d9b60a69af214975e9a6a0a9fd9f3f02_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

d9b60a69af214975e9a6a0a9fd9f3f02_JaffaCakes118
Size

3.6MB
MD5

d9b60a69af214975e9a6a0a9fd9f3f02
SHA1

f5ffb41c58579f4c7faddd7ee4905a78e1905786
SHA256

f2df1aea366098f755cea6fa60984527ed1758f152f0fa41c06631cebaa8f0d8
SHA512

62e7229485b25b370ec3c4aeb45cb806007c6ff46d929e861bbc40233e328aaff7c62d5ed8dd406f6e1e0d1e1d29f356bea679b8b234d3b93bbbb49e7afd8826
SSDEEP

98304:ldw/xUdeitSSdBeOZjwc4enYS+8dAFLOAkGkzdnEVomFHKnPU:la/xXi0k7nYS+LFLOyomFHKnP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d9b60a69af214975e9a6a0a9fd9f3f02_JaffaCakes118

Files

d9b60a69af214975e9a6a0a9fd9f3f02_JaffaCakes118
.exe windows:5 windows x86 arch:x86

568d1a4a7d708d731cb209c74b3c4092

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTimeZoneInformation
ReadConsoleW
SetFilePointerEx
GetConsoleMode
GetConsoleCP
GetACP
GetStdHandle
GetFileType
SetStdHandle
QueryPerformanceFrequency
GetCommandLineA
FreeLibraryAndExitThread
ExitThread
VirtualQuery
VirtualAlloc
GetSystemInfo
GetModuleHandleExW
RtlUnwind
GetCPInfo
GetStringTypeW
LCMapStringW
OutputDebugStringW
FindFirstFileExW
GetOEMCP
GetEnvironmentStringsW
FreeEnvironmentStringsW
SetEnvironmentVariableA
WriteConsoleW
GetStartupInfoW
IsDebuggerPresent
InitializeSListHead
GetSystemTimeAsFileTime
QueryPerformanceCounter
IsProcessorFeaturePresent
TerminateProcess
SetUnhandledExceptionFilter
UnhandledExceptionFilter
WaitForSingleObjectEx
ResetEvent
IsValidCodePage
GetTempFileNameW
FindResourceExW
GetProfileIntW
GetTickCount
SearchPathW
GetWindowsDirectoryW
SetErrorMode
GetFileTime
GetFileSizeEx
GetFileAttributesExW
GetFileAttributesW
FileTimeToLocalFileTime
VirtualProtect
GetUserDefaultUILanguage
GetSystemDefaultUILanguage
GetLocaleInfoW
GetCurrentDirectoryW
GlobalGetAtomNameW
LocalReAlloc
GlobalHandle
GlobalReAlloc
TlsFree
TlsSetValue
TlsGetValue
TlsAlloc
InitializeCriticalSection
GlobalFlags
VerifyVersionInfoW
VerSetConditionMask
WritePrivateProfileStringW
GetPrivateProfileStringW
GetPrivateProfileIntW
lstrcpyW
lstrcmpA
GetVersionExW
GetCurrentThread
GetThreadLocale
lstrcmpiW
GetCurrentProcess
DuplicateHandle
UnlockFile
LockFile
GetVolumeInformationW
GetFullPathNameW
FlushFileBuffers
CreateFileW
FileTimeToSystemTime
SystemTimeToTzSpecificLocalTime
SetThreadPriority
CompareStringW
GlobalFindAtomW
GlobalAddAtomW
GlobalDeleteAtom
LoadLibraryA
LoadLibraryExW
FreeLibrary
GetSystemDirectoryW
EncodePointer
GetCurrentThreadId
CopyFileW
FormatMessageW
MulDiv
GlobalSize
GetCurrentProcessId
LoadLibraryW
GetProcAddress
GetModuleHandleA
SetLastError
OutputDebugStringA
SetEvent
WaitForSingleObject
CreateEventW
ResumeThread
GetProcessHeap
DeleteCriticalSection
DecodePointer
HeapAlloc
RaiseException
HeapReAlloc
HeapSize
HeapFree
GetTempPathW
Process32NextW
Process32FirstW
CreateToolhelp32Snapshot
lstrcmpW
lstrcatW
WideCharToMultiByte
GetModuleFileNameA
ExitProcess
LocalFree
LocalAlloc
GetModuleHandleW
LeaveCriticalSection
GlobalFree
FreeResource
GlobalUnlock
GlobalLock
GlobalAlloc
WaitForMultipleObjects
GetCommandLineW
FindClose
FindNextFileW
Sleep
FindFirstFileW
CloseHandle
SetEndOfFile
WriteFile
ReadFile
SetFilePointer
GetFileSize
lstrlenA
lstrcpynA
CreateThread
DeleteFileW
GetModuleFileNameW
FindResourceW
LoadResource
LockResource
SizeofResource
MultiByteToWideChar
InterlockedExchange
InitializeCriticalSectionAndSpinCount
GetLastError
EnterCriticalSection
HeapQueryInformation

