05fd5adf39e73f762499ed09f9c7c303_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

05fd5adf39e73f762499ed09f9c7c303_JaffaCakes118
Size

1.5MB
MD5

05fd5adf39e73f762499ed09f9c7c303
SHA1

0caf660f21e61bd04f02af0987de83cdf50a8d02
SHA256

67f30a70699bc9a277ea2c79b4afb5b0d9605ec3c6e874e5c937e4b556869b51
SHA512

265810b3c760c6a343ed2d3271eb2fc8e5e0b277664442b757b0c977cffc55f110c47589f942bfd9765d03c95e51e62989b134e384b3f71580c4f38f9a121997
SSDEEP

24576:RpMSu2MrEJZu5HkXlnCHrjvzXgTUu9T8+:vbi248CbXgTPTD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
05fd5adf39e73f762499ed09f9c7c303_JaffaCakes118

Files

05fd5adf39e73f762499ed09f9c7c303_JaffaCakes118
.exe windows:4 windows x86 arch:x86

de6b2291bc8814f91409500f607b245a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

sigif

GIFLoad
GIFLoadAnimation

sijpeg

SaveJPEG
LoadJPEG

kernel32

GetStringTypeW
SetStdHandle
IsBadReadPtr
IsBadCodePtr
CompareStringA
CompareStringW
SetEnvironmentVariableA
LCMapStringW
GetStringTypeA
UnhandledExceptionFilter
GetEnvironmentStringsW
LCMapStringA
SetUnhandledExceptionFilter
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
IsBadWritePtr
GetCurrentThreadId
GetACP
MultiByteToWideChar
MulDiv
DeleteFileA
GlobalReAlloc
GlobalFlags
GetProcAddress
GlobalAlloc
GlobalLock
GlobalFree
GlobalUnlock
GetCurrentDirectoryA
SetCurrentDirectoryA
GetTempPathA
GetSystemDirectoryA
CreateDirectoryA
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetFileType
GetStdHandle
SetHandleCount
HeapReAlloc
GetProfileStringA
TerminateProcess
RaiseException
ExitProcess
GetCommandLineA
GetStartupInfoA
HeapSize
HeapAlloc
HeapFree
GetLocalTime
GetSystemTime
GetTimeZoneInformation
RtlUnwind
GetTickCount
FileTimeToLocalFileTime
FileTimeToSystemTime
SetErrorMode
SizeofResource
GetOEMCP
GetCPInfo
GetProcessVersion
TlsGetValue
LocalReAlloc
TlsSetValue
EnterCriticalSection
LeaveCriticalSection
TlsFree
GlobalHandle
DeleteCriticalSection
TlsAlloc
InitializeCriticalSection
LocalAlloc
SystemTimeToFileTime
LocalFileTimeToFileTime
GetFileSize
lstrlenW
GetDiskFreeSpaceA
GetFileTime
SetFileTime
GetTempFileNameA
GetFileAttributesA
GetShortPathNameA
GetThreadLocale
GetStringTypeExA
GetFullPathNameA
GetVolumeInformationA
FindFirstFileA
FindClose
MoveFileA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
GetCurrentProcess
DuplicateHandle
GetLastError
WritePrivateProfileStringA
GetPrivateProfileStringA
GetPrivateProfileIntA
CloseHandle
GetModuleFileNameA
GetCurrentThread
lstrcpynA
FormatMessageA
LocalFree
lstrcmpA
SetLastError
WideCharToMultiByte
lstrlenA
InterlockedDecrement
InterlockedIncrement
LoadLibraryA
FreeLibrary
FindResourceA
LoadResource
LockResource
GetVersion
lstrcatA
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
lstrcpyA
GetModuleHandleA
GlobalSize

