df3da9b9a803596d234bad4907b00695_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

df3da9b9a803596d234bad4907b00695_JaffaCakes118
Size

110KB
MD5

df3da9b9a803596d234bad4907b00695
SHA1

cee4dbd0550fc3e3c8b9ec3d497b6152e6079aab
SHA256

80175662dff477c109fd74b46058d4ff5166056d970a4cafeae0303de277ff51
SHA512

b3df5046809a89d03d08e1edd96c021f2983773bbc1e44f2eca7e3732d3f6ff42d0d2c15c36dd36030afab3bcf81a04f86a8154308c3b04a777a4c0811e4a926
SSDEEP

3072:tGT0sHZuS3zyV00Je2u9SqWzdCzcMp0YDutQ+NKZIIo:tGT0s5vzyvJeb9h+dCV0YinZ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
df3da9b9a803596d234bad4907b00695_JaffaCakes118

Files

df3da9b9a803596d234bad4907b00695_JaffaCakes118
.exe windows:5 windows x86 arch:x86

bb38f32a7d32326b0170f51d446796ca

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

mpr

WNetOpenEnumA
WNetGetUniversalNameA
WNetCloseEnum
WNetEnumResourceA

gdi32

SetBrushOrgEx
CreateBrushIndirect
MaskBlt
GetStockObject
CreateBitmap
SetPixel
PlayEnhMetaFile
SetTextColor
MoveToEx
CreatePenIndirect
GetEnhMetaFileBits
GetTextAlign
CreateICA
FrameRgn
CreatePalette
CreateSolidBrush
PatBlt
PtInRegion
Pie
CreateCompatibleBitmap
RoundRect
IntersectClipRect
EndPage
GetPaletteEntries
ExtTextOutA
SetMapMode
SelectClipRgn
GetDIBColorTable
GetDeviceCaps
SetStretchBltMode
Polygon
SetWinMetaFileBits
GetWindowOrgEx
SetWindowOrgEx
GetViewportOrgEx
SaveDC
DeleteDC
CreateRoundRectRgn
SetAbortProc
StartPage
CreateHalftonePalette
Arc
DPtoLP
GetDIBits
SelectPalette
CreateFontA
CombineRgn
SetDIBColorTable
CreateDIBitmap
CreateEllipticRgn
SetViewportOrgEx
GetEnhMetaFileHeader
Ellipse
GetSystemPaletteEntries
Polyline
CreatePolygonRgn
GdiFlush
StretchBlt
SetEnhMetaFileBits
SetDIBitsToDevice
GetTextExtentPoint32A
GetObjectA
RealizePalette
EnumFontFamiliesA
CreateCompatibleDC
OffsetRgn
FillRgn
SetBkMode
GetRegionData
CreateDIBSection
CopyEnhMetaFileA
GetBitmapBits
DeleteObject
GetDCOrgEx
SetTextAlign
GetTextExtentPointA
GetCurrentPositionEx
SetBkColor
GetBrushOrgEx
GetTextMetricsA
LineTo
GetEnhMetaFilePaletteEntries
GetPixel
ExtCreateRegion
GetRgnBox
CreateDCA
StretchDIBits
GetClipBox
UnrealizeObject
GetWinMetaFileBits
GetClipRgn
Rectangle
DeleteEnhMetaFile
TextOutA
SetROP2
SelectObject
CreateFontIndirectA
SetDIBits
RestoreDC
CreateRectRgn
RectVisible
GetMapMode
ExcludeClipRect
BitBlt
EndDoc
StartDocA

dsound

DirectSoundCreate
DirectSoundEnumerateA

winmm

mixerGetNumDevs
mixerGetControlDetailsA
mmioClose
mmioSetInfo
waveInMessage
mmioRead
mixerGetLineInfoA
mixerGetID
mixerGetDevCapsA
timeGetTime
mmioGetInfo
timeBeginPeriod
mixerOpen
waveOutGetNumDevs
mixerGetLineControlsA
mixerSetControlDetails
mmioDescend
waveInGetDevCapsA
mmioCreateChunk
sndPlaySoundA
waveOutMessage
mmioAdvance
mmioWrite
waveInGetNumDevs
waveOutGetDevCapsA
mmioAscend
mmioSeek
timeEndPeriod
mixerClose
mmioOpenA

