fde546b545ae7a12b113ed52487e2b65_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

fde546b545ae7a12b113ed52487e2b65_JaffaCakes118
Size

83KB
MD5

fde546b545ae7a12b113ed52487e2b65
SHA1

aa9c99c3eb0f6bf545218089514d8bd91d4869ad
SHA256

4fadfd83d859fe270f3287231e716d7d6366484abb99dd78aa61cc5597da6ec8
SHA512

8d01f1afd6011fa9b096268d28f933c2842c826c90fd18dffc2838ae743f3e5cdb2ebe9bf61f42704e8c33623a37c4f6761dc4439bfe9ede60a3e7fb3ecc463e
SSDEEP

1536:/v1KIobe8XG8YaFgm5Wn3isQLlB/UWbVGUePFsdL/t4QKzcwodz+GWQcs2JHhUF4:lySSYaH523isIBsWbbeaV4zzcTdz+GWj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fde546b545ae7a12b113ed52487e2b65_JaffaCakes118

Files

fde546b545ae7a12b113ed52487e2b65_JaffaCakes118
.exe windows:4 windows x86 arch:x86

5193dd0af0b2b56a02b2e182f2c09543

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FindFirstVolumeMountPointA
RtlUnwind
GetEnvironmentVariableA
SetEnvironmentVariableA
EnumSystemLocalesA
CreateMutexA
GlobalMemoryStatus
MultiByteToWideChar
GetLongPathNameW
DnsHostnameToComputerNameW
GlobalReAlloc
CreateIoCompletionPort
GetModuleFileNameW
QueryDosDeviceW
FatalAppExitA
FreeUserPhysicalPages
SetConsoleTitleA
GetTimeFormatA
EnumLanguageGroupLocalesW
VirtualQueryEx
GetFileType
VirtualFreeEx
VirtualProtect
SizeofResource
GetWindowsDirectoryA
ReadConsoleOutputCharacterW
CreateTapePartition
GetSystemDefaultLCID
SetConsoleOutputCP
CreateConsoleScreenBuffer
_hwrite
EscapeCommFunction
CreateJobObjectA
MoveFileW
InterlockedDecrement
EnumCalendarInfoW
SetThreadContext
TerminateProcess
GetFullPathNameA
UpdateResourceW
GetProfileStringA
GetPrivateProfileStructW
GetConsoleTitleW
HeapDestroy
SetThreadIdealProcessor
GetStartupInfoW
GetModuleFileNameA
GetDateFormatA
GetTempFileNameW
IsBadStringPtrA
SetThreadLocale
PulseEvent
Process32FirstW
GetBinaryTypeW
FindResourceExW
SetCurrentDirectoryW
IsDebuggerPresent
GetDiskFreeSpaceExA
InitializeCriticalSection
CreateSemaphoreW
Module32First
lstrcat
ExitProcess
GetFileSizeEx
HeapLock
CreateThread
lstrcmp
GlobalGetAtomNameW
GlobalAlloc
PurgeComm
GlobalLock
ConvertDefaultLocale
ProcessIdToSessionId
GetSystemPowerStatus
GetDateFormatW
GetAtomNameW
CancelDeviceWakeupRequest
IsSystemResumeAutomatic
SetInformationJobObject
FindClose
GetCommConfig
RtlZeroMemory
GetNumberOfConsoleInputEvents
FindNextVolumeA
GetLongPathNameA
WriteTapemark
GetProcessHeaps
SetSystemPowerState
TerminateJobObject
CreateProcessA
ReadConsoleOutputAttribute
DisconnectNamedPipe
CancelIo
SetTimerQueueTimer
GetPrivateProfileStructA
GetPriorityClass
Heap32First
OpenThread
SetLocalTime
LocalHandle
UnlockFile
QueryDosDeviceA
GetCPInfoExA
LocalFree
HeapCompact
OpenMutexA
FindResourceW
OpenMutexW
OpenProcess
VirtualProtectEx
EndUpdateResourceW
CreateHardLinkA
ResetWriteWatch
SignalObjectAndWait
GlobalUnWire
VirtualFree
GetWriteWatch
DisableThreadLibraryCalls
AddConsoleAliasA
GetDiskFreeSpaceExW
ExpandEnvironmentStringsA
LCMapStringA
CopyFileExA
GetSystemDefaultLangID
SetUnhandledExceptionFilter
ReadConsoleW
GetConsoleCP
GetVersionExW
lstrcpyn
OpenWaitableTimerW
FindAtomA
GetProcessVersion
GlobalDeleteAtom
BeginUpdateResourceW
GetProcessIoCounters
OpenWaitableTimerA
OutputDebugStringW
GetConsoleAliasesLengthW
GetComputerNameW
ReadConsoleInputA
WriteFileEx
GetProfileIntW
GetNamedPipeInfo
WriteProfileSectionA
MoveFileWithProgressW
IsDBCSLeadByte
GetProcessWorkingSetSize
MulDiv
VerSetConditionMask
GetTempPathW
GetDefaultCommConfigW
WriteConsoleInputA
EnumCalendarInfoExA
GlobalWire
SetFileAttributesA
DeviceIoControl
GetSystemTimeAdjustment
WaitForDebugEvent
RaiseException
