1539daa859fc72145990fccec0de4eeb_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

1539daa859fc72145990fccec0de4eeb_JaffaCakes118
Size

556KB
MD5

1539daa859fc72145990fccec0de4eeb
SHA1

7e29306e2e2fb9a22c40351c94dfc100a29aaa9b
SHA256

63fb0138d84915abe82b46c446e322e98376d1b0b9cafb16d48a1b9fc194a8ef
SHA512

ed05dce50dc8d23db1437960e02612d23856bd95ccd7fb6a382b2aaed5bdcea1996c4809d81c7c3737000c847a4f1c20dfba26c2da89059dc6c873356fdf6d32
SSDEEP

12288:TmHvcfmzNUGMDp0COO+g/coQMMnMMMMMteF9fL8IlP0Lt:qEezNUd17+scoQMMnMMMMMt+OLt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1539daa859fc72145990fccec0de4eeb_JaffaCakes118

Files

1539daa859fc72145990fccec0de4eeb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

1582725611c9a3008c3f835d11f72374

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

CreateDIBSection
CopyMetaFileA
SetStretchBltMode
CombineRgn
GetPaletteEntries
SetRectRgn
GetWindowExtEx
RealizePalette
Ellipse
PlayMetaFile
GetSystemPaletteEntries
UnrealizeObject
PlayEnhMetaFile
GetCurrentObject
EndDoc
SetPixelV
GetTextExtentPoint32A
SetViewportOrgEx
EndPage
OffsetRgn
DeleteMetaFile
SetMapMode
BitBlt
GetDIBits
GetROP2
CreateHatchBrush
LineTo
CreateRectRgnIndirect
GetMapMode
SetROP2
SelectPalette
CreateSolidBrush
SelectObject
TranslateCharsetInfo
SetBkMode
RoundRect
MoveToEx
EndPath
ExcludeClipRect
CreateEnhMetaFileA
CreateMetaFileA
CreateRoundRectRgn
SetBrushOrgEx
PtInRegion
StretchDIBits
StartPage
DeleteDC
RestoreDC
Escape
CreateHalftonePalette
CreateBrushIndirect
GetStockObject
GetBkColor
GetObjectType
ExtCreateRegion
Arc
TextOutA
ResetDCA
GetClipBox
SetWindowOrgEx
DeleteObject
WidenPath
GetTextExtentPointA
GetViewportExtEx
OffsetWindowOrgEx
StartDocA
SetAbortProc
CreateFontIndirectA
IntersectClipRect
ScaleWindowExtEx
CreateDIBitmap
CreatePenIndirect
CreateEllipticRgnIndirect
GetTextMetricsA
ExtTextOutA
SetBkColor
PatBlt
SelectClipRgn
CreateDCA
CreatePen
CreateICA
DeleteEnhMetaFile
GetBitmapBits
CreateCompatibleBitmap
SetWindowExtEx
SetTextColor
CloseMetaFile
GetWindowOrgEx
GetObjectA
BeginPath
PathToRegion
CreateBitmap
CopyEnhMetaFileA
EnumFontsA
CreatePalette
GetDeviceCaps
GetPixel
CreateCompatibleDC
StretchBlt
CreateRectRgn
ScaleViewportExtEx
Rectangle
SaveDC
SetDIBColorTable
CloseEnhMetaFile
SetViewportExtEx
CreatePatternBrush
GetNearestColor
GetEnhMetaFileHeader
Pie
GetTextColor
AbortDoc

advapi32

RegQueryValueA
RegCloseKey
RegSetValueExW
RegSetValueExA
RegDeleteValueW
LookupPrivilegeValueA
RegOpenKeyW
RegDeleteValueA
InitializeSecurityDescriptor
RegisterEventSourceA
RegQueryInfoKeyA
DeregisterEventSource
OpenProcessToken
RegDeleteKeyW
RegDeleteKeyA
RegQueryValueExW
RegCreateKeyA
RegEnumKeyW
RegOpenKeyA
RegEnumValueA
RegEnumValueW
SetSecurityDescriptorDacl
AdjustTokenPrivileges
ReportEventA
RegCreateKeyW
RegOpenKeyExA
RegQueryValueExA
RegEnumKeyA
RegSetValueA

