07aad06694380a37d6b111c332bab665_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

07aad06694380a37d6b111c332bab665_JaffaCakes118
Size

362KB
MD5

07aad06694380a37d6b111c332bab665
SHA1

463e309964de5a56f86afd565b50127fd7bd57fe
SHA256

1de19027de6a43180bf2942e0c2e06a52203412f11727896bace128a04d0c0eb
SHA512

86e454bd5250e4b2b7e78ac7df8fa2fa943cf58127f76ca034910191a9529c22aeed1d75b07c5fcf23b4347774fc29985281ac139c8247b2585f887be1bcca72
SSDEEP

6144:HhW3qGvPM9RtaxXmMFv+QsJh38gf4B1EnWDd/74ZOL6NSIt3JzVb:Hg3zvPMHtaBmimL8+QGWN4G3w3JB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
07aad06694380a37d6b111c332bab665_JaffaCakes118

Files

07aad06694380a37d6b111c332bab665_JaffaCakes118
.exe windows:5 windows x86 arch:x86

299848e752c1916f2c4d905f11d19ca0

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_WDM_DRIVER
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_AGGRESIVE_WS_TRIM
IMAGE_FILE_LARGE_ADDRESS_AWARE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

kernel32

LCMapStringW
LCMapStringA
GetSystemTimeAsFileTime
GetCurrentProcessId
GetTickCount
QueryPerformanceCounter
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetConsoleMode
GetConsoleCP
WideCharToMultiByte
GetFileType
SetStdHandle
InitializeCriticalSectionAndSpinCount
GetStdHandle
HeapReAlloc
VirtualAlloc
EnterCriticalSection
LeaveCriticalSection
DeleteCriticalSection
VirtualFree
TlsFree
GetStringTypeA
TlsAlloc
TlsGetValue
IsValidCodePage
GetOEMCP
GetACP
InterlockedDecrement
InterlockedIncrement
GetCPInfo
GetStartupInfoA
GetCommandLineA
CreateThread
GetCurrentThreadId
ExitThread
GetFullPathNameA
SetCurrentDirectoryA
GetCurrentDirectoryA
SetEnvironmentVariableA
ExitProcess
Sleep
GetStringTypeW
GetLocaleInfoA
SetFilePointer
HeapSize
GetTimeZoneInformation
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
ReadFile
FlushFileBuffers
CompareStringA
GetFileInformationByHandle
GlobalLock
GlobalSize
GlobalUnlock
CopyFileA
CreateEventA
GlobalAlloc
SetEvent
WaitForMultipleObjects
GetComputerNameA
ExpandEnvironmentStringsA
lstrcpyA
GetDriveTypeA
GetDiskFreeSpaceExA
GetModuleHandleW
FindNextFileA
GetVolumeNameForVolumeMountPointA
QueryDosDeviceA
GetProcessHeap
HeapAlloc
LocalFree
HeapFree
HeapCreate
FormatMessageA
lstrlenA
GetProcAddress
CreateFileA
FindFirstFileW
FindNextFileW
FindClose
WriteFile
CloseHandle
GlobalFree
GetLocaleInfoW
SetConsoleTitleA
GetWindowsDirectoryA
LoadLibraryA
GetSystemDirectoryA
FindFirstFileA
FileTimeToLocalFileTime
FileTimeToSystemTime
RtlUnwind
RaiseException
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
FindResourceExW
GetUserDefaultLCID
GetSystemDefaultLCID
SetLastError
MultiByteToWideChar
GetLastError
GetModuleFileNameA
GetModuleHandleA
TlsSetValue
CompareStringW

user32

DefWindowProcA
CheckMenuItem
CreatePopupMenu
LoadBitmapA
RegisterClassA
LoadIconA
LoadCursorA
ModifyMenuA
AppendMenuA
GetMenuItemID
GetMenuItemCount
PostQuitMessage
GetDC
DefDlgProcA
FindWindowW
EmptyClipboard
CloseClipboard
OpenClipboard
GetForegroundWindow
IsClipboardFormatAvailable
TrackPopupMenuEx
GetCursorPos
InsertMenuItemA
EndPaint
GetMenu
GetWindow
DrawTextA
BeginPaint
CreateWindowExA
SetWindowLongA
SetFocus
SetWindowPos
IsWindow
LoadImageA
FrameRect
GetSysColorBrush
GetMessageA
LoadAcceleratorsA
ReleaseDC
DrawFocusRect
RegisterClipboardFormatA
GetClipboardData
SetClipboardData
GetWindowLongA
GetDesktopWindow
FindWindowExA
GetWindowRect
GetTopWindow
IsWindowVisible
IsIconic
IsChild
GetFocus
SystemParametersInfoA
SendMessageA
PeekMessageA
TranslateMessage
DispatchMessageA
GetShellWindow
wsprintfA
MessageBoxA
SetWindowTextA
GetScrollInfo
GetSystemMetrics
GetClientRect
PtInRect
UpdateWindow

