09e8d0b210fdaec894b5c5abdab050aa_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

09e8d0b210fdaec894b5c5abdab050aa_JaffaCakes118
Size

123KB
MD5

09e8d0b210fdaec894b5c5abdab050aa
SHA1

3b87448aea1561b5ba2921bd14044a1ea81e98e1
SHA256

123f50ed901d23d5a45f54aa905fbf6d738c4ff93ab113a86f063cd08643aa5c
SHA512

c31d636b12b8efe27d25d0965345d9be07a8e1884439ace2e0d1e5a96906c0b9944520cb0370fc823a18be01e0b26cca0d115ef5411dda1e2fe60d79eeae6c61
SSDEEP

3072:WWwNO0P3mYxW+JHxxU0gdHCqJhQF40mxplCFB:WzL3jUc8JkY+40KK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
09e8d0b210fdaec894b5c5abdab050aa_JaffaCakes118

Files

09e8d0b210fdaec894b5c5abdab050aa_JaffaCakes118
.exe .ps1 windows:5 windows x86 arch:x86 polyglot

d6ae655fef0354067291fdf9b23e7531

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetMessagePos
DeferWindowPos
DdeGetLastError
IsRectEmpty
DialogBoxParamA
SetLastErrorEx
UnregisterClassA
GetInputDesktop
CreateWindowExA
GetDlgCtrlID
FindWindowW
DialogBoxIndirectParamA
EnumDesktopsW
GrayStringA
GetKeyNameTextA
GetMenuItemCount
GetKeyboardState
CloseWindowStation
EnumDisplaySettingsA
GetMenuItemRect
SetKeyboardState
ShowWindowAsync
FindWindowExW
ClipCursor
SetPropW
SendMessageCallbackW
GetSystemMetrics
ExcludeUpdateRgn
GetSystemMenu
LoadStringA
CheckRadioButton
ChildWindowFromPoint
GetAncestor
GetUpdateRgn
DdeQueryStringW
CreateIconFromResourceEx
EnumWindows
UnregisterClassW
SetMenu
ScrollWindow
GetClassLongW
CopyIcon
GetKBCodePage
LoadCursorW
IsDlgButtonChecked
GetMessageTime
ToAsciiEx
MapWindowPoints
GetCaretPos
RegisterClassA
LookupIconIdFromDirectoryEx
GetParent
MapVirtualKeyA
DdeKeepStringHandle
SendNotifyMessageA
SetTimer
ScrollDC
DdeAccessData
EnumDisplayDevicesW
GetScrollPos
WaitMessage
BlockInput
CharLowerA
SetScrollRange
BringWindowToTop
GetMenuDefaultItem
CountClipboardFormats
RegisterClassExA
GetMessageExtraInfo
MapVirtualKeyExA
GetMenuStringA
GetInputState
GetDCEx
TrackMouseEvent
GetKeyboardLayoutNameA
SetMenuItemInfoA
DlgDirSelectComboBoxExW
LoadIconA
GetWindowDC
GetClipboardViewer
PeekMessageA
SetUserObjectSecurity
EnumThreadWindows
EmptyClipboard
ModifyMenuA
SetWindowContextHelpId
RegisterClipboardFormatA
GetDoubleClickTime
DrawTextA
InsertMenuItemW
CascadeWindows
CreateDialogParamW
NotifyWinEvent
CharLowerW
GetComboBoxInfo
GetKeyNameTextW
DdeCreateStringHandleA
RealChildWindowFromPoint
GetClipboardFormatNameA
ShowCursor
CharPrevW