ntdll

RtlAddAuditAccessObjectAce

kernel32

SetErrorMode
FormatMessageA
CreateDirectoryA
GetEnvironmentStringsW
DeleteFileA
InterlockedDecrement
WriteFile
GetFullPathNameA
Sleep
IsBadReadPtr
InterlockedIncrement
GetCommandLineA
UnhandledExceptionFilter
LoadResource
GetSystemTime
LCMapStringA
GetShortPathNameA
lstrcmpA
LeaveCriticalSection
HeapFree
GetStringTypeW
GlobalFree
GetTempFileNameA
DeleteCriticalSection
GetModuleFileNameW
GetProfileStringA
RtlUnwind
SetHandleCount
CompareStringA
_lclose
GlobalReAlloc
LoadLibraryA
TlsAlloc
GetCurrentDirectoryA
GetTimeZoneInformation
FileTimeToLocalFileTime
ExitProcess
GetFileTime
LoadLibraryExA
GetFileType
GetEnvironmentStrings
GetLastError
FreeResource
CompareStringW
SearchPathA
IsDBCSLeadByte
ResetEvent
GetSystemDefaultLCID
CloseHandle
GetStartupInfoA
GetUserDefaultLangID
GetStringTypeA
CreateEventA
RemoveDirectoryA
lstrcpynA
TerminateProcess
GetStdHandle
FindFirstFileA
GetVersionExA
lstrcmpiA
GetExitCodeProcess
InitializeCriticalSection
LCMapStringW
GetModuleHandleA
VirtualAlloc
lstrlenA
SetEvent
SetLocalTime
GetSystemDefaultLangID
GetVolumeInformationA
GetWindowsDirectoryA
SetLastError
FindNextFileA
_lread
GetProcAddress
CreateProcessW
GetDateFormatA
SetFileTime
lstrcpyA
LockFile
GetVersion
GlobalLock
FindClose
FindResourceA
SystemTimeToFileTime
GetUserDefaultLCID
GetSystemInfo
IsBadCodePtr
FreeEnvironmentStringsA
DuplicateHandle
HeapReAlloc
FormatMessageW
GlobalAlloc
HeapAlloc
FreeLibrary
MulDiv
GlobalHandle
GetCurrentThreadId
GetCurrentProcessId
SetFileAttributesA
GlobalDeleteAtom
GetFileAttributesA
MoveFileA
WideCharToMultiByte
CreateThread
CreateSemaphoreA
HeapCreate
ExitThread
CreateProcessA
GlobalSize
ReleaseSemaphore
SetCurrentDirectoryA
SetFilePointer
VirtualProtect
GetSystemDirectoryA
FreeEnvironmentStringsW
VirtualFree
HeapSize
_lwrite
GetCPInfo
lstrcatA
CreateFileA
GetStringTypeExA
LockResource
GetModuleFileNameA
ReadFile
VirtualQuery
WaitForSingleObject
TlsFree
RaiseException
GetOEMCP
_llseek
SetEndOfFile
GetDriveTypeA
GetACP
SizeofResource
ResumeThread
GlobalUnlock
GetLocalTime
FlushInstructionCache
lstrcmpiW
TlsSetValue
FlushFileBuffers
TlsGetValue
GetTempPathA
SetStdHandle
WinExec
GetCurrentProcess
GetLocaleInfoA
EnterCriticalSection
GetTickCount
MultiByteToWideChar
FileTimeToSystemTime
UnlockFile
GlobalAddAtomA
SetEnvironmentVariableA
HeapDestroy