SetThreadPriorityBoost
GetWindowsDirectoryW
SetEvent
CancelTimerQueueTimer
CreateDirectoryExW
WaitNamedPipeA
GetStringTypeW
lstrcpyW
CopyFileA
GetStringTypeA
EndUpdateResourceA
ResetEvent
SetMessageWaitingIndicator
Process32Next
FoldStringW
CreateFileMappingA
GetFileInformationByHandle
GetComputerNameExA
RtlFillMemory
ConnectNamedPipe
GetCommandLineA
GetSystemDirectoryW
SystemTimeToTzSpecificLocalTime
GetPrivateProfileSectionNamesA
SearchPathA
IsBadHugeWritePtr
CallNamedPipeA
GetMailslotInfo
GetStringTypeExA
EnumResourceNamesW
SetEndOfFile
MoveFileExA
GetPrivateProfileSectionNamesW
CommConfigDialogA
MapUserPhysicalPagesScatter
CreateMailslotA
GetProcessTimes
GetEnvironmentStringsA
PrepareTape
DeleteFileA
CreateFiber
SetVolumeMountPointA
HeapCreate
WriteConsoleOutputCharacterW
GetDiskFreeSpaceA
Module32FirstW
GetDriveTypeA
ReadProcessMemory
GlobalMemoryStatusEx
LCMapStringW
FindFirstVolumeMountPointW
_lwrite
SetComputerNameExW
EnumTimeFormatsW
InitializeCriticalSectionAndSpinCount
GetVersion
SwitchToFiber
GetThreadTimes
IsBadCodePtr
WriteConsoleOutputAttribute
FatalAppExitW
BuildCommDCBA
SuspendThread
GetConsoleAliasExesLengthA
MoveFileExW
BindIoCompletionCallback
LeaveCriticalSection
IsBadHugeReadPtr
FreeEnvironmentStringsA
QueueUserAPC
SetFilePointer
VerLanguageNameA
Module32Next
SetHandleCount
GetQueuedCompletionStatus
CreateJobObjectW
WriteConsoleA
SetDefaultCommConfigA
GetConsoleOutputCP
WriteProfileSectionW
CallNamedPipeW
BuildCommDCBW
GlobalAddAtomW
GetLogicalDrives
PeekConsoleInputA
GetUserDefaultLCID
ContinueDebugEvent
GetTimeFormatW
GetConsoleAliasExesLengthW
SetHandleInformation
VerLanguageNameW
GetCompressedFileSizeA
WriteConsoleW
GetCurrentProcessId
SetConsoleCtrlHandler
UnregisterWaitEx
VirtualAlloc
Thread32First
TerminateThread
WritePrivateProfileStringA
SetupComm
QueryPerformanceCounter
GetStdHandle
GlobalHandle
GetModuleHandleW
ClearCommBreak
LocalUnlock
SetConsoleWindowInfo
ScrollConsoleScreenBufferW
WaitForMultipleObjectsEx
Process32NextW
InterlockedExchange
GetConsoleTitleA
CreateDirectoryW
GetConsoleFontSize
GetComputerNameA
EnumTimeFormatsA
DeleteFileW
GetSystemWindowsDirectoryA
CopyFileExW
SetFileTime
SetConsoleMode
CreateSemaphoreA
GetDriveTypeW
GetProfileStringW
SetVolumeLabelW
OpenEventA
ChangeTimerQueueTimer
IsValidLanguageGroup
GetTimeZoneInformation
EnumSystemCodePagesW
GetFileTime
DeleteTimerQueue
GetThreadLocale
ScrollConsoleScreenBufferA
ExitThread
OpenEventW
Sleep
BackupSeek
GetCompressedFileSizeW
WriteProfileStringA
ExpandEnvironmentStringsW
GetCurrentDirectoryW
SetTapePosition
AddAtomW
WriteConsoleOutputCharacterA
PeekConsoleInputW
GetCurrentConsoleFont
WritePrivateProfileSectionA
TlsFree
EnumResourceTypesW
DeleteCriticalSection
GetVersionExA
SetComputerNameW
SetProcessShutdownParameters
GetVolumeInformationA
WriteConsoleOutputA
RequestWakeupLatency
SetStdHandle
GetProcessAffinityMask
SetCommMask
GetConsoleCursorInfo
FindResourceExA
ReleaseSemaphore
GetDiskFreeSpaceW
Module32NextW
SetProcessAffinityMask
InterlockedExchangeAdd
BeginUpdateResourceA
GetFullPathNameW
lstrcmpiA
FreeLibrary
SetTapeParameters
FileTimeToSystemTime
DuplicateHandle
GetNamedPipeHandleStateW
GetConsoleScreenBufferInfo
FatalExit
GetProcessShutdownParameters
WaitForSingleObject
LockFile
WaitForMultipleObjects
AllocateUserPhysicalPages
OpenFileMappingW
GetProfileSectionW
ReadFile
GetComputerNameExW
FlushConsoleInputBuffer
CreateEventA
PostQueuedCompletionStatus
GetCalendarInfoW
FreeEnvironmentStringsW
GetACP
EnumSystemLanguageGroupsW
SetCalendarInfoW
GetCommTimeouts
_lopen
LoadLibraryA
GetProcAddress

