0536967cad613ac0ea59c44b1d40987c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0536967cad613ac0ea59c44b1d40987c_JaffaCakes118
Size

962KB
MD5

0536967cad613ac0ea59c44b1d40987c
SHA1

959435919d6fa9f3e9ee2c5034fd2b3782b5cb68
SHA256

11eef78486865ff2d8557a300b865894349eddee22ad2e4c914d58cb2a2e847d
SHA512

ff0f45274cb63b4ef9b504aa619eb23b67cad49f857bf64557bcb285f2552b7faa2e4fe2c93ecdd50c42c0112f60e30d2f0b35c7f64416effc06e9c856871313
SSDEEP

24576:7ITYtbKWCJVsNrqY9plPF7vf++DPhSw/HR6uvQBS4u:0OIqFLa+DPh35Ypu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0536967cad613ac0ea59c44b1d40987c_JaffaCakes118

Files

0536967cad613ac0ea59c44b1d40987c_JaffaCakes118
.exe windows:5 windows x86 arch:x86

667ee37c08cb98cb622a0c44821496fe

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CLSIDFromProgID
OleIsCurrentClipboard
CreateILockBytesOnHGlobal
OleFlushClipboard
CoGetClassObject
CoFreeUnusedLibraries
OleUninitialize
CoRegisterMessageFilter
CLSIDFromString
CoTaskMemFree
StgOpenStorageOnILockBytes
OleInitialize
CoTaskMemAlloc
StgCreateDocfileOnILockBytes
CoRevokeClassObject

oledlg

OleUIBusyW

kernel32

GetModuleHandleA
GetTickCount
TlsAlloc
InitializeCriticalSection
FindResourceW
VirtualProtect
FreeLibrary
HeapReAlloc
TlsFree
CloseHandle
LoadLibraryA
WriteFile
FreeResource
GetVolumeInformationW
GetOEMCP
GetLastError
GetConsoleMode
GetStartupInfoW
GetStdHandle
GetSystemDefaultLangID
SizeofResource
GetCurrentThreadId
GetLocaleInfoA
GetCurrentThread
IsDebuggerPresent
GetSystemTimeAsFileTime
FindFirstFileW
HeapAlloc
GlobalFindAtomW
FormatMessageW
UnhandledExceptionFilter
FileTimeToLocalFileTime
ConvertDefaultLocale
GetDriveTypeA
TerminateProcess
EnterCriticalSection
GetCommandLineW
IsValidCodePage
GetFileTime
GlobalReAlloc
GetStringTypeA
DuplicateHandle
GetEnvironmentStringsW
HeapFree
TlsGetValue
lstrcmpA
LeaveCriticalSection
GetStartupInfoA
InitializeCriticalSectionAndSpinCount
FindNextFileW
VirtualQuery
LCMapStringW
CompareStringA
GetCurrentProcess
GetModuleHandleW
DeleteCriticalSection
GetFileSize
EnumResourceLanguagesW
GetFileAttributesW
GetVersionExW
GetCurrentProcessId
InterlockedDecrement
CompareStringW
SetEndOfFile
LocalAlloc
GetFullPathNameW
GlobalFree
InterlockedExchange
GetStringTypeW
FindClose
UnlockFile
GetACP
Sleep
FreeEnvironmentStringsW
LockResource
FileTimeToSystemTime
LoadLibraryW
GetModuleFileNameA
GetTimeZoneInformation
SetHandleCount
GetSystemInfo
SetErrorMode
WriteConsoleW
GlobalLock
InterlockedIncrement
VirtualAlloc
WritePrivateProfileStringW
ExitProcess
MultiByteToWideChar
QueryPerformanceCounter
lstrcmpW
SetFilePointer
CreateFileA
HeapCreate
TlsSetValue
WideCharToMultiByte
RaiseException
GlobalAddAtomW
LockFile
GetConsoleOutputCP
GetFileSizeEx
GetLocaleInfoW
GlobalAlloc
GetProcAddress
GlobalDeleteAtom
GetCPInfo
VirtualFree
GetVersionExA
GetCurrentDirectoryA
GlobalHandle
SetLastError
SetEnvironmentVariableA
MulDiv
LoadResource
LCMapStringA
GetConsoleCP
lstrlenA
LocalReAlloc
SetStdHandle
WriteConsoleA
FlushFileBuffers
GetModuleFileNameW
CreateFileW
LocalFree
ReadFile
SetUnhandledExceptionFilter
lstrlenW
GlobalUnlock
GetFileType
GlobalFlags
HeapSize
RtlUnwind
GetThreadLocale

