e9d557fa277b9fa2802612c8dfb4874f_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

e9d557fa277b9fa2802612c8dfb4874f_JaffaCakes118
Size

508KB
MD5

e9d557fa277b9fa2802612c8dfb4874f
SHA1

f2750221b4e9b2c6c304d6dd9d6aba9e5ab39d46
SHA256

ad0e1852ddb401ff431897c9797db8cb55b4f1b27d173964892d4b055907bd34
SHA512

97608568fd9482589297f84ce4795f2b4d3bd27dda5a9b59e33b322b92a5cc56b25cee698e7a98f8961feb891760057454bdddb02f83da76ac34e40fa0b11040
SSDEEP

12288:Q1tesqnFelf68RdRiJvnG0gEaOOty1ETT7h3IMMnMMMMMQ1:Q1tAmC2RiJO0gFtKUXh3IMMnMMMMMQ1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e9d557fa277b9fa2802612c8dfb4874f_JaffaCakes118

Files

e9d557fa277b9fa2802612c8dfb4874f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9b3271af24c30a6416b97d59af57bf08

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

accept
WSAConnect
recv

samlib

SamConnect

ddraw

DirectDrawEnumerateA

ole32

OleSave
OleLoad

advapi32

ReportEventA
RegEnumValueW
RegCreateKeyW
RegisterEventSourceA
OpenProcessToken
RegOpenKeyW
RegEnumKeyA
RegDeleteValueA
RegSetValueA
LookupPrivilegeValueA
RegSetValueExA
AdjustTokenPrivileges
RegDeleteKeyA
RegEnumKeyW
RegEnumValueA
RegOpenKeyA
RegCloseKey
RegOpenKeyExA
InitializeSecurityDescriptor
RegDeleteKeyW
RegQueryInfoKeyA
RegDeleteValueW
RegQueryValueA
RegQueryValueExW
SetSecurityDescriptorDacl
DeregisterEventSource
RegSetValueExW
RegQueryValueExA
RegCreateKeyA

kernel32

VirtualAlloc
MulDiv
GetCurrentProcess
GetVersion
SetStdHandle
WaitForSingleObject
HeapReAlloc
CreateFileA
LCMapStringW
GetFileTime
SetLocalTime
GetStringTypeA
SearchPathA
GetFullPathNameA
SetEndOfFile
SizeofResource
GetProcAddress
VirtualProtect
ExitProcess
WideCharToMultiByte
GetSystemDefaultLCID
SetFileTime
lstrcpyA
IsDBCSLeadByte
LoadResource
GlobalReAlloc
GlobalSize
GetStdHandle
GetCPInfo
GetCurrentThreadId
GetSystemDirectoryA
LeaveCriticalSection
IsBadReadPtr
DeleteFileA
GetUserDefaultLangID
SetEvent
GetTickCount
ResetEvent
GetOEMCP
CreateEventA
ReleaseSemaphore
lstrcatA
_lclose
InterlockedDecrement
GetStartupInfoA
lstrlenA
GetEnvironmentStringsW
SetErrorMode
GetDateFormatA
GetCurrentProcessId
CreateProcessA
WinExec
FlushFileBuffers
GetFileType
FreeLibrary
HeapAlloc
_lread
LockResource
HeapDestroy
IsBadCodePtr
HeapSize
UnhandledExceptionFilter
TerminateProcess
GlobalLock
TlsFree
GetACP
WriteFile
_llseek
LoadLibraryExA
GetTempFileNameA
GetVolumeInformationA
LoadLibraryA
ReadFile
HeapFree
GetSystemDefaultLangID
GetStringTypeW
FindResourceA
DuplicateHandle
lstrcpynA
SetHandleCount
SetFileAttributesA
CompareStringW
ExitThread
CreateProcessW
VirtualFree
SetCurrentDirectoryA
HeapCreate
GetExitCodeProcess
GetUserDefaultLCID
LockFile
GetModuleFileNameW
FileTimeToLocalFileTime
RemoveDirectoryA
FindNextFileA
CompareStringA
TlsSetValue
FreeResource
GetSystemTime
GetLastError
GetStringTypeExA
GlobalFree
RaiseException
FileTimeToSystemTime
GetDriveTypeA
SetFilePointer
lstrcmpiA
TlsGetValue
FindFirstFileA
GetTimeZoneInformation
GlobalAddAtomA
GetTempPathA
InitializeCriticalSection
DeleteCriticalSection
GetSystemInfo
GetFileAttributesA
Sleep
GetShortPathNameA
EnterCriticalSection
_lwrite
SystemTimeToFileTime
GetModuleHandleA
lstrcmpiW
FindClose
VirtualQuery
GetLocaleInfoA
CreateSemaphoreA
GlobalHandle
GlobalDeleteAtom
GetVersionExA
CreateThread
GetModuleFileNameA
GetLocalTime
GlobalAlloc
FreeEnvironmentStringsW
UnlockFile
CloseHandle
FormatMessageW
FormatMessageA
FreeEnvironmentStringsA
lstrcmpA
LCMapStringA
GetCurrentDirectoryA
InterlockedIncrement
GetCommandLineA
GetProfileStringA
FlushInstructionCache
SetLastError
GlobalUnlock
TlsAlloc
GetWindowsDirectoryA
RtlUnwind
MoveFileA
GetEnvironmentStrings
MultiByteToWideChar
SetEnvironmentVariableA
ResumeThread
CreateDirectoryA

