e1d46206465e76924cda687ec6ee5bf0_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

e1d46206465e76924cda687ec6ee5bf0_JaffaCakes118
Size

27KB
MD5

e1d46206465e76924cda687ec6ee5bf0
SHA1

bd76905fc0ac256a23836c468a8d5b729b3cb95c
SHA256

47830c99d62b39e29990087cb7761e659bf33383ecfe7ca2734bbbced3bddcc3
SHA512

c5e8a8e4931b6240a74464e705624d5209484d7085e972de60497531e6d33310721ccf150abb61cd6375a7195fff3470d0f84f8ced992765c73876d303138bcf
SSDEEP

768:5Pa6W+flLww1vUJvQvZjA/Xus1MX6aTcAZ:5S6WGww1+4vZ8/d1kcY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e1d46206465e76924cda687ec6ee5bf0_JaffaCakes118

Files

e1d46206465e76924cda687ec6ee5bf0_JaffaCakes118
.exe windows:5 windows x86 arch:x86

a7f57d9ae65e4c4b286b5f255617e216

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegDeleteValueW
RegQueryValueExW
GetFileSecurityW
RegCreateKeyW
SetFileSecurityW
RegQueryValueW
RegDeleteKeyW
RegOpenKeyW
RegOpenKeyExW
RegCloseKey
RegSetValueExW
RegCreateKeyExW
RegEnumKeyW
RegSetValueW

ole32

CoTreatAsClass
OleSetContainedObject
GetHGlobalFromILockBytes
StringFromCLSID
OleLoad
OleIsCurrentClipboard
WriteFmtUserTypeStg
CoGetClassObject
CreateFileMoniker
CoInitialize
OleRegGetUserType
CoRegisterClassObject
StgOpenStorageOnILockBytes
ReadClassStg
CoLockObjectExternal
CoFreeUnusedLibraries
CreateILockBytesOnHGlobal
OleLockRunning
OleSave
OleRun
CLSIDFromProgID
OleCreateMenuDescriptor
OleQueryLinkFromData
CreateDataAdviseHolder
StgCreateDocfileOnILockBytes
OleRegGetMiscStatus
CoGetMalloc
OleUninitialize
CoTaskMemAlloc
CreateDataCache
SetConvertStg
ReadFmtUserTypeStg
OleRegEnumVerbs
CreateItemMoniker
CoRegisterMessageFilter
OleGetClipboard
RevokeDragDrop
OleCreateLinkFromData
OleCreateStaticFromData
CreateGenericComposite
CreateOleAdviseHolder
StgOpenStorage
CreateBindCtx
RegisterDragDrop
CoDisconnectObject
StgIsStorageFile
WriteClassStm
OleSetClipboard
StringFromGUID2
OleLoadFromStream
IsAccelerator
OleIsRunning
CLSIDFromString
OleInitialize
CoTaskMemFree
OleSaveToStream
OleDestroyMenuDescriptor
OleCreateLinkToFile
CoCreateInstance
GetRunningObjectTable
ReadClassStm
OleSetMenuDescriptor
CoUninitialize
OleGetIconOfClass
OleCreateFromFile
OleCreate
OleDuplicateData
OleFlushClipboard
OleCreateFromData
ReleaseStgMedium
StgCreateDocfile
GetClassFile
CoRevokeClassObject
WriteClassStg
CreateStreamOnHGlobal
OleQueryCreateFromData
OleTranslateAccelerator
DoDragDrop

