 246KB