comdlg32

ChooseColorA

shell32

SHFileOperationA
Shell_NotifyIconA
ShellExecuteExA
ShellExecuteA

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

kernel32

lstrlenA
lstrcatA
WritePrivateProfileStringA
GlobalAddAtomA
GetModuleFileNameA
ResetEvent
FindClose
GetFullPathNameA
SetFilePointer
SetCurrentDirectoryA
CloseHandle
MultiByteToWideChar
GetCurrentProcessId
FormatMessageA
UnhandledExceptionFilter
CreateProcessA
LoadLibraryExA
SearchPathA
GetSystemTime
ReadFile
LocalFree
WriteFile
VirtualFree
SetEndOfFile
MulDiv
DeviceIoControl
CreateMutexA
RemoveDirectoryA
InterlockedIncrement
GetDiskFreeSpaceA
GetCurrentThreadId
WideCharToMultiByte
GetLocalTime
GetProcessHeap
LoadLibraryA
GetLocaleInfoA
GlobalDeleteAtom
GetThreadLocale
SetErrorMode
GetStartupInfoA
SetThreadLocale
GetProfileStringA
GlobalHandle
QueryPerformanceCounter
TlsSetValue
GlobalLock
ResumeThread
GetPrivateProfileStringA
GetCurrentProcess
InterlockedDecrement
GetVersion
HeapAlloc
GlobalSize
GetCPInfo
VirtualQuery
GetFileType
GetProcAddress
RtlUnwind
GetTempFileNameA
GetCurrentDirectoryA
GetExitCodeProcess
GetExitCodeThread
DeleteFileA
GetWindowsDirectoryA
GetThreadPriority
FreeLibrary
SetHandleCount
GetSystemInfo
FileTimeToLocalFileTime
lstrcmpiA
GetStringTypeExA
HeapFree
LoadResource
FileTimeToDosDateTime
GetFileSize
LockResource
WaitForMultipleObjects
GlobalUnlock
GetSystemDirectoryA
GetSystemDefaultLCID
GlobalReAlloc
GetACP
GlobalAlloc
SetThreadPriority
WaitForSingleObject
CompareStringA
GetStringTypeW
CreateEventA
FreeResource
GetDateFormatA
VirtualAlloc
RaiseException
DeleteCriticalSection
GetTickCount
InitializeCriticalSection
SetEvent
SizeofResource
EnumCalendarInfoA
FindNextFileA
GetVersionExA
TlsAlloc
GetOEMCP
CreateDirectoryA
ExitProcess
lstrcpyA
Sleep
TlsFree
LeaveCriticalSection
GetEnvironmentStrings
CreateThread
GlobalFree
GlobalFindAtomA
EnterCriticalSection
lstrcmpA
GetCurrentThread
SetLastError
FindFirstFileA
lstrcpynA
GetModuleHandleA
GetTimeZoneInformation
LocalAlloc
GetFileAttributesA
SetConsoleCtrlHandler
GetTempPathA
QueryPerformanceFrequency
GetStdHandle
TerminateProcess
GetCommandLineA
TlsGetValue
LCMapStringA
GetLastError
FindResourceA
WinExec
OutputDebugStringA
CreateFileA

ole32

CoCreateInstance
CoTaskMemFree
StringFromCLSID
CoUninitialize
CoInitialize

comctl32

ImageList_GetDragImage
ImageList_EndDrag
ImageList_DragEnter
ImageList_ReplaceIcon
ImageList_DrawEx
ImageList_GetBkColor
ImageList_Create
ImageList_Add
ImageList_SetDragCursorImage
ImageList_Write
ImageList_DragMove
ImageList_Remove
ImageList_Draw
ImageList_SetIconSize
ImageList_SetBkColor
ImageList_GetImageCount
ImageList_DragShowNolock
ImageList_BeginDrag
ImageList_Replace
ImageList_Read
ImageList_GetIcon
GetEffectiveClientRect
ImageList_DragLeave
ImageList_GetIconSize

advapi32

RegQueryValueExA
RegQueryInfoKeyA
RegEnumKeyExA
RegOpenKeyA
RegCreateKeyA
RegDeleteKeyA
RegOpenKeyExA
RegDeleteValueA
RegCloseKey
RegSetValueExA
RegCreateKeyExA
RegEnumValueA
RegFlushKey

