ea0c9fe52f6f5fe6b5e17a5bb7fb75f4_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

ea0c9fe52f6f5fe6b5e17a5bb7fb75f4_JaffaCakes118
Size

672KB
MD5

ea0c9fe52f6f5fe6b5e17a5bb7fb75f4
SHA1

df5fae7700547d5d65976db184c62b87473da82c
SHA256

c2c22176068f9cfbf780101f5cc2b025926faa574656c8ba3fb32d3c25eab438
SHA512

a18b435393b6de6f223dd3cf9ede9aab48ad4924510e7fbe25aeb4dceea28549ade44057d7d2e26d8a9e2deb81d8c71573b0361f359bb6ac145550abecb0ee1e
SSDEEP

12288:bUILKCNARjwrJ8//CIrqs8h3bfytwX2+N:jS5qJ8/Jrqs2utwX2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ea0c9fe52f6f5fe6b5e17a5bb7fb75f4_JaffaCakes118

Files

ea0c9fe52f6f5fe6b5e17a5bb7fb75f4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

e6485047c948980e4aff0cef8e4ac571

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

crypt32

CryptStringToBinaryA

kernel32

TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
VirtualFree
HeapDestroy
HeapCreate
GetStdHandle
GetACP
LCMapStringA
LCMapStringW
Sleep
GetStringTypeA
GetStringTypeW
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
QueryPerformanceCounter
GetSystemTimeAsFileTime
GetTimeZoneInformation
GetConsoleCP
GetConsoleMode
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetEnvironmentVariableA
HeapSize
FindResourceA
SizeofResource
LockResource
LoadResource
WideCharToMultiByte
GetProcAddress
LoadLibraryW
GetVersion
InterlockedExchange
MultiByteToWideChar
CompareStringW
CompareStringA
lstrlenW
GetStringTypeExA
lstrcmpiA
lstrlenA
GetLastError
LoadLibraryA
SetLastError
GetPrivateProfileIntA
WritePrivateProfileStringA
GetPrivateProfileStringA
GlobalAddAtomA
GlobalGetAtomNameA
GetModuleHandleA
GetCurrentProcessId
GlobalUnlock
GlobalLock
GetVersionExA
lstrcmpW
FreeLibrary
GlobalDeleteAtom
GlobalFindAtomA
GetCurrentThreadId
FreeResource
GetModuleFileNameW
ExitProcess
GetStartupInfoA
GetProcessHeap
GetCommandLineA
HeapReAlloc
HeapFree
VirtualQuery
GetSystemInfo
VirtualAlloc
VirtualProtect
RaiseException
HeapAlloc
RtlUnwind
SetErrorMode
LocalFileTimeToFileTime
GetCurrentDirectoryA
FileTimeToLocalFileTime
SystemTimeToFileTime
FileTimeToSystemTime
GetOEMCP
GetCPInfo
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
LocalAlloc
GlobalFlags
CreateFileA
GetShortPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
GetCurrentProcess
DuplicateHandle
GetThreadLocale
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
DeleteFileA
MoveFileA
GetDiskFreeSpaceA
GetFullPathNameA
GetTempFileNameA
GetFileTime
SetFileTime
GetFileAttributesA
GetTickCount
CloseHandle
GetCurrentThread
ConvertDefaultLocale
GetModuleFileNameA
EnumResourceLanguagesA
GetLocaleInfoA
lstrcmpA
InterlockedIncrement
GlobalFree
CopyFileA
GlobalSize
GlobalAlloc
FormatMessageA
LocalFree
MulDiv
InterlockedDecrement

