00ab86e864c84b35b64f1c1b3d61b7c0_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

00ab86e864c84b35b64f1c1b3d61b7c0_JaffaCakes118
Size

332KB
MD5

00ab86e864c84b35b64f1c1b3d61b7c0
SHA1

5843f8098662fea312857d6c1f5f46af790926e3
SHA256

c535fd6d327e29c8a1b130cc3049ad14417604cf5bad791a4958720e0ed32139
SHA512

f57c0f265a78fc622ece0cdb5892dad425acb13a8ec62c7dff7cb3ee28e659235247c126b420c4eb127e20a021b9f437ae510672a0b05a4cc64e7be3f39eff64
SSDEEP

6144:aquPcIKWynvppFUY1r3l4iq3Kf4MHPiWW6l7y+H3wWj+seRGpZoP:aqscIrynvLOiUKwMqOykAyCRp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
00ab86e864c84b35b64f1c1b3d61b7c0_JaffaCakes118

Files

00ab86e864c84b35b64f1c1b3d61b7c0_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2890a366c2d901df40b563ced444c7e8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

WindowFromPoint
SetWindowsHookExA
DefWindowProcA
SetScrollRange
GetWindowThreadProcessId
CallWindowProcA
GetScrollInfo
PostQuitMessage
PeekMessageW
GetMenuState
IsDialogMessageA
ChildWindowFromPoint
GetScrollPos
GetMenuItemCount
PostMessageA
SetPropA
PeekMessageA
ReleaseCapture
GetActiveWindow
UnregisterClassA
SetMenu
DefMDIChildProcA
GetWindowTextA
DrawIcon
SendMessageW
SystemParametersInfoA
CharToOemA
SetWindowPos
DefFrameProcA
GetClassInfoA
DestroyIcon
LoadIconA
DispatchMessageA
ScreenToClient
UpdateWindow
CharNextA
DestroyCursor
ShowScrollBar
ActivateKeyboardLayout
IsRectEmpty
DrawMenuBar
GetKeyboardState
InflateRect
ScrollWindow
OpenClipboard
EnableMenuItem
InsertMenuA
IntersectRect
SetFocus
AdjustWindowRectEx
EnumChildWindows
DrawFrameControl
DrawTextA
BeginPaint
DrawEdge
CloseClipboard
GetKeyboardType
RegisterClipboardFormatA
GetLastActivePopup
DispatchMessageW
EnableScrollBar
FindWindowA
CallNextHookEx
GetMenu
EnumThreadWindows
DestroyMenu
CharNextW
SetActiveWindow
CheckMenuItem
SetTimer
RemoveMenu
KillTimer
IsWindowUnicode
CharLowerBuffA
SetCapture
DestroyWindow
SetScrollInfo
LoadStringA
RedrawWindow
EqualRect
RegisterWindowMessageA
FillRect
DrawAnimatedRects
GetForegroundWindow
LoadCursorA
MessageBoxA
TrackPopupMenu
CreatePopupMenu
GetClipboardData
IsWindowEnabled
ClientToScreen
MapWindowPoints
GetDlgItem
GetWindowLongW
DrawIconEx
RegisterClassA
SetWindowLongA
GetWindowLongA
CreateMenu
IsIconic
SetMenuItemInfoA
CharLowerA
GetMenuStringA
DeleteMenu
CharUpperBuffA
GetDCEx
CreateIcon
MoveWindow
GetClassNameA
GetClientRect
PtInRect
GetSysColor
EnumChildWindows
GetWindow
GetScrollInfo
IsDialogMessageW
LoadBitmapA
CharLowerA
PtInRect
GetSystemMetrics
ReleaseCapture
UnregisterClassA
GetCursor
GetMenuItemInfoA
DispatchMessageA
RemovePropA
EmptyClipboard
GetScrollPos
RemoveMenu
SetFocus
MoveWindow
CallNextHookEx
ScreenToClient
IntersectRect
MsgWaitForMultipleObjects
InvalidateRect
SetClassLongA
DefFrameProcA
SystemParametersInfoA
IsChild
GetKeyState
GetWindowLongW
GetKeyboardState
GetClassLongA
SetClipboardData
DestroyWindow
OemToCharA
GetClassNameA
FillRect
EnableMenuItem
InsertMenuA
GetForegroundWindow
UpdateWindow
SetScrollInfo
EqualRect
GetDesktopWindow
ShowWindow
DispatchMessageW
EnumWindows
SetWindowLongW
AdjustWindowRectEx
GetKeyboardLayoutList
LoadIconA
IsDialogMessageA
DefMDIChildProcA
MessageBoxA
InflateRect
GetWindowPlacement
SetRect
GetDC
GetSysColorBrush
GetParent
GetMenu
GetWindowRect
RegisterClassA
TranslateMDISysAccel
SetCapture
DrawIconEx
CharNextW
GetDlgItem
TrackPopupMenu
GetLastActivePopup
DrawAnimatedRects
CallWindowProcA
KillTimer
FrameRect
GetClipboardData
IsWindowUnicode
GetCapture
IsIconic
DefWindowProcA
SetWindowPos
MessageBeep
MapWindowPoints
GetKeyboardLayoutNameA
SendMessageW
GetMessagePos
RedrawWindow
ShowOwnedPopups
GetActiveWindow
RegisterWindowMessageA
GetSystemMenu
SetPropA
CharUpperBuffA
CheckMenuItem
SetScrollRange
TranslateMessage
IsWindow
GetKeyNameTextA
SetForegroundWindow
DrawTextA
SetTimer
PostMessageA
GetCursorPos
DrawEdge
GetSysColor
CloseClipboard
SetWindowPlacement
IsZoomed
ChildWindowFromPoint
GetMenuItemID
OffsetRect

