07a188ae1bc171e25f0fcd50dabbf5aa_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

07a188ae1bc171e25f0fcd50dabbf5aa_JaffaCakes118
Size

512KB
MD5

07a188ae1bc171e25f0fcd50dabbf5aa
SHA1

ec2b1823b74dd311f16ef860f163a92a813a6d1f
SHA256

1addb5712a0ea958cf7aceb723ae0170e1d19f5bc41188188a58184170b9bb18
SHA512

0359c81c63a5bb73b753fcf28bdf3cae151a81399b9235a42314486b8f36280f058a5c29f8f9fdb089a62afb9bfd91b4bb76d1783facfed83798d45abcc2cfc6
SSDEEP

6144:HDdBO5SKob3B+eSc783LCNWXyCXb5vkiELCqLpeqsgiDmi6oB/dwO0hJ6fM8KGHG:HhxbB+eScQeNWdb58deEiTB6OcJd3

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
07a188ae1bc171e25f0fcd50dabbf5aa_JaffaCakes118

Files

07a188ae1bc171e25f0fcd50dabbf5aa_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9309b6758b863ec8cb21b2cd959a9277

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

N:\YVONJWZ\XZDPS.PDB

Imports

kernel32

GetStringTypeA
FreeLibrary
SetLastError
GetThreadLocale
GetSystemInfo
Sleep
ExitProcess
InterlockedIncrement
GetTickCount
SetEnvironmentVariableA
RaiseException
GetStartupInfoA
CreateMutexW
ResetEvent
GetCommandLineW
EnterCriticalSection
DuplicateHandle
GetModuleFileNameA
GetTempPathW
MoveFileW
GetCPInfo
GetConsoleMode
HeapCreate
GlobalFlags
GetCurrentThreadId
CompareStringW
GlobalUnlock
GetTimeZoneInformation
TerminateProcess
FreeEnvironmentStringsW
SizeofResource
IsValidCodePage
HeapAlloc
lstrcmpA
GetCurrentThread
GetExitCodeThread
SetFilePointer
GetOEMCP
lstrcpyA
CloseHandle
GetFileTime
WideCharToMultiByte
GetEnvironmentStrings
TlsGetValue
SetUnhandledExceptionFilter
HeapFree
InterlockedExchange
CreateDirectoryW
SetFileAttributesW
CreateFileA
lstrcpynW
lstrlenA
TlsSetValue
GetModuleFileNameW
GetACP
GetVersionExW
GetLastError
ResumeThread
TlsFree
UnmapViewOfFile
SetFileTime
GetLocaleInfoW
LocalFree
GetStdHandle
MultiByteToWideChar
GetStartupInfoW
QueryPerformanceCounter
GetFileType
SetEndOfFile
TlsAlloc
LoadLibraryW
GetCommandLineA
SetHandleCount
lstrcmpiW
TerminateThread
VirtualProtect
GetLocalTime
GetVersionExA
FindClose
GetModuleHandleW
WriteFile
WaitForSingleObject
LocalFileTimeToFileTime
InitializeCriticalSection
FreeEnvironmentStringsA
GlobalLock
GetFileSize
GlobalHandle
GetDriveTypeW
CompareStringA
GetProcAddress
ReadFile
OpenProcess
VirtualAlloc
GetTimeFormatA
LCMapStringA
DebugBreak
VirtualQuery
DeleteCriticalSection
SetStdHandle
GetSystemTime
VirtualFree
GetConsoleOutputCP
GetConsoleCP
GetLocaleInfoA
HeapDestroy
GetModuleHandleA
FindNextFileA
GetFileAttributesW
GetStringTypeW
MulDiv
RtlUnwind
WriteConsoleA
GetCurrentProcessId
UnhandledExceptionFilter
CreateFileW
InterlockedDecrement
GetEnvironmentStringsW
WaitForMultipleObjects
GetDateFormatA
LoadLibraryA
SystemTimeToFileTime
GlobalFree
IsDebuggerPresent
GetCurrentProcess
HeapReAlloc
lstrcmpiA
WriteConsoleW
LocalReAlloc
LeaveCriticalSection
DeviceIoControl
LCMapStringW
SetEvent
GetProcessHeap
GetSystemTimeAsFileTime
ExitThread
HeapSize
FlushFileBuffers
GetCurrentDirectoryA

shell32

DragFinish
ord155

winspool.drv

OpenPrinterA
GetPrinterA
ClosePrinter
DocumentPropertiesA
SetPrinterA
ord204

advapi32

GetTokenInformation
RegQueryValueExA
GetLengthSid
GetSidSubAuthorityCount
RegOpenKeyExA
RegCloseKey
OpenSCManagerA
RegCreateKeyA
CopySid