user32

CreateMenu
WindowFromPoint
DestroyIcon
CharNextA
InvalidateRgn
GetNextDlgGroupItem
PostThreadMessageA
FindWindowA
DrawIcon
SetWindowRgn
SetTimer
KillTimer
GetDCEx
LockWindowUpdate
TabbedTextOutA
GetSystemMenu
IsZoomed
GetMenuItemInfoA
InflateRect
FillRect
LoadCursorA
DestroyCursor
DeleteMenu
SetParent
ReleaseDC
CreateDialogIndirectParamA
GetNextDlgTabItem
EndDialog
RegisterClipboardFormatA
SetWindowContextHelpId
MapDialogRect
ShowOwnedPopups
TranslateMessage
GetCursorPos
PostQuitMessage
CopyAcceleratorTableA
SendNotifyMessageA
IsRectEmpty
InSendMessage
CountClipboardFormats
IsClipboardFormatAvailable
SetCapture
SetRect
MessageBeep
GetMenuStringA
AppendMenuA
InsertMenuA
RemoveMenu
MoveWindow
SetWindowTextA
IsDialogMessageA
SetDlgItemTextA
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapA
ModifyMenuA
GetMenuState
EnableMenuItem
CheckMenuItem
SendDlgItemMessageA
IsChild
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
GetTabbedTextExtentA
RemovePropA
GetWindowTextLengthA
GetWindowTextA
GetForegroundWindow
DispatchMessageA
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
MapWindowPoints
ScrollWindow
TrackPopupMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
SetForegroundWindow
MessageBoxA
GetClassInfoExA
RegisterClassA
ScreenToClient
DeferWindowPos
GetScrollInfo
SetScrollInfo
PtInRect
DefWindowProcA
CallWindowProcA
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
GetSystemMetrics
RegisterWindowMessageA
UnpackDDElParam
ReuseDDElParam
DestroyMenu
GetClassNameA
GetSysColor
WinHelpA
SetFocus
GetWindowThreadProcessId
IsWindowEnabled
GetFocus
EqualRect
GetDlgItem
GetKeyState
GetDlgCtrlID
LoadIconA
SendMessageA
UpdateWindow
EnableWindow
GetSubMenu
LoadMenuA
ClientToScreen
GetParent
SetCursor
PeekMessageA
GetCapture
ReleaseCapture
LoadAcceleratorsA
SetActiveWindow
IsWindowVisible
IsIconic
InsertMenuItemA
CreatePopupMenu
GetClassInfoA
IntersectRect
SetRectEmpty
GetLastActivePopup
SetMenu
GetDesktopWindow
GetWindow
UnregisterClassA
GetSysColorBrush
EndPaint
BeginPaint
GetWindowDC
GrayStringA
DrawTextExA
GetPropA
DrawTextA
CharUpperA
CloseClipboard
GetClipboardData
CopyRect
OffsetRect
PostMessageA
GetClientRect
GetDC
InvalidateRect
ValidateRect
ShowScrollBar
OpenClipboard
DefFrameProcA
GetMenu
DefMDIChildProcA
GetMenuItemID
GetMenuItemCount
CreateWindowExA
DrawMenuBar
GetActiveWindow
BringWindowToTop
TranslateMDISysAccel
TranslateAcceleratorA
IsWindow
SetWindowLongA
GetWindowLongA
SetWindowPos
RedrawWindow
AdjustWindowRectEx
ShowWindow
GetMessageA

gdi32

GetWindowExtEx
StartDocA
StartPage
EndPage
SetAbortProc
AbortDoc
EndDoc
DeleteDC
CreatePen
GetViewportOrgEx
Rectangle
PatBlt
ExtTextOutA
SelectObject
GetTextMetricsA
DeleteObject
GetCharWidthA
CreateFontA
StretchDIBits
SaveDC
RestoreDC
SetBkMode
SetPolyFillMode
SetROP2
SetStretchBltMode
SetMapMode
ExcludeClipRect
IntersectClipRect
LineTo
MoveToEx
SetTextAlign
SelectClipRgn
CreateRectRgn
GetViewportExtEx
GetPixel
GetWindowOrgEx
RectVisible
TextOutA
Escape
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
GetCurrentPositionEx
ExtSelectClipRgn
CreatePatternBrush
CreateSolidBrush
CreateRectRgnIndirect
SetRectRgn
CombineRgn
GetMapMode
GetBkColor
GetTextColor
GetRgnBox
CreateEllipticRgn
LPtoDP
Ellipse
GetNearestColor
GetBkMode
GetPolyFillMode
GetROP2
GetStretchBltMode
GetTextAlign
GetTextFaceA
ScaleWindowExtEx
DPtoLP
CreateDCA
CopyMetaFileA
GetDeviceCaps
CreateBitmap
SetBkColor
SetTextColor
GetClipBox
GetTextExtentPoint32A
BitBlt
CreateCompatibleDC
CreateCompatibleBitmap
CreateFontIndirectA
GetStockObject
PtVisible
GetObjectA

