f5f39db5adc859bd764b311a28105de5_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f5f39db5adc859bd764b311a28105de5_JaffaCakes118
Size

1.9MB
MD5

f5f39db5adc859bd764b311a28105de5
SHA1

aea9bc05577de85fd32e19d84f90fd497fccdc3a
SHA256

644bfa35783bbfe5c9dc3f4d46f69f751aee150cf827ac39c5a0f784683e34af
SHA512

8a4a2c4e1af6a5833e955d10361c96ae3ba04aad8a4a11fbd98108601e45076861b744ebb6eb8f1b45ca4e56fec20759725a22a7f8eb3ec5993ae1c595d5019a
SSDEEP

49152:3NTHOYRdqJkZ+6h2m0Qb86zd72ydK+mZa+B1q:9Tw6+6h2m0QbNday8+mZa+D

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f5f39db5adc859bd764b311a28105de5_JaffaCakes118

Files

f5f39db5adc859bd764b311a28105de5_JaffaCakes118
.exe windows:5 windows x86 arch:x86

2d19dd49ceea4a661aea054c83f88b7a

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\Project\megafile\Release\MegafileUpload.pdb

Imports

kernel32

GetConsoleOutputCP
WriteConsoleW
CreateFileA
SetEnvironmentVariableA
WriteConsoleA
FindResourceW
LoadResource
SizeofResource
LockResource
WaitForSingleObject
Sleep
MultiByteToWideChar
WideCharToMultiByte
lstrcpyW
CreateDirectoryW
GetTempPathW
GetTickCount
CreateFileW
GetFileSizeEx
CloseHandle
GetTempFileNameW
GetCurrentProcess
FormatMessageW
LocalFree
InterlockedIncrement
GetThreadLocale
GetVersionExA
GetProcAddress
GetModuleHandleW
lstrcmpW
GetStringTypeW
GetStringTypeA
GetLocaleInfoA
GetConsoleMode
GetConsoleCP
LCMapStringA
GetTimeZoneInformation
LCMapStringW
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
InitializeCriticalSectionAndSpinCount
IsDebuggerPresent
UnhandledExceptionFilter
TerminateProcess
QueryPerformanceCounter
VirtualFree
HeapCreate
GetStartupInfoA
SetHandleCount
GetCommandLineW
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetModuleFileNameA
GetStdHandle
SetUnhandledExceptionFilter
GetFileType
SetStdHandle
FreeLibrary
SetLastError
GetLastError
LoadLibraryA
CompareStringW
GetSystemTimeAsFileTime
HeapSize
LoadLibraryW
GetVersionExW
GlobalDeleteAtom
CreateThread
ExitThread
VirtualQuery
GetSystemInfo
VirtualAlloc
HeapReAlloc
RaiseException
RtlUnwind
HeapFree
ExitProcess
HeapAlloc
GetStartupInfoW
FindResourceExW
VirtualProtect
GetProfileIntW
SearchPathW
SetErrorMode
GetFileTime
GetFileAttributesW
GetCurrentDirectoryW
GlobalGetAtomNameW
GlobalFlags
TlsFree
LocalReAlloc
TlsSetValue
TlsAlloc
GlobalHandle
GlobalReAlloc
TlsGetValue
LocalAlloc
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
FileTimeToLocalFileTime
FileTimeToSystemTime
lstrlenA
GetFullPathNameW
GetVolumeInformationW
FindFirstFileW
FindClose
DuplicateHandle
GetFileSize
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
InterlockedDecrement
CreateEventW
GlobalFindAtomW
SuspendThread
SetEvent
ResumeThread
SetThreadPriority
GetModuleHandleA
WritePrivateProfileStringW
GetPrivateProfileIntW
GetCurrentProcessId
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesW
GetModuleFileNameW
lstrcmpA
GetLocaleInfoW
CompareStringA
InterlockedExchange
GlobalFree
CopyFileW
GlobalSize
GlobalAlloc
GlobalLock
GlobalUnlock
MulDiv
lstrlenW
FreeResource
GetCurrentThreadId
GlobalAddAtomW