user32

MessageBeep
GetTabbedTextExtentA
GetDCEx
GetNextDlgGroupItem
LockWindowUpdate
PostThreadMessageA
SetParent
IsZoomed
CharNextA
wvsprintfA
UnpackDDElParam
ReuseDDElParam
SetMenu
DefMDIChildProcA
DrawMenuBar
TranslateAcceleratorA
TranslateMDISysAccel
DefFrameProcA
BringWindowToTop
FindWindowA
FillRect
SetRect
DestroyCursor
GetAsyncKeyState
SetWindowContextHelpId
DestroyMenu
LoadAcceleratorsA
CharUpperA
GetMessageA
TranslateMessage
ValidateRect
ShowOwnedPopups
PostQuitMessage
EndDialog
GetActiveWindow
CreateDialogIndirectParamA
GrayStringA
TabbedTextOutA
GetWindowDC
GetMenuCheckMarkDimensions
GetMenuState
ModifyMenuA
CheckMenuItem
EnableMenuItem
GetNextDlgTabItem
IsWindowEnabled
ShowWindow
MoveWindow
SetWindowTextA
IsDialogMessageA
IsDlgButtonChecked
SetDlgItemTextA
SetDlgItemInt
GetDlgItemInt
CheckDlgButton
MapWindowPoints
DispatchMessageA
SetActiveWindow
SetFocus
AdjustWindowRectEx
DeferWindowPos
IsWindowVisible
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
InsertMenuA
CopyAcceleratorTableA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetMenuItemID
TrackPopupMenu
GetWindowTextLengthA
GetKeyState
DestroyWindow
CreateWindowExA
GetClassLongA
DeleteMenu
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
SetWindowPos
RegisterWindowMessageA
SystemParametersInfoA
GetWindowPlacement
DefWindowProcA
GetWindowTextA
BeginPaint
EndPaint
GetDlgCtrlID
IsIconic
SendDlgItemMessageA
BeginDeferWindowPos
EndDeferWindowPos
WindowFromPoint
ScreenToClient
CopyImage
CallNextHookEx
GetWindow
SetWindowsHookExA
UnhookWindowsHookEx
DrawTextA
KillTimer
SetTimer
GetMenuStringA
CreatePopupMenu
AppendMenuA
LoadStringA
IntersectRect
GetDlgItem
GetWindowLongA
SetWindowLongA
InflateRect
FrameRect
GetSystemMetrics
DrawFrameControl
GetSysColorBrush
GetWindowRect
MapDialogRect
IsWindow
GetParent
GetSysColor
InvertRect
GetFocus
ClientToScreen
GetSubMenu
InvalidateRect
GetCursorPos
SetCursorPos
EmptyClipboard
SetClipboardData
EqualRect
GetClientRect
IsClipboardFormatAvailable
OpenClipboard
GetClipboardData
CloseClipboard
SendMessageA
IsRectEmpty
DestroyIcon
GetSystemMenu
GetClassNameA
IsChild
GetCapture
SetPropA
PeekMessageA
OffsetRect
SetCursor
ReleaseCapture
SetCapture
RedrawWindow
LoadIconA
LoadCursorA
RegisterClipboardFormatA
LoadMenuA
LoadImageA
DrawIcon
MessageBoxA
PostMessageA
GetDesktopWindow
GetDC
ReleaseDC
UpdateWindow
wsprintfA
DrawFocusRect
PtInRect
LoadBitmapA
CopyRect
SetRectEmpty
UnionRect
EnableWindow
WinHelpA
SetMenuItemBitmaps
ShowCaret
IsWindowUnicode
UnregisterClassA
ExcludeUpdateRgn
HideCaret
DefDlgProcA

