1682b9a2f3499d66bcf1e676f6c8bd3a_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

1682b9a2f3499d66bcf1e676f6c8bd3a_JaffaCakes118
Size

297KB
MD5

1682b9a2f3499d66bcf1e676f6c8bd3a
SHA1

4f9cc0e8f59344f9431a6a64767052787dd227ae
SHA256

175a9743d112878c45a7fda563be61ba2cbbf62b0ed3c93249bc49ffe99b0b3a
SHA512

670383d81f79cfd7e3499c4113e9b75bc30186b29f83a90ba1f3e9a75aef2b0d43b9d8be172cd2a0355af3c774820aa5ec595ec20cf980848f3eb59ebe373af0
SSDEEP

6144:DOc1G+Xnl8htmXIZDI0yZmNOYxTbiAmC5am+Ls6zP3IgALxIlhQ:r1fXnl8ht64I1ZmdiAmWp+w674NLqlu

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1682b9a2f3499d66bcf1e676f6c8bd3a_JaffaCakes118

Files

1682b9a2f3499d66bcf1e676f6c8bd3a_JaffaCakes118
.exe windows:5 windows x86 arch:x86

0389146e1a543ca9c5f1b00a3632b6ca

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

ShellExecuteA
ShellExecuteExA

oleaut32

SysAllocStringLen
SafeArrayCreate
SafeArrayRedim
VariantInit
SysFreeString
SafeArrayGetUBound
SafeArrayGetLBound
SafeArrayPutElement
SafeArrayUnaccessData
VariantCopy
SafeArrayPtrOfIndex
SafeArrayGetElement
SysReAllocStringLen
VariantClear
VariantChangeType
SysAllocString
GetErrorInfo
SafeArrayAccessData
GetActiveObject

comctl32

ImageList_DragShowNolock
FlatSB_GetScrollInfo
ImageList_BeginDrag
ImageList_DragLeave
ImageList_DragEnter
ImageList_GetDragImage
FlatSB_GetScrollPos
ImageList_DragMove
ImageList_GetImageCount
FlatSB_SetScrollPos
ImageList_SetImageCount
ImageList_GetIconSize
ImageList_GetBkColor
ImageList_Add
ImageList_DrawEx
ImageList_Destroy
ImageList_Write
ImageList_SetBkColor
_TrackMouseEvent
FlatSB_SetScrollInfo
InitializeFlatSB
ImageList_Draw
FlatSB_SetScrollProp
ImageList_Remove
ImageList_Read
ImageList_SetIconSize
ImageList_EndDrag
ImageList_Create

ole32

IsEqualGUID
CoTaskMemFree
CoGetClassObject
CoCreateInstance
OleDraw
OleInitialize
OleUninitialize
CoTaskMemAlloc
ProgIDFromCLSID
CoInitialize
IsAccelerator
OleSetMenuDescriptor
StringFromCLSID
CreateStreamOnHGlobal
CoUninitialize

