dd3f0681a1f7efccffdba7ba2f3d1c60_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

dd3f0681a1f7efccffdba7ba2f3d1c60_JaffaCakes118
Size

45KB
MD5

dd3f0681a1f7efccffdba7ba2f3d1c60
SHA1

8d31094125bd19b852431ea8c85da9966600d1dc
SHA256

273c9fadf7ad6b4eaaa8084daa5a07f2250eac2091200025b38282354df0f4a9
SHA512

6492f1617009b81074100f352b98f750d1189398a80857c833e73d7723e095e33016599b09419be3a1f169731429071a9b37bbfa85bc02b6f5c58e14b324b853
SSDEEP

768:07ZmAH8eaTgZXTUPjhe1jR9RsPave41Z8MIJjm2VzXWx7VLR/+TD/q5YUUUURI:qIAH8VUXTUPNuwWfZVByrW5V9+TzYaI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dd3f0681a1f7efccffdba7ba2f3d1c60_JaffaCakes118

Files

dd3f0681a1f7efccffdba7ba2f3d1c60_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1a391588fa7bbe7720447040f2c47a3a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

ReadClassStg
CreateILockBytesOnHGlobal
CLSIDFromString
OleDuplicateData
OleRun
ReadClassStm
DoDragDrop
OleIsCurrentClipboard
OleGetIconOfClass
OleCreate
CoGetClassObject
GetClassFile
CreateDataCache
CreateBindCtx
CoTaskMemFree
IsAccelerator
RevokeDragDrop
CoFreeUnusedLibraries
OleRegEnumVerbs
CreateDataAdviseHolder
CoDisconnectObject
ReleaseStgMedium
OleIsRunning
GetHGlobalFromILockBytes
CoRegisterClassObject
StgCreateDocfile
OleSaveToStream
StringFromCLSID
OleQueryLinkFromData
OleGetClipboard
OleFlushClipboard
OleCreateFromFile
WriteFmtUserTypeStg
CreateStreamOnHGlobal
OleLockRunning
CoCreateInstance
OleDestroyMenuDescriptor
ReadFmtUserTypeStg
CoRegisterMessageFilter
OleCreateMenuDescriptor
CoGetMalloc
OleTranslateAccelerator
CreateFileMoniker
StgOpenStorage
StgIsStorageFile
OleSetMenuDescriptor
OleCreateLinkFromData
CoUninitialize
OleLoadFromStream
OleSave
OleLoad
WriteClassStm
OleRegGetMiscStatus
OleUninitialize
OleInitialize
StgCreateDocfileOnILockBytes
OleSetContainedObject
OleRegGetUserType
OleSetClipboard
CreateOleAdviseHolder
CoLockObjectExternal
OleCreateLinkToFile
RegisterDragDrop
OleCreateFromData
StringFromGUID2
GetRunningObjectTable
StgOpenStorageOnILockBytes
CoTreatAsClass
CreateGenericComposite
OleQueryCreateFromData
SetConvertStg
CoRevokeClassObject
CLSIDFromProgID
CreateItemMoniker
OleCreateStaticFromData
CoInitialize
WriteClassStg
CoTaskMemAlloc