user32

LoadMenuW
ShowOwnedPopups
EnumDisplayMonitors
SystemParametersInfoW
LoadCursorW
SetLayeredWindowAttributes
IsRectEmpty
InflateRect
DrawFocusRect
GetSysColorBrush
DrawFrameControl
DrawEdge
MapDialogRect
SetWindowContextHelpId
PostQuitMessage
GetSystemMetrics
CharUpperW
TranslateMessage
GetMessageW
SetMenuItemInfoW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
EnableMenuItem
CheckMenuItem
GetMonitorInfoW
MonitorFromWindow
WinHelpW
GetScrollInfo
SetScrollInfo
GetTopWindow
GetClassLongW
EqualRect
CopyRect
MapWindowPoints
AdjustWindowRectEx
RemovePropW
GetPropW
SetPropW
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
ScrollWindow
RedrawWindow
ValidateRect
SetForegroundWindow
GetForegroundWindow
TrackPopupMenu
SetMenu
GetMenu
GetCapture
GetKeyState
IsIconic
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
SetWindowPlacement
GetWindowPlacement
RealChildWindowFromPoint
IsMenu
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
CallWindowProcW
DefWindowProcW
PostMessageW
GetMessageTime
GetMessagePos
PeekMessageW
DispatchMessageW
RegisterWindowMessageW
IsDialogMessageW
GetWindow
SetWindowTextW
SetFocus
CloseClipboard
CheckDlgButton
SetWindowPos
ShowWindow
OffsetRect
SetRectEmpty
SendDlgItemMessageA
CallNextHookEx
UnhookWindowsHookEx
SetClipboardData
EmptyClipboard
SetCursorPos
GetWindowRect
SetWindowRgn
GetAsyncKeyState
EnableWindow
wsprintfW
SetWindowsHookExW
PtInRect
GetCursorPos
GetFocus
GetSysColor
ClientToScreen
EndPaint
BeginPaint
GetWindowDC
TabbedTextOutW
GrayStringW
DrawTextExW
RemoveMenu
AppendMenuW
InsertMenuW
GetMenuItemCount
GetMenuItemID
GetSubMenu
GetMenuState
IntersectRect
IsZoomed
SetCapture
ReleaseCapture
SetTimer
KillTimer
GetSystemMenu
DeleteMenu
MessageBeep
WindowFromPoint
NotifyWinEvent
CreatePopupMenu
GetMenuItemInfoW
GetMenuDefaultItem
SetMenuDefaultItem
UpdateLayeredWindow
DestroyMenu
EnableScrollBar
GetMenuStringW
GetLastActivePopup
UnionRect
MonitorFromPoint
CopyImage
WaitMessage
CharNextW
CopyAcceleratorTableW
InvalidateRgn
GetNextDlgGroupItem
SetParent
IsChild
GetWindowLongW
SetWindowLongW
GetClientRect
IsWindowVisible
GetParent
ScreenToClient
InvalidateRect
LoadIconW
SetRect
DrawTextW
UnregisterClassW
DestroyIcon
DrawIconEx
SendMessageW
IsWindowEnabled
GetWindowTextLengthW
GetWindowTextW
GetIconInfo
TrackMouseEvent
CharUpperBuffW
GetDlgCtrlID
SetCursor
LoadImageW
GetDC
ReleaseDC
MoveWindow
GetClassNameW
GetDlgItem
DrawStateW
UpdateWindow
FillRect
LoadBitmapW
IsWindow
DestroyWindow
CreateDialogIndirectParamW
EndDialog
GetNextDlgTabItem
GetActiveWindow
SetActiveWindow
GetDesktopWindow
MessageBoxW
GetWindowThreadProcessId
BringWindowToTop
LockWindowUpdate
GetDoubleClickTime
CopyIcon
OpenClipboard
ModifyMenuW
DestroyAcceleratorTable
SetClassLongW
GetUpdateRect
ToUnicodeEx
GetKeyboardLayout
GetKeyboardState
MapVirtualKeyW
LoadAcceleratorsW
CreateAcceleratorTableW
RegisterClipboardFormatW
GetWindowRgn
DestroyCursor
CreateMenu
GetComboBoxInfo
TranslateMDISysAccel
DefMDIChildProcW
DefFrameProcW
DrawMenuBar
MapVirtualKeyExW
IsCharLowerW
IsClipboardFormatAvailable
SubtractRect
DrawIcon
GetKeyNameTextW
InvertRect
HideCaret
PostThreadMessageW
FrameRect
ReuseDDElParam
UnpackDDElParam
InsertMenuItemW
TranslateAcceleratorW

