ea38b87469e0e85ceebe54e3b3453cc1_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

ea38b87469e0e85ceebe54e3b3453cc1_JaffaCakes118
Size

476KB
MD5

ea38b87469e0e85ceebe54e3b3453cc1
SHA1

e14fb05ddfde45e402d5337bf1307bece5f0c904
SHA256

461dd7695bf02e12bda06aa12d2f194b71aa6981110607ffc3610e14cbcecb14
SHA512

995e32133468060e61562b9f25d3fe3ca7dec043f71dfd4e107d756ed0a3d14ded9bf2de81a41239e25539b656d14982588e80c9bd78c4a128e6195f0ce5fb55
SSDEEP

6144:fB0ygMhT9Kg+kCShr+TJJUA1GGm52mBEhf+1Y2YbuujZPW:fOyxBKg+kb4JJ71Hm5v821e9ZPW

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
ea38b87469e0e85ceebe54e3b3453cc1_JaffaCakes118

Files

ea38b87469e0e85ceebe54e3b3453cc1_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5b4c4544e4fc92f8c7af3ad3e42350a1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CompareStringA
CompareStringW
GetModuleFileNameA
GlobalUnlock
GlobalLock
LockResource
LoadResource
SetEnvironmentVariableA
LeaveCriticalSection
TlsAlloc
GetCurrentThread
lstrcmpiA
GlobalDeleteAtom
GlobalAlloc
ReadFile
CreateFileA
GetCurrentProcess
DuplicateHandle
GetLastError
GetProfileStringA
IsBadCodePtr
IsBadReadPtr
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
SetUnhandledExceptionFilter
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetVersionExA
GetEnvironmentVariableA
HeapSize
HeapReAlloc
GetFileType
SetStdHandle
GetACP
GetLocalTime
GetSystemTime
GetTimeZoneInformation
RaiseException
TerminateProcess
ExitProcess
GetCommandLineA
GetStartupInfoA
HeapAlloc
HeapFree
RtlUnwind
GetOEMCP
GetCPInfo
SetErrorMode
SystemTimeToFileTime
LocalFileTimeToFileTime
GetFileSize
GetProcessVersion
GetCurrentDirectoryA
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
GlobalReAlloc
lstrlenA
TlsFree
GlobalHandle
DeleteCriticalSection
InitializeCriticalSection
lstrcpyA
LocalAlloc
CloseHandle
SizeofResource
GlobalFlags
GetProfileIntA
GetDiskFreeSpaceA
LocalFree
GetDriveTypeA
GetTempFileNameA
GetFileTime
SetFileTime
SetLastError
GetFileAttributesA
MulDiv
WideCharToMultiByte
FileTimeToLocalFileTime
FileTimeToSystemTime
WritePrivateProfileStringA
InterlockedDecrement
InterlockedIncrement
FreeLibrary
GetPrivateProfileStringA
GetPrivateProfileIntA
GlobalGetAtomNameA
GetVersion
lstrcatA
GetModuleHandleA
GlobalAddAtomA
GlobalFindAtomA
GetStringTypeExA
GetShortPathNameA
GetThreadLocale
GetVolumeInformationA
GetFullPathNameA
lstrcpynA
MultiByteToWideChar
FindFirstFileA
FindClose
DeleteFileA
LoadLibraryA
GetProcAddress
UnlockFile
MoveFileA
SetEndOfFile
SetFilePointer
LockFile
FlushFileBuffers
GlobalFree
WriteFile
GetCurrentThreadId
FindResourceA
lstrcmpA

