df35a5b480ef3d572de35af75190500b_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

df35a5b480ef3d572de35af75190500b_JaffaCakes118
Size

2.8MB
MD5

df35a5b480ef3d572de35af75190500b
SHA1

b91851e134c783fc93003a6ef519adc2520bd164
SHA256

c053529247dfcface8a6be16c270d3eefd8968eca3b1d5eb20394b0c71f387fa
SHA512

a2ea662307ca0f44c5e0dd9d42d8513bfa95f1601e07445a67dd551cb3042ff2b42944189acecff820e42279fd77374225cc1f23d08f801358f5a0148c8223f4
SSDEEP

49152:Z7oHE0mhSyRPNfu9gBJ9oxcDiU6jLF1qQqumdw7iX:Z7oHEFFNG9+J9oxcD2eLdSu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
df35a5b480ef3d572de35af75190500b_JaffaCakes118

Files

df35a5b480ef3d572de35af75190500b_JaffaCakes118
.exe windows:5 windows x86 arch:x86

11b6d7035aab140f1192eee2328d3076

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE

Imports

sqlite3

sqlite3_sourceid

msvcrt

_XcptFilter
_controlfp
__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_acmdln
_exit
_except_handler3
exit

kernel32

HeapAlloc
ConvertDefaultLocale
CopyFileW
CreateDirectoryW
CreateEventW
CreateFileA
CreateFileMappingW
CreateFileW
CreatePipe
CreateProcessW
CreateThread
DeleteCriticalSection
LoadLibraryA
LeaveCriticalSection
ExitProcess
GetTickCount
EnterCriticalSection
InitializeCriticalSection
GetCommandLineA
GetVersion
GetCurrentThreadId
GetCurrentProcessId
QueryPerformanceCounter
GetSystemTimeAsFileTime
GetCurrentProcess
GetProcAddress
GetModuleHandleA
WritePrivateProfileStringW
WriteFile
WriteConsoleW
WriteConsoleA
WideCharToMultiByte
WaitForSingleObject
VirtualQuery
VirtualProtect
VirtualFree
VirtualAlloc
UnmapViewOfFile
UnlockFile
TlsSetValue
TlsGetValue
TlsFree
TlsAlloc
TerminateThread
TerminateProcess
SystemTimeToTzSpecificLocalTime
SystemTimeToFileTime
SuspendThread
Sleep
SizeofResource
SetUnhandledExceptionFilter
SetThreadPriority
SetStdHandle
SetLastError
SetHandleInformation
SetHandleCount
SetFilePointer
SetEvent
SetErrorMode
SetEnvironmentVariableA
SetEndOfFile
SearchPathW
ResumeThread
ResetEvent
RemoveDirectoryW
ReleaseMutex
ReadFile
RaiseException
MultiByteToWideChar
MulDiv
MoveFileW
MoveFileExW
MapViewOfFile
lstrlenW
lstrlenA
lstrcpyW
lstrcpynW
lstrcmpW
lstrcmpiW
lstrcmpA
LockResource
LockFile
LocalReAlloc
LocalFree
LocalFileTimeToFileTime
LocalAlloc
LoadResource
LoadLibraryW
LCMapStringW
LCMapStringA
IsValidLocale
IsValidCodePage
InterlockedIncrement
InterlockedExchange
InterlockedDecrement
InterlockedCompareExchange
HeapSize
DeleteFileW
HeapFree
HeapCreate
HeapReAlloc
GlobalUnlock
GlobalSize
GlobalReAlloc
GlobalLock
GlobalHandle
GlobalGetAtomNameW
GlobalFree
GlobalFlags
GlobalFindAtomW
GlobalDeleteAtom
GlobalAlloc
GlobalAddAtomW
GetWindowsDirectoryW
GetVolumeInformationW
GetVersionExW
GetVersionExA
GetUserDefaultLCID
GetTimeZoneInformation
GetTimeFormatW
GetTimeFormatA
GetThreadLocale
GetTempPathW
GetTempFileNameW
GetSystemTime
GetSystemInfo
GetStringTypeW
GetStringTypeExW
GetStringTypeA
GetStdHandle
GetStartupInfoW
GetStartupInfoA
GetShortPathNameW
GetProfileIntW
GetProcessHeap
GetPrivateProfileStringW
GetPrivateProfileIntW
GetOEMCP
GetNumberFormatW
GetModuleHandleW
GetModuleFileNameW
GetModuleFileNameA
GetLogicalDriveStringsW
GetLocaleInfoW
GetLocaleInfoA
GetLastError
GetHandleInformation
GetFullPathNameW
GetFileType
GetFileTime
GetFileAttributesW
GetFileAttributesExW
GetExitCodeProcess
GetEnvironmentStringsW
GetDriveTypeW
GetDiskFreeSpaceExW
GetDateFormatW
GetDateFormatA
GetCurrentDirectoryW
GetCPInfo
GetConsoleOutputCP
GetConsoleMode
GetConsoleCP
GetComputerNameW
GetCompressedFileSizeW
GetCommandLineW
GetACP
FreeResource
FreeLibrary
FreeEnvironmentStringsW
FormatMessageW
FlushViewOfFile
FlushFileBuffers
FindResourceW
FindResourceExW
FindNextFileW
FindFirstFileW
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
ExitThread
EnumSystemLocalesA
EnumResourceLanguagesW
DuplicateHandle
DeviceIoControl

