ed33ee6ec886c2ccfa0194fbceea2f25_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

ed33ee6ec886c2ccfa0194fbceea2f25_JaffaCakes118
Size

116KB
MD5

ed33ee6ec886c2ccfa0194fbceea2f25
SHA1

3f12c86641bc57e910806141acf8d914916978bc
SHA256

f285666462d3726b51ee51833d6e658246d1f4a8b88256140f2d8f86955cbca6
SHA512

a9441b529783de7718f3ded5af6806134d5a9e5fb57c6aa4061f712beba9f84f58342b7b55d5e57de235d177594b40ab67d22dceb219f740a3514a550c6765e3
SSDEEP

3072:9uXF3M3UYlSzQKOnQvC4a7caIiXCXb1hT83YWw3r0r/zA9fQEmgvJ:ZUYlSmioJTUb7T3zbirs/f

Score

1^/10

Malware Config

Signatures

Files

ed33ee6ec886c2ccfa0194fbceea2f25_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b90936ec39f9ad19ac6adeb4a71e13bd

Code Sign

06:e2:bc:62:8e:28:f4:7d:b8:fd:0e:ea:7f:f3:37:50
Certificate

Issuer

CN=5r6Io0OJu3L2

Not Before

16-03-2012 07:53

Not After

31-12-2039 23:59

Subject

CN=5r6Io0OJu3L2

Extended Key Usages

ExtKeyUsageCodeSigning

c6:a7:f2:95:9f:a4:cb:df:c5:8b:fd:0d:a9:77:35:ba:06:8a:c6:48
Signer

Actual PE Digest

c6:a7:f2:95:9f:a4:cb:df:c5:8b:fd:0d:a9:77:35:ba:06:8a:c6:48

Digest Algorithm

sha1

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryW
CreateFileA
GetWindowsDirectoryA
lstrlenA
lstrcpyA
VirtualAlloc

user32

GetDoubleClickTime
RegisterClassW
ChangeDisplaySettingsA
SetFocus
ValidateRect
CharPrevExA
OpenInputDesktop
AllowSetForegroundWindow
OpenIcon
GetMenuInfo
GetGUIThreadInfo
GetDlgItemTextA
DrawStateA
DefMDIChildProcA
CreateDialogParamA
LoadCursorW
FindWindowA
UnregisterClassW
DrawFrame
EnumDisplaySettingsW
EnumDisplayDevicesA
GetScrollBarInfo
CreateMenu
UnhookWindowsHookEx
GetScrollRange
IsClipboardFormatAvailable
GetWindow
DestroyAcceleratorTable
OpenWindowStationA
ClientToScreen
SetWindowPos
InsertMenuA
EnumDisplaySettingsA
ActivateKeyboardLayout
EnumDesktopsA
DrawFrameControl
ChangeClipboardChain
InvertRect
CallMsgFilter
OpenWindowStationW
GetAltTabInfo
IMPGetIMEA
OemToCharA
FindWindowExA
GetOpenClipboardWindow
PostQuitMessage
CharPrevW
GetClientRect
GetClipboardFormatNameA
MessageBoxA
PeekMessageA
GetThreadDesktop
GetUpdateRect
GetWindowRgn
GrayStringA
CreateIcon
GetLastInputInfo
GetMenuContextHelpId
RegisterClassA
TranslateMDISysAccel
CreateWindowExA
GetTitleBarInfo
BroadcastSystemMessageA
LoadKeyboardLayoutA
LockSetForegroundWindow
GetKBCodePage
CloseDesktop
IsDialogMessageW
IsWindow
UnhookWinEvent
GetMenuItemInfoW
DdeAddData
SendIMEMessageExA
CreateCursor
LoadCursorA
GetKeyboardLayoutNameA
ToUnicodeEx
GetQueueStatus
SetActiveWindow
SetCursorPos
OpenDesktopA
DdeSetQualityOfService
SetPropA
ExitWindowsEx
MapVirtualKeyExW
GetMessageW
ShowOwnedPopups
LoadIconW
CopyImage
RedrawWindow
CreateMDIWindowA
SetMenuInfo
GetClassLongW
GetCursor

comdlg32

PrintDlgExA
ChooseColorW
PrintDlgExW
ChooseColorA
GetFileTitleA
CommDlgExtendedError
GetSaveFileNameA
FindTextA
PageSetupDlgW
ChooseFontA
PageSetupDlgA
PrintDlgW
GetSaveFileNameW
ReplaceTextA
PrintDlgA
ChooseFontW
GetFileTitleW
GetOpenFileNameA
GetOpenFileNameW
ReplaceTextW
FindTextW