ddraw

DirectDrawEnumerateA

user32

SetKeyboardState
GetKeyboardState
SetScrollInfo
MoveWindow
MessageBoxA
PostMessageA
GetMenuItemCount
LoadStringA
SetScrollPos
FindWindowW
GetDesktopWindow
GetWindowLongA
PostQuitMessage
DdeAbandonTransaction
SendMessageA
EnumClipboardFormats
IsZoomed
wsprintfA
UnregisterClassA
IsCharAlphaA
DrawFocusRect
DestroyCursor
BringWindowToTop
TranslateMessage
GetWindowRect
GetParent
IsDialogMessageA
DdeUninitialize
DdeInitializeA
GetWindowTextA
GetSubMenu
GetCursor
CopyRect
CharLowerBuffW
AppendMenuA
CharUpperA
FrameRect
DefFrameProcA
OemToCharA
DestroyCaret
ToAscii
SetForegroundWindow
SystemParametersInfoA
GetIconInfo
PostThreadMessageA
GetScrollInfo
GetMenuState
GetMenu
keybd_event
DdePostAdvise
SetWindowsHookExW
CharUpperBuffW
MsgWaitForMultipleObjects
DrawMenuBar
IsChild
OffsetRect
GetMenuItemID
TranslateMDISysAccel
SetCapture
CharPrevA
SetMenu
DestroyAcceleratorTable
SubtractRect
CharNextA
LoadAcceleratorsA
UnhookWindowsHookEx
GetDC
DdeCmpStringHandles
GetDCEx
GetTabbedTextExtentA
IsWindowEnabled
GetClipboardFormatNameA
CreateIcon
GetClassInfoExA
DdeFreeDataHandle
WinHelpA
GetClipboardData
LockWindowUpdate
SetScrollRange
GetDlgItem
DefWindowProcA
WindowFromPoint
GetUpdateRect
FindWindowA
CharUpperBuffA
EqualRect
RemoveMenu
SetActiveWindow
IntersectRect
GetClassInfoA
MapWindowPoints
SetCursorPos
VkKeyScanW
SetRect
GetMenuItemInfoA
GetCapture
CharToOemBuffA
GetFocus
LoadBitmapA
DestroyIcon
MessageBoxIndirectA
GetKeyState
AttachThreadInput
DdeQueryStringA
EmptyClipboard
EnumThreadWindows
CallNextHookEx
GetWindow
ShowCursor
CreateDialogParamA
EndDialog
VkKeyScanA
CharLowerBuffA
TrackPopupMenu
IsWindowVisible
SetParent
GetCursorPos
DialogBoxParamA
CheckMenuItem
SetWindowLongA
DrawIcon
DdeSetUserHandle
GetSysColor
SetFocus
CreateAcceleratorTableA
PtInRect
ReleaseCapture
EnableWindow
GetClassNameA
BeginDeferWindowPos
GetWindowTextLengthA
BeginPaint
PostMessageW
LoadIconA
GetCaretBlinkTime
KillTimer
TabbedTextOutA
DrawFrameControl
RemovePropA
ModifyMenuA
InvalidateRgn
DeleteMenu
WaitMessage
InsertMenuA
OpenClipboard
SetCaretPos
GetMessageTime
GetUpdateRgn
CharToOemA
ShowScrollBar
SetMenuDefaultItem
CreateWindowExA
CloseClipboard
CallWindowProcA
EndDeferWindowPos
GetAsyncKeyState
DdeDisconnect
SetCursor
CreateMenu
GetActiveWindow
InflateRect
GetForegroundWindow
CreatePopupMenu
MessageBeep
SetWindowRgn
ReleaseDC
GetQueueStatus
DdeNameService
LoadCursorA
AdjustWindowRect
GetWindowRgn
SendDlgItemMessageA
EnableMenuItem
UpdateWindow
SetClipboardData
DdeGetLastError
GetLastActivePopup
SetTimer
DestroyMenu
GetScrollPos
CreateCursor
GetWindowThreadProcessId
DdeClientTransaction
IsClipboardFormatAvailable
RegisterClipboardFormatA
DispatchMessageA
PeekMessageW
SetPropA
GetCaretPos
GetDoubleClickTime
DdeFreeStringHandle
GetMessagePos
EndPaint
IsWindow
IsIconic
CharLowerA
GetPropA
GetKeyboardLayout
SetWindowsHookExA
HideCaret
LoadImageA
SetWindowPos
SetWindowContextHelpId
DdeConnect
RegisterClassA
DdeCreateDataHandle
DdeQueryConvInfo
DestroyWindow
GetSystemMenu
DrawTextA
InvalidateRect
DeferWindowPos
PeekMessageA
IsRectEmpty
GetWindowDC
CopyAcceleratorTableA
ClipCursor
ShowWindow
SetWindowTextA
SetMenuItemInfoA
SetDlgItemTextA
DefMDIChildProcA
GetSystemMetrics
ScreenToClient
GetClientRect
AdjustWindowRectEx
ShowCaret
FillRect
GetMenuStringA
CreateCaret
DdeGetData
RegisterClassExA
WaitForInputIdle
ClientToScreen
DdeCreateStringHandleA