user32

ValidateRgn
DrawIcon
WinHelpW
SetCaretBlinkTime
CreateDialogIndirectParamA
AdjustWindowRect
SetWindowContextHelpId
TranslateAcceleratorW
SetDeskWallpaper
SetMenuItemInfoA
SetForegroundWindow
GetWindowModuleFileNameA
SetWindowsHookW
FindWindowExW
EditWndProc
DrawTextA
PostThreadMessageA
CharNextA
CharPrevA
InvertRect
CharPrevW
GetMessageExtraInfo
AppendMenuA
GetClassNameA
GetClipboardOwner
EnumDisplayMonitors
EnumChildWindows
FindWindowW
GetMenuContextHelpId
ShowWindowAsync
TranslateAcceleratorA
WINNLSGetIMEHotkey
DispatchMessageW
LockWindowUpdate
EnableWindow
UnloadKeyboardLayout
DdeQueryNextServer
IsIconic
MapWindowPoints
SetMenuItemInfoW
SetScrollPos
ShowCursor
ChangeClipboardChain
DispatchMessageA
GetMenuItemInfoA
OemKeyScan
DrawStateA
DrawCaption
DdeDisconnect
CreateDesktopW
GetDoubleClickTime
ShowScrollBar
DdeDisconnectList
DestroyMenu
ChangeMenuW
GetClientRect
CallMsgFilter
GetAltTabInfo
AnyPopup
GetSysColorBrush
RegisterClipboardFormatA
InternalGetWindowText
SendDlgItemMessageW
UnhookWinEvent
LookupIconIdFromDirectory
RegisterDeviceNotificationW
HideCaret
GetTopWindow
SetScrollInfo
EnumPropsA
UnhookWindowsHook
SetWindowPlacement
LoadMenuIndirectW
WindowFromDC
DlgDirSelectComboBoxExA
PostThreadMessageW
IsDlgButtonChecked
DrawAnimatedRects
UserHandleGrantAccess
CreateAcceleratorTableW
GetUserObjectInformationW
OemToCharBuffW
CallNextHookEx
GetClipboardData
SetWindowsHookExW
ToAscii
PostMessageW
GetGuiResources
DestroyAcceleratorTable
GetSubMenu
SendMessageW
CascadeChildWindows
EndTask
SetWindowsHookExA
ClientToScreen
SetCursor
DialogBoxIndirectParamW
IsZoomed
GetNextDlgGroupItem
LoadMenuIndirectA
SetWindowTextW
PackDDElParam
DefFrameProcA
LockSetForegroundWindow
SubtractRect
GetDCEx
MessageBeep
ToUnicode
SetUserObjectInformationA
MapVirtualKeyW
GrayStringA
DefFrameProcW
SetMenuInfo
GetWindowLongA
DlgDirListComboBoxA
ChangeMenuA
GetForegroundWindow
GetClassInfoExW
ReleaseDC
DefWindowProcA
SetSysColors
FlashWindow
WindowFromPoint
DestroyIcon
CharUpperBuffW
ChangeDisplaySettingsW
RedrawWindow
LoadCursorA
SetUserObjectInformationW
CopyImage
InsertMenuItemW
GetParent
GetMenuDefaultItem
FlashWindowEx
GetMenuItemInfoW
InSendMessageEx
IsChild
IsCharUpperW
GetKeyNameTextA
GetKBCodePage
RealGetWindowClassW
GetWindowThreadProcessId
IsCharLowerW
WinHelpA
UpdateLayeredWindow
GrayStringW
GetNextDlgTabItem
OpenInputDesktop
FreeDDElParam
EnumDisplayDevicesW
DdeInitializeW
GetKeyboardLayout
GetWindow
MenuItemFromPoint
SetLayeredWindowAttributes
GetKeyboardLayoutNameW
GetDlgItemTextA
SetCursorPos
EndDeferWindowPos
DdeAddData
GetUpdateRect
SendMessageCallbackW
