09ae41dd7363f72aa324111ef32a979b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

09ae41dd7363f72aa324111ef32a979b_JaffaCakes118
Size

184KB
MD5

09ae41dd7363f72aa324111ef32a979b
SHA1

9abefe268e35dcc013e0c2e313ed9489439aec31
SHA256

6fa9607da78137665926f3b37cb7de61489b0ef059a100133a1dd780b705f9fc
SHA512

c3eb7524b5abd60672347f0cdbc01653fcf5e0a12354269a637b0291d5cb5562d200d35d5333f8f555c4b67aae02e10b6a6fcafe7b45ed9c83fa9b9c7a1354b7
SSDEEP

3072:/2e6cAFUMMnMMMMMX7I7DvtNbeUEz8nRlL5nG80cCYVZnvxl/h08EWVtcaz4//Bn:d9pMMnMMMMMavvaz+RF5nG80czVZvpcj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
09ae41dd7363f72aa324111ef32a979b_JaffaCakes118

Files

09ae41dd7363f72aa324111ef32a979b_JaffaCakes118
.exe windows:5 windows x86 arch:x86

35e5a50f182d3ee07517b556699d6a21

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

ConvertStringSecurityDescriptorToSecurityDescriptorW
CryptDestroyHash
CreateProcessAsUserW
RegCloseKey
GetTraceEnableFlags
CryptCreateHash
ImpersonateSelf
GetUserNameW
RegEnumValueW
RegOpenKeyW
RegQueryInfoKeyW
OpenThreadToken
RegDeleteValueA
OpenProcessToken
RegEnumKeyExW
SetThreadToken
RegCreateKeyExW
RegOpenKeyExA
SetTokenInformation
GetLengthSid
RegDeleteKeyW
TraceEvent
RegOpenKeyExW
RegSetValueExA
RegisterTraceGuidsW
GetTokenInformation
RegQueryValueExA
CryptReleaseContext
RegEnumValueA
RegEnumKeyW
RegCreateKeyA
RegQueryValueExW
RegQueryValueW
CryptGetHashParam
DuplicateTokenEx
ConvertSidToStringSidW
RegCreateKeyExA
ConvertStringSidToSidW
RegSetValueExW
UnregisterTraceGuids
RegOpenCurrentUser
CryptAcquireContextW
GetTraceEnableLevel
CryptHashData
GetTraceLoggerHandle
RegDeleteValueW
RegDeleteKeyA
IsTextUnicode
TraceMessage

gdi32

MoveToEx
GetLayout
GetBkMode
CreateDIBPatternBrushPt
GetTextExtentPointW
CreateEnhMetaFileA
SetViewportExtEx
GetDCOrgEx
GetClipBox
GetTextExtentPoint32A
SetBrushOrgEx
SetWindowOrgEx
SetMapMode
CreateSolidBrush
SetTextColor
BitBlt
GetDeviceCaps
ExtCreateRegion
CreateRectRgn
CreateDIBSection
TextOutW
GetRegionData
SetStretchBltMode
GetTextColor
DeleteEnhMetaFile
SetBkColor
CreateHalftonePalette
CreatePen
IntersectClipRect
GetStockObject
GetTextMetricsW
Rectangle
GetTextCharset
CloseMetaFile
RealizePalette
CreateFontIndirectA
PlayEnhMetaFile
SaveDC
GetGlyphIndicesW
CreateCompatibleBitmap
CreatePatternBrush
CreateBitmap
SelectPalette
CreateFontW
RectVisible
DeleteDC
CombineRgn
LPtoDP
CreateFontIndirectW
GetTextExtentPoint32W
GetTextAlign
SetWindowExtEx
OffsetRgn
SetPaletteEntries
CloseEnhMetaFile
GetBkColor
CreateRectRgnIndirect
SelectObject
StretchDIBits
GetRgnBox
ExtTextOutW
GetTextExtentExPointI
GetPixel
EqualRgn
SetLayout
GetSystemPaletteEntries
CreateDCA
SetRectRgn
CreateMetaFileW
SetBkMode
CreateCompatibleDC
GetDIBits
SetTextAlign
GetObjectW
GetPaletteEntries
DeleteObject
PatBlt
GetObjectA
CreateDCW
LineTo
GetBrushOrgEx
OffsetWindowOrgEx
TextOutA
StretchBlt
CreatePalette
RestoreDC
SetViewportOrgEx
CreatePolygonRgn
SetDCPenColor