shlwapi

PathIsUNCW
PathFindFileNameW
PathFindExtensionW
PathStripToRootW

shell32

ShellExecuteExW
ILGetSize
ExtractIconA

gdi32

ScaleViewportExtEx
ScaleWindowExtEx
SetWindowExtEx
GetDeviceCaps
GetTextColor
RestoreDC
SetTextColor
GetObjectW
GetClipBox
SaveDC
DeleteObject
SetBkColor
ExtTextOutW
OffsetViewportOrgEx
TextOutW
SelectObject
RectVisible
CreateBitmap
GetRgnBox
Escape
SetViewportExtEx
GetBkColor
GetStockObject
GetWindowExtEx
SetViewportOrgEx
GetViewportExtEx
PtVisible
SetMapMode
DeleteDC
CreateRectRgnIndirect
ExtSelectClipRgn
GetMapMode

avifil32

AVIFileInit

user32

SetWindowTextW
ModifyMenuW
GetLastActivePopup
CharUpperW
DrawTextExW
CreateDialogIndirectParamW
PeekMessageW
SetCapture
GetWindowLongW
PostMessageW
SendDlgItemMessageA
DestroyMenu
InvalidateRect
UnhookWindowsHookEx
ShowWindow
DispatchMessageW
PostThreadMessageW
CheckMenuItem
CreateWindowExW
GetSysColor
UnregisterClassW
GetKeyState
IsIconic
GetSystemMetrics
SetWindowsHookExW
GetTopWindow
BeginPaint
CopyRect
GetWindowPlacement
LoadBitmapW
SetCursor
IsDialogMessageW
EnableMenuItem
OffsetRect
SetRect
GetNextDlgTabItem
GetClassInfoW
SetWindowPos
MapDialogRect
GetSysColorBrush
GetWindow
SetFocus
GetCapture
GetSubMenu
EqualRect
GetMenuState
CallWindowProcW
RegisterClassW
GetMessageTime
GetParent
IsWindowVisible
FindWindowW
MoveWindow
WinHelpW
DefWindowProcW
GetCursorPos
LoadCursorW
IntersectRect
GetMenuCheckMarkDimensions
GetWindowThreadProcessId
CopyAcceleratorTableW
UpdateWindow
GetMenu
GetActiveWindow
RegisterWindowMessageW
DestroyWindow
RegisterClipboardFormatW
GetClassNameW
EndPaint
LoadIconW
GetClientRect
MapWindowPoints
PostQuitMessage
GetClassLongW
ValidateRect
GetWindowDC
CallNextHookEx
GrayStringW
IsWindowEnabled
DrawTextW
MessageBoxW
TranslateMessage
GetClassInfoExW
SetPropW
SetMenuItemBitmaps
EndDialog
GetDesktopWindow
GetNextDlgGroupItem
GetMenuItemCount
GetFocus
PtInRect
SetWindowContextHelpId
GetWindowTextW
AdjustWindowRectEx
GetMenuItemID
GetDlgItem
ReleaseCapture
SendMessageW
SetWindowLongW
InvalidateRgn
SendDlgItemMessageW
IsChild
TabbedTextOutW
RemovePropW
CharNextW
ClientToScreen
SetForegroundWindow
SetMenu
EnableWindow
IsWindow
GetPropW
MessageBeep
GetDC
SystemParametersInfoA
ReleaseDC
GetForegroundWindow
GetMessagePos
GetMessageW
SetActiveWindow
GetDlgCtrlID
GetWindowRect
IsRectEmpty

winspool.drv

DocumentPropertiesW
ClosePrinter
OpenPrinterW

comdlg32

GetFileTitleW

advapi32

RegEnumKeyW
RegSetValueExW
RegOpenKeyExW
RegCreateKeyExW
RegCloseKey
RegQueryValueW
RegOpenKeyW
RegDeleteKeyW
RegQueryValueExW

Sections

.text
Size: 623KB - Virtual size: 622KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 9KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 319KB - Virtual size: 3.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

667ee37c08cb98cb622a0c44821496fe

Headers

File Characteristics

Imports

ole32

oledlg

kernel32

shlwapi

shell32

gdi32

avifil32

user32

winspool.drv

comdlg32

advapi32

Sections

.text Size: 623KB - Virtual size: 622KB

.rdata Size: 9KB - Virtual size: 8KB

.data Size: 319KB - Virtual size: 3.6MB

.rsrc Size: 9KB - Virtual size: 9KB

.text
Size: 623KB - Virtual size: 622KB

.rdata
Size: 9KB - Virtual size: 8KB

.data
Size: 319KB - Virtual size: 3.6MB

.rsrc
Size: 9KB - Virtual size: 9KB