OemToCharBuffA
ExitWindowsEx
CharToOemW
ArrangeIconicWindows
ReleaseCapture
GetUpdateRgn
DdeQueryStringW
EnumDisplaySettingsExA
TranslateAccelerator
EnumWindowStationsW
EnumPropsW
PeekMessageA
DrawFocusRect
LoadMenuW
ClipCursor
LoadCursorW
DefDlgProcW
DdeClientTransaction
GetMessageTime
RegisterWindowMessageW
GetClipboardFormatNameA
RegisterWindowMessageA
AttachThreadInput
GetClassWord
DeleteMenu
ReplyMessage
UnregisterDeviceNotification
CreateIcon
GetDC
SetRect
DdePostAdvise
GetAncestor
EndDialog
OpenClipboard
RemovePropW
ExcludeUpdateRgn
DrawFrameControl
GetMenuCheckMarkDimensions
InsertMenuItemA
EnumDisplaySettingsW
MessageBoxExW
GetMessageW
LoadMenuA
EnumDisplaySettingsExW
IsMenu
TrackPopupMenu
SetMenu
DlgDirListW
GetSystemMenu
IntersectRect
InSendMessage
CheckMenuRadioItem
GetInputDesktop
DestroyCursor
RegisterClassExW
GetMenuBarInfo
SetWinEventHook
CharNextW
GetLastActivePopup
MonitorFromRect
GetMenuStringW
PostMessageA
MessageBoxExA
GetClassInfoA
ActivateKeyboardLayout
IsCharAlphaNumericA
DdeInitializeA
CharNextExA
CreateWindowStationA
DdeReconnect
GetFocus
DdeGetLastError
GetDlgItemInt
UnregisterClassA
GetKeyboardType
GetThreadDesktop
MapVirtualKeyExA
IMPGetIMEA
DdeCreateDataHandle
SetMessageExtraInfo
DlgDirSelectComboBoxExW
AllowSetForegroundWindow
DdeQueryStringA
GetMenu
SetRectEmpty
GetKeyboardState
DlgDirListComboBoxW
SetThreadDesktop
GetMouseMovePointsEx
IsDialogMessage
DdeEnableCallback
PtInRect
UnregisterHotKey
CheckMenuItem
HiliteMenuItem
GetDlgCtrlID
EnumWindowStationsA
SetProcessDefaultLayout
FindWindowExA
IsCharAlphaW
RegisterClipboardFormatW
SendIMEMessageExW
SetDlgItemInt
OpenWindowStationA
GetClassLongW
GetMenuInfo
GetMessageA
GetUserObjectInformationA
RealGetWindowClassA
InsertMenuA
DdeConnect
GetMenuItemID
DrawStateW
TrackPopupMenuEx
GetAsyncKeyState
EnumPropsExW
CreateMDIWindowW
PeekMessageW
OpenDesktopW
EnableScrollBar
GetClassInfoExA
RemovePropA
SetWindowPos
SetDlgItemTextW
DdeCmpStringHandles
SendMessageTimeoutW
CreateIconIndirect
SetClipboardData
SetKeyboardState
DlgDirListA
BeginDeferWindowPos
keybd_event
BroadcastSystemMessageW
GetWindowRect
DrawEdge
SetWindowsHookA
IsHungAppWindow
SetDlgItemTextA
DdeImpersonateClient
LoadBitmapW
MapDialogRect
SetClassLongW
GetUserObjectSecurity
GetClipboardSequenceNumber
GetWindowWord
CharToOemBuffA
IsWindowVisible
WaitForInputIdle
TabbedTextOutW
DrawTextExW
SetWindowWord
CreatePopupMenu
EnumPropsExA
GetDesktopWindow
CharUpperA
GetScrollRange
SetProcessWindowStation
GetKeyboardLayoutNameA
RealGetWindowClass
wvsprintfA
SetMenuDefaultItem
BringWindowToTop
ChildWindowFromPointEx
SetMenuItemBitmaps