user32

PostThreadMessageW
GetMenuItemID
InvalidateRect
InsertMenuItemW
TrackMouseEvent
RemovePropA
DeferWindowPos
DialogBoxParamW
RegisterClassExW
TranslateAcceleratorW
AllowSetForegroundWindow
AdjustWindowRectEx
GetMenuItemCount
IsCharAlphaNumericW
CharNextW
SetWindowLongA
SetDlgItemInt
GetCursor
RegisterWindowMessageA
GetCursorPos
LoadBitmapW
SetRectEmpty
GetDlgCtrlID
DefWindowProcW
MessageBoxIndirectA
DialogBoxIndirectParamW
DrawIconEx
SetClipboardData
DdeFreeDataHandle
CloseClipboard
DeleteMenu
AdjustWindowRect
WaitForInputIdle
DrawFocusRect
GetDoubleClickTime
GetDlgItemTextW
CharPrevW
DefWindowProcA
GetMonitorInfoW
DispatchMessageA
SetDlgItemTextW
PtInRect
GetSystemMetrics
UpdateWindow
SetCapture
GetMessageA
GetMessageW
FindWindowExW
GetClassNameW
SetForegroundWindow
AnimateWindow
SetRect
ShowScrollBar
GetLastActivePopup
GetAncestor
EnumWindows
RegisterClipboardFormatW
SendMessageW
LoadAcceleratorsW
FindWindowW
CreateMenu
GetMenuItemInfoW
EndMenu
GetWindowRgnBox
SetCursor
CharUpperW
GetSubMenu
GetClassInfoW
EnableWindow
SendMessageTimeoutW
WinHelpW
GetScrollInfo
MoveWindow
SetMenuItemBitmaps
ClientToScreen
GetWindowRect
wsprintfW
EqualRect
DestroyWindow
GetKeyboardLayout
GetProcessWindowStation
EndPaint
IsMenu
RegisterClipboardFormatA
AttachThreadInput
NotifyWinEvent
GetClassLongW
MsgWaitForMultipleObjectsEx
GetSysColorBrush
SetParent
WindowFromPoint
CheckRadioButton
CreateIconIndirect
DdeClientTransaction
ShowWindow
DrawEdge
IsDialogMessageW
DdeConnect
CheckMenuRadioItem
SetTimer
IsWindowUnicode
GetShellWindow
SystemParametersInfoW
GetWindowLongA
RemoveMenu
GetWindowTextLengthW
MessageBoxIndirectW
DdeQueryStringW
GetKeyState
MapVirtualKeyW
GetClipboardData
SendMessageA
SetMenu
PostMessageW
LoadImageW
GetMenuStringW
CheckMenuItem
IsIconic
GetDialogBaseUnits
OpenClipboard
CallWindowProcW
SystemParametersInfoA
GetMessageTime
GetWindow
GetDesktopWindow
PostMessageA
ShowCaret
LoadIconW
GetMenuState
AppendMenuW
DdeGetData
GetDC
DdeInitializeW
CreateDialogParamW
GetWindowThreadProcessId
CharLowerBuffW
CreateWindowExW
SetPropW
GetNextDlgTabItem
SetMenuDefaultItem
MessageBoxExA
UnregisterClassW
SetFocus
CharPrevA
RedrawWindow
MonitorFromRect
PostQuitMessage
DialogBoxIndirectParamA
SendNotifyMessageW
LoadMenuW
PostThreadMessageA
GetWindowTextW
ReleaseDC
IsChild
GetWindowDC
GetFocus
DdeCreateDataHandle
TrackPopupMenu
LoadStringA
PeekMessageA
CheckDlgButton
RemovePropW
DrawTextW
VkKeyScanExW
DdeDisconnect
ChangeClipboardChain
CreatePopupMenu
ReleaseCapture
OffsetRect
DispatchMessageW
MonitorFromWindow
EnumChildWindows
MsgWaitForMultipleObjects
LoadCursorW
EndDeferWindowPos
FillRect
MessageBeep
GetIconInfo
CallMsgFilterW
SetWindowRgn
GetClipboardFormatNameW
InsertMenuW
RegisterClassW
UnionRect
GetActiveWindow
TrackPopupMenuEx
UpdateLayeredWindow
GetSysColor
TranslateMessage
IsWindowEnabled
EnumDesktopWindows
SetWindowTextW
GetMenuDefaultItem
SendDlgItemMessageW
DdeNameService
KillTimer
GetCapture
GetComboBoxInfo
BeginPaint
GetWindowPlacement
GetPropA
RegisterWindowMessageW
MessageBoxW
SendMessageTimeoutA
IsDlgButtonChecked
SetPropA
GetWindowLongW
FindWindowA
IntersectRect
GetMenuItemInfoA
EmptyClipboard
SetScrollPos
SetMenuItemInfoW
DestroyIcon
MapWindowPoints
SetWindowPlacement
PeekMessageW
DdeFreeStringHandle
EnableMenuItem
GetDlgItem
IsWindow
CharLowerW
DrawTextExW
ScreenToClient
GetClassWord
GetMessagePos
GetForegroundWindow
DestroyAcceleratorTable
GetTopWindow
UnhookWindowsHookEx
IsHungAppWindow
ChildWindowFromPoint
WaitMessage
GetClientRect
LoadStringW
EnumDisplaySettingsW
GetWindowInfo
CopyIcon
IsRectEmpty
HideCaret
SetClipboardViewer
CallNextHookEx
GetLastInputInfo
SetWindowsHookExW
CharNextA
CopyRect
GetClassInfoExW
SetScrollInfo
BeginDeferWindowPos
InflateRect
LoadCursorA
MessageBoxExW
SetActiveWindow
GetKeyNameTextW
SetWindowLongW
SetWindowPos
IsWindowVisible
DestroyMenu
EnumThreadWindows
LockSetForegroundWindow
ShowOwnedPopups
DdeUninitialize
GetParent
GetSystemMenu
DialogBoxParamA
SetCursorPos
MapDialogRect
CopyImage
GetAsyncKeyState
DrawFrameControl
GetPropW
EndDialog
MonitorFromPoint
DdeCreateStringHandleW

