0ac41f12e6f4a5e60d7f6bb60cd853b8_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

0ac41f12e6f4a5e60d7f6bb60cd853b8_JaffaCakes118
Size

838KB
MD5

0ac41f12e6f4a5e60d7f6bb60cd853b8
SHA1

8f64cda2dfd0584ed19f3c5d84ea886601f82aed
SHA256

71904d80a198604cb7ffb9bb4c3bc69f3f9b18370e5021ec4928b0b518fff86f
SHA512

f7ab15e0f6a76f91fbfbb4498bb1fba96f7487e1d296fca3efe3b60f8086a703408e6e84ddda5c9e33a4ee229e25abac2e4ca655add4831f5f0147a2aa40a79c
SSDEEP

24576:YgbqhrqzuAXYXm2yoCnfrKESvOZ6tgngoqgwW/:eJq3BJoGfr7SGkAqg

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0ac41f12e6f4a5e60d7f6bb60cd853b8_JaffaCakes118

Files

0ac41f12e6f4a5e60d7f6bb60cd853b8_JaffaCakes118
.dll windows:5 windows x86 arch:x86

307c9b2b1262b2579ad2512fcd43f469

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

LoadLibraryA
GlobalAddAtomA
CompareStringW
LockResource
GetTimeFormatA
HeapFree
TlsGetValue
IsValidCodePage
TlsAlloc
ExitProcess
CloseHandle
GlobalFlags
GetSystemInfo
CompareStringA
InterlockedIncrement
GetLocaleInfoA
LockFile
lstrcmpA
LCMapStringW
FileTimeToLocalFileTime
GetCurrentProcess
GetSystemTimeAsFileTime
GetFullPathNameA
GlobalUnlock
EnumResourceLanguagesA
GetVolumeInformationA
SetUnhandledExceptionFilter
WaitForSingleObject
GetTimeZoneInformation
GetStartupInfoA
GlobalFindAtomA
FreeEnvironmentStringsA
SetThreadPriority
SuspendThread
GetFileSizeEx
GetThreadLocale
GetEnvironmentStringsW
RtlUnwind
QueryPerformanceCounter
GetConsoleCP
InitializeCriticalSection
GlobalHandle
VirtualQuery
InterlockedExchange
LocalReAlloc
GetConsoleOutputCP
GetEnvironmentStrings
CreateThread
lstrlenA
GetACP
WriteConsoleA
CreateEventA
SetHandleCount
LocalAlloc
LocalFree
FindResourceExA
GetCPInfo
MulDiv
SetStdHandle
VirtualAlloc
LoadResource
SetEndOfFile
GetFileAttributesA
GetStringTypeA
ExitThread
HeapAlloc
UnlockFile
GetDateFormatA
LeaveCriticalSection
FormatMessageA
GetModuleHandleW
TerminateProcess
SetLastError
UnhandledExceptionFilter
LCMapStringA
ReadFile
GetCurrentThreadId
FreeLibrary
TlsFree
GetStdHandle
ConvertDefaultLocale
CreateFileA
GetStringTypeW
HeapCreate
ResumeThread
GetLastError
GetModuleFileNameA
GlobalGetAtomNameA
WriteConsoleW
FreeResource
Sleep
GetFileType
DuplicateHandle
FlushFileBuffers
FileTimeToSystemTime
InitializeCriticalSectionAndSpinCount
TlsSetValue
HeapSize
GlobalLock
FindFirstFileA
FindResourceA
WideCharToMultiByte
SetEnvironmentVariableA
SetFilePointer
RaiseException
GetProcAddress
GetCurrentProcessId
WriteFile
GetFileTime
InterlockedDecrement
GlobalDeleteAtom
DeleteFileA
VirtualFree
WritePrivateProfileStringA
SetErrorMode
SizeofResource
GetModuleFileNameW
IsDebuggerPresent
GetDriveTypeA
DeleteCriticalSection
MultiByteToWideChar
GetVersionExA
GlobalReAlloc
GlobalFree
GetCommandLineA
SetEvent
GetTickCount
FreeEnvironmentStringsW
GetConsoleMode
lstrcmpW
HeapReAlloc
GetCurrentDirectoryA
GetCurrentThread
VirtualProtect
ExpandEnvironmentStringsA
GetModuleHandleA
EnterCriticalSection
GetOEMCP
GlobalAlloc
GetFileSize
FindClose