user32

IsCharLowerW
GetMenuDefaultItem
SetMenuDefaultItem
UpdateLayeredWindow
EnableScrollBar
UnionRect
SetCursorPos
DrawFocusRect
DrawFrameControl
DrawEdge
DrawIconEx
UnpackDDElParam
ReuseDDElParam
InsertMenuItemW
TranslateAcceleratorW
UnregisterClassW
GetNextDlgGroupItem
EmptyClipboard
CloseClipboard
SetClipboardData
LoadImageW
CopyImage
OpenClipboard
DrawStateW
RegisterClipboardFormatW
EnumChildWindows
LockWindowUpdate
BringWindowToTop
IsMenu
GetSystemMenu
SetClassLongW
SetParent
CreatePopupMenu
NotifyWinEvent
SetWindowRgn
CreateAcceleratorTableW
LoadAcceleratorsW
DestroyAcceleratorTable
GetAsyncKeyState
GetKeyboardState
GetKeyboardLayout
ToUnicodeEx
PostThreadMessageW
SetRectEmpty
DeleteMenu
WindowFromPoint
GetSysColorBrush
DestroyMenu
GetMenuItemInfoW
ReleaseCapture
SetCapture
InvalidateRgn
CopyAcceleratorTableW
SetRect
IsRectEmpty
CharUpperW
MapVirtualKeyW
GetKeyNameTextW
ShowOwnedPopups
SetCursor
GetMessageW
TranslateMessage
GetCursorPos
ValidateRect
LoadMenuW
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
ClientToScreen
FillRect
GetDesktopWindow
GetActiveWindow
CreateDialogIndirectParamW
GetNextDlgTabItem
EndDialog
SetWindowContextHelpId
MapDialogRect
GetWindowThreadProcessId
WaitMessage
MessageBeep
IsZoomed
PostQuitMessage
GetMenuStringW
AppendMenuW
InsertMenuW
RemoveMenu
MapVirtualKeyExW
IsWindowEnabled
ShowWindow
MoveWindow
SetWindowTextW
IsDialogMessageW
CheckDlgButton
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapW
ModifyMenuW
GetMenuState
EnableMenuItem
CheckMenuItem
RegisterWindowMessageW
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
IsChild
GetCapture
SetWindowsHookExW
CallNextHookEx
GetClassLongW
GetClassNameW
SetPropW
GetPropW
RemovePropW
GetFocus
SetFocus
GetWindowTextLengthW
GetWindowTextW
GetForegroundWindow
GetLastActivePopup
DispatchMessageW
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
PeekMessageW
MapWindowPoints
ScrollWindow
TrackPopupMenu
GetKeyState
SetMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
SetForegroundWindow
ShowScrollBar
IsWindowVisible
GetSubMenu
GetMenuItemID
GetMenuItemCount
MessageBoxW
CreateWindowExW
GetClassInfoExW
GetClassInfoW
RegisterClassW
GetSysColor
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
SetWindowPlacement
DefWindowProcW
CallWindowProcW
GetMenu
IsClipboardFormatAvailable
DestroyCursor
GetWindowRgn
CreateMenu
GetDoubleClickTime
GetIconInfo
SubtractRect
CopyIcon
SetWindowLongW
SetWindowPos
IntersectRect
SystemParametersInfoA
GetWindowPlacement
IsWindow
GetDlgItem
GetWindowLongW
GetParent
GetDlgCtrlID
GetWindow
CharUpperBuffW
GetUpdateRect
TranslateMDISysAccel
DrawMenuBar
DefMDIChildProcW
DefFrameProcW
CharNextW
DrawTextW
TabbedTextOutW
DrawTextExW
GrayStringW
ExitWindowsEx
DestroyIcon
RedrawWindow
SystemParametersInfoW
KillTimer
CopyRect
FrameRect
PtInRect
PostMessageW
UpdateWindow
OffsetRect
InflateRect
SetTimer
FlashWindow
SetActiveWindow
LoadCursorW
GetWindowRect
InvalidateRect
DrawIcon
GetClientRect
GetSystemMetrics
IsIconic
SendMessageW
LoadIconW
EnableWindow
GetDC

gdi32

SetMapMode
ExcludeClipRect
IntersectClipRect
LineTo
MoveToEx
SetTextAlign
DeleteObject
SelectClipRgn
GetViewportExtEx
GetWindowExtEx
GetPixel
SelectObject
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
OffsetWindowOrgEx
SetWindowExtEx
ScaleWindowExtEx
ExtSelectClipRgn
DeleteDC
CreatePatternBrush
SelectPalette
GetObjectType
CreateHatchBrush
PatBlt
SetRectRgn
CombineRgn
GetRgnBox
OffsetRgn
CreateDIBitmap
GetTextMetricsW
EnumFontFamiliesW
GetTextCharsetInfo
CreateRoundRectRgn
SetDIBColorTable
GetDIBits
RealizePalette
StretchBlt
CreateDIBSection
CreateEllipticRgn
CreatePolygonRgn
Polyline
Ellipse
Polygon
Rectangle
RoundRect
CreatePalette
GetPaletteEntries
GetWindowOrgEx
PtInRegion
FillRgn
FrameRgn
GetBoundsRect
GetViewportOrgEx
ExtFloodFill
SetPaletteEntries
GetNearestPaletteIndex
GetSystemPaletteEntries
EnumFontFamiliesExW
GetTextFaceW
SetPixelV
SetPolyFillMode
SetROP2
SetBkMode
RestoreDC
SaveDC
CopyMetaFileW
CreateBitmap
SetBkColor
SetTextColor
GetClipBox
GetDCOrgEx
GetTextColor
GetDeviceCaps
GetObjectW
GetStockObject
BitBlt
LPtoDP
CreateCompatibleDC
DPtoLP
CreateCompatibleBitmap
GetMapMode
ExtTextOutW
PtVisible
GetBkColor
Escape
RectVisible
TextOutW
CreateRectRgn
CreatePen
CreateRectRgnIndirect
SetPixel
GetTextExtentPoint32W
CreateFontIndirectW
CreateSolidBrush