gdi32

CreatePen
SetBkMode
CreateCompatibleBitmap
BitBlt
StretchDIBits
SetDIBitsToDevice
RoundRect
CopyMetaFileW
CreateDCW
CreateBitmap
CreateHatchBrush
CreatePatternBrush
Escape
ExcludeClipRect
GetClipBox
GetObjectType
GetPixel
GetViewportExtEx
GetWindowExtEx
IntersectClipRect
LineTo
PtVisible
RectVisible
SelectClipRgn
ExtSelectClipRgn
SelectPalette
SetBkColor
SetMapMode
SetLayout
GetLayout
SetPolyFillMode
SetROP2
SetTextAlign
MoveToEx
TextOutW
ExtTextOutW
Rectangle
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
OffsetViewportOrgEx
OffsetWindowOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
CombineRgn
CreateEllipticRgn
CreateRectRgnIndirect
Ellipse
GetBkColor
PatBlt
CreatePolygonRgn
Polygon
Polyline
GetTextMetricsW
CreateDIBitmap
EnumFontFamiliesW
GetTextCharsetInfo
GetMapMode
SetRectRgn
DPtoLP
GetRgnBox
RealizePalette
SetPixel
OffsetRgn
CreatePalette
GetPaletteEntries
GetNearestPaletteIndex
GetSystemPaletteEntries
LPtoDP
EnumFontFamiliesExW
ExtFloodFill
SetPaletteEntries
FillRgn
FrameRgn
GetBoundsRect
PtInRegion
GetViewportOrgEx
GetWindowOrgEx
SetPixelV
GetTextFaceW
CreateSolidBrush
RestoreDC
GetTextExtentPoint32W
SaveDC
GetDeviceCaps
GetCurrentPositionEx
CreateFontIndirectW
GetStockObject
SetTextColor
GetTextColor
CreateDIBSection
GetObjectW
SetDIBColorTable
CreateRoundRectRgn
CreateCompatibleDC
GetDIBColorTable
StretchBlt
SelectObject
DeleteDC
SetViewportExtEx
CreateRectRgn
DeleteObject

msimg32

TransparentBlt
AlphaBlend

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

advapi32

RegQueryValueExW
RegQueryInfoKeyW
RegQueryValueW
RegEnumKeyW
RegSetValueExW
RegDeleteValueW
RegDeleteKeyW
RegCreateKeyExW
RegOpenKeyExW
FreeSid
CheckTokenMembership
AllocateAndInitializeSid
RegCloseKey
RegEnumValueW
RegEnumKeyExW

shell32

SHParseDisplayName
SHOpenFolderAndSelectItems
ShellExecuteW
SHGetFolderPathW
CommandLineToArgvW
SHGetFileInfoW
SHGetMalloc
SHGetPathFromIDListW
SHGetSpecialFolderLocation
SHBrowseForFolderW
DragFinish
DragQueryFileW
SHAppBarMessage
SHGetDesktopFolder
ShellExecuteExW

