f697de83c6fb9283fca70db62f18d2c8_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f697de83c6fb9283fca70db62f18d2c8_JaffaCakes118
Size

984KB
MD5

f697de83c6fb9283fca70db62f18d2c8
SHA1

c2718d4a8288f0fc24251e52e991dda881070eb2
SHA256

96dbc34233faa741aa0cc0772207f076c6da7104b76c67ff802553bccfb31525
SHA512

0c8ba06090b2dd3d2009f200ff5634857cdfe3617fdb563b12d280dec80c7a8dbb98dae40003ae5911944d366c03f632bffcdf894cfe42ee19c09eff7092f560
SSDEEP

24576:ojYRsTz0AOtyNROZDmcHVNUKIJDfMyB8Z4E2o:/+LGyA3r6DEy8ZfF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f697de83c6fb9283fca70db62f18d2c8_JaffaCakes118

Files

f697de83c6fb9283fca70db62f18d2c8_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0f256cf26a77b72cd56d16415611a541

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI

Imports

gdi32

CreateBitmap
GetDIBits
DeleteEnhMetaFile
SetStretchBltMode
Rectangle
GetTextMetricsW
CreateHalftonePalette
CreateDCW
SetWindowExtEx
GetObjectA
GetGlyphIndicesW
DeleteDC
TextOutA
GetTextExtentExPointI
CreateCompatibleBitmap
CloseEnhMetaFile
OffsetWindowOrgEx
SetRectRgn
CreateEnhMetaFileA
GetStockObject
SetBkMode
GetBrushOrgEx
MoveToEx
GetTextAlign
LPtoDP
CreateDCA
GetTextExtentPointW
SelectPalette
SetWindowOrgEx
SetBrushOrgEx
IntersectClipRect
CreatePatternBrush
CreateRectRgnIndirect
GetRgnBox
PlayEnhMetaFile
GetTextExtentPoint32W
CreatePalette
GetSystemPaletteEntries
RealizePalette
GetBkMode
SetMapMode
ExtCreateRegion
RectVisible
GetTextColor
SetViewportExtEx
GetPaletteEntries
GetClipBox
SaveDC
EqualRgn
RestoreDC
SetDCPenColor
SetTextAlign
PatBlt
SetLayout
SetTextColor
GetPixel
CreateMetaFileW
LineTo
GetTextCharset
CreateSolidBrush
GetTextExtentPoint32A
CreatePolygonRgn
CreateDIBPatternBrushPt
GetRegionData
OffsetRgn
GetDCOrgEx
CreateFontIndirectA
BitBlt
CreateCompatibleDC
SelectObject
CloseMetaFile
StretchDIBits
TextOutW
GetDeviceCaps
ExtTextOutW
DeleteObject
CombineRgn
SetBkColor
SetViewportOrgEx
CreateFontIndirectW
CreatePen
GetLayout
CreateDIBSection
GetObjectW
SetPaletteEntries
CreateFontW
GetBkColor
StretchBlt
CreateRectRgn

shell32

SHGetInstanceExplorer
ShellExecuteExW
SHGetSpecialFolderLocation
SHBrowseForFolderW
SHAppBarMessage
Shell_NotifyIconA
SHSetLocalizedName
ExtractAssociatedIconExW
SHGetPathFromIDListW
SHGetDesktopFolder
SHGetSpecialFolderPathW
ExtractIconExW
SHChangeNotify
SHGetDataFromIDListW
SHGetFolderPathW
DragQueryFileW
SHGetPathFromIDListA
SHFileOperationW
SHGetFolderLocation
Shell_NotifyIconW
ShellExecuteW
SHGetFolderPathAndSubDirW
ShellAboutW
SHPathPrepareForWriteW
SHCreateShellItem
ExtractIconW
SHBindToParent
ShellExecuteA
SHGetFileInfoW

ntdll

RtlAdjustPrivilege
NtSuspendProcess
RtlAddAccessAllowedObjectAce
NtQuerySemaphore