comdlg32

GetFileTitleA

winspool.drv

GetJobA
OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

SetFileSecurityW
RegCreateKeyA
GetFileSecurityA
SetFileSecurityA
RegQueryValueA
RegEnumKeyA
RegOpenKeyA
RegSetValueA
RegDeleteKeyA
RegDeleteValueA
RegSetValueExA
RegQueryValueExA
RegOpenKeyExA
RegCreateKeyExA
RegCloseKey
CryptAcquireContextA

shell32

DragQueryFileA
DragAcceptFiles
ExtractIconA
SHGetFileInfoA
DragFinish

shlwapi

PathFindFileNameA
PathStripToRootA
PathFindExtensionA
PathIsUNCA

oledlg

ord11
ord1
ord5
ord4
ord8
ord3

ole32

OleGetIconOfClass
CreateItemMoniker
CreateGenericComposite
StgCreateDocfile
CreateFileMoniker
StgOpenStorage
StgIsStorageFile
OleRun
OleIsRunning
OleSetMenuDescriptor
CLSIDFromProgID
CLSIDFromString
OleUninitialize
CoFreeUnusedLibraries
OleInitialize
OleRegEnumVerbs
OleRegGetMiscStatus
CoDisconnectObject
GetRunningObjectTable
CoLockObjectExternal
OleGetClipboard
OleIsCurrentClipboard
OleFlushClipboard
CoGetClassObject
OleCreateLinkToFile
CoRevokeClassObject
CoRegisterMessageFilter
OleTranslateAccelerator
IsAccelerator
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleCreateLinkFromData
OleCreateFromData
OleLockRunning
CreateStreamOnHGlobal
OleSaveToStream
WriteClassStm
OleSave
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
OleDuplicateData
CoTaskMemAlloc
ReleaseStgMedium
CreateBindCtx
CoTreatAsClass
StringFromCLSID
ReadClassStg
ReadFmtUserTypeStg
OleRegGetUserType
WriteClassStg
WriteFmtUserTypeStg
SetConvertStg
CoTaskMemFree
OleSetContainedObject
OleCreateFromFile
GetHGlobalFromILockBytes
StgOpenStorageOnILockBytes
OleLoad
OleCreate
OleCreateStaticFromData

oleaut32

VariantChangeType
VariantInit
SysAllocStringLen
SysStringLen
SysFreeString
SysAllocStringByteLen
VariantCopy
SafeArrayDestroy
VariantTimeToSystemTime
SystemTimeToVariantTime
OleCreateFontIndirect
SysAllocString
VariantClear

Sections

.text
Size: 412KB - Virtual size: 409KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 204KB - Virtual size: 203KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e6485047c948980e4aff0cef8e4ac571

Headers

File Characteristics

Imports

crypt32

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

shlwapi

oledlg

ole32

oleaut32

Sections

.text Size: 412KB - Virtual size: 409KB

.rdata Size: 204KB - Virtual size: 203KB

.data Size: 16KB - Virtual size: 28KB

.rsrc Size: 36KB - Virtual size: 34KB

.text
Size: 412KB - Virtual size: 409KB

.rdata
Size: 204KB - Virtual size: 203KB

.data
Size: 16KB - Virtual size: 28KB

.rsrc
Size: 36KB - Virtual size: 34KB