SetMenuItemBitmaps
CharUpperBuffW
CloseDesktop
SetFocus
SetClipboardData
GetQueueStatus
GetWindowTextLengthW
EnableScrollBar
SetCaretPos
SendMessageW
EnumWindowStationsA
GetMenuItemInfoA
CreateWindowStationW
LoadIconW
GetWindowModuleFileNameW
ClientToScreen
RemovePropW
EnumDisplaySettingsExA
OemToCharA
GetDesktopWindow
ToAscii
CreateCaret
GetClipboardFormatNameW
CreateMDIWindowA
GetDlgItemInt
DdeImpersonateClient
LoadMenuIndirectA
DrawStateW
CallMsgFilterA
CharPrevA
InSendMessage
CloseClipboard
GetClassInfoA
GetKeyboardType
ChangeDisplaySettingsW
CopyRect
EnumDisplaySettingsW
MonitorFromRect
GetMenuInfo
EnumDisplayMonitors
CopyImage
DlgDirSelectExW
EnableWindow
EnumDisplayDevicesA
GetKeyboardLayoutNameW
SwitchDesktop
MessageBoxA
ArrangeIconicWindows
SetClassWord
CopyAcceleratorTableW
DrawIcon
DrawMenuBar
SetScrollPos
EndPaint
SetThreadDesktop
GetMenuState
CascadeChildWindows
GrayStringW
DialogBoxIndirectParamW
RealGetWindowClass
DefDlgProcW
GetCaretBlinkTime
DragObject
MsgWaitForMultipleObjects
CharNextExA
SetMenuDefaultItem
SetWindowTextW
SetRectEmpty
GetUserObjectInformationW
DdeQueryConvInfo
ChangeClipboardChain
SetRect
SetMenuInfo
SendMessageCallbackA
AnimateWindow
EnumPropsW
SendInput
SetUserObjectInformationA
DestroyAcceleratorTable
SetCursor
DrawFrame
BeginPaint
CheckMenuRadioItem
GetWindowLongA
EnumPropsA
GetClientRect
CreateWindowExW
OffsetRect
PtInRect
DdeDisconnect
DestroyIcon
DdeInitializeW
DefWindowProcW
DrawEdge
CreateMenu
LoadCursorA
SetDoubleClickTime
DlgDirListComboBoxW
SetForegroundWindow
DrawAnimatedRects
GetNextDlgTabItem
ValidateRect
DrawCaption
LoadKeyboardLayoutW
GetScrollRange
SetWindowRgn
LockWindowUpdate
OpenDesktopW
FillRect
GetMenu
SetCapture
AdjustWindowRectEx
SwapMouseButton
MonitorFromWindow
DispatchMessageA
SetParent
DdeInitializeA
VkKeyScanW
LoadAcceleratorsA
GetClipCursor
SetClassLongW
SetDlgItemTextA
SendMessageTimeoutA
DdeSetQualityOfService
DdeEnableCallback
RegisterClipboardFormatW
CharUpperA
GetAsyncKeyState
MessageBeep
GetWindowRect
GetClipboardData
InvalidateRect
GetMenuItemInfoW
GetClassInfoExW
DestroyCursor
GetScrollBarInfo
RedrawWindow
WINNLSGetEnableStatus
CharLowerBuffW
OemToCharBuffW
DdeCreateStringHandleW
GetSysColorBrush
MessageBoxIndirectW
GetMonitorInfoA
EnumPropsExA
DlgDirSelectExA
CreateAcceleratorTableW
WindowFromPoint
DefMDIChildProcW
MenuItemFromPoint
EnumDesktopsA
ShowCaret
GetShellWindow