kernel32

VirtualAlloc

uxtheme

OpenThemeData
GetThemeMargins
SetWindowTheme
GetThemePartSize
GetThemeMetric
IsThemeActive
DrawThemeBackground
GetThemeAppProperties
GetThemeFont
GetThemeBackgroundExtent
CloseThemeData
DrawThemeParentBackground
GetThemeBackgroundContentRect
IsAppThemed
GetThemeColor

psapi

GetProcessImageFileNameW

ntdll

RtlAdjustPrivilege
NtQuerySemaphore
RtlAddAccessAllowedObjectAce
NtSuspendProcess

ddraw

DirectDrawCreate

shell32

SHGetSpecialFolderPathW
SHGetInstanceExplorer
ShellExecuteExW
DragQueryFileW
SHGetSpecialFolderLocation
SHGetDesktopFolder
SHGetPathFromIDListW
SHFileOperationW
SHAppBarMessage
SHBrowseForFolderW
SHGetFolderPathW
SHGetDataFromIDListW
SHGetFolderPathAndSubDirW
SHPathPrepareForWriteW
ExtractIconExW
SHGetFileInfoW
SHCreateShellItem
SHGetPathFromIDListA
ShellExecuteA
ShellAboutW
Shell_NotifyIconA
ExtractAssociatedIconExW
SHChangeNotify
SHBindToParent
ShellExecuteW
Shell_NotifyIconW
SHGetFolderLocation
ExtractIconW
SHSetLocalizedName

rtutils

RouterLogEventStringA
RouterGetErrorStringW
TraceDumpExA
RouterLogRegisterA
LogErrorW
RouterLogEventExA

Sections

.text
Size: 1024B - Virtual size: 992B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 50KB - Virtual size: 49KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 360KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 102KB - Virtual size: 102KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

35e5a50f182d3ee07517b556699d6a21

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

gdi32

user32

kernel32

uxtheme

psapi

ntdll

ddraw

shell32

rtutils

Sections

.text Size: 1024B - Virtual size: 992B

.rsrc Size: 50KB - Virtual size: 49KB

.data Size: 17KB - Virtual size: 360KB

.idata Size: 12KB - Virtual size: 12KB

.rdata Size: 102KB - Virtual size: 102KB

.text
Size: 1024B - Virtual size: 992B

.rsrc
Size: 50KB - Virtual size: 49KB

.data
Size: 17KB - Virtual size: 360KB

.idata
Size: 12KB - Virtual size: 12KB

.rdata
Size: 102KB - Virtual size: 102KB