advapi32

OpenThreadToken
GetTokenInformation
RegQueryValueW
CryptAcquireContextW
SetThreadToken
RegOpenKeyExW
RegQueryValueExA
CryptDestroyHash
SetTokenInformation
RegEnumValueA
RegOpenCurrentUser
GetLengthSid
CryptGetHashParam
ConvertStringSidToSidW
RegEnumValueW
RegSetValueExW
TraceEvent
GetUserNameW
ImpersonateSelf
GetTraceLoggerHandle
ConvertSidToStringSidW
RegEnumKeyExW
UnregisterTraceGuids
RegDeleteValueA
GetTraceEnableLevel
DuplicateTokenEx
ConvertStringSecurityDescriptorToSecurityDescriptorW
RegCreateKeyExW
CryptHashData
RegDeleteKeyA
RegEnumKeyW
RegQueryValueExW
RegSetValueExA
RegDeleteValueW
OpenProcessToken
GetTraceEnableFlags
CryptCreateHash
RegDeleteKeyW
RegCreateKeyA
RegCloseKey
RegCreateKeyExA
RegOpenKeyExA
RegOpenKeyW
CryptReleaseContext
CreateProcessAsUserW
RegisterTraceGuidsW
RegQueryInfoKeyW
TraceMessage
IsTextUnicode

kernel32

VirtualAlloc

ddraw

DirectDrawCreate

rtutils

RouterLogEventExA
LogErrorW
TraceDumpExA
RouterGetErrorStringW
RouterLogEventStringA
RouterLogRegisterA

uxtheme

GetThemeBackgroundExtent
GetThemeBackgroundContentRect
DrawThemeParentBackground
GetThemeMargins
GetThemeFont
GetThemeMetric
IsAppThemed
GetThemePartSize
SetWindowTheme
OpenThemeData
GetThemeColor
CloseThemeData
DrawThemeBackground
IsThemeActive
GetThemeAppProperties

