f5996696189ffc2dcb8fb3cdf9783a3e_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f5996696189ffc2dcb8fb3cdf9783a3e_JaffaCakes118
Size

100KB
MD5

f5996696189ffc2dcb8fb3cdf9783a3e
SHA1

6399f02d9116e776dde7f7ea4d54c8ba110369ee
SHA256

60b7f993a9290596ace11b5c4d9c9afa33af535f14df26ed2d464438349f5fbe
SHA512

3d50dc7ca276b565fcb0ba8777a9af41d8ee687def3cf06317b08adf96d4f39bfddfab2f3bcff25ebf7f66df9fa4400cc385b2a27eec3255b821d70d0fc3de4b
SSDEEP

3072:voIYFR75gluoozRM4Ljxhpg7rNNch2MRjQic:BYFuozRR9LgfwjQic

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f5996696189ffc2dcb8fb3cdf9783a3e_JaffaCakes118

Files

f5996696189ffc2dcb8fb3cdf9783a3e_JaffaCakes118
.dll regsvr32 windows:4 windows x86 arch:x86

e5f59ffbb2cbc99c882d6263d9f63d0f

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

HeapWalk
QueueUserWorkItem
GetTimeFormatW
HeapReAlloc
FindNextVolumeMountPointW
GlobalFlags
GetStdHandle
GetEnvironmentVariableW
GetVersionExA
GetSystemDirectoryA
WriteFileEx
BackupRead
FindFirstChangeNotificationA
GetProcessAffinityMask
CallNamedPipeA
ReadDirectoryChangesW
GetExitCodeProcess
GetCurrentThread
ReadFileEx
lstrlenW
CreateToolhelp32Snapshot
SetConsoleCursorPosition
SetInformationJobObject
AllocConsole
WaitNamedPipeW
CancelWaitableTimer
MoveFileExW
SetWaitableTimer
lstrcpyA
LocalSize
SetConsoleMode
WaitForSingleObjectEx
DosDateTimeToFileTime
WaitNamedPipeA
GetFullPathNameA
FindNextFileA
GetExitCodeThread
ExpandEnvironmentStringsW
lstrcpynW
GlobalAddAtomW
OpenSemaphoreA
FindAtomW
SetFilePointerEx
WriteConsoleW
GetCommMask
FindFirstVolumeW
ReadConsoleW
SetComputerNameExW
GetDiskFreeSpaceA
GetCommandLineW
ActivateActCtx
FileTimeToLocalFileTime
FindActCtxSectionGuid
QueueUserAPC
WriteProfileStringA
GlobalFree
ExitThread
ChangeTimerQueueTimer
MoveFileExA
GetUserDefaultUILanguage
CreateActCtxW
ReadConsoleInputW
CreateRemoteThread
MultiByteToWideChar
SetHandleInformation
CreateMailslotW
LocalHandle
TransmitCommChar
HeapUnlock
GetDateFormatW
GlobalFindAtomW
GetFileAttributesA
IsDBCSLeadByte
PeekConsoleInputW
ReadConsoleA
RtlMoveMemory
CreateConsoleScreenBuffer
GetSystemWindowsDirectoryA
FormatMessageA
InterlockedCompareExchange
DeleteTimerQueueEx
VerifyVersionInfoW
ResumeThread
SetHandleCount
OpenSemaphoreW
CreateWaitableTimerA
GetQueuedCompletionStatus
GetFileAttributesExA
SetCommBreak
OpenEventA
GetOverlappedResult
IsBadStringPtrA
GetFileAttributesExW
AddAtomW
lstrcatW
SetVolumeMountPointW
VirtualUnlock
AssignProcessToJobObject
PeekNamedPipe
SetTimeZoneInformation
IsProcessorFeaturePresent
GlobalHandle
GetEnvironmentVariableA
HeapCompact
LoadLibraryA
LockFile
GetFileInformationByHandle
SetCommMask
GetProfileIntW
FindAtomA
GetThreadContext
LockFileEx
WaitForMultipleObjectsEx
CreateEventW
LocalLock
EnumSystemLocalesA
LocalUnlock
lstrcmpiW
SetErrorMode
GetTempFileNameW
FormatMessageW
ReleaseActCtx
CreateFileMappingW
SetVolumeLabelA
CreateJobObjectW
SetDefaultCommConfigW
lstrcpyW
GetFileTime
SizeofResource
GlobalGetAtomNameW
ReplaceFileW
GetBinaryTypeW
DeleteTimerQueueTimer
GetTempPathA
LeaveCriticalSection
GetCurrentProcessId
InterlockedIncrement
InterlockedExchange
UnmapViewOfFile
VirtualProtect
EnterCriticalSection
WriteFile
HeapFree
VirtualQuery
WaitForSingleObject
CloseHandle
GlobalAlloc
MoveFileA
ReleaseMutex
ReadFile
CreateDirectoryA
GetComputerNameA
GetProcessHeap
GetProcAddress
CreateMutexA
VirtualAllocEx