gdi32

BitBlt
IntersectClipRect
CreateSolidBrush
SetPolyFillMode
StartDocW
ArcTo
GetTextAlign
GetViewportOrgEx
GetTextExtentPoint32W
TextOutW
CreateHatchBrush
GetCharWidthW
GetStretchBltMode
SetTextAlign
SetTextColor
ScaleWindowExtEx
CopyMetaFileW
OffsetWindowOrgEx
PolyBezierTo
OffsetViewportOrgEx
GetWindowOrgEx
GetTextMetricsW
Escape
SetViewportExtEx
SelectPalette
PlayMetaFileRecord
SetArcDirection
GetViewportExtEx
SetViewportOrgEx
SetColorAdjustment
SetROP2
EnumMetaFile
GetBkMode
UnrealizeObject
SelectObject
GetClipRgn
PolyDraw
SaveDC
GetPolyFillMode
ScaleViewportExtEx
EndDoc
SetWindowOrgEx
DeleteMetaFile
LineTo
RectVisible
GetTextColor
OffsetClipRgn
ExtTextOutW
CreatePatternBrush
CreateFontIndirectW
CombineRgn
MoveToEx
GetTextFaceW
GetTextExtentPoint32A
PlayMetaFile
GetCurrentPositionEx
EnumFontFamiliesW
CreatePen
SetBkColor
CreateDIBPatternBrushPt
SetBkMode
SetWindowExtEx
ExtCreatePen
PatBlt
SetTextCharacterExtra
RestoreDC
GetObjectW
CreateFontW
GetPixel
GetObjectType
DPtoLP
SelectClipRgn
DeleteObject
LPtoDP
CreateBitmap
GetROP2
EnumFontFamiliesExW
GetDeviceCaps
PolylineTo
CreateCompatibleDC
StretchDIBits
SetRectRgn
GetBkColor
GetWindowExtEx
RealizePalette
SetBrushOrgEx
SelectClipPath
CreateRectRgn
EndPage
OffsetRgn
StartPage
CreateRectRgnIndirect
SetTextJustification
GetPaletteEntries
SetAbortProc
DeleteDC
CreateMetaFileW
SetMapperFlags
SetMapMode
CreateDCW
CreatePalette
GetNearestColor
Rectangle
CloseMetaFile
GetClipBox
ExcludeClipRect
AbortDoc
ExtSelectClipRgn
CreateCompatibleBitmap
SetStretchBltMode
GetStockObject
GetMapMode
PtVisible

msvcrt

mktime
fclose
_purecall
wcstoul
__doserrno
_CxxThrowException
fwrite
wcslen
_open_osfhandle
_ultow
fgetws
_wcsdup
calloc
_wtoi
__dllonexit
_msize
localtime
wcsstr
free
_onexit
fseek
_wcsnicmp
wcschr
abort
iswdigit
ceil
wcsspn
_initterm
wcstod
time
swprintf
ftell
fputws
_wsplitpath
floor
_get_osfhandle
vswprintf
__argc
wcsncpy
_expand
_wfullpath
gmtime
fflush
wcsrchr
__wargv
_itow
wcscspn
_endthreadex
_wcsrev
_snwprintf
wcsncmp
_fdopen
wcscpy
_wcslwr
iswspace
_wtol
wcsftime
malloc
_ltow
clearerr
_except_handler3
wcscmp
_wcsupr
__CxxFrameHandler
_beginthreadex
modf
_adjust_fdiv
fread
realloc
wcspbrk
memmove
wcstol

wininet

InternetCanonicalizeUrlW
GopherGetAttributeW
InternetWriteFile
FtpSetCurrentDirectoryW
InternetGetCookieW
InternetGetLastResponseInfoW
HttpOpenRequestW
InternetCloseHandle
FtpCreateDirectoryW
FtpRemoveDirectoryW
InternetFindNextFileW
HttpEndRequestW
InternetQueryOptionW
HttpQueryInfoW
FtpRenameFileW
InternetErrorDlg
InternetCrackUrlW
GopherOpenFileW
HttpSendRequestW
FtpPutFileW
FtpFindFirstFileW
FtpOpenFileW
InternetReadFile
InternetSetStatusCallbackW
InternetSetFilePointer
FtpDeleteFileW
InternetSetCookieW
InternetOpenW
FtpGetFileW
GopherCreateLocatorW
InternetConnectW
InternetQueryDataAvailable
InternetSetOptionExW
HttpSendRequestExW
InternetOpenUrlW
HttpAddRequestHeadersW
GopherFindFirstFileW
FtpGetCurrentDirectoryW

advapi32

RegCloseKey
RegQueryValueExW
RegDeleteValueW
RegSetValueExW
RegQueryValueW
RegEnumKeyW
RegDeleteKeyW
RegOpenKeyW
GetFileSecurityW
RegOpenKeyExW
RegCreateKeyW
SetFileSecurityW
RegSetValueW
RegCreateKeyExW