user32

RegisterClassExA
GetClassNameA
DdeNameService
SetWindowTextA
SetScrollRange
CopyAcceleratorTableA
GetSysColor
GetSystemMetrics
DestroyIcon
GetDesktopWindow
DdeSetUserHandle
BeginDeferWindowPos
GetClipboardData
DdeAbandonTransaction
IsDialogMessageA
GetCursorPos
ScreenToClient
EnableWindow
DdeCmpStringHandles
LockWindowUpdate
DestroyMenu
RegisterClipboardFormatA
SetWindowRgn
DrawIcon
SendDlgItemMessageA
DdeFreeDataHandle
IsChild
RemovePropA
MapWindowPoints
GetMenu
GetClassInfoA
CreateCaret
DefMDIChildProcA
SetMenuDefaultItem
InsertMenuA
IsRectEmpty
CharPrevA
SetCapture
CallNextHookEx
UnhookWindowsHookEx
SetMenuItemInfoA
GetMenuStringA
WaitForInputIdle
GetClassInfoExA
DeferWindowPos
DrawMenuBar
AppendMenuA
EndPaint
MessageBoxIndirectA
SetKeyboardState
DestroyAcceleratorTable
CopyRect
LoadStringA
SystemParametersInfoA
AdjustWindowRectEx
MessageBeep
LoadCursorA
GetCaretPos
FillRect
GetClipboardFormatNameA
SetWindowLongA
GetDoubleClickTime
ClipCursor
GetWindowLongA
GetDCEx
GetActiveWindow
GetWindowDC
IsZoomed
OpenClipboard
GetPropA
MoveWindow
CharNextA
CallWindowProcA
SetForegroundWindow
LoadBitmapA
DestroyCaret
GetWindowThreadProcessId
VkKeyScanW
DdeUninitialize
EnumThreadWindows
PeekMessageA
GetScrollPos
CharToOemBuffA
UnregisterClassA
InflateRect
GetMenuItemInfoA
CharLowerBuffW
TrackPopupMenu
CreateMenu
DialogBoxParamA
CreateAcceleratorTableA
GetSystemMenu
HideCaret
wsprintfA
CharToOemA
OemToCharA
GetLastActivePopup
GetSubMenu
PtInRect
PostThreadMessageA
GetCursor
GetDC
EmptyClipboard
GetScrollInfo
RemoveMenu
FindWindowA
GetClientRect
GetMessagePos
SetCursor
GetQueueStatus
SetCaretPos
GetKeyState
DdeGetData
GetParent
CharUpperBuffA
GetMessageTime
DrawTextA
DdeInitializeA
EnableMenuItem
DdeDisconnect
keybd_event
DdeClientTransaction
SetWindowsHookExA
PeekMessageW
VkKeyScanA
CloseClipboard
LoadAcceleratorsA
SetCursorPos
ReleaseCapture
WaitMessage
WinHelpA
CreateIcon
SetParent
GetTabbedTextExtentA
ShowCaret
GetWindow
ShowScrollBar
WindowFromPoint
DeleteMenu
CreatePopupMenu
EnumClipboardFormats
IntersectRect
SetPropA
FindWindowW
SetRect
GetUpdateRgn
SetDlgItemTextA
GetAsyncKeyState
DrawFrameControl
GetUpdateRect
EndDialog
DdeQueryConvInfo
MsgWaitForMultipleObjects
PostQuitMessage
GetFocus
CreateWindowExA
CreateCursor
InvalidateRect
SubtractRect
PostMessageW
SetMenu
KillTimer
GetKeyboardState
GetWindowRect
RegisterClassA
FrameRect
DdePostAdvise
ToAscii
CharUpperBuffW
GetIconInfo
GetMenuItemCount
ShowWindow
DdeCreateDataHandle
GetDlgItem
UpdateWindow
DdeConnect
EndDeferWindowPos
GetKeyboardLayout
TranslateMDISysAccel
DefFrameProcA
GetMenuState
MessageBoxA
SetFocus
DdeCreateStringHandleA
CharLowerBuffA
CharLowerA
OffsetRect
DdeQueryStringA
DispatchMessageA
CreateDialogParamA
SetWindowsHookExW
EqualRect
CharUpperA
BeginPaint
SetScrollInfo
IsWindowVisible
GetWindowRgn
TabbedTextOutA
DdeGetLastError
DrawFocusRect
ClientToScreen
SetClipboardData
ReleaseDC
IsIconic
IsCharAlphaA
IsWindowEnabled
BringWindowToTop
CheckMenuItem
GetMenuItemID
SetWindowContextHelpId
LoadIconA
GetWindowTextLengthA
DestroyWindow
GetCaretBlinkTime
SetScrollPos
GetCapture
PostMessageA
SetTimer
DdeFreeStringHandle
DefWindowProcA
SendMessageA
SetActiveWindow
TranslateMessage
SetWindowPos
LoadImageA
GetForegroundWindow
InvalidateRgn
IsClipboardFormatAvailable
AdjustWindowRect
ModifyMenuA
DestroyCursor
GetWindowTextA
AttachThreadInput
IsWindow
ShowCursor

Sections

.text
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 457KB - Virtual size: 1.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 33KB - Virtual size: 32KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9b3271af24c30a6416b97d59af57bf08

Headers

File Characteristics

Imports

ws2_32

samlib

ddraw

ole32

advapi32

kernel32

user32

Sections

.text Size: 1KB - Virtual size: 1KB

.data Size: 457KB - Virtual size: 1.0MB

.idata Size: 11KB - Virtual size: 10KB

.rsrc Size: 33KB - Virtual size: 32KB

.rdata Size: 5KB - Virtual size: 4KB

.text
Size: 1KB - Virtual size: 1KB

.data
Size: 457KB - Virtual size: 1.0MB

.idata
Size: 11KB - Virtual size: 10KB

.rsrc
Size: 33KB - Virtual size: 32KB

.rdata
Size: 5KB - Virtual size: 4KB