user32

PostMessageW
WindowFromPoint
SetRectEmpty
TabbedTextOutW
GetInputState
GetGUIThreadInfo
AppendMenuA
GetMessageExtraInfo
DrawTextW
PackDDElParam
GetWindowWord
RegisterWindowMessageA
SetDlgItemTextW
GetClassInfoA
GetDesktopWindow
DefFrameProcA
SystemParametersInfoW
FillRect
BringWindowToTop
FindWindowExW
LoadStringA
CreateIcon
ShowWindow
EnumChildWindows
CreateDialogParamW
GetWindowTextA
InsertMenuW
SetCaretPos
CheckMenuRadioItem
DrawTextExA
GetProcessDefaultLayout
AdjustWindowRectEx
ScreenToClient
SetWindowTextW
ShowScrollBar
IsDlgButtonChecked
CreateDialogIndirectParamW
GrayStringA
ReleaseDC
GetNextDlgGroupItem
InternalGetWindowText
ShowOwnedPopups
GetWindowContextHelpId
TranslateMDISysAccel
IsCharAlphaNumericA
LookupIconIdFromDirectory
GetWindowDC
EnableWindow
CreateCursor
IsZoomed
SetWindowPlacement
CopyAcceleratorTableW
ModifyMenuA
InsertMenuA
ValidateRect
FreeDDElParam
UpdateWindow
SetScrollPos
InSendMessage
GetUpdateRect
GetCapture
InSendMessageEx
ChangeDisplaySettingsA
ScrollWindow
SetMenuDefaultItem
PostMessageA
GetMenu
SendNotifyMessageW
MessageBoxExW
CharUpperBuffW
GetIconInfo
MsgWaitForMultipleObjects
GetWindowInfo
GetWindowLongW
SetCapture
CharPrevW
LoadStringW
ModifyMenuW
GetDialogBaseUnits
GetMenuItemCount
DefDlgProcA
SetWindowLongW
ReleaseCapture
OemToCharBuffA
SetMenuItemInfoA
ShowWindowAsync
wvsprintfA
ChangeDisplaySettingsExW
DestroyMenu
ReuseDDElParam
GetCaretPos
LoadBitmapW
DrawStateA
SetWindowsHookExW
WaitForInputIdle
SetClassLongA
GetMenuDefaultItem
SetMenuItemInfoW
UnionRect
GetDlgItemTextW
wsprintfA
SetFocus
GetMenuItemInfoW
CreateCaret
DialogBoxIndirectParamW
EnumThreadWindows
LoadMenuA
CharNextW
IsWindowEnabled
MsgWaitForMultipleObjectsEx
DeleteMenu
GetProcessWindowStation
DefDlgProcW
ChangeMenuA
SetSysColors
CopyIcon
OpenDesktopA
SetThreadDesktop
EnableMenuItem
GetMessageTime
ChildWindowFromPointEx
SetPropA
DispatchMessageA
FindWindowA
GetWindowThreadProcessId
GetClassNameA
CallNextHookEx
GetMessageA
SendMessageA
GetNextDlgTabItem

shlwapi

AssocCreate
PathIsPrefixW
PathRemoveBlanksW
StrCmpNIA
PathGetArgsW
wvnsprintfW
PathUnquoteSpacesW
UrlCombineW
SHDeleteValueW
PathIsUNCW
PathCompactPathW
StrStrW
StrCatBuffA
AssocQueryStringW
PathFileExistsA
PathParseIconLocationW
SHGetValueW
UrlUnescapeW
SHCreateStreamOnFileW
PathCommonPrefixW
SHRegGetBoolUSValueW
PathUndecorateW
PathIsRelativeW
PathRenameExtensionW
StrStrA
StrStrIW
PathAddBackslashA
SHGetValueA
StrCpyNW
StrChrIW
SHDeleteKeyA
PathMatchSpecW