kernel32

GetTempFileNameW
ReadFile
SetThreadPriority
FindResourceW
LoadLibraryW
lstrlenW
UnlockFile
GetCurrentThreadId
GetTickCount
DeleteCriticalSection
FindNextFileW
LocalAlloc
InitializeCriticalSection
WritePrivateProfileStringW
FileTimeToSystemTime
GetSystemTimeAsFileTime
GetCurrentProcessId
GetCurrentDirectoryW
GetProcessVersion
LocalUnlock
LocalFileTimeToFileTime
SetFileTime
TlsFree
GetCurrentProcess
GetPrivateProfileIntW
SetFilePointer
GetDiskFreeSpaceW
MultiByteToWideChar
GlobalAlloc
FindClose
CopyFileW
lstrcatA
OutputDebugStringW
VirtualQuery
GetFileAttributesW
lstrcpynW
WaitForSingleObject
GetCurrentThread
LockResource
GetModuleHandleW
lstrcmpW
SetEndOfFile
GetStringTypeExW
WideCharToMultiByte
LoadLibraryExA
GetShortPathNameW
GetModuleFileNameW
VirtualProtect
lstrcmpA
FindResourceExW
SizeofResource
lstrcmpiA
GetVersionExA
GlobalLock
ReleaseSemaphore
DeleteFileW
GlobalFree
GetFileSize
DelayLoadFailureHook
CreateEventW
MoveFileW
TlsGetValue
FormatMessageW
GetLastError
SetUnhandledExceptionFilter
CreateSemaphoreW
lstrcpynA
SetLastError
TlsSetValue
SearchPathW
CloseHandle
FreeLibrary
LocalFree
EnterCriticalSection
GetFullPathNameW
IsDBCSLeadByte
TlsAlloc
GlobalDeleteAtom
GlobalSize
FreeConsole
LocalReAlloc
GlobalUnlock
GlobalGetAtomNameW
InterlockedCompareExchange
VirtualAlloc
lstrcpyA
GetSystemInfo
GetVersionExW
GlobalFindAtomW
GetModuleHandleA
CreateFileW
UnhandledExceptionFilter
FindFirstFileW
SetErrorMode
LoadLibraryA
GlobalAddAtomW
ResumeThread
FlushFileBuffers
TerminateProcess
InterlockedIncrement
GetPrivateProfileStringW
GetSystemDirectoryA
GetProcAddress
DuplicateHandle
GetVersion
QueryPerformanceCounter
SuspendThread
GetTempPathW
Sleep
GlobalHandle
LocalLock
FileTimeToLocalFileTime
lstrcpyW
LockFile
MulDiv
SetFileAttributesW
WriteFile
GetUserDefaultLCID
WaitForMultipleObjects
CreateMutexW
lstrcatW
LeaveCriticalSection
GlobalReAlloc
ReleaseMutex
SystemTimeToFileTime
FreeResource
GetProfileIntW
lstrlenA
GetThreadLocale
InterlockedDecrement
GlobalFlags
GetVolumeInformationW
GetFileTime
LoadResource
SetEvent

