eac53f3f6078b8c1ff6e60d63a8d5482_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

eac53f3f6078b8c1ff6e60d63a8d5482_JaffaCakes118
Size

529KB
MD5

eac53f3f6078b8c1ff6e60d63a8d5482
SHA1

b5cfd64884d295b7b2d3b1626e1146c62b19db08
SHA256

d69832863be30bc74a17f95967378d0d1493458f7d8fabaf23a0539dcc316b82
SHA512

7449bef80797cb05ee1e0e5c3950ba2f877a922d1206ad2c123cccfc6cc934ea24c00e1eac21cd2b867aef12456cab6ef23c042591d101b1b991310969b655a0
SSDEEP

12288:6JwtfO/Ovo23XnDJrTjq2oFX6POwOfbw+CX3MMnMMMMMt17:6JwVqOvRnDJDq29OwAq3MMnMMMMMt17

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
eac53f3f6078b8c1ff6e60d63a8d5482_JaffaCakes118

Files

eac53f3f6078b8c1ff6e60d63a8d5482_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c8ad23eb9aefa7e7353107fd08445639

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

ImageList_SetOverlayImage
CreatePropertySheetPageW
PropertySheetW
ImageList_Destroy
InitCommonControlsEx
ImageList_Draw
ImageList_LoadImageW

advapi32

GetSidIdentifierAuthority
InitializeAcl
MakeSelfRelativeSD
RegCloseKey
SetSecurityDescriptorGroup
RegEnumKeyExW
GetAce
SetSecurityDescriptorSacl
MapGenericMask
GetUserNameW
GetSecurityDescriptorLength
RegCreateKeyExW
GetSecurityDescriptorOwner
IsValidSid
GetSecurityDescriptorDacl
OpenThreadToken
GetSidSubAuthorityCount
SetSecurityDescriptorOwner
GetSecurityDescriptorControl
InitializeSecurityDescriptor
AddAccessAllowedAce
GetSidLengthRequired
OpenProcessToken
GetSidSubAuthority
GetAclInformation
SetSecurityDescriptorDacl
RegSetValueExW
RegDeleteValueW
LookupAccountNameW
RegDeleteKeyW
RegOpenKeyExW
GetSecurityDescriptorGroup
GetTokenInformation
GetLengthSid
AddAce
InitializeSid
LookupAccountSidW
RegQueryValueExW

ole32

CoTaskMemFree
CoTaskMemAlloc
StringFromGUID2
CLSIDFromString
CoInitializeEx
StringFromIID
CoUninitialize
CoCreateInstance

ddraw

DirectDrawCreate

gdi32

BitBlt
SetBkMode
CreateBitmap
GetDeviceCaps
GetPixel
ExtTextOutW
SetTextColor
SelectObject
DeleteDC
CreateCompatibleDC
GetObjectW
CreateFontIndirectW
SetStretchBltMode
PatBlt
GetTextMetricsW
StretchBlt
GetBkColor
DeleteObject
GetTextExtentPointW
SetBkColor

kernel32

GetLocaleInfoW
GetCurrentProcess
IsBadStringPtrW
VirtualAlloc
EnterCriticalSection
LoadResource
CreateEventW
GlobalAlloc
DisableThreadLibraryCalls
ResetEvent
LockResource
GetTickCount
GetCurrentThreadId
HeapFree
lstrcpyW
InterlockedIncrement
CreateThread
GlobalFree
LocalFree
DeleteCriticalSection
GetProcessHeap
HeapAlloc
GetWindowsDirectoryW
GetCurrentThread
GlobalUnlock
MultiByteToWideChar
GetLastError
IsBadReadPtr
GlobalLock
lstrlenA
TerminateThread
LocalAlloc
IsBadWritePtr
SetEvent
InterlockedDecrement
DuplicateHandle
GetLocalTime
WaitForSingleObject
GetModuleHandleW
lstrlenW
Sleep
PulseEvent
FlushInstructionCache
lstrcmpW
TryEnterCriticalSection
FindResourceW
MulDiv
LeaveCriticalSection
CloseHandle
InitializeCriticalSection
OutputDebugStringW

shell32

ShellExecuteW

user32

GetActiveWindow
SetWindowLongW
GetSysColorBrush
InvalidateRect
DestroyMenu
TrackPopupMenu
EndPaint
LoadCursorW
GetScrollInfo
GetWindowTextW
GetSysColor
MapWindowPoints
SetFocus
GetWindowTextLengthW
MoveWindow
wsprintfW
ShowWindow
LoadStringW
IsDialogMessageW
GetSubMenu
GetWindowLongW
GetCursorPos
LoadBitmapW
PostMessageW
SetTimer
SetWindowTextW
CallWindowProcW
GetClassInfoExW
GetDlgItem
InflateRect
CreateDialogParamW
PeekMessageW
DefWindowProcW
GetClassLongW
KillTimer
IsWindow
DispatchMessageW
CheckRadioButton
MessageBoxW
EnableWindow
LoadIconW
MsgWaitForMultipleObjects
GetClientRect
ReleaseDC
SetParent
CheckMenuItem
SetRectEmpty
PostThreadMessageW
ScreenToClient
UpdateWindow
RedrawWindow
RegisterClassExW
DefDlgProcW
ClientToScreen
SetCursor
BeginPaint
SetDlgItemTextW
IsDlgButtonChecked
FindWindowExW
GetWindowRect
WinHelpW
SetScrollInfo
PtInRect
SendDlgItemMessageW
CheckDlgButton
SetClassLongW
OffsetRect
ValidateRect
GetParent
GetMenuItemCount
EndDialog
DestroyWindow
GetMenuItemID
IsWindowEnabled
LoadMenuW
DialogBoxParamW
SendMessageW
SetWindowPos
TranslateMessage
GetDC
GetDialogBaseUnits
CreateWindowExW
EnableMenuItem
DrawTextW

ntdll

NtTerminateThread
NtQueryTimer
RtlAdjustPrivilege
RtlAddAccessAllowedObjectAce
NtQuerySemaphore

rtutils

TraceDumpExA

msvcrt

wcsncmp
wcscpy
_wcsicmp
__dllonexit
wcslen
wcschr
__CxxFrameHandler
wcscmp
wcscat
wcsstr
wcstol
wcstoul
wcsncat
_wcsicoll
_wtoi
_initterm
malloc
wcspbrk
_snwprintf
swprintf
wcscspn
_ltow
_adjust_fdiv
free
_wcsupr
_ftol
wcsspn
_wtol
_purecall
_onexit
realloc
wcsncpy

Sections

.text
Size: 51KB - Virtual size: 50KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 436KB - Virtual size: 1.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 28KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 6KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c8ad23eb9aefa7e7353107fd08445639

Headers

File Characteristics

Imports

comctl32

advapi32

ole32

ddraw

gdi32

kernel32

shell32

user32

ntdll

rtutils

msvcrt

Sections

.text Size: 51KB - Virtual size: 50KB

.data Size: 436KB - Virtual size: 1.9MB

.rsrc Size: 28KB - Virtual size: 28KB

.rdata Size: 5KB - Virtual size: 5KB

.idata Size: 6KB - Virtual size: 6KB

.text
Size: 51KB - Virtual size: 50KB

.data
Size: 436KB - Virtual size: 1.9MB

.rsrc
Size: 28KB - Virtual size: 28KB

.rdata
Size: 5KB - Virtual size: 5KB

.idata
Size: 6KB - Virtual size: 6KB