03ac73b4dd80876885b46a5c1659cd9f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

03ac73b4dd80876885b46a5c1659cd9f_JaffaCakes118
Size

388KB
MD5

03ac73b4dd80876885b46a5c1659cd9f
SHA1

c67b3467ec40fe1900dca7dd1a7f7505daf40490
SHA256

bb91b38ecf3975f4f8f77a53893e726d197511670ca8a264f4be17fb5a66bf1e
SHA512

8d7dcac6e49649eee256fb9e423e9304908f6f29295e5b66ef5e428b642aae9f3620bdcc0fd132887a02f6612da762d30386071fc5ca92bb55353712a5026f20
SSDEEP

6144:0f4vQHI5f4OlA7+MrL7EWPut7WiO7KbEiaNXcBJ/nzpzSC3Wbx2i+y6:TkI5f4OlY+Mrfdut78zd+zB3WbQ

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
03ac73b4dd80876885b46a5c1659cd9f_JaffaCakes118

Files

03ac73b4dd80876885b46a5c1659cd9f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0206f72a3998df8ef25c9a015e8a7da5

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RaiseException
HeapAlloc
HeapFree
TerminateProcess
GetCommandLineA
ExitProcess
HeapReAlloc
HeapSize
GetACP
GetStartupInfoA
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
RtlUnwind
UnhandledExceptionFilter
GlobalAddAtomA
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
SetStdHandle
lstrcpyA
WideCharToMultiByte
WaitForMultipleObjects
TerminateThread
WaitForSingleObject
CreateThread
ResetEvent
WriteFile
FlushFileBuffers
SetFilePointer
GetCurrentProcess
GetOEMCP
SetErrorMode
GetProcessVersion
GetCPInfo
SizeofResource
WritePrivateProfileStringA
TlsGetValue
GlobalFlags
GlobalReAlloc
LocalReAlloc
TlsSetValue
TlsAlloc
TlsFree
GlobalHandle
lstrcpynA
LocalFree
LocalAlloc
VirtualFree
SetLastError
GetLastError
SetEvent
MulDiv
LoadLibraryA
InterlockedIncrement
DeleteCriticalSection
InterlockedDecrement
GlobalGetAtomNameA
FreeLibrary
GetVersion
VirtualAlloc
GlobalFindAtomA
Sleep
GetModuleHandleA
GetProcAddress
GlobalUnlock
GlobalFree
GetModuleFileNameA
GlobalLock
GlobalAlloc
GlobalDeleteAtom
lstrcmpA
lstrcmpiA
GetCurrentThread
GetCurrentThreadId
lstrlenA
lstrcatA
IsBadWritePtr
SetUnhandledExceptionFilter
HeapCreate
CloseHandle
FindResourceA
GetTickCount
MultiByteToWideChar
GetCurrentProcessId
LockResource
LoadResource
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
CreateEventA
GetProfileStringA

user32

IsDialogMessageA
SetWindowTextA
ShowWindow
DestroyMenu
ClientToScreen
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
GetClassNameA
PtInRect
LoadStringA
GetSysColorBrush
InflateRect
InvalidateRect
GetTopWindow
GetCapture
WinHelpA
wsprintfA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
MapWindowPoints
GetDlgCtrlID
DefWindowProcA
CreateWindowExA
SendDlgItemMessageA
UpdateWindow
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
SetForegroundWindow
GetWindow
SetWindowLongA
GetSysColor
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
CopyRect
GetDC
ReleaseDC
EndDialog
SetActiveWindow
IsWindow
CreateDialogIndirectParamA
DestroyWindow
GetDlgItem
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
PeekMessageA
GetCursorPos
SetWindowsHookExA
GetParent
GetLastActivePopup
IsWindowEnabled
GetWindowLongA
PostQuitMessage
EnableWindow
IsIconic
GetSystemMetrics
GetClientRect
DrawIcon
GetSystemMenu
AppendMenuA
SendMessageA
SetTimer
SetFocus
AdjustWindowRectEx
ScreenToClient
UnhookWindowsHookEx
GetPropA
GetWindowTextLengthA
GetWindowTextA
GetClassLongA
PostMessageA
LoadIconA
ReleaseCapture
SetCapture
LoadCursorA
SetCursor
MessageBoxA
GetForegroundWindow
RegisterWindowMessageA
SetWindowPos
SetPropA
CharNextA
DefDlgProcA
ShowCaret
UnregisterClassA
HideCaret
DrawFocusRect
ExcludeUpdateRgn
IsWindowUnicode

gdi32

CreateBitmap
GetClipBox
SetTextColor
SetBkColor
GetObjectA
DeleteDC
SaveDC
RestoreDC
SelectObject
GetStockObject
SetBkMode
SetMapMode
OffsetViewportOrgEx
SetViewportExtEx
SetViewportOrgEx
ScaleViewportExtEx
ScaleWindowExtEx
DeleteObject
GetDeviceCaps
CreateSolidBrush
PtVisible
TextOutA
ExtTextOutA
RectVisible
Escape
CreateCompatibleDC
BitBlt
CreateDIBitmap
SetWindowExtEx
IntersectClipRect
GetTextExtentPointA
PatBlt

winspool.drv

OpenPrinterA
ClosePrinter
DocumentPropertiesA

advapi32

RegSetValueExA
RegOpenKeyExA
RegCloseKey
RegCreateKeyExA

comctl32

ord17
ImageList_Destroy

ole32

CreateItemMoniker
CoCreateInstance
CoInitialize
GetRunningObjectTable
CoUninitialize

Sections

.text
Size: 96KB - Virtual size: 95KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.T�
Size: 232KB - Virtual size: 232KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

0206f72a3998df8ef25c9a015e8a7da5

Headers

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

advapi32

comctl32

ole32

Sections

.text Size: 96KB - Virtual size: 95KB

.rdata Size: 24KB - Virtual size: 22KB

.data Size: 16KB - Virtual size: 30KB

.rsrc Size: 16KB - Virtual size: 12KB

.T� Size: 232KB - Virtual size: 232KB

.text
Size: 96KB - Virtual size: 95KB

.rdata
Size: 24KB - Virtual size: 22KB

.data
Size: 16KB - Virtual size: 30KB

.rsrc
Size: 16KB - Virtual size: 12KB

.T�
Size: 232KB - Virtual size: 232KB