ole32

CoMarshalInterface
CreateBindCtx
OleDestroyMenuDescriptor
OleUninitialize
CoGetMalloc
OleCreateFromFile
CoRegisterMessageFilter
OleLockRunning
CoRegisterClassObject
OleCreateLinkToFile
StgOpenStorageOnILockBytes
StringFromGUID2
OleIsRunning
ReadClassStg
BindMoniker
GetClassFile
OleCreateMenuDescriptor
OleLoad
WriteClassStg
OleQueryLinkFromData
MkParseDisplayName
StgOpenStorage
CreateILockBytesOnHGlobal
OleInitialize
DoDragDrop
CreateStreamOnHGlobal
ReleaseStgMedium
CoFreeUnusedLibraries
CoCreateInstance
OleGetAutoConvert
OleDuplicateData
ReadClassStm
OleRegGetUserType
OleCreateFromData
CreateDataAdviseHolder
CoLockObjectExternal
StgCreateDocfileOnILockBytes
CoRevokeClassObject
OleSetMenuDescriptor
IsAccelerator
OleSetClipboard
IIDFromString
OleConvertOLESTREAMToIStorage
OleConvertIStorageToOLESTREAM
RevokeDragDrop
OleGetClipboard
OleCreateLinkFromData
CoIsOle1Class
OleFlushClipboard
CoGetClassObject
OleSave
StgIsStorageILockBytes
ProgIDFromCLSID
StgCreateDocfile
OleCreateLink
CreateOleAdviseHolder
OleLoadFromStream
CLSIDFromProgID
CoDisconnectObject
OleTranslateAccelerator
CoUnmarshalInterface
OleSaveToStream
OleIsCurrentClipboard
OleGetIconOfClass
OleQueryCreateFromData
StringFromCLSID
OleRun
OleDoAutoConvert
CLSIDFromString
RegisterDragDrop

Sections

.text
Size: 4KB - Virtual size: 912B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 328KB - Virtual size: 2.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 16KB - Virtual size: 15KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 192KB - Virtual size: 188KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

1582725611c9a3008c3f835d11f72374

Headers

File Characteristics

Imports

gdi32

advapi32

ntdll

kernel32

ddraw

user32

ole32

Sections

.text Size: 4KB - Virtual size: 912B

.data Size: 328KB - Virtual size: 2.0MB

.idata Size: 16KB - Virtual size: 15KB

.rsrc Size: 192KB - Virtual size: 188KB

.rdata Size: 12KB - Virtual size: 10KB

.text
Size: 4KB - Virtual size: 912B

.data
Size: 328KB - Virtual size: 2.0MB

.idata
Size: 16KB - Virtual size: 15KB

.rsrc
Size: 192KB - Virtual size: 188KB

.rdata
Size: 12KB - Virtual size: 10KB