gdi32

GetTextExtentPointA
CreateDIBitmap
Rectangle
CreatePatternBrush
DeleteObject
CreateRectRgnIndirect
CreateEllipticRgn
StrokeAndFillPath
WidenPath
RoundRect
GetCharacterPlacementA
SetTextCharacterExtra
TextOutA
GetGlyphOutlineA
GetTextMetricsA
EnumFontFamiliesA
SetDIBitsToDevice
SetBkMode
LineTo
MoveToEx
GetClipBox
SetTextColor
SetBkColor
CreateBitmap
StartDocA
SaveDC
RestoreDC
SetPolyFillMode
SetROP2
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowOrgEx
SetWindowExtEx
BeginPath
ScaleWindowExtEx
SelectClipRgn
ExcludeClipRect
IntersectClipRect
SetTextAlign
PolyBezierTo
GetClipRgn
SelectClipPath
ExtSelectClipRgn
PlayMetaFileRecord
GetObjectType
EnumMetaFile
PlayMetaFile
GetWindowExtEx
PtVisible
RectVisible
ExtTextOutA
Escape
GetMapMode
PatBlt
SetRectRgn
CombineRgn
AbortDoc
EndDoc
EndPage
StartPage
SetAbortProc
CreateDCA
GetCharWidthA
CreateFontA
GetTextColor
GetBkColor
GetNearestColor
GetStretchBltMode
GetPolyFillMode
GetTextAlign
GetBkMode
GetROP2
GetTextFaceA
GetWindowOrgEx
CreateRectRgn
GetCurrentPositionEx
GetRgnBox
PtInRegion
Ellipse
PathToRegion
ExtCreatePen
CreateHatchBrush
CloseFigure
GetObjectA
CreateBitmapIndirect
SetDIBits
GetDIBits
DeleteDC
SetStretchBltMode
StretchDIBits
BitBlt
GetPath
LPtoDP
DPtoLP
CreateFontIndirectA
StrokePath
GetTextExtentPoint32A
GetViewportOrgEx
GetViewportExtEx
GetDeviceCaps
CreateCompatibleBitmap
SelectObject
CreateCompatibleDC
CreatePen
GetStockObject
EndPath
GetPixel
CreateSolidBrush

comdlg32

CommDlgExtendedError
GetSaveFileNameA
GetOpenFileNameA
ChooseFontA
ChooseColorA
PrintDlgA
GetFileTitleA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegCreateKeyA
RegSetValueA
RegDeleteValueA
RegCloseKey
RegQueryValueExA
RegOpenKeyExA
RegSetValueExA
RegCreateKeyExA
RegQueryValueA
RegDeleteKeyA
RegOpenKeyA
RegEnumKeyA
SetFileSecurityA
GetFileSecurityA

shell32

ExtractIconA
DragFinish
DragAcceptFiles
DragQueryFileA
SHGetFileInfoA
ShellExecuteA

comctl32

ImageList_AddMasked
ord17
PropertySheetA
DestroyPropertySheetPage
CreatePropertySheetPageA
ImageList_Destroy
ImageList_Create
ImageList_LoadImageA

oledlg

ord8

ole32

StgCreateDocfileOnILockBytes
CoRevokeClassObject
CreateILockBytesOnHGlobal
CoTaskMemAlloc
CoTaskMemFree
OleIsCurrentClipboard
OleFlushClipboard
OleInitialize
CLSIDFromProgID
CoRegisterMessageFilter
OleUninitialize
CoFreeUnusedLibraries
StgOpenStorageOnILockBytes
CoGetClassObject
CLSIDFromString

olepro32

ord253

oleaut32

VariantChangeType
SysAllocStringByteLen
SysAllocString
VariantCopy
SysStringLen
SafeArrayCreate
SafeArrayGetDim
SafeArrayGetElemsize
SafeArrayGetLBound
SafeArrayGetUBound
VariantClear
SysAllocStringLen
SysFreeString
VariantTimeToSystemTime
SafeArrayUnaccessData
SafeArrayAccessData

Sections

.text
Size: 796KB - Virtual size: 794KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 164KB - Virtual size: 161KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 28KB - Virtual size: 43KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 544KB - Virtual size: 542KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

de6b2291bc8814f91409500f607b245a

Headers

File Characteristics

Imports

version

sigif

sijpeg

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

Sections

.text Size: 796KB - Virtual size: 794KB

.rdata Size: 164KB - Virtual size: 161KB

.data Size: 28KB - Virtual size: 43KB

.rsrc Size: 544KB - Virtual size: 542KB

.text
Size: 796KB - Virtual size: 794KB

.rdata
Size: 164KB - Virtual size: 161KB

.data
Size: 28KB - Virtual size: 43KB

.rsrc
Size: 544KB - Virtual size: 542KB