0713b4a1497753afdfe5adf5fd028374_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

0713b4a1497753afdfe5adf5fd028374_JaffaCakes118
Size

800KB
MD5

0713b4a1497753afdfe5adf5fd028374
SHA1

5c249893f0eaf385ab01f3a219c24cd8b06e5dd7
SHA256

d1910fb6b27e1a316fb9e7a9689fbb7c1a1b34bf872062121d4fe56c3df93f5a
SHA512

bd826ae85780e4115abfcd0e9ee3508f976a96452f7b3aa67913b886867299610757d0c4d55338bf17aa5d83daffe41e9291cfdcd8e40d8b1348513d228035ac
SSDEEP

12288:emy5t2iFqJYbsvw/+K1OqUsxLXQqpoiKDrdhKh6yJEJDAQnMJmre:u32iFdbsI/tNxrd7grGccQyC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0713b4a1497753afdfe5adf5fd028374_JaffaCakes118

Files

0713b4a1497753afdfe5adf5fd028374_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9cc22ff87e45288a4d0bd9ac31322b4b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

MessageBoxW
IsZoomed
CreateWindowExW
DefWindowProcW
DestroyAcceleratorTable
OffsetRect
LoadAcceleratorsW
DestroyWindow
IsDialogMessageW
DrawFocusRect
ShowWindow
GetScrollInfo
RegisterClassW
LoadImageW
LoadBitmapW
InsertMenuItemW
LoadStringW
RegisterClassExW
ReuseDDElParam
IsMenu
LoadIconW
GetMenuItemCount
DrawEdge

version

VerQueryValueA
GetFileVersionInfoSizeA

winspool.drv

ord204
OpenPrinterA
DocumentPropertiesA

kernel32

CloseHandle
HeapAlloc
MultiByteToWideChar
LCMapStringW
GetEnvironmentStringsW
VirtualFree
LoadLibraryA
GetACP
GetTimeZoneInformation
GetCommandLineW
SetLastError
EnterCriticalSection
GetOEMCP
GetEnvironmentStrings
InterlockedDecrement
CompareStringA
TlsSetValue
GetModuleHandleA
WriteFile
SetStdHandle
WideCharToMultiByte
HeapCreate
GetCommandLineA
GetTimeFormatA
WriteConsoleW
GetSystemTimeAsFileTime
GetStartupInfoA
ExitProcess
HeapDestroy
QueryPerformanceCounter
GetStringTypeA
IsValidCodePage
LeaveCriticalSection
GetModuleHandleW
Sleep
HeapFree
TlsAlloc
GetStdHandle
CreateMutexW
ReadFile
GetConsoleOutputCP
SetHandleCount
CompareStringW
LoadLibraryW
SetEnvironmentVariableA
GetConsoleMode
WriteConsoleA
LCMapStringA
FlushFileBuffers
GetModuleFileNameW
InterlockedExchange
GetDateFormatA
VirtualQuery
GetCurrentProcess
GetVersionExA
InterlockedIncrement
GetStringTypeW
GetCurrentProcessId
GetStartupInfoW
DeleteCriticalSection
GetProcAddress
HeapSize
SetFilePointer
GetLastError
RaiseException
GetModuleFileNameA
GetTickCount
VirtualAlloc
TlsGetValue
UnhandledExceptionFilter
CreateFileA
FreeEnvironmentStringsW
FreeEnvironmentStringsA
IsDebuggerPresent
GetProcessHeap
TerminateProcess
GetCurrentThreadId
GetConsoleCP
GetLocaleInfoA
RtlUnwind
GetFileType
GetCPInfo
HeapReAlloc
InitializeCriticalSection
TlsFree
SetUnhandledExceptionFilter

wsock32

WSACleanup

comdlg32

CommDlgExtendedError
PrintDlgA
GetOpenFileNameA
ChooseColorA

advapi32

OpenSCManagerA
QueryServiceConfigA
RegQueryValueExA
RegEnumKeyExA
RegQueryInfoKeyA
RegSetValueA
RegDeleteKeyA
RegOpenKeyA
RegOpenKeyExA

shell32

ShellExecuteExA
SHGetMalloc
SHGetSpecialFolderLocation
SHGetFileInfoA

gdi32

AbortDoc
RealizePalette
Arc
PatBlt
ScaleWindowExtEx
GetWindowExtEx
SetDIBits
PtInRegion
LineTo
SelectObject
GetPixel
ExcludeClipRect
GdiFlush
BitBlt
GetBkColor
StartPage
GetTextMetricsW
SetPixel
RestoreDC
SelectPalette
GetTextMetricsA
CreateDIBSection
CreatePen
ExtSelectClipRgn
CreatePalette
GetDIBits
SetViewportOrgEx
SelectClipRgn
CombineRgn
Rectangle
SetBkMode
ScaleViewportExtEx
EndDoc
CreateRectRgn
SetROP2
TextOutW
SetBkColor
Escape
CreateFontIndirectW
OffsetRgn
GetTextColor
ExtCreatePen
MoveToEx
GetClipBox
DPtoLP
PtVisible
CreateDCW
RoundRect
SetBrushOrgEx
EndPage
GetPaletteEntries
CreateSolidBrush
SetMapMode
Polyline
DeleteObject
GetObjectW
DeleteDC
CreateEllipticRgn
SetTextColor
SetWindowExtEx
SaveDC
StretchDIBits
GetRegionData
SetPolyFillMode
SetStretchBltMode
IntersectClipRect
GetTextExtentPoint32W
CreateCompatibleBitmap
CreateBitmap
ExtTextOutW
Polygon
GetStockObject
CreateBrushIndirect
GetMapMode
ExtFloodFill
RectVisible
GetViewportExtEx
SetTextAlign
SetViewportExtEx
OffsetViewportOrgEx
SetAbortProc
SetWindowOrgEx
GetDeviceCaps
StretchBlt
Ellipse
CreateRectRgnIndirect
CreateCompatibleDC
CreatePolygonRgn
CreatePatternBrush
GetRgnBox
GetBkMode

oleaut32

LoadTypeLi

mfc42

ord1576

Sections

.text
Size: 114KB - Virtual size: 114KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 475KB - Virtual size: 474KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 113KB - Virtual size: 112KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 96KB - Virtual size: 96KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9cc22ff87e45288a4d0bd9ac31322b4b

Headers

File Characteristics

Imports

user32

version

winspool.drv

kernel32

wsock32

comdlg32

advapi32

shell32

gdi32

oleaut32

mfc42

Sections

.text Size: 114KB - Virtual size: 114KB

.rdata Size: 475KB - Virtual size: 474KB

.data Size: 113KB - Virtual size: 112KB

.rsrc Size: 96KB - Virtual size: 96KB

.text
Size: 114KB - Virtual size: 114KB

.rdata
Size: 475KB - Virtual size: 474KB

.data
Size: 113KB - Virtual size: 112KB

.rsrc
Size: 96KB - Virtual size: 96KB