msvcrt

memcpy

comdlg32

PrintDlgExA
PrintDlgW
PageSetupDlgA
GetSaveFileNameW
ReplaceTextW
GetFileTitleW
ReplaceTextA
GetFileTitleA
PrintDlgA
ChooseColorA

advapi32

RegOpenKeyExA

shell32

DragQueryPoint
SHFileOperation
SHPathPrepareForWriteW
SHInvokePrinterCommandW
SHCreateDirectoryExW
ExtractIconA
CommandLineToArgvW
ShellExecuteExW
FindExecutableA
SHBrowseForFolderW
ExtractIconExW
DragQueryFileA
DragQueryFileW
SHGetSpecialFolderPathA
ShellAboutW
ExtractAssociatedIconA
SHGetDiskFreeSpaceExA
SHGetSettings
SHGetPathFromIDListW
SHGetDiskFreeSpaceA
SHIsFileAvailableOffline
SHBrowseForFolder
SHGetDiskFreeSpaceExW
SHGetInstanceExplorer
SHAddToRecentDocs
SHCreateProcessAsUserW
SHGetIconOverlayIndexA
SHLoadInProc
ShellExecuteW
FindExecutableW
ExtractAssociatedIconExA
SHGetDesktopFolder
SHGetFileInfoA
SHFileOperationW
SHGetFolderPathA
ExtractIconExA
SHQueryRecycleBinA
SHBrowseForFolderA
ExtractIconW
Shell_NotifyIconA
SHInvokePrinterCommandA
WOWShellExecute
ShellHookProc
SHChangeNotify
ShellExecuteA
SHGetIconOverlayIndexW

shlwapi

StrRChrIW
StrRStrIW
StrRChrA
StrChrIA
StrStrW
StrRChrIA
StrCmpNIA
StrChrW
StrChrA
StrStrIW
StrStrIA

comctl32

CreatePropertySheetPage
ImageList_LoadImage
ord15
FlatSB_GetScrollProp
ImageList_AddMasked
CreatePropertySheetPageW
FlatSB_GetScrollPos
ord14
FlatSB_SetScrollInfo
ImageList_SetIconSize
ImageList_SetImageCount
ord8
ImageList_Draw
ImageList_Read
ord6
GetMUILanguage
ImageList_Merge
InitializeFlatSB
CreatePropertySheetPageA
ImageList_Copy
ImageList_AddIcon
FlatSB_GetScrollRange
ImageList_Create
ImageList_SetFilter
_TrackMouseEvent
ImageList_Remove
FlatSB_ShowScrollBar
FlatSB_SetScrollRange
ImageList_GetBkColor
ImageList_DrawIndirect
CreateStatusWindowW
ImageList_LoadImageA
PropertySheetA
ImageList_SetOverlayImage
CreateToolbarEx
ord16
ImageList_EndDrag
PropertySheetW
ord13
FlatSB_EnableScrollBar
ImageList_BeginDrag
DrawStatusText
ImageList_GetIconSize
ImageList_Destroy
PropertySheet

Sections

.text
Size: 53KB - Virtual size: 53KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.h1
Size: 1024B - Virtual size: 1000B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 22KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5193dd0af0b2b56a02b2e182f2c09543

Headers

File Characteristics

Imports

kernel32

user32

msvcrt

comdlg32

advapi32

shell32

shlwapi

comctl32

Sections

.text Size: 53KB - Virtual size: 53KB

.h1 Size: 1024B - Virtual size: 1000B

.data Size: 22KB - Virtual size: 21KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 53KB - Virtual size: 53KB

.h1
Size: 1024B - Virtual size: 1000B

.data
Size: 22KB - Virtual size: 21KB

.reloc
Size: 4KB - Virtual size: 3KB