comctl32

InitCommonControlsEx

shlwapi

UrlUnescapeW
PathIsUNCW
PathStripToRootW
StrStrIA
PathFindFileNameW
StrFormatKBSizeW
PathRemoveFileSpecW
PathFindExtensionW

uxtheme

GetCurrentThemeName
IsAppThemed
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemeColor
GetThemeSysColor
DrawThemeParentBackground
DrawThemeText
GetWindowTheme
GetThemePartSize
IsThemeBackgroundPartiallyTransparent

ole32

OleInitialize
OleUninitialize
OleGetClipboard
CoLockObjectExternal
RegisterDragDrop
RevokeDragDrop
OleLockRunning
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
CoInitializeEx
DoDragDrop
CoRegisterMessageFilter
OleIsCurrentClipboard
OleFlushClipboard
CreateILockBytesOnHGlobal
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CoGetClassObject
CoDisconnectObject
CLSIDFromProgID
CLSIDFromString
CoCreateGuid
CoUninitialize
ReleaseStgMedium
OleDuplicateData
CoTaskMemFree
CoTaskMemAlloc
CoCreateInstance
CoInitialize
CreateStreamOnHGlobal
CoRevokeClassObject
CoFreeUnusedLibraries

oleaut32

LoadTypeLi
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
SysStringLen
VariantCopy
VarBstrFromDate
OleCreateFontIndirect
SysAllocString
VariantChangeType
VariantClear
SysAllocStringLen
VariantInit
SysFreeString

oledlg

OleUIBusyW

gdiplus

GdipDrawImageRectI
GdipSetInterpolationMode
GdipCreateFromHDC
GdipCreateBitmapFromHBITMAP
GdiplusStartup
GdipCreateBitmapFromStream
GdipGetImagePixelFormat
GdipGetImageHeight
GdipGetImageWidth
GdipGetImagePaletteSize
GdipGetImagePalette
GdiplusShutdown
GdipBitmapLockBits
GdipBitmapUnlockBits
GdipCreateBitmapFromScan0
GdipDisposeImage
GdipGetImageGraphicsContext
GdipDeleteGraphics
GdipDrawImageI
GdipCloneImage
GdipAlloc
GdipFree

winhttp

WinHttpOpen
WinHttpConnect
WinHttpOpenRequest
WinHttpSetCredentials
WinHttpQueryDataAvailable
WinHttpReadData
WinHttpCloseHandle
WinHttpReceiveResponse
WinHttpSendRequest
WinHttpAddRequestHeaders
WinHttpQueryHeaders

oleacc

AccessibleObjectFromWindow
LresultFromObject
CreateStdAccessibleObject

wininet

InternetSetStatusCallbackW
InternetGetLastResponseInfoW
InternetSetOptionW
InternetQueryOptionW
InternetQueryDataAvailable
InternetWriteFile
InternetSetFilePointer
InternetReadFile
InternetOpenUrlW
InternetCloseHandle
InternetOpenW
InternetCanonicalizeUrlW
InternetCrackUrlW
HttpQueryInfoW

imm32

ImmReleaseContext
ImmGetOpenStatus
ImmGetContext

winmm

PlaySoundW

Sections

.text
Size: 1.6MB - Virtual size: 1.6MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 365KB - Virtual size: 364KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 35KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 144KB - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

568d1a4a7d708d731cb209c74b3c4092

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

uxtheme

ole32

oleaut32

oledlg

gdiplus

winhttp

oleacc

wininet

imm32

winmm

Sections

.text Size: 1.6MB - Virtual size: 1.6MB

.rdata Size: 365KB - Virtual size: 364KB

.data Size: 35KB - Virtual size: 53KB

.rsrc Size: 1.5MB - Virtual size: 1.5MB

.reloc Size: 144KB - Virtual size: 144KB

.text
Size: 1.6MB - Virtual size: 1.6MB

.rdata
Size: 365KB - Virtual size: 364KB

.data
Size: 35KB - Virtual size: 53KB

.rsrc
Size: 1.5MB - Virtual size: 1.5MB

.reloc
Size: 144KB - Virtual size: 144KB