dc3e3341acc3eb9ca2795221f89e76ef_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

dc3e3341acc3eb9ca2795221f89e76ef_JaffaCakes118
Size

98KB
MD5

dc3e3341acc3eb9ca2795221f89e76ef
SHA1

47218da9c01925f92d62e7d62e8349997cd04e68
SHA256

901a7c8ecf6c7788c39657ff5122b09a848bc0eb678a66dca8b484c0f60d03c3
SHA512

13761c2528e43edf8da65bfd4ad723740f4503a86a2c2c4ce6c2da11914331b96727daf8f4b1796ee989e490c430e7268dc17556e6a1e45b397fe33eac3bf2e9
SSDEEP

1536:TCsEIU4OyUVjbhbznprieKRtyDs5gbhyresGG8o+R24:vEOOnVftznd0ub+esGvNRX

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dc3e3341acc3eb9ca2795221f89e76ef_JaffaCakes118

Files

dc3e3341acc3eb9ca2795221f89e76ef_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8e2579fc48a8b8414588dbabc376ca93

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LocalLock
LocalAlloc
OpenEventW
OutputDebugStringW
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
WideCharToMultiByte
SetFileAttributesW
DeleteFileW
lstrcpyW
lstrlenW
WinExec
OpenMutexW
OpenFileMappingW
VirtualQuery
CreateFileMappingW
MapViewOfFile
UnmapViewOfFile
ResetEvent
FindResourceW
LoadResource
LockResource
CreateThread
LocalUnlock
LocalFree
GetLocalTime
CreateFileW
WaitForMultipleObjects
WriteFile
SetFilePointer
GetSystemTimeAsFileTime
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
CreateMutexW
WaitForSingleObject
ReleaseMutex
lstrlenA
CloseHandle
CreateEventW
SetLastError
GetCurrentThreadId
GetModuleHandleW
FreeLibrary
FindFirstFileW
FindClose
FindNextFileW
GetModuleHandleA
VirtualAlloc

user32

IsWindow
GetMessagePos
ScreenToClient
PostMessageW
GetSystemMetrics
InflateRect
GetWindowRect
GetClientRect
InvalidateRect
LoadImageW
ReleaseDC
GetWindowDC
GetDlgItem
SetWindowLongW
GetWindowLongW
FillRect
SetCursor
LoadCursorW
GetCursorPos
GetDC
GetCursor
PtInRect
MapDialogRect
SetLayeredWindowAttributes
DrawTextW
GetSysColor
PeekMessageW
MsgWaitForMultipleObjectsEx
FrameRect
CopyRect
ClientToScreen
SetWindowPos
GetWindowPlacement
GetParent
RemovePropW
DefWindowProcW
GetClassInfoW
SetWindowRgn
RedrawWindow
WindowFromPoint
DestroyWindow
RegisterWindowMessageW
GetSysColorBrush
CreateWindowExW
GetKeyState
SetFocus
GetWindowTextW
IntersectRect
OffsetRect
DrawFocusRect
SetRect
MessageBeep
GetFocus
BringWindowToTop
SetForegroundWindow
AttachThreadInput
GetWindowThreadProcessId
GetForegroundWindow
UpdateWindow
CreateIconIndirect
CopyImage
SetPropW
GetAncestor
SystemParametersInfoW
IsWindowVisible
FindWindowW
GetDesktopWindow
DestroyIcon
LoadIconW
KillTimer
SetTimer
EnableWindow
LoadBitmapW
GetPropW
CallWindowProcW
SendMessageW
GetIconInfo

gdi32

CreateRoundRectRgn
CreatePolygonRgn
LineTo
CreateRectRgn
CombineRgn
FrameRgn
FillRgn
GetTextFaceW
GetTextMetricsW
GetDeviceCaps
StretchBlt
CreateCompatibleBitmap
SetBkColor
TextOutW
SetPixel
CreateFontIndirectW
GetStockObject
GetPixel
CreateCompatibleDC
BitBlt
ExcludeClipRect
DeleteDC
CreateSolidBrush
SetBkMode
SelectObject
CreatePen
Polygon
GetTextExtentPoint32W
DeleteObject
GetObjectW
SetTextColor
MoveToEx
SetStretchBltMode
CreateDIBSection
GetDIBits
SetTextJustification