user32

DeleteMenu
SetMenu
GetCursorPos
SendDlgItemMessageW
MoveWindow
EndPaint
DrawEdge
GetAsyncKeyState
ShowOwnedPopups
ShowScrollBar
EndDeferWindowPos
FindWindowW
SetDlgItemInt
InsertMenuW
SetWindowTextW
CopyRect
PostQuitMessage
LoadMenuW
IsIconic
GetForegroundWindow
MessageBoxA
CharUpperW
ValidateRect
DefFrameProcW
SystemParametersInfoA
DestroyIcon
ModifyMenuW
DrawMenuBar
GetCapture
ScrollWindowEx
GetMenuItemID
GetDlgCtrlID
GetWindowTextLengthW
SetScrollInfo
CreateMenu
GetFocus
RedrawWindow
ReleaseDC
BringWindowToTop
ClientToScreen
SetActiveWindow
GetWindowThreadProcessId
InvalidateRgn
SetWindowContextHelpId
RegisterWindowMessageW
MessageBeep
GetDialogBaseUnits
MapWindowPoints
ShowWindow
OffsetRect
GetActiveWindow
DrawFocusRect
ReleaseCapture
GetSysColorBrush
GetMessageTime
ReuseDDElParam
CountClipboardFormats
GetDesktopWindow
GetWindow
PtInRect
DestroyCursor
RemoveMenu
GetMessagePos
SetRect
SetCapture
EnableWindow
GetScrollPos
GetLastActivePopup
SetWindowLongW
ScreenToClient
GetScrollInfo
CheckDlgButton
CreateDialogIndirectParamW
TranslateMessage
GetDlgItemInt
SetRectEmpty
DefWindowProcW
DestroyWindow
GetClassInfoW
SetScrollRange
AdjustWindowRectEx
UnregisterClassW
TranslateMDISysAccel
GetDlgItemTextW
GetSystemMenu
IsWindowEnabled
AppendMenuW
WaitMessage
GetClientRect
BeginDeferWindowPos
LoadIconW
UnpackDDElParam
PeekMessageW
wsprintfW
CheckRadioButton
InvalidateRect
RegisterClassW
SetMenuItemBitmaps
IntersectRect
FillRect
RegisterClipboardFormatW
MessageBoxW
IsChild
GetSysColor
CharNextW
InflateRect
CheckMenuItem
RemovePropW
CreateWindowExW
GetMenuItemCount
LoadCursorW
GetDlgItem
GetClassNameW
GetTabbedTextExtentW
GetWindowLongW
EqualRect
SetDlgItemTextW
EnumChildWindows
GetWindowRect
SetPropW
SendDlgItemMessageA
LoadAcceleratorsW
CallNextHookEx
UnionRect
GetScrollRange
GetTabbedTextExtentA
EnableMenuItem
GetWindowPlacement
GetWindowDC
DrawTextW
SetWindowsHookExW
SetParent
SetWindowPlacement
MsgWaitForMultipleObjects
ScrollWindow
CallWindowProcW
PostThreadMessageW
DeferWindowPos
FrameRect
GetWindowTextW
CopyAcceleratorTableW
IsRectEmpty
SetScrollPos
EndDialog
SendMessageW
TrackPopupMenu
WinHelpW
GetMessageW
SetTimer
KillTimer
GetDC
InvertRect
GetKeyState
ClipCursor
BeginPaint
GetMenuCheckMarkDimensions
IsZoomed
SystemParametersInfoW
DispatchMessageW
IsDlgButtonChecked
SetWindowPos
IsClipboardFormatAvailable
GetNextDlgGroupItem
UnhookWindowsHookEx
MapDialogRect
IsWindowVisible
SetFocus
GetPropW
LoadBitmapW
GetNextDlgTabItem
GetMenu
GetTopWindow
IsDialogMessageW
WindowFromDC
WindowFromPoint
TranslateAcceleratorW
GetParent
GrayStringW
DestroyMenu
GetMenuStringW
UpdateWindow
SetForegroundWindow
SetCursorPos
InSendMessage
LockWindowUpdate
GetSubMenu
wvsprintfW
TabbedTextOutW
DefMDIChildProcW
IsWindow
SetCursor
GetSystemMetrics
GetDCEx
LoadStringW
PostMessageW
GetMenuState

