f7188522014a8e503938f1240d927841_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f7188522014a8e503938f1240d927841_JaffaCakes118
Size

516KB
MD5

f7188522014a8e503938f1240d927841
SHA1

5b4530798a37b5dfa5fbda02125658a9ca96808a
SHA256

f52241ea075f61eefa600a92df614e272716cdefddc5c6bbaeabc77f3ce6ba54
SHA512

c91b7e14edc19588dc118c498ceb18d53a50a490ea1c1675da6a7b6216b39661f65f5138bf37033123689469295fac82d3cf515ca54c65c3f063facac1868a7e
SSDEEP

12288:e9xQJf610syCtY6zGBoyF50mMHzf695f1hdADPC7m:ejmf6CEYOGB/07f6911hGD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f7188522014a8e503938f1240d927841_JaffaCakes118

Files

f7188522014a8e503938f1240d927841_JaffaCakes118
.exe windows:4 windows x86 arch:x86

98e05f78f111a4792259bb98e232b7e9

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegCreateKeyExA
RegSetValueExA
RegOpenKeyExA
OpenSCManagerA
GetTokenInformation
ControlService

gdi32

GetRegionData
FillPath
GetWindowExtEx
GetCharABCWidthsA
SetRectRgn
GetTextMetricsA
DeleteObject
GetWindowOrgEx
CreatePalette
Escape
GetDIBits
CopyMetaFileA
CloseMetaFile
GetBkColor
CreateCompatibleBitmap
CreateMetaFileA
CreateDIBSection
GetTextExtentPointA
TextOutA
OffsetRgn
Arc

user32

DeleteMenu
SetMenuItemBitmaps
GetWindowTextLengthA
GetSubMenu
RemoveMenu
GetDesktopWindow
SetTimer
DefWindowProcA
InflateRect
EndDeferWindowPos
InvalidateRect
SetForegroundWindow
SetWindowTextA
TrackPopupMenu
GetActiveWindow
GetCapture
TranslateMessage
DestroyCursor
LoadCursorA
DrawEdge
ScrollWindow
wvsprintfA
MessageBoxA
SetWindowsHookExA
CheckMenuItem
ValidateRect
CallWindowProcA
SetClipboardData
GetMenuState
SetCursorPos
TrackPopupMenuEx
RegisterHotKey
SetMenu
GetSysColor
IsChild
LoadAcceleratorsA
SetScrollInfo
DispatchMessageA
GetParent
UnregisterHotKey
OpenClipboard
SetFocus
IsDialogMessageA
UnregisterClassA
UnhookWindowsHookEx
GetUpdateRect
GetDlgItem
wsprintfA
EmptyClipboard
PostQuitMessage
BringWindowToTop
GetDC
CreateCaret
SetWindowLongA
EnableWindow
LoadIconA
GetDlgCtrlID
UnionRect
MoveWindow
RegisterWindowMessageA
LoadBitmapA
CreateMenu
FindWindowA
ReleaseCapture
GetWindowTextA
IsWindow
CheckDlgButton
CharNextA
ClientToScreen
SetParent
GetWindowLongA
TranslateAcceleratorA
CreateDialogIndirectParamA
GetWindowRect
CopyRect
SetActiveWindow
SetRect
DrawIconEx
InsertMenuItemA
GetMessagePos
CharUpperA
DrawTextA
SetWindowContextHelpId
CreatePopupMenu
DrawFocusRect
SetRectEmpty
FillRect
GetScrollRange
PeekMessageA
GetForegroundWindow
MapWindowPoints
GetPropA
SetMenuDefaultItem
ModifyMenuA
GetClassLongA
RedrawWindow
GetTopWindow
GetKeyState
IsClipboardFormatAvailable
IsZoomed
GetCursorPos
GetClientRect
SetPropA
EndPaint
GetMenuItemCount
ScreenToClient
GetSysColorBrush
OffsetRect
ReleaseDC
CreateDialogParamA
RegisterClassExA
IsMenu
GetClassNameA
GetSystemMetrics
AppendMenuA
SetCapture
GetWindow
SystemParametersInfoA
RegisterClassA
UpdateWindow
GetMessageA
SetScrollPos
GetWindowPlacement
SetCursor
EndDialog
BeginDeferWindowPos
ShowCaret
GetDlgItemTextA
CreateWindowExA
LoadStringA
DeferWindowPos
IsIconic
DestroyMenu
IsDlgButtonChecked
DrawMenuBar
UnpackDDElParam
GetMenuStringA
GetMenu
SendDlgItemMessageA
LockWindowUpdate
GetScrollPos
IntersectRect
GetIconInfo
InvalidateRgn
LoadMenuA
GetWindowThreadProcessId
CloseClipboard
DrawIcon
DestroyIcon
IsWindowVisible
EnableMenuItem
GetSystemMenu
GetMenuCheckMarkDimensions
ShowWindow
GetLastActivePopup
FrameRect
InsertMenuA
LoadImageA
DestroyWindow
MessageBeep
HideCaret
SetCaretPos
CallNextHookEx
SetWindowPos
KillTimer
PostMessageA
GetScrollInfo
AdjustWindowRectEx
SetDlgItemTextA
FlashWindow
BeginPaint