kernel32

GetCommandLineA
GetCommandLineW
VirtualAlloc
GetACP
ExitThread
GetModuleHandleW
LoadLibraryA
GetProcAddress
ExitProcess
GlobalAlloc
IsBadReadPtr
GetOEMCP
GetModuleHandleA
LoadLibraryExA
CompareStringA
GetTickCount
WriteFile
GetFileSize
IsBadReadPtr

gdi32

GetCurrentPositionEx
CreateCompatibleDC
GetBitmapBits
SelectPalette
CreateBitmap
CreateCompatibleBitmap

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
GetFileVersionInfoSizeA
VerQueryValueA
VerInstallFileA
VerInstallFileA

ole32

CoRevokeClassObject
CoGetObjectContext
ReleaseStgMedium
OleCreateStaticFromData
CoUninitialize
CoTaskMemFree
CreateOleAdviseHolder
CoCreateGuid
StgOpenStorage
CoRevokeClassObject
OleCreateStaticFromData
CLSIDFromString
CreateStreamOnHGlobal
CoGetObjectContext
OleRun
MkParseDisplayName
CLSIDFromString
CoCreateFreeThreadedMarshaler
CoCreateGuid
StringFromIID
MkParseDisplayName
CLSIDFromProgID
CoGetMalloc
OleRun
CoRegisterClassObject
CoGetObjectContext
OleRegGetUserType
CLSIDFromString

msvcrt

asin
memcmp
malloc
memset
sprintf
log
fabs
sin
calloc
wcschr
pow
clock
memcmp
_acmdln
wcsncmp
sqrt
memset

shell32

SHGetDiskFreeSpaceA
DragQueryFileA
Shell_NotifyIconA
SHGetFileInfoA
SHGetDesktopFolder
SHFileOperationA
SHGetDesktopFolder
SHGetFolderPathA
SHGetDiskFreeSpaceA
SHFileOperationA
Shell_NotifyIconA
SHGetSpecialFolderLocation
SHGetDiskFreeSpaceA
SHGetFileInfoA
SHGetDesktopFolder
SHGetFileInfoA
Shell_NotifyIconA

advapi32

RegLoadKeyA
RegOpenKeyExA
GetUserNameA
RegCreateKeyExA
RegEnumValueA

shlwapi

SHDeleteValueA
SHStrDupA
SHGetValueA
PathGetCharTypeA
SHQueryInfoKeyA
SHQueryValueExA
SHEnumValueA
SHDeleteKeyA
PathFileExistsA
SHSetValueA
PathIsContentTypeA
PathFileExistsA
SHQueryInfoKeyA
SHSetValueA
SHQueryValueExA
PathIsDirectoryA
SHEnumValueA
SHStrDupA
SHDeleteValueA
SHGetValueA
SHQueryValueExA
PathIsContentTypeA
SHSetValueA
SHDeleteValueA
PathIsDirectoryA
PathGetCharTypeA
PathIsContentTypeA

comctl32

ImageList_Write
ImageList_Destroy
ImageList_GetBkColor
ImageList_Remove

comdlg32

GetOpenFileNameA
GetFileTitleA
FindTextA
ChooseColorA
GetSaveFileNameA
ChooseColorA

oleaut32

SysAllocStringLen
VariantChangeType
VariantChangeType
OleLoadPicture
SafeArrayCreate
SafeArrayGetUBound
RegisterTypeLib
SafeArrayUnaccessData

Sections

.text
Size: 288KB - Virtual size: 284KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

DATA
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.gdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2890a366c2d901df40b563ced444c7e8

Headers

File Characteristics

Imports

user32

kernel32

gdi32

version

ole32

msvcrt

shell32

advapi32

shlwapi

comctl32

comdlg32

oleaut32

Sections

.text Size: 288KB - Virtual size: 284KB

.rdata Size: 12KB - Virtual size: 10KB

.data Size: 8KB - Virtual size: 6KB

DATA Size: 4KB - Virtual size: 1KB

.gdata Size: 8KB - Virtual size: 7KB

.rsrc Size: 8KB - Virtual size: 7KB

.text
Size: 288KB - Virtual size: 284KB

.rdata
Size: 12KB - Virtual size: 10KB

.data
Size: 8KB - Virtual size: 6KB

DATA
Size: 4KB - Virtual size: 1KB

.gdata
Size: 8KB - Virtual size: 7KB

.rsrc
Size: 8KB - Virtual size: 7KB