cmdial32

AutoDialFunc
CmCustomHangUp

kernel32

FindClose
LocalFree
GlobalReAlloc
UnlockFile
GetProfileIntW
GlobalAddAtomW
SetFilePointer
FindNextFileW
LocalLock
GetProcessVersion
UnhandledExceptionFilter
CreateFileW
SetEndOfFile
GetModuleFileNameW
WriteFile
GlobalUnlock
SetThreadPriority
lstrcmpiW
CreateEventW
SetLastError
FreeResource
GetCurrentProcess
GetTempFileNameW
lstrcpynW
GlobalFree
GetModuleHandleW
lstrlenW
GetStringTypeExW
CreateMutexW
TlsGetValue
SearchPathW
lstrcmpiA
SetFileTime
LocalReAlloc
ReleaseMutex
GlobalSize
LoadResource
FlushFileBuffers
TlsSetValue
SetUnhandledExceptionFilter
SetErrorMode
GetSystemInfo
OutputDebugStringW
CopyFileW
GetProcAddress
FileTimeToLocalFileTime
GetPrivateProfileIntW
LoadLibraryExA
MulDiv
GlobalDeleteAtom
LockResource
GlobalFlags
GetPrivateProfileStringW
VirtualQuery
GetFileSize
GetVersionExA
LocalUnlock
GlobalAlloc
lstrcmpW
GetSystemTimeAsFileTime
lstrlenA
GetShortPathNameW
GetFileTime
LeaveCriticalSection
GetCurrentDirectoryW
lstrcatA
GetFullPathNameW
TlsAlloc
InterlockedIncrement
ReleaseSemaphore
GlobalHandle
LockFile
lstrcmpA
SizeofResource
GetDiskFreeSpaceW
CloseHandle
MultiByteToWideChar
FormatMessageW
ReadFile
VirtualAlloc
lstrcpynA
SuspendThread
GetCurrentThreadId
DeleteFileW
FindResourceExW
InterlockedDecrement
InitializeCriticalSection
GlobalGetAtomNameW
GetSystemDirectoryA
GetModuleHandleA
FindFirstFileW
TerminateProcess
lstrcpyW
DelayLoadFailureHook
GetTempPathW
MoveFileW
GetCurrentProcessId
GetThreadLocale
GetVersionExW
DuplicateHandle
FindResourceW
GlobalFindAtomW
VirtualProtect
WideCharToMultiByte
GetVolumeInformationW
SetFileAttributesW
LocalFileTimeToFileTime
LocalAlloc
TlsFree
WaitForMultipleObjects
DeleteCriticalSection
GetLastError
InterlockedCompareExchange
Sleep
lstrcatW
GetTickCount
SystemTimeToFileTime
LoadLibraryA
lstrcpyA
FileTimeToSystemTime
GetUserDefaultLCID
CreateSemaphoreW
EnterCriticalSection
ResumeThread
LoadLibraryW
SetEvent
GetFileAttributesW
GlobalLock
GetCurrentThread
FreeLibrary
GetVersion
FreeConsole
IsDBCSLeadByte
WaitForSingleObject
QueryPerformanceCounter

wininet

GopherOpenFileW
HttpQueryInfoW
GopherGetAttributeW
FtpSetCurrentDirectoryW
InternetCanonicalizeUrlW
HttpEndRequestW
InternetSetCookieW
InternetErrorDlg
FtpGetCurrentDirectoryW
HttpAddRequestHeadersW
FtpRemoveDirectoryW
InternetSetStatusCallbackW
FtpFindFirstFileW
InternetConnectW
GopherFindFirstFileW
InternetFindNextFileW
FtpRenameFileW
InternetQueryOptionW
HttpOpenRequestW
InternetSetOptionExW
InternetOpenW
HttpSendRequestW
FtpGetFileW
InternetGetLastResponseInfoW
InternetReadFile
InternetCrackUrlW
GopherCreateLocatorW
HttpSendRequestExW
FtpPutFileW
FtpOpenFileW
InternetSetFilePointer
InternetOpenUrlW
FtpDeleteFileW
InternetCloseHandle
InternetGetCookieW
InternetQueryDataAvailable
InternetWriteFile
FtpCreateDirectoryW