msimg32

GradientFill
AlphaBlend

advapi32

CryptReleaseContext
RegQueryValueExW
RegOpenKeyExW
RegSetValueExW
RegCreateKeyExW
GetUserNameW
ConvertSidToStringSidW
LookupAccountNameW
CryptGenRandom
CryptAcquireContextW
FreeSid
SetSecurityDescriptorSacl
GetSecurityDescriptorSacl
ConvertStringSecurityDescriptorToSecurityDescriptorW
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
SetEntriesInAclW
AllocateAndInitializeSid
RegQueryValueW
RegCloseKey

shell32

SHCreateDirectoryExW
ShellExecuteW
SHGetFolderPathW

comctl32

ImageList_GetIconSize
ImageList_DrawEx
_TrackMouseEvent
ord17

shlwapi

PathFindFileNameW

ole32

CoUninitialize
CoInitializeEx
CoCreateInstance

oleaut32

SysAllocString
SysFreeString

olecli32

OleCreate
ErrClose
OleRelease
GenGetData
DocWndProc
DibEnumFormat
OleDelete
OleQueryCreateFromClip
PbCreate
OleCreateLinkFromClip
OleDraw
OleIsDcMeta
OleRevertClientDoc
OleSavedClientDoc
OleLockServer
ErrGetUpdateOptions
GenEqual
LeQueryOpen
MfCopy
OleQueryProtocol
DibRelease
ErrCopyFromLink
OleGetLinkUpdateOptions
DefCreateFromTemplate

panmap

DllGetClassObject

Sections

.text
Size: 18KB - Virtual size: 18KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.mK
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.WIbJmg
Size: 512B - Virtual size: 291B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.LnDr
Size: 512B - Virtual size: 194B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.qEwx
Size: 1024B - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 6KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Ls
Size: 2KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.PS
Size: 1KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 44KB - Virtual size: 116KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.sUnIlK
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.s
Size: 512B - Virtual size: 278B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.qwWFXT
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.e
Size: 1024B - Virtual size: 992B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8e2579fc48a8b8414588dbabc376ca93

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

msimg32

advapi32

shell32

comctl32

shlwapi

ole32

oleaut32

olecli32

panmap

Sections

.text Size: 18KB - Virtual size: 18KB

.mK Size: 1024B - Virtual size: 1KB

.WIbJmg Size: 512B - Virtual size: 291B

.LnDr Size: 512B - Virtual size: 194B

.qEwx Size: 1024B - Virtual size: 1KB

.rdata Size: 6KB - Virtual size: 5KB

.Ls Size: 2KB - Virtual size: 3KB

.PS Size: 1KB - Virtual size: 2KB

.data Size: 44KB - Virtual size: 116KB

.sUnIlK Size: 1KB - Virtual size: 1KB

.s Size: 512B - Virtual size: 278B

.qwWFXT Size: 1KB - Virtual size: 1KB

.e Size: 1024B - Virtual size: 992B

.rsrc Size: 17KB - Virtual size: 16KB

.text
Size: 18KB - Virtual size: 18KB

.mK
Size: 1024B - Virtual size: 1KB

.WIbJmg
Size: 512B - Virtual size: 291B

.LnDr
Size: 512B - Virtual size: 194B

.qEwx
Size: 1024B - Virtual size: 1KB

.rdata
Size: 6KB - Virtual size: 5KB

.Ls
Size: 2KB - Virtual size: 3KB

.PS
Size: 1KB - Virtual size: 2KB

.data
Size: 44KB - Virtual size: 116KB

.sUnIlK
Size: 1KB - Virtual size: 1KB

.s
Size: 512B - Virtual size: 278B

.qwWFXT
Size: 1KB - Virtual size: 1KB

.e
Size: 1024B - Virtual size: 992B

.rsrc
Size: 17KB - Virtual size: 16KB