advapi32

SetNamedSecurityInfoA
RegQueryInfoKeyA
RegOpenKeyExA
RegSetValueExA
GetSecurityDescriptorSacl
RegCreateKeyExA
GetServiceDisplayNameW
MakeSelfRelativeSD
SetEntriesInAclA
LockServiceDatabase
RegDeleteValueA
SetTokenInformation
RegEnumValueW
SaferGetPolicyInformation
OpenServiceA
RegSaveKeyExW
RegLoadKeyA
BuildTrusteeWithNameW
SaferCreateLevel
RegQueryValueW
RegUnLoadKeyA
RegDeleteKeyA
RegOpenKeyExW
CredWriteDomainCredentialsW
RegDisablePredefinedCache
ChangeServiceConfig2W
OpenProcessToken
CredIsMarshaledCredentialW
StartServiceCtrlDispatcherW
EnumDependentServicesW
CredGetSessionTypes
OpenEventLogA
CloseEventLog
RegLoadKeyW
NotifyChangeEventLog
ElfRegisterEventSourceW
LogonUserW
SaferSetLevelInformation
EnumDependentServicesA
MakeAbsoluteSD
BuildExplicitAccessWithNameW
RegSetValueA
QueryServiceStatus
RegSaveKeyW
RegOpenCurrentUser
RegReplaceKeyW

shell32

ShellAboutA
DragQueryFileW
SHOpenFolderAndSelectItems
SHFileOperationA
SHGetFolderPathAndSubDirW
SHGetSpecialFolderLocation
ShellExecuteA
SHGetInstanceExplorer
SHFileOperationW
SHCreateDirectoryExW
DragQueryFileA
SHGetSpecialFolderPathW
SHGetFolderLocation
SHSetLocalizedName
ShellExecuteExA
SHParseDisplayName
SHGetFolderPathA

gdi32

MoveToEx
UpdateColors
GetWorldTransform
OffsetWindowOrgEx
EndPath
ResizePalette
AddFontResourceW
SetMagicColors
SetStretchBltMode
Pie
GetViewportExtEx
SetMiterLimit
GetCharWidthW
GetKerningPairsA
SetLayout
SetWindowExtEx
GetTextFaceA
GetBitmapDimensionEx
SetDIBColorTable
Ellipse
CloseEnhMetaFile
GetSystemPaletteEntries
PolyPolygon
GetViewportOrgEx
GetBkColor
GetROP2
GetCharABCWidthsW
LineTo
BitBlt
DeleteMetaFile
CreateFontIndirectA
GetBrushOrgEx
CreateRectRgn
PathToRegion
IntersectClipRect
CreateBitmapIndirect
CreateHalftonePalette
GetWindowExtEx
PtVisible
StartDocA
EndDoc
EnumEnhMetaFile
GetTextMetricsA
CreateRoundRectRgn
FlattenPath
StartDocW
PolyPolyline
SetDIBits
CloseMetaFile
CombineRgn
SetBitmapDimensionEx
GetOutlineTextMetricsA
GetWinMetaFileBits
TextOutW
ResetDCA
GetTextExtentPointA
CreatePalette
CreateMetaFileA
StretchDIBits
GetTextExtentExPointW
GetPath
PolylineTo
GetTextExtentPoint32W
GetCurrentPositionEx
GetTextColor
CreateBitmap
ExtCreatePen
SetColorAdjustment
GetEnhMetaFileA
CreateDIBitmap
GetFontResourceInfoW
SetViewportExtEx
CreatePolygonRgn
GetFontData
EnumMetaFile
PolyBezierTo
SetBkMode
DeleteDC
Polyline
GetCurrentObject

Exports

Exports

DllCanUnloadNow
DllGetClassObject
DllRegisterServer
DllUnregisterServer

Sections

.text
Size: 68KB - Virtual size: 66KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e5f59ffbb2cbc99c882d6263d9f63d0f

Headers

File Characteristics

Imports

kernel32

user32

shlwapi

advapi32

shell32

gdi32

Exports

Exports

Sections

.text Size: 68KB - Virtual size: 66KB

.rdata Size: 16KB - Virtual size: 12KB

.data Size: 8KB - Virtual size: 6KB

.reloc Size: 4KB - Virtual size: 2KB

.text
Size: 68KB - Virtual size: 66KB

.rdata
Size: 16KB - Virtual size: 12KB

.data
Size: 8KB - Virtual size: 6KB

.reloc
Size: 4KB - Virtual size: 2KB