dciman32

DCIEnum

activeds

FreeADsMem

user32

IsZoomed
ClientToScreen
SetPropW
InsertMenuW
CallNextHookEx
MsgWaitForMultipleObjects
CountClipboardFormats
TranslateMessage
SetScrollPos
RegisterClassW
SetCapture
BeginDeferWindowPos
ClipCursor
CallWindowProcW
SendMessageW
SetRect
DefWindowProcW
IsChild
UnregisterClassW
SetFocus
SetMenu
GetWindowThreadProcessId
PtInRect
LoadBitmapW
InvertRect
CheckRadioButton
DefMDIChildProcW
IsDlgButtonChecked
TranslateMDISysAccel
FillRect
SetWindowContextHelpId
GetWindow
EqualRect
IsWindow
FrameRect
ScrollWindow
DefFrameProcW
ShowOwnedPopups
GetMessageTime
GetSysColor
GetMenuCheckMarkDimensions
MapWindowPoints
GetCursorPos
GetDlgItemInt
IsIconic
UnhookWindowsHookEx
UpdateWindow
TabbedTextOutW
RemovePropW
GetDesktopWindow
ShowScrollBar
IsWindowVisible
GetMenuState
GetTabbedTextExtentW
GetDlgCtrlID
SetMenuItemBitmaps
KillTimer
IntersectRect
GetMenuItemCount
DrawFocusRect
DestroyMenu
GetWindowDC
GetDlgItemTextW
BringWindowToTop
GetWindowTextW
CreateDialogIndirectParamW
GetClientRect
ScrollWindowEx
LoadCursorW
InSendMessage
IsClipboardFormatAvailable
UnpackDDElParam
DeleteMenu
WaitMessage
GetScrollInfo
SystemParametersInfoW
PostThreadMessageW
RemoveMenu
PostQuitMessage
SystemParametersInfoA
GetDC
SendDlgItemMessageA
GetTabbedTextExtentA
SetForegroundWindow
GetScrollRange
DrawMenuBar
AppendMenuW
OffsetRect
ScreenToClient
GetLastActivePopup
MessageBoxW
EndDialog
SetTimer
SetWindowTextW
ModifyMenuW
CopyRect
GetParent
FindWindowW
GetClassNameW
GetNextDlgGroupItem
LoadMenuW
LoadIconW
GetKeyState
EnableMenuItem
SendDlgItemMessageW
SetWindowPos
GetSystemMenu
DestroyWindow
CharNextW
CharUpperW
GetWindowLongW
DeferWindowPos
SetScrollInfo
MessageBeep
GetDlgItem
CheckDlgButton
GetTopWindow
GetPropW
RegisterWindowMessageW
PostMessageW
CreateWindowExW
GetActiveWindow
WindowFromDC
TranslateAcceleratorW
InvalidateRect
LockWindowUpdate
DestroyCursor
GetCapture
DestroyIcon
GetMessagePos
SetWindowPlacement
CheckMenuItem
GetClassInfoW
SetParent
PeekMessageW
LoadStringW
SetCursor
GetAsyncKeyState
DrawTextW
GrayStringW
SetRectEmpty
ShowWindow
GetDialogBaseUnits
GetDCEx
DrawEdge
GetNextDlgTabItem
SetWindowsHookExW
TrackPopupMenu
BeginPaint
EnumChildWindows
IsRectEmpty
WindowFromPoint
SetWindowLongW
wvsprintfW
GetMenu
MessageBoxA
ReleaseCapture
RegisterClipboardFormatW
RedrawWindow
GetScrollPos
ReuseDDElParam
GetWindowTextLengthW
SetDlgItemInt
GetSysColorBrush
EnableWindow
EndPaint
GetWindowPlacement
GetMessageW
SetCursorPos
IsWindowEnabled
CopyAcceleratorTableW
AdjustWindowRectEx
ReleaseDC
DispatchMessageW
SetActiveWindow
GetMenuItemID
GetMenuStringW
ValidateRect
CreateMenu
SetScrollRange
GetSystemMetrics
InflateRect
UnionRect
MapDialogRect
InvalidateRgn
SetDlgItemTextW
wsprintfW
GetForegroundWindow
MoveWindow
WinHelpW
GetWindowRect
GetFocus
IsDialogMessageW
GetSubMenu
EndDeferWindowPos
LoadAcceleratorsW

Sections

.textbss
Size: - Virtual size: 144KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 512B - Virtual size: 436B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 26KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1a391588fa7bbe7720447040f2c47a3a

Headers

File Characteristics

Imports

ole32

gdi32

msvcrt

wininet

advapi32

kernel32

dciman32

activeds

user32

Sections

.textbss Size: - Virtual size: 144KB

.text Size: 512B - Virtual size: 436B

.idata Size: 16KB - Virtual size: 16KB

.data Size: 26KB - Virtual size: 26KB

.rdata Size: 512B - Virtual size: 32B

.textbss
Size: - Virtual size: 144KB

.text
Size: 512B - Virtual size: 436B

.idata
Size: 16KB - Virtual size: 16KB

.data
Size: 26KB - Virtual size: 26KB

.rdata
Size: 512B - Virtual size: 32B