advapi32

RegOpenKeyExW

ole32

CreateDataCache
GetDocumentBitStg
BindMoniker
CreateGenericComposite
OleTranslateAccelerator
SNB_UserUnmarshal
HENHMETAFILE_UserUnmarshal
HBRUSH_UserFree
HWND_UserFree
StgOpenPropStg
StgCreateStorageEx
StgOpenStorageEx
HICON_UserUnmarshal
CLSIDFromProgID
CoLoadLibrary
OleCreateLinkToFile
HMETAFILE_UserFree
HPALETTE_UserFree
HDC_UserUnmarshal
OleIsRunning
StgIsStorageFile
CoTestCancel
CoGetApartmentID
CoQueryAuthenticationServices
CoEnableCallCancellation
CoGetTreatAsClass
HBRUSH_UserUnmarshal
OleCreateFromFile
CoReactivateObject
CreateObjrefMoniker
StgSetTimes
CoIsOle1Class
CoLockObjectExternal
CoGetCancelObject
GetClassFile
StgPropertyLengthAsVariant
HBRUSH_UserSize
OleDoAutoConvert
OleSetAutoConvert
CoRegisterMessageFilter
CoMarshalInterThreadInterfaceInStream
CoCreateInstance
CreatePointerMoniker
CoAllowSetForegroundWindow
CoRegisterSurrogate
HACCEL_UserMarshal
DllGetClassObjectWOW
HDC_UserFree
HDC_UserMarshal
WdtpInterfacePointer_UserFree
HMENU_UserMarshal
CoCreateFreeThreadedMarshaler
CoUnloadingWOW
CoQueryReleaseObject
CoRegisterChannelHook
WdtpInterfacePointer_UserMarshal
StgGetIFillLockBytesOnFile
IsEqualGUID
STGMEDIUM_UserMarshal
CoMarshalHresult
WdtpInterfacePointer_UserUnmarshal
CoMarshalInterface
CoFreeLibrary
CLIPFORMAT_UserUnmarshal
HWND_UserSize
ReadOleStg
STGMEDIUM_UserSize
StringFromIID
UtGetDvtd32Info
CoFileTimeNow
HMETAFILE_UserMarshal
OleNoteObjectVisible
CoGetClassVersion
GetConvertStg
WriteClassStm
HBITMAP_UserSize
CreateILockBytesOnHGlobal
MkParseDisplayName
WdtpInterfacePointer_UserSize
CoDisableCallCancellation
HWND_UserUnmarshal
WriteOleStg
CoTaskMemAlloc
CoGetCallerTID

comctl32

ImageList_GetIcon
ImageList_DrawIndirect
DestroyPropertySheetPage
ImageList_AddMasked
ImageList_SetIconSize
ImageList_DrawEx
UninitializeFlatSB
ImageList_LoadImage
ImageList_ReplaceIcon
ImageList_SetBkColor
GetMUILanguage
FlatSB_SetScrollProp
DrawStatusTextW
CreateStatusWindow
ImageList_DragLeave
ImageList_LoadImageW
ord13
InitMUILanguage
ImageList_SetFilter
FlatSB_SetScrollPos
ImageList_Destroy
PropertySheetA
FlatSB_SetScrollInfo
ImageList_Replace
ImageList_GetDragImage
ord2
ImageList_Merge
InitializeFlatSB
ImageList_Read
CreatePropertySheetPageW
ImageList_DragEnter
ord17
ImageList_GetImageRect
ImageList_SetDragCursorImage
ImageList_Create
ImageList_EndDrag
CreateToolbarEx
FlatSB_GetScrollProp
ord8
PropertySheet
ImageList_GetBkColor
FlatSB_GetScrollPos
FlatSB_SetScrollRange
CreatePropertySheetPage
CreatePropertySheetPageA
ImageList_BeginDrag
ord7
ImageList_DragShowNolock
ImageList_AddIcon
FlatSB_GetScrollInfo
ord15
ImageList_SetImageCount
DrawStatusText
ImageList_Remove
ord6
ord3

Sections

.text
Size: 95KB - Virtual size: 94KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b90936ec39f9ad19ac6adeb4a71e13bd

Code Sign

06:e2:bc:62:8e:28:f4:7d:b8:fd:0e:ea:7f:f3:37:50Certificate

Extended Key Usages

c6:a7:f2:95:9f:a4:cb:df:c5:8b:fd:0d:a9:77:35:ba:06:8a:c6:48Signer

Headers

File Characteristics

Imports

kernel32

user32

comdlg32

advapi32

ole32

comctl32

Sections

.text Size: 95KB - Virtual size: 94KB

.data Size: 8KB - Virtual size: 7KB

.rsrc Size: 9KB - Virtual size: 9KB

.reloc Size: 1KB - Virtual size: 1KB

06:e2:bc:62:8e:28:f4:7d:b8:fd:0e:ea:7f:f3:37:50
Certificate

c6:a7:f2:95:9f:a4:cb:df:c5:8b:fd:0d:a9:77:35:ba:06:8a:c6:48
Signer

.text
Size: 95KB - Virtual size: 94KB

.data
Size: 8KB - Virtual size: 7KB

.rsrc
Size: 9KB - Virtual size: 9KB

.reloc
Size: 1KB - Virtual size: 1KB