user32

SetCursorPos
AppendMenuA
RedrawWindow
DeleteMenu
GetSystemMenu
KillTimer
WindowFromPoint
GetClassNameA
InsertMenuA
GetMenuStringA
GetSysColorBrush
LoadStringA
DestroyIcon
GetTabbedTextExtentA
InvertRect
LockWindowUpdate
LoadMenuA
DestroyMenu
GetDesktopWindow
TranslateAcceleratorA
LoadAcceleratorsA
SetCapture
GetDCEx
ReleaseCapture
InflateRect
SetRectEmpty
IsRectEmpty
FindWindowA
PtInRect
FillRect
SetRect
DestroyCursor
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
SetDlgItemTextA
SendDlgItemMessageA
MapWindowPoints
GetSysColor
SetFocus
AdjustWindowRectEx
EqualRect
DeferWindowPos
GetClientRect
CopyRect
EndDeferWindowPos
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetScrollPos
SetScrollPos
GetTopWindow
IsChild
GetCapture
GetMenu
GetMenuItemCount
GetSubMenu
BringWindowToTop
SetParent
SetWindowPlacement
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
DefWindowProcA
CreateWindowExA
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetForegroundWindow
SetForegroundWindow
GetWindow
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
IntersectRect
SystemParametersInfoA
GetWindowPlacement
CharUpperA
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetMessageA
TranslateMessage
DispatchMessageA
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
PeekMessageA
GetCursorPos
SetWindowsHookExA
GetLastActivePopup
MessageBoxA
SetCursor
ShowOwnedPopups
PostQuitMessage
GetNextDlgTabItem
EndDialog
SetActiveWindow
IsWindow
GetSystemMetrics
CreateDialogIndirectParamA
DestroyWindow
GetWindowLongA
GetDlgItem
IsWindowEnabled
SetTimer
LoadCursorA
GetParent
GetClassInfoA
LoadIconA
wsprintfA
IsZoomed
IsIconic
OffsetRect
GetMessagePos
ScreenToClient
LoadBitmapA
InvalidateRect
SendMessageA
ClientToScreen
GetWindowRect
PostMessageA
GetActiveWindow
GetDC
ReleaseDC
EnableWindow
UpdateWindow
UnpackDDElParam
ReuseDDElParam
SetMenu
GetMenuItemID
SetScrollRange
GetScrollRange
RegisterClassA
WinHelpA
BeginDeferWindowPos
DefDlgProcA
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
IsWindowUnicode
CharNextA

gdi32

GetPaletteEntries
GetObjectA
Rectangle
CreatePalette
RealizePalette
SelectPalette
LPtoDP
DPtoLP
GetDeviceCaps
RoundRect
CreateFontIndirectA
GetTextExtentPoint32A
SelectObject
BitBlt
Ellipse
CreateBitmap
CreateCompatibleDC
SetTextColor
SetBkColor
GetClipBox
StartDocA
SaveDC
DeleteDC
GetStockObject
SetBkMode
RestoreDC
SetROP2
SetStretchBltMode
SetPolyFillMode
SetViewportOrgEx
OffsetViewportOrgEx
SetMapMode
ScaleViewportExtEx
SetWindowOrgEx
SetViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
MoveToEx
LineTo
SetTextAlign
SetTextJustification
StretchDIBits
DeleteObject
CreateRectRgn
GetViewportExtEx
GetWindowExtEx
CreatePen
CreateSolidBrush
CreatePatternBrush
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
PatBlt
GetViewportOrgEx
AbortDoc
EndDoc
EndPage
StartPage
SetAbortProc
CreateDCA
UnrealizeObject
CreateRectRgnIndirect
GetTextMetricsA
CreateCompatibleBitmap
GetCharWidthA
CreateFontA
GetBkColor
GetNearestColor
GetTextColor
GetStretchBltMode
GetPolyFillMode
GetTextAlign
GetBkMode
GetROP2
GetTextFaceA
GetWindowOrgEx
SetRectRgn
CombineRgn
CreateDIBitmap
GetTextExtentPointA
GetNearestPaletteIndex
GetCurrentPositionEx

comdlg32

GetSaveFileNameA
PrintDlgA
GetOpenFileNameA
GetFileTitleA
CommDlgExtendedError

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

RegQueryValueA
RegSetValueA
RegCreateKeyA
GetFileSecurityA
SetFileSecurityA
RegEnumKeyA
RegQueryValueExA
RegDeleteKeyA
RegDeleteValueA
RegSetValueExA
RegOpenKeyExA
RegCreateKeyExA
RegOpenKeyA
RegCloseKey

shell32

ExtractIconA
DragQueryFileA
DragFinish
DragAcceptFiles
SHGetFileInfoA

comctl32

ord17
ImageList_GetImageCount
ImageList_AddMasked
ImageList_Create
ImageList_Destroy

Sections

.text
Size: 252KB - Virtual size: 249KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 56KB - Virtual size: 54KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 24KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.mrdata
Size: 76KB - Virtual size: 76KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

5b4c4544e4fc92f8c7af3ad3e42350a1

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

Sections

.text Size: 252KB - Virtual size: 249KB

.rdata Size: 56KB - Virtual size: 54KB

.data Size: 24KB - Virtual size: 38KB

.rsrc Size: 64KB - Virtual size: 61KB

.mrdata Size: 76KB - Virtual size: 76KB

.text
Size: 252KB - Virtual size: 249KB

.rdata
Size: 56KB - Virtual size: 54KB

.data
Size: 24KB - Virtual size: 38KB

.rsrc
Size: 64KB - Virtual size: 61KB

.mrdata
Size: 76KB - Virtual size: 76KB