msimg32

AlphaBlend
TransparentBlt

comdlg32

GetFileTitleW

winspool.drv

OpenPrinterW
DocumentPropertiesW
ClosePrinter

advapi32

RegOpenKeyW
RegQueryValueExW
LookupPrivilegeValueW
RegOpenKeyExW
AdjustTokenPrivileges
RegCloseKey
RegCreateKeyExW
RegDeleteKeyW
RegDeleteValueW
RegQueryValueW
OpenProcessToken
RegEnumKeyW
RegSetValueExW
RegEnumKeyExW

shell32

Shell_NotifyIconW
SHGetFileInfoW
SHAppBarMessage
DragQueryFileW
DragFinish
ShellExecuteW
SHBrowseForFolderW
SHGetPathFromIDListW

comctl32

InitCommonControlsEx
ImageList_GetIconSize

shlwapi

PathFindFileNameW
PathStripToRootW
PathIsUNCW
PathFindExtensionW
PathRemoveFileSpecW

oledlg

OleUIBusyW

ole32

OleIsCurrentClipboard
OleFlushClipboard
DoDragDrop
OleGetClipboard
CoUninitialize
CoInitializeEx
CoRevokeClassObject
CoRegisterMessageFilter
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
OleLockRunning
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CreateStreamOnHGlobal
CoCreateInstance
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString
CLSIDFromProgID
OleDuplicateData
CoTaskMemAlloc
ReleaseStgMedium
CoTaskMemFree
RegisterDragDrop
CoLockObjectExternal
RevokeDragDrop

oleaut32

SysFreeString
VariantTimeToSystemTime
SystemTimeToVariantTime
SafeArrayDestroy
SysAllocString
VariantCopy
VariantInit
VariantChangeType
VariantClear
OleCreateFontIndirect
SysAllocStringLen
SysStringLen

gdiplus

GdipCloneImage
GdipDrawImageI
GdipFree
GdipAlloc
GdipDeleteGraphics
GdipDisposeImage
GdipGetImageWidth
GdipGetImageHeight
GdipGetImagePixelFormat
GdipGetImagePaletteSize
GdipGetImagePalette
GdipCreateBitmapFromStream
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromScan0
GdipBitmapLockBits
GdipBitmapUnlockBits
GdiplusStartup
GdiplusShutdown
GdipGetImageGraphicsContext

ws2_32

gethostbyname
recv
WSACleanup
ntohl
htonl
socket
send
WSASetLastError
connect
WSAStartup
WSAGetLastError
htons
closesocket

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

winmm

PlaySoundW
timeGetTime

Sections

.text
Size: 1.2MB - Virtual size: 1.2MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 284KB - Virtual size: 283KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 259KB - Virtual size: 258KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 144KB - Virtual size: 144KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2d19dd49ceea4a661aea054c83f88b7a

Headers

DLL Characteristics

File Characteristics

PDB Paths

Imports

kernel32

user32

gdi32

msimg32

comdlg32

winspool.drv

advapi32

shell32

comctl32

shlwapi

oledlg

ole32

oleaut32

gdiplus

ws2_32

imm32

winmm

Sections

.text Size: 1.2MB - Virtual size: 1.2MB

.rdata Size: 284KB - Virtual size: 283KB

.data Size: 25KB - Virtual size: 52KB

.rsrc Size: 259KB - Virtual size: 258KB

.reloc Size: 144KB - Virtual size: 144KB

.text
Size: 1.2MB - Virtual size: 1.2MB

.rdata
Size: 284KB - Virtual size: 283KB

.data
Size: 25KB - Virtual size: 52KB

.rsrc
Size: 259KB - Virtual size: 258KB

.reloc
Size: 144KB - Virtual size: 144KB