user32

WindowFromPoint
WaitMessage
WinHelpW
UpdateWindow
UnregisterClassW
UnionRect
UnhookWindowsHookEx
TranslateMessage
TranslateMDISysAccel
TranslateAcceleratorW
TrackPopupMenuEx
ToUnicodeEx
TabbedTextOutW
SystemParametersInfoW
SystemParametersInfoA
SubtractRect
ShowWindow
ShowScrollBar
ShowOwnedPopups
SetWindowTextW
SetWindowsHookExW
SetWindowRgn
SetWindowPos
SetWindowPlacement
SetWindowLongW
SetWindowContextHelpId
SetTimer
SetScrollRange
SetScrollPos
SetScrollInfo
SetRectEmpty
SetRect
SetPropW
SetParent
SetMenuItemInfoW
SetMenuItemBitmaps
SetMenuDefaultItem
SetForegroundWindow
SetFocus
SetDlgItemTextW
SetCursorPos
SetClipboardData
SetClassLongW
SetCapture
SetActiveWindow
SendNotifyMessageW
SendMessageW
SendDlgItemMessageW
SendDlgItemMessageA
ScrollWindow
ScreenToClient
RemovePropW
RemoveMenu
ReleaseDC
ReleaseCapture
RegisterWindowMessageW
RegisterClipboardFormatW
RegisterClassW
RedrawWindow
PtInRect
PostThreadMessageW
PostQuitMessage
PostMessageW
PeekMessageW
OpenClipboard
OffsetRect
MoveWindow
ModifyMenuW
MessageBeep
MapWindowPoints
MapVirtualKeyW
MapVirtualKeyExW
MapDialogRect
LockWindowUpdate
LoadMenuW
LoadImageW
LoadIconW
LoadCursorW
LoadBitmapW
LoadAcceleratorsW
KillTimer
IsZoomed
IsWindowVisible
IsWindowEnabled
IsRectEmpty
IsMenu
IsIconic
IsDialogMessageW
IsClipboardFormatAvailable
IsChild
IsCharLowerW
IsCharAlphaNumericW
InvertRect
InvalidateRgn
InvalidateRect
IntersectRect
InsertMenuW
InsertMenuItemW
InflateRect
HideCaret
GrayStringW
GetWindowThreadProcessId
GetWindowTextW
GetWindowTextLengthW
GetWindowRgn
GetWindowRect
GetWindowPlacement
GetWindowLongW
GetWindowDC
GetWindowContextHelpId
GetUpdateRect
GetTopWindow
GetSystemMetrics
GetSystemMenu
GetSysColorBrush
GetSubMenu
GetScrollRange
GetScrollPos
GetScrollInfo
GetPropW
GetParent
GetNextDlgTabItem
GetNextDlgGroupItem
GetMessageW
GetMessageTime
GetMessagePos
GetMenuStringW
GetMenuState
GetMenuItemInfoW
GetMenuItemID
GetMenuItemCount
GetMenuDefaultItem
GetMenuCheckMarkDimensions
GetLastActivePopup
GetKeyState
GetKeyNameTextW
GetKeyboardState
GetKeyboardLayout
GetIconInfo
GetForegroundWindow
GetFocus
GetDoubleClickTime
GetDlgItem
GetDlgCtrlID
GetDesktopWindow
GetDC
GetCursorPos
GetClipboardData
GetClientRect
GetClassNameW
GetClassLongW
GetClassInfoW
GetClassInfoExW
GetCaretPos
GetCapture
GetAsyncKeyState
GetActiveWindow
FrameRect
FillRect
EqualRect
EnumChildWindows
EndPaint
EndDialog
EnableWindow
EnableScrollBar
EnableMenuItem
EmptyClipboard
DrawTextW
DrawTextExW
DrawStateW
DrawMenuBar
DrawIconEx
DrawIcon
DrawFrameControl
DrawFocusRect
DrawEdge
DispatchMessageW
DestroyWindow
DestroyMenu
DestroyIcon
DestroyCursor
DestroyAcceleratorTable
DeleteMenu
DefWindowProcW
DefMDIChildProcW
DefFrameProcW
CreateWindowExW
CreatePopupMenu
CreateMenu
CreateDialogIndirectParamW
CreateAcceleratorTableW
CountClipboardFormats
CopyRect
CopyImage
CopyIcon
CopyAcceleratorTableW
CloseClipboard
ClientToScreen
CheckMenuRadioItem
CheckMenuItem
CheckDlgButton
CharUpperW
CharUpperBuffW
CharNextW
CharLowerA
CallWindowProcW
CallNextHookEx
BringWindowToTop
BeginPaint
wsprintfW
MessageBoxW
MessageBoxA
GetKeyboardType
ValidateRect

advapi32

RegQueryValueExA
RegOpenKeyExA
RegCloseKey

ole32

OleInitialize
CoInitialize

shlwapi

PathFileExistsA

Sections

.text
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 1024B - Virtual size: 14.1MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.lzmat
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 473KB - Virtual size: 473KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

11b6d7035aab140f1192eee2328d3076

Headers

File Characteristics

Imports

sqlite3

msvcrt

kernel32

user32

advapi32

ole32

shlwapi

Sections

.text Size: 2.3MB - Virtual size: 2.3MB

.rdata Size: 15KB - Virtual size: 15KB

.data Size: 1024B - Virtual size: 14.1MB

.tls Size: 5KB - Virtual size: 4KB

.lzmat Size: 1KB - Virtual size: 1KB

.rsrc Size: 473KB - Virtual size: 473KB

.text
Size: 2.3MB - Virtual size: 2.3MB

.rdata
Size: 15KB - Virtual size: 15KB

.data
Size: 1024B - Virtual size: 14.1MB

.tls
Size: 5KB - Virtual size: 4KB

.lzmat
Size: 1KB - Virtual size: 1KB

.rsrc
Size: 473KB - Virtual size: 473KB