user32

GetSysColorBrush
GetKeyNameTextA
PtInRect
PeekMessageA
GetWindowTextA
GetCaretPos
SetRect
IsWindow
SetActiveWindow
LoadCursorA
GetPropA
GetMenuStringA
GetClassNameA
DestroyWindow
SetScrollInfo
RedrawWindow
EnumWindows
MapVirtualKeyA
GetUpdateRect
GetMessagePos
UnregisterDeviceNotification
wsprintfA
MsgWaitForMultipleObjects
RegisterWindowMessageA
IsWindowEnabled
GetWindowRect
GetKeyboardType
EnableMenuItem
InflateRect
CharUpperA
DrawTextA
FindWindowA
IsCharAlphaA
ActivateKeyboardLayout
IntersectRect
CreatePopupMenu
GetTabbedTextExtentA
GetScrollRange
GetDCEx
MapWindowPoints
SetKeyboardState
GetDC
InsertMenuItemA
EnableScrollBar
EnableWindow
GetScrollPos
SetMenuItemInfoA
GetKeyboardState
ChildWindowFromPoint
WinHelpA
CallNextHookEx
GetMenuItemInfoA
EmptyClipboard
EnumThreadWindows
GetForegroundWindow
GetSysColor
DestroyIcon
TrackPopupMenu
DestroyMenu
GetSystemMetrics
CheckMenuItem
RegisterDeviceNotificationA
IsClipboardFormatAvailable
SetWindowRgn
DefMDIChildProcA
SetFocus
UnhookWindowsHookEx
ReleaseDC
InsertMenuA
IsDialogMessageA
GetWindowRgn
CharNextA
GetCapture
DefWindowProcA
GetMessageA
CloseClipboard
SystemParametersInfoA
DrawMenuBar
SetWindowLongA
IsRectEmpty
SetScrollRange
TranslateMDISysAccel
GetWindowThreadProcessId
SetCursorPos
RemoveMenu
FrameRect
InvalidateRect
PostMessageA
LoadBitmapA
MessageBeep
ClientToScreen
SubtractRect
GetWindowLongA
CreateMenu
SetWindowPos
GetWindowDC
GetParent
GetCursorPos
MessageBoxA
IsCharAlphaNumericA
CharLowerBuffA
DrawEdge
SendMessageA
BeginPaint
SetWindowTextA
SetMenu
ShowCursor
AttachThreadInput
GetTopWindow
GetIconInfo
CallWindowProcA
DrawFocusRect
GetMenuItemCount
IsChild
GetClientRect
ShowScrollBar
OpenClipboard
LoadStringA
ScrollWindow
DestroyCursor
DeleteMenu
DispatchMessageA
HideCaret
CreateIcon
SetWindowPlacement
CopyImage
SetClipboardData
LoadKeyboardLayoutA
ScreenToClient
UpdateWindow
SetCursor
EqualRect
GetWindow
SetPropA
SetTimer
ShowWindow
FillRect
IsZoomed
CharLowerA
GetKeyboardLayoutList
GetActiveWindow
RemovePropA
DrawIconEx
DefFrameProcA
TabbedTextOutA
CharUpperBuffA
GetSubMenu
GetLastActivePopup
PostQuitMessage
KillTimer
SetCapture
GetScrollInfo
GetWindowPlacement
EnumClipboardFormats
GetMenu
LoadIconA
SetScrollPos
RegisterClipboardFormatA
AdjustWindowRectEx
OffsetRect
ShowOwnedPopups
RegisterClassA
CreateWindowExA
DrawFrameControl
TranslateMessage
SetWindowsHookExA
GetClassInfoA
IsWindowVisible
SetClassLongA
EndPaint
GetKeyState
SetForegroundWindow
GetSystemMenu
IsIconic
GetCursor
OemToCharA
GetClipboardData
GetMenuItemID
WaitMessage
WindowFromPoint
GetDesktopWindow
BroadcastSystemMessageA
GetKeyboardLayout
UnregisterClassA
NotifyWinEvent
GetFocus
DrawIcon
GetMenuState
ReleaseCapture

ws2_32

WSAGetLastError

Sections

.data
Size: 2KB - Virtual size: 296KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 512B - Virtual size: 24B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 512B - Virtual size: 484B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

bb38f32a7d32326b0170f51d446796ca

Headers

DLL Characteristics

File Characteristics

Imports

mpr

gdi32

dsound

winmm

comdlg32

shell32

version

kernel32

ole32

comctl32

advapi32

user32

ws2_32

Sections

.data Size: 2KB - Virtual size: 296KB

.reloc Size: 512B - Virtual size: 24B

.text Size: 512B - Virtual size: 484B

.rsrc Size: 92KB - Virtual size: 91KB

.rdata Size: 13KB - Virtual size: 13KB

.data
Size: 2KB - Virtual size: 296KB

.reloc
Size: 512B - Virtual size: 24B

.text
Size: 512B - Virtual size: 484B

.rsrc
Size: 92KB - Virtual size: 91KB

.rdata
Size: 13KB - Virtual size: 13KB