msvcrt

wcscmp
_open_osfhandle
_msize
ftell
_get_osfhandle
wcsspn
time
swprintf
fgetws
_expand
_endthreadex
realloc
wcscspn
_wsplitpath
fwrite
fputws
wcsncpy
wcsftime
_CxxThrowException
memmove
fseek
_fdopen
fread
_ultow
wcstol
wcslen
_ltow
wcsrchr
wcsncmp
modf
_wtol
_wfullpath
wcsstr
__CxxFrameHandler
malloc
iswspace
_adjust_fdiv
ceil
wcschr
wcstoul
abort
wcstod
wcscpy
clearerr
free
__dllonexit
__argc
_wcsnicmp
_snwprintf
_wtoi
_wcsdup
mktime
_initterm
fclose
calloc
localtime
fflush
_beginthreadex
gmtime
__doserrno
_wcsupr
wcspbrk
_purecall
__wargv
iswdigit
vswprintf
_itow
_wcslwr
floor
_wcsrev
_onexit
_except_handler3

gdi32

EnumFontFamiliesExW
GetMapMode
TextOutW
CloseMetaFile
SetMapMode
SetWindowOrgEx
RealizePalette
GetTextExtentPoint32W
EndDoc
CreateCompatibleBitmap
GetViewportOrgEx
PtVisible
PolyBezierTo
GetClipBox
Escape
StartPage
SetColorAdjustment
CreateFontW
DeleteMetaFile
SetAbortProc
Rectangle
SetWindowExtEx
CreateRectRgn
SetViewportOrgEx
GetBkColor
SelectObject
SetArcDirection
ExtSelectClipRgn
ExtCreatePen
CreateMetaFileW
GetStretchBltMode
CreatePatternBrush
CreateBitmap
GetPolyFillMode
SelectClipRgn
IntersectClipRect
GetWindowExtEx
EnumFontFamiliesW
SetBkColor
CreateCompatibleDC
PolylineTo
GetDeviceCaps
RestoreDC
SetTextJustification
GetViewportExtEx
SetPolyFillMode
SetTextCharacterExtra
GetCurrentPositionEx
PlayMetaFileRecord
ScaleViewportExtEx
GetTextMetricsW
EndPage
GetTextExtentPoint32A
LPtoDP
DeleteObject
SetMapperFlags
OffsetRgn
SetViewportExtEx
ArcTo
UnrealizeObject
LineTo
CreateSolidBrush
GetROP2
GetPaletteEntries
OffsetWindowOrgEx
ScaleWindowExtEx
OffsetViewportOrgEx
SetBrushOrgEx
MoveToEx
GetNearestColor
SaveDC
AbortDoc
CreatePen
PlayMetaFile
ExcludeClipRect
SetStretchBltMode
SetTextColor
GetClipRgn
SelectPalette
CopyMetaFileW
CreateDIBPatternBrushPt
OffsetClipRgn
GetBkMode
GetWindowOrgEx
CombineRgn
DeleteDC
GetTextColor
SetROP2
StretchDIBits
GetTextFaceW
GetObjectW
CreateFontIndirectW
BitBlt
GetObjectType
StartDocW
PatBlt
CreatePalette
GetTextAlign
CreateRectRgnIndirect
CreateHatchBrush
GetStockObject
EnumMetaFile
PolyDraw
GetPixel
SetBkMode
DPtoLP
ExtTextOutW
SetRectRgn
GetCharWidthW
CreateDCW
RectVisible
SelectClipPath
SetTextAlign

activeds

FreeADsMem
DllGetClassObject

Sections

.text
Size: 512B - Virtual size: 456B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 15KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 80KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a7f57d9ae65e4c4b286b5f255617e216

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

ole32

user32

cmdial32

kernel32

wininet

msvcrt

gdi32

activeds

Sections

.text Size: 512B - Virtual size: 456B

.idata Size: 17KB - Virtual size: 16KB

.rsrc Size: 15KB - Virtual size: 15KB

.data Size: - Virtual size: 80KB

.rdata Size: 5KB - Virtual size: 5KB

.text
Size: 512B - Virtual size: 456B

.idata
Size: 17KB - Virtual size: 16KB

.rsrc
Size: 15KB - Virtual size: 15KB

.data
Size: - Virtual size: 80KB

.rdata
Size: 5KB - Virtual size: 5KB