oleaut32

LoadTypeLi

gdi32

ExcludeClipRect
SelectClipRgn
CreatePolygonRgn
SetWindowOrgEx
CreatePen
CreateRectRgn
LineTo
ExtTextOutW
SetTextColor
DeleteDC
ExtCreatePen
BeginPath
CreateCompatibleBitmap
GetBkMode
EndPage
PolyBezier
SetWindowExtEx
SetPixel
Arc
GetMapMode
GetStockObject
GetObjectW
GetTextMetricsA
RectVisible
OffsetRgn
CreatePalette
SetAbortProc
GetTextMetricsW
OffsetViewportOrgEx
CreateSolidBrush
GetClipBox
ExtFloodFill
ScaleViewportExtEx
GetDIBits
SetViewportOrgEx
RealizePalette
StrokePath
CreatePatternBrush
SetTextAlign
CreateEllipticRgn
PtInRegion
RestoreDC
Polyline
GetRegionData
CreateDIBSection
GetWindowExtEx
Polygon
RectInRegion
GetPaletteEntries
GetTextCharsetInfo
SetStretchBltMode
RoundRect
GetViewportExtEx
SetBrushOrgEx
StretchDIBits
StretchBlt
Escape
IntersectClipRect
DeleteObject
GetTextExtentPoint32W
GetBkColor
CreateCompatibleDC
EqualRgn
ExtSelectClipRgn
PatBlt
PtVisible
SetViewportExtEx
CreateFontIndirectW
GetRgnBox
SaveDC
GdiFlush
StartPage
GetDeviceCaps
GetPixel
EnumFontFamiliesExW
Rectangle
SetMapMode
TextOutW
CombineRgn
AbortDoc
ScaleWindowExtEx
CreateBitmap
CreateDCW
Ellipse
GetTextColor
SetPolyFillMode
BitBlt
SetBkColor
SetROP2
CreateRectRgnIndirect
EndPath
MoveToEx
EndDoc
SelectObject
SetBkMode
SelectPalette
DPtoLP

ole32

CoDisconnectObject
CoRevokeClassObject
StgCreateDocfileOnILockBytes
ReadFmtUserTypeStg
CoTaskMemFree
CreateBindCtx
OleFlushClipboard
CreateStreamOnHGlobal
SetConvertStg
OleGetClipboard
StringFromGUID2
OleInitialize
GetRunningObjectTable
OleIsCurrentClipboard
OleUninitialize
CLSIDFromProgID
CoTreatAsClass
OleCreateFromData
WriteClassStg
StgOpenStorageOnILockBytes
CoGetClassObject
ReleaseStgMedium
ReadClassStg
CoTaskMemAlloc
WriteFmtUserTypeStg
CLSIDFromString
OleRun
CoInitializeEx
RevokeDragDrop
CoCreateInstance
CreateILockBytesOnHGlobal
CoFreeUnusedLibraries

comctl32

InitCommonControlsEx
ImageList_Add
ImageList_GetIcon
ImageList_EndDrag
ImageList_LoadImageA
ImageList_BeginDrag
ImageList_AddMasked
ImageList_Destroy
ImageList_ReplaceIcon
DestroyPropertySheetPage
ImageList_Create
ImageList_Draw
ImageList_GetImageCount
ImageList_SetBkColor
ImageList_Replace
ord17
ImageList_Remove
ImageList_GetImageInfo
ImageList_GetIconSize
ImageList_DragMove

user32

BringWindowToTop
UnregisterClassW
RegisterWindowMessageW
GetClassLongW
SetForegroundWindow
GetMenuItemID
PostMessageW
GetSysColor
DestroyWindow
InsertMenuItemW
GetMessageW
CheckMenuItem
GetMenuItemCount
LoadIconW
GetDlgItem
EqualRect
GetWindow
RegisterClassExW
FillRect
EnableWindow
GetParent
GetDlgCtrlID
CallWindowProcW
IsWindowVisible
CreateWindowExW
LoadStringW
SetMenuDefaultItem
DrawFocusRect
ShowWindow
LoadAcceleratorsW
IsWindowEnabled
GetActiveWindow
MessageBoxW
MessageBeep
ReleaseDC
ScreenToClient
DialogBoxParamW
TranslateMDISysAccel
GetClassInfoExW
GetWindowTextW
DestroyMenu
wsprintfW
KillTimer
SetWindowLongW
MoveWindow
GetFocus
EndDialog
AttachThreadInput
PostQuitMessage
OpenClipboard
LoadImageW
SetWindowTextW
DialogBoxIndirectParamW
GetSysColorBrush
ReleaseCapture
GetMenu
DeferWindowPos
DestroyIcon
InvalidateRect
SetFocus
TrackPopupMenu
RegisterClipboardFormatW
SetWindowPos
GetClipboardData
RegisterClassW
LoadMenuW
IsChild
SetClipboardData
GetWindowRect
LoadBitmapW
UnregisterClassA
IsIconic
DefWindowProcW
LoadCursorW

Sections

.text
Size: 112KB - Virtual size: 108KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 264KB - Virtual size: 261KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 64KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9309b6758b863ec8cb21b2cd959a9277

Headers

File Characteristics

PDB Paths

Imports

kernel32

shell32

winspool.drv

advapi32

oleaut32

gdi32

ole32

comctl32

user32

Sections

.text Size: 112KB - Virtual size: 108KB

.rdata Size: 264KB - Virtual size: 261KB

.data Size: 68KB - Virtual size: 73KB

.rsrc Size: 64KB - Virtual size: 60KB

.text
Size: 112KB - Virtual size: 108KB

.rdata
Size: 264KB - Virtual size: 261KB

.data
Size: 68KB - Virtual size: 73KB

.rsrc
Size: 64KB - Virtual size: 60KB