comctl32

CreateStatusWindowW
InitCommonControlsEx

oleaut32

LoadTypeLi

winspool.drv

ord204
ClosePrinter
DocumentPropertiesA
EnumPrintersA
OpenPrinterA

shlwapi

PathFindExtensionW
PathIsUNCW
PathStripToRootW
PathFindFileNameW

comdlg32

CommDlgExtendedError
GetFileTitleA

shell32

ShellExecuteA
ord155
FindExecutableA

kernel32

GetDateFormatA
WriteFile
TerminateProcess
VirtualQuery
GetCurrentThreadId
GetCurrentProcessId
CompareStringW
DeleteCriticalSection
CloseHandle
IsDebuggerPresent
GetConsoleMode
GetEnvironmentStrings
GetACP
GetStdHandle
ExitProcess
GetVersionExA
Sleep
LoadLibraryA
UnhandledExceptionFilter
GetModuleFileNameA
SetLastError
SetHandleCount
TlsSetValue
HeapSize
GetTimeZoneInformation
SetStdHandle
SetFilePointer
HeapCreate
GetSystemTimeAsFileTime
InterlockedIncrement
GetTimeFormatA
FreeEnvironmentStringsW
HeapAlloc
GetTickCount
FlushFileBuffers
TlsGetValue
CreateMutexA
HeapReAlloc
CompareStringA
HeapFree
SetEnvironmentVariableA
GetConsoleCP
GetFileType
TlsFree
GetLastError
GetProcessHeap
GetOEMCP
WideCharToMultiByte
TlsAlloc
IsValidCodePage
QueryPerformanceCounter
LCMapStringW
GetStringTypeW
GetStringTypeA
SetUnhandledExceptionFilter
GetStartupInfoA
GetModuleHandleA
LCMapStringA
FreeEnvironmentStringsA
RaiseException
InitializeCriticalSection
InterlockedDecrement
WriteConsoleA
GetEnvironmentStringsW
GetConsoleOutputCP
VirtualFree
GetProcAddress
WriteConsoleW
EnterCriticalSection
GetCPInfo
LeaveCriticalSection
InterlockedExchange
MultiByteToWideChar
GetCurrentProcess
GetLocaleInfoA
GetCommandLineA
RtlUnwind
VirtualAlloc
CreateFileA
HeapDestroy
ReadFile

Sections

.text
Size: 112KB - Virtual size: 111KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 268KB - Virtual size: 265KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 76KB - Virtual size: 78KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 56KB - Virtual size: 53KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

98e05f78f111a4792259bb98e232b7e9

Headers

File Characteristics

Imports

advapi32

gdi32

user32

comctl32

oleaut32

winspool.drv

shlwapi

comdlg32

shell32

kernel32

Sections

.text Size: 112KB - Virtual size: 111KB

.rdata Size: 268KB - Virtual size: 265KB

.data Size: 76KB - Virtual size: 78KB

.rsrc Size: 56KB - Virtual size: 53KB

.text
Size: 112KB - Virtual size: 111KB

.rdata
Size: 268KB - Virtual size: 265KB

.data
Size: 76KB - Virtual size: 78KB

.rsrc
Size: 56KB - Virtual size: 53KB