shlwapi

SHGetValueA
StrToIntExW
StrCmpW
PathIsUNCA
PathIsLFNFileSpecA
StrCSpnW

advapi32

LookupPrivilegeNameA
RegQueryInfoKeyW
RegEnumValueW
CryptAcquireContextW
InitializeAcl
CryptSetProviderExW
LookupAccountNameW
GetLengthSid
GetEffectiveRightsFromAclA
GetPrivateObjectSecurity

kernel32

VirtualAlloc
OpenSemaphoreW
LoadLibraryA
FindNextChangeNotification
ReadFile
FillConsoleOutputAttribute
SetConsoleTitleW
GetLogicalDrives
GetFileType
CreateNamedPipeA
VirtualFree
ReadConsoleOutputCharacterA
CreateEventW
WriteConsoleW
DisconnectNamedPipe
GetPrivateProfileSectionNamesA
SetMessageWaitingIndicator
FindClose
ExpandEnvironmentStringsA
PeekConsoleInputW
EnumDateFormatsW
GetNumberFormatW
GetCPInfo
lstrcatW
GetPrivateProfileIntW
GetProcessTimes
GetNumberOfConsoleInputEvents
CreateSemaphoreW
WritePrivateProfileStructA
GetLastError
GetDateFormatW
UpdateResourceA
SetConsoleActiveScreenBuffer
SetConsoleWindowInfo
MoveFileExW
GetVersion
GlobalFindAtomW
CreateConsoleScreenBuffer
ConvertThreadToFiber
GetDiskFreeSpaceA
PeekNamedPipe
SetConsoleCP
FindResourceExW
SetFileAttributesA
GlobalReAlloc
lstrcpyn
FlushConsoleInputBuffer
CopyFileW
Thread32Next
DeleteFiber
OpenEventW
CreateEventA
GetFullPathNameW
TlsSetValue
VerLanguageNameA
SetConsoleCursorPosition
EnumResourceTypesW
GetNamedPipeHandleStateW
SetLocalTime
RequestDeviceWakeup
MapViewOfFileEx
Module32First
GetConsoleTitleA
GetBinaryTypeA
CreateProcessA
IsBadHugeReadPtr
EnumCalendarInfoA
SetConsoleCursorInfo
GetCurrentThread
FillConsoleOutputCharacterA
GetProcessHeap
FreeEnvironmentStringsW
EnumDateFormatsA
GetComputerNameW
GetTempFileNameW
Toolhelp32ReadProcessMemory
SetProcessAffinityMask
GetLocaleInfoA
WideCharToMultiByte
OpenFile
GetLongPathNameA
GetProcessHeaps
RequestWakeupLatency
GetCompressedFileSizeW
RtlFillMemory
GetFileInformationByHandle
WriteConsoleOutputW
CopyFileExW
TerminateProcess
GetExitCodeProcess
IsBadHugeWritePtr
LocalCompact
GetDateFormatA
GetStdHandle
GetConsoleMode
UnmapViewOfFile
GlobalLock
ExpandEnvironmentStringsW
GetFileAttributesExA
SetSystemPowerState
GetVolumeInformationW
ReadConsoleOutputAttribute
FindFirstFileA
CompareStringA
GetAtomNameA
LocalAlloc
GetEnvironmentVariableA
EnumSystemCodePagesW
GlobalHandle
GetHandleInformation
FormatMessageW
LocalFree
LoadLibraryW
GetCalendarInfoW
HeapCreate
CreateProcessW
FreeResource
FileTimeToSystemTime
GetUserDefaultLCID
CreateWaitableTimerW
GetStringTypeExA
IsBadStringPtrA
SleepEx
GetProcessVersion
WriteConsoleOutputCharacterW
lstrcpyA
LocalReAlloc
GlobalGetAtomNameA
GlobalAddAtomA
GetProfileStringW
SetFilePointer
BackupSeek
OpenSemaphoreA
SetProcessPriorityBoost
MoveFileExA
WaitNamedPipeA
TransactNamedPipe
lstrcmpiA
EnumCalendarInfoExA
WritePrivateProfileSectionA
MulDiv
FlushViewOfFile
GlobalAddAtomW
IsBadStringPtrW
lstrcmpiW
CreateFileMappingA
lstrcpynA
OpenFileMappingA
VirtualProtect
CompareFileTime
GetDiskFreeSpaceExA
lstrcmp
GetPrivateProfileIntA
SwitchToThread
GetCompressedFileSizeA
GetCurrentProcess
HeapValidate
UnlockFileEx
ReadFileEx
GetTempPathW
DuplicateHandle
GetSystemPowerStatus
CreateFileA
LocalUnlock
SetMailslotInfo
PulseEvent
LCMapStringW
EnumCalendarInfoW
WritePrivateProfileStringW
VirtualAllocEx
QueryDosDeviceW
SetThreadAffinityMask
RemoveDirectoryW
SetComputerNameW
GetConsoleOutputCP
SetThreadContext
EnumResourceNamesW
IsSystemResumeAutomatic
SetThreadPriorityBoost
AddAtomW
SetProcessShutdownParameters
GetLocalTime
ConnectNamedPipe
FindResourceExA
WriteConsoleOutputCharacterA
IsBadWritePtr
LocalFlags
HeapDestroy
OpenMutexA
LocalFileTimeToFileTime
GetProfileIntA
GetProcAddress

ole32

CoBuildVersion
ReadOleStg
OleRegEnumVerbs
MonikerCommonPrefixWith
CoGetStandardMarshal
StgSetTimes
CoQueryAuthenticationServices

Sections

.text
Size: 85KB - Virtual size: 85KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 34KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d6ae655fef0354067291fdf9b23e7531

Headers

DLL Characteristics

File Characteristics

Imports

user32

shlwapi

advapi32

kernel32

ole32

Sections

.text Size: 85KB - Virtual size: 85KB

.rdata Size: 34KB - Virtual size: 33KB

.data Size: 512B - Virtual size: 4KB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 85KB - Virtual size: 85KB

.rdata
Size: 34KB - Virtual size: 33KB

.data
Size: 512B - Virtual size: 4KB

.rsrc
Size: 2KB - Virtual size: 1KB