psapi

GetProcessImageFileNameW

user32

SetMenuItemInfoW
GetWindowPlacement
MapWindowPoints
AttachThreadInput
MessageBoxExW
EnumDisplaySettingsW
TrackPopupMenu
PtInRect
FindWindowA
DefWindowProcW
AdjustWindowRectEx
GetWindowTextW
GetMessagePos
SetCursor
SetForegroundWindow
SetWindowsHookExW
RedrawWindow
GetPropA
PeekMessageW
GetMenuItemInfoA
TranslateMessage
SetCursorPos
EndDialog
AdjustWindowRect
RegisterWindowMessageW
GetClassInfoW
EndPaint
DispatchMessageA
EnumWindows
DdeCreateStringHandleW
GetWindowThreadProcessId
SetDlgItemTextW
SetCapture
RegisterClipboardFormatA
SendMessageTimeoutW
EnumDesktopWindows
SetDlgItemInt
TrackPopupMenuEx
SetRectEmpty
SendMessageA
GetProcessWindowStation
GetWindowInfo
UpdateWindow
LoadStringA
GetSystemMenu
CopyImage
SendDlgItemMessageW
PeekMessageA
GetSubMenu
LoadIconW
CharLowerW
BeginDeferWindowPos
EnumChildWindows
NotifyWinEvent
DestroyMenu
SystemParametersInfoW
SetWindowRgn
SendNotifyMessageW
GetClipboardFormatNameW
SetMenuDefaultItem
RemoveMenu
GetDC
WinHelpW
UnhookWindowsHookEx
LoadAcceleratorsW
SetWindowPos
DrawFocusRect
ChildWindowFromPoint
IsChild
RegisterClipboardFormatW
GetPropW
GetMessageW
MapDialogRect
RegisterClassExW
GetWindowLongW
UnionRect
SetActiveWindow
PostMessageW
SetWindowLongA
GetKeyNameTextW
GetWindowTextLengthW
IsMenu
MessageBeep
DdeQueryStringW
SetMenuItemBitmaps
GetMessageTime
DdeCreateDataHandle
MonitorFromPoint
ReleaseDC
ChangeClipboardChain
ShowOwnedPopups
VkKeyScanExW
GetDlgItemTextW
CheckRadioButton
SetWindowLongW
LockSetForegroundWindow
GetSysColor
CharLowerBuffW
GetKeyState
GetCursor
GetLastInputInfo
DeleteMenu
GetDoubleClickTime
PostThreadMessageW
DdeUninitialize
DispatchMessageW
AnimateWindow
MsgWaitForMultipleObjectsEx
RegisterClassW
GetComboBoxInfo
DdeDisconnect
IsWindow
DialogBoxParamW
DestroyIcon
UnregisterClassW
CallNextHookEx
GetAncestor
SetTimer
SetParent
SendMessageW
DialogBoxIndirectParamW
ScreenToClient
CharPrevA
GetCursorPos
LoadMenuW
MonitorFromWindow
MessageBoxExA
DdeGetData
WaitMessage
GetClientRect
EnableMenuItem
GetMenuItemID
SystemParametersInfoA
SetMenu
IsRectEmpty
RemovePropA
DdeFreeDataHandle
GetForegroundWindow
GetShellWindow
DestroyWindow
GetMonitorInfoW
EndMenu
TrackMouseEvent
GetClassNameW
GetClassInfoExW
LoadBitmapW
CharNextW
GetSystemMetrics
SetScrollPos
GetAsyncKeyState
RegisterWindowMessageA
DrawIconEx
GetActiveWindow
MessageBoxIndirectW
PostMessageA
ShowCaret
AppendMenuW
GetWindowRgnBox
EnumThreadWindows
LoadCursorW
PostQuitMessage
CheckMenuRadioItem
GetClassWord
DrawTextExW
GetMenuState
SetFocus
InsertMenuItemW
SetPropA
EqualRect
HideCaret
EmptyClipboard
MapVirtualKeyW
SetClipboardData
CheckDlgButton
CloseClipboard
DialogBoxParamA
InsertMenuW
MessageBoxW
GetDlgCtrlID
CharPrevW
GetDlgItem
SetPropW
FindWindowExW
GetKeyboardLayout
DeferWindowPos
GetLastActivePopup
IsWindowUnicode
EnableWindow
CopyIcon
FindWindowW
MsgWaitForMultipleObjects
MonitorFromRect
LoadStringW
GetMenuItemInfoW
GetWindowDC
ShowWindow
OpenClipboard
DdeNameService
IsIconic
RemovePropW
DrawFrameControl
WaitForInputIdle
GetMenuDefaultItem
MoveWindow
PostThreadMessageA
SetScrollInfo
IsDialogMessageW
CreateWindowExW
CreateDialogParamW
CreateMenu
SetRect
ClientToScreen
SetClipboardViewer
GetScrollInfo
KillTimer
GetFocus
AllowSetForegroundWindow
OffsetRect
CallMsgFilterW
GetWindow
InvalidateRect
DrawEdge
GetWindowLongA
GetWindowRect
BeginPaint
DdeFreeStringHandle
SetWindowTextW
CreateIconIndirect
GetMenuItemCount
GetNextDlgTabItem
GetIconInfo
IntersectRect
CreatePopupMenu
DdeConnect
IsCharAlphaNumericW
ShowScrollBar
GetClassLongW
GetMenuStringW
GetDialogBaseUnits
GetDesktopWindow
DdeInitializeW
IsDlgButtonChecked
wsprintfW
FillRect
GetTopWindow
GetMessageA
CopyRect
IsHungAppWindow
CallWindowProcW
WindowFromPoint
DrawTextW
EndDeferWindowPos
IsWindowEnabled
DialogBoxIndirectParamA
CharUpperW
GetParent
InflateRect
UpdateLayeredWindow
LoadImageW
GetSysColorBrush
SendMessageTimeoutA
GetClipboardData
IsWindowVisible
LoadCursorA
TranslateAcceleratorW
MessageBoxIndirectA
DestroyAcceleratorTable
DefWindowProcA
SetWindowPlacement
CharNextA
DdeClientTransaction
ReleaseCapture
GetCapture
CheckMenuItem

Sections

.text
Size: 1024B - Virtual size: 988B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 218KB - Virtual size: 217KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.tls
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 110KB - Virtual size: 12.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 641KB - Virtual size: 641KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0f256cf26a77b72cd56d16415611a541

Headers

File Characteristics

Imports

gdi32

shell32

ntdll

advapi32

kernel32

ddraw

rtutils

uxtheme

psapi

user32

Sections

.text Size: 1024B - Virtual size: 988B

.rsrc Size: 218KB - Virtual size: 217KB

.tls Size: 512B - Virtual size: 4KB

.data Size: 110KB - Virtual size: 12.9MB

.idata Size: 12KB - Virtual size: 12KB

.rdata Size: 641KB - Virtual size: 641KB

.text
Size: 1024B - Virtual size: 988B

.rsrc
Size: 218KB - Virtual size: 217KB

.tls
Size: 512B - Virtual size: 4KB

.data
Size: 110KB - Virtual size: 12.9MB

.idata
Size: 12KB - Virtual size: 12KB

.rdata
Size: 641KB - Virtual size: 641KB