user32

SetWindowTextA
SystemParametersInfoA
GetWindowRect
GetDesktopWindow
SetWindowLongA
SendMessageA
GetClassInfoExA
EnableMenuItem
GetDlgCtrlID
MapWindowPoints
GetLastActivePopup
GetParent
SetCursor
GetClassNameA
GetCapture
InvalidateRect
CallWindowProcA
GetWindowTextA
BeginPaint
EqualRect
GetMessageA
GetNextDlgTabItem
GetWindowTextLengthA
GetSystemMenu
GrayStringA
GetWindowThreadProcessId
CopyAcceleratorTableA
CheckMenuItem
ReleaseCapture
LoadBitmapA
DrawTextA
SetWindowRgn
KillTimer
IsDialogMessageA
IsWindowEnabled
DefWindowProcA
GetMenu
GetSystemMetrics
GetClassLongA
AdjustWindowRectEx
GetMenuItemID
GetKeyState
IntersectRect
CreatePopupMenu
CopyRect
MessageBoxA
RegisterClipboardFormatA
SetWindowPos
CreateDialogIndirectParamA
GetCursorPos
WindowFromPoint
TrackPopupMenu
SetWindowContextHelpId
InvalidateRgn
GetDlgItem
WinHelpA
AppendMenuA
PostMessageA
SetPropA
GetMessagePos
GetActiveWindow
LoadIconA
ReleaseDC
EndDialog
CharUpperA
GetSubMenu
RegisterWindowMessageA
LoadCursorA
ValidateRect
SetCapture
PtInRect
InsertMenuA
RemovePropA
ModifyMenuA
EndPaint
SetForegroundWindow
SetMenuItemBitmaps
PostQuitMessage
DispatchMessageA
GetClientRect
FillRect
GetTopWindow
CallNextHookEx
SetMenu
DrawIcon
GetMenuCheckMarkDimensions
GetWindowDC
GetMenuItemCount
DestroyMenu
GetForegroundWindow
DrawFrameControl
IsWindowVisible
RegisterClassA
DestroyWindow
GetMessageTime
GetAsyncKeyState
SetActiveWindow
PostThreadMessageA
UnhookWindowsHookEx
IsWindow
SetRect
GetSysColorBrush
GetWindowPlacement
IsChild
GetWindow
GetDC
MapDialogRect
EnableWindow
CreateWindowExA
MessageBeep
ScreenToClient
GetClassInfoA
GetPropA
SendDlgItemMessageA
MoveWindow
ClientToScreen
PeekMessageA
SetWindowsHookExA
GetMenuState
IsIconic
GetFocus
TabbedTextOutA
UpdateWindow
CharNextA
GetNextDlgGroupItem
DrawTextExA
ShowWindow
UnregisterClassA
GetWindowLongA
SetTimer
TranslateMessage
IsRectEmpty
RedrawWindow
SetFocus
GetSysColor
OffsetRect

gdi32

SetViewportExtEx
CreatePen
CreateCompatibleDC
CreateFontIndirectA
SetBkMode
GetCurrentPositionEx
PtVisible
GetMapMode
BeginPath
LPtoDP
SelectObject
CreateSolidBrush
RestoreDC
GetClipBox
OffsetViewportOrgEx
DeleteDC
SetTextColor
PathToRegion
StretchBlt
EnumFontFamiliesExA
StrokeAndFillPath
SetViewportOrgEx
SetWindowOrgEx
GetWindowExtEx
SetBkColor
ExtSelectClipRgn
GetObjectA
EndPath
LineTo
GetViewportExtEx
MoveToEx
DPtoLP
SetMapMode
BitBlt
CreateCompatibleBitmap
GetRgnBox
GetTextColor
PolyBezierTo
DeleteObject
Escape
GetBkColor
CreateRectRgnIndirect
ScaleViewportExtEx
SetWindowExtEx
GetStockObject
ScaleWindowExtEx
CreateBitmap
ExtTextOutA
RectVisible
SaveDC
TextOutA
CombineRgn
GetDeviceCaps

comdlg32

GetFileTitleA

advapi32

RegDeleteKeyA
RegOpenKeyExA
RegOpenKeyA
RegEnumKeyA
RegSetValueExA
RegQueryValueExA
RegCloseKey
RegQueryValueA
RegCreateKeyExA

shell32

ShellExecuteA

ole32

CreateILockBytesOnHGlobal
CLSIDFromProgID
CoGetClassObject
OleInitialize
CLSIDFromString
OleIsCurrentClipboard
CoTaskMemFree
OleUninitialize
CoRevokeClassObject
StgOpenStorageOnILockBytes
CoRegisterMessageFilter
CoTaskMemAlloc
CoFreeUnusedLibraries
OleFlushClipboard
StgCreateDocfileOnILockBytes

oleaut32

VariantCopy
SysAllocStringLen
SysStringLen
SafeArrayDestroy
SysAllocStringByteLen
VariantTimeToSystemTime
SysAllocString
SysFreeString
SystemTimeToVariantTime
VariantInit
OleCreateFontIndirect
VariantChangeType
VariantClear

comctl32

ord17

shlwapi

PathStripToRootA
PathFindFileNameA
PathIsUNCA
PathFindExtensionA

rpcrt4

UuidCreate

secur32

CompleteAuthToken

oledlg

ord8

Sections

.text
Size: 817KB - Virtual size: 817KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bzz
Size: - Virtual size: 68KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

307c9b2b1262b2579ad2512fcd43f469

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

comctl32

shlwapi

rpcrt4

secur32

oledlg

Sections

.text Size: 817KB - Virtual size: 817KB

.bzz Size: - Virtual size: 68KB

.rdata Size: 10KB - Virtual size: 9KB

.data Size: 3KB - Virtual size: 3KB

.rsrc Size: 2KB - Virtual size: 2KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 817KB - Virtual size: 817KB

.bzz
Size: - Virtual size: 68KB

.rdata
Size: 10KB - Virtual size: 9KB

.data
Size: 3KB - Virtual size: 3KB

.rsrc
Size: 2KB - Virtual size: 2KB

.reloc
Size: 4KB - Virtual size: 3KB