gdi32

CreateCompatibleBitmap
SelectObject
GetObjectA
CreateCompatibleDC
BitBlt
GetStockObject
SetBkMode
CreateRectRgn
SetRectRgn
CombineRgn
GetRgnBox
DeleteObject
GetBoundsRect
SetViewportOrgEx
GetCharABCWidthsA
GetCharABCWidthsI
GetTextMetricsA
SetTextAlign
PatBlt
ExcludeClipRect
GetBitmapDimensionEx
GetBitmapBits
GetDIBits
CreateDCA
EnumObjects
ExtEscape
MoveToEx
LineTo
DeleteDC

winspool.drv

AddPrinterA

advapi32

ObjectOpenAuditAlarmA
RegQueryValueExW
RegOpenKeyExA
RegQueryValueExA
CloseServiceHandle
SetServiceObjectSecurity
SetSecurityDescriptorDacl
InitializeSecurityDescriptor
SetEntriesInAclA
ObjectPrivilegeAuditAlarmA
ClearEventLogA
GetUserNameA
AllocateAndInitializeSid
LookupAccountSidW
FreeSid
OpenSCManagerA
OpenServiceA
QueryServiceObjectSecurity
GetSecurityDescriptorDacl
BuildExplicitAccessWithNameA
RegCloseKey

shell32

DragQueryFileA

ole32

OleSetClipboard
OleInitialize
OleFlushClipboard
CreateStreamOnHGlobal
CoMarshalInterface
GetHGlobalFromStream
CoMarshalInterThreadInterfaceInStream
OleUninitialize
CoCreateInstance
CoTaskMemFree
CoInitialize
CoUninitialize
OleIsCurrentClipboard

oleaut32

VarAdd

odbc32

ord75
ord39
ord24
ord72
ord41

netapi32

NetUserDel
NetUserAdd
NetLocalGroupAddMembers

iphlpapi

GetNetworkParams

shlwapi

AssocQueryStringA

comctl32

ImageList_DragShowNolock

pdh

PdhOpenQueryA
PdhAddCounterW
PdhCollectQueryData
PdhCloseQuery
PdhBrowseCountersA

rpcrt4

UuidToStringA
UuidCreate
RpcStringFreeA

gdiplus

GdipGraphicsClear
GdipDrawImageI
GdipDrawImageRectI
GdipCreateBitmapFromScan0
GdipCreateBitmapFromFile
GdipGetImageHeight
GdipGetImageWidth
GdipDisposeImage
GdipDeleteGraphics
GdipAlloc
GdipCloneImage
GdiplusStartup
GdipGetImageGraphicsContext
GdipFree
GdipCreateFromHDC

opengl32

glBindTexture
glShadeModel
glTexParameterf
glTexEnvf
glEnable
glEnd
glTexCoord2f
glVertex3f
glDepthFunc
glBegin

glu32

gluBuild2DMipmaps

imm32

ImmGetOpenStatus
ImmGetContext

rasapi32

RasDialA
RasGetErrorStringA
RasHangUpA

sensapi

IsNetworkAlive

Sections

.text
Size: 127KB - Virtual size: 127KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 171KB - Virtual size: 170KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 11KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

299848e752c1916f2c4d905f11d19ca0

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

winspool.drv

advapi32

shell32

ole32

oleaut32

odbc32

netapi32

iphlpapi

shlwapi

comctl32

pdh

rpcrt4

gdiplus

opengl32

glu32

imm32

rasapi32

sensapi

Sections

.text Size: 127KB - Virtual size: 127KB

.rdata Size: 44KB - Virtual size: 44KB

.data Size: 6KB - Virtual size: 13KB

.rsrc Size: 171KB - Virtual size: 170KB

.reloc Size: 11KB - Virtual size: 11KB

.text
Size: 127KB - Virtual size: 127KB

.rdata
Size: 44KB - Virtual size: 44KB

.data
Size: 6KB - Virtual size: 13KB

.rsrc
Size: 171KB - Virtual size: 170KB

.reloc
Size: 11KB - Virtual size: 11KB