user32

EnumWindows
PostMessageA
IsZoomed
GetWindowDC
EnableMenuItem
WindowFromPoint
GetDC
SetClipboardData
SetActiveWindow
IsWindowEnabled
GetSystemMetrics
FrameRect
TranslateMDISysAccel
CheckMenuItem
FindWindowExW
GetMenuItemID
GetKeyboardLayoutNameW
CharNextExA
RegisterClassW
GetMenu
DrawIconEx
LoadKeyboardLayoutW
TrackPopupMenu
SetFocus
SendMessageA
SetWindowPlacement
DrawIcon
GetWindowPlacement
ActivateKeyboardLayout
SetMenu
EnableScrollBar
SetPropW
ClientToScreen
DrawFocusRect
SendMessageW
DispatchMessageA
SetTimer
GetMessagePos
SetCapture
CharLowerBuffW
CharLowerW
DefWindowProcW
IsChild
LoadStringW
FindWindowA
LoadCursorW
PtInRect
SetClassLongW
IsIconic
DefMDIChildProcW
MsgWaitForMultipleObjectsEx
EnumChildWindows
OffsetRect
GetDesktopWindow
FillRect
IsWindowUnicode
GetKeyboardState
SetWindowLongW
SetWindowRgn
DrawFrameControl
SystemParametersInfoA
GetCursor
GetWindowLongW
LoadBitmapW
MessageBoxW
GetFocus
KillTimer
GetWindowTextW
CallNextHookEx
GetForegroundWindow
PeekMessageW
GetSystemMenu
DrawTextExW
GetScrollPos
WaitMessage
DestroyWindow
GetActiveWindow
RedrawWindow
MessageBoxA
GetParent
RegisterWindowMessageW
CallWindowProcA
ScrollWindow
GetKeyNameTextW
GetScrollInfo
GetKeyboardLayoutList
InflateRect
ScreenToClient
GetTopWindow
IsDialogMessageW
SystemParametersInfoW
ReleaseDC
InsertMenuW
SetParent
PeekMessageA
IsWindow
GetWindowRect
SetCursor
GetClassInfoW
ShowOwnedPopups
GetLastActivePopup
SetRect
LoadIconW
EndPaint
GetCursorPos
RemoveMenu
GetPropW
CloseDesktop
GetSysColorBrush
GetMenuState
GetClientRect
BeginPaint
GetClipboardData
PostMessageW
GetDCEx
GetSysColor
SetForegroundWindow
EnumThreadWindows
SetScrollPos
GetUserObjectInformationA
CreateMenu
AdjustWindowRectEx
GetWindowLongA
UpdateWindow
InvalidateRect
GetKeyboardLayout
CreateIcon
GetMenuStringW
ShowWindow
CallWindowProcW
RegisterClipboardFormatW
GetSubMenu
DrawMenuBar
GetWindow
CharUpperBuffW
SetMenuItemInfoW
TranslateMessage
ShowScrollBar
SetWindowLongA
SetWindowTextW
GetMenuItemInfoW
RemovePropW
ReleaseCapture
IsDialogMessageA
MsgWaitForMultipleObjects
DestroyIcon
MessageBeep
OpenInputDesktop
MapWindowPoints
DeleteMenu
DrawTextW
IsWindowVisible
GetClassNameA
GetWindowThreadProcessId
CharNextW
CloseClipboard
DrawEdge
CreatePopupMenu
IntersectRect
FindWindowW
DefFrameProcW
EmptyClipboard
OpenClipboard
GetKeyboardType
GetIconInfo
GetScrollRange
UnhookWindowsHookEx
GetMessageTime
UnregisterClassW
DispatchMessageW
GetMenuItemCount
CreateWindowExW
SetWindowsHookExW
wsprintfA
GetKeyState
GetCapture
EnableWindow
DestroyCursor
SetWindowPos
PostQuitMessage
SetScrollInfo
DestroyMenu
GetClassLongW
MapVirtualKeyW
SetScrollRange
InsertMenuItemW

advapi32

RegOpenKeyExW
RegQueryValueExW
RegQueryValueExA
RegCreateKeyExW
RegFlushKey
RegOpenKeyExA
SetSecurityDescriptorDacl
RegCloseKey
OpenProcessToken
GetTokenInformation
InitializeSecurityDescriptor

kernel32

TlsFree
GlobalUnlock
CreateEventW
GetComputerNameW
TlsAlloc
lstrlenW
GlobalLock
RtlUnwind
lstrcpyW
GetCommandLineW
WaitForSingleObject
GlobalFindAtomW
DeleteFileA
ReleaseMutex
SignalObjectAndWait
LoadResource
UnhandledExceptionFilter
CompareStringW
GlobalDeleteAtom
FormatMessageA
GlobalFree
GetACP
HeapAlloc
lstrcpynW
SizeofResource
EnumSystemLocalesW
MulDiv
EnumSystemCodePagesW
SetLastError
CreateMutexA
lstrcpynA
GetFileType
CreateEventA
VirtualQuery
TlsGetValue
LeaveCriticalSection
GetOEMCP
SetErrorMode
IsDBCSLeadByteEx
HeapFree
DebugBreak
GlobalSize
EnumCalendarInfoW
SetHandleCount
FindResourceW
OutputDebugStringA
WaitForMultipleObjectsEx
ResetEvent
GetUserDefaultLCID
SetFilePointer
CreateFileMappingA
SetThreadLocale
FreeLibrary
GetModuleHandleA
MapViewOfFileEx
GetDateFormatW
SetThreadPriority
GetThreadLocale
lstrcmpiA
IsDebuggerPresent
GlobalAddAtomW
IsValidLocale
LoadLibraryExA
FindFirstFileW
TlsSetValue
GetFullPathNameW
GetSystemDefaultLangID
SetConsoleCtrlHandler
ReadFile
LocalFree
FindClose
FormatMessageW
CreateFileA
LCMapStringA
RaiseException
FreeEnvironmentStringsA
SetEndOfFile
UnmapViewOfFile
GetStringTypeExW
CompareStringA
VirtualAlloc
SwitchToThread
LoadLibraryExW
GetSystemDefaultLCID
GetTimeZoneInformation
CloseHandle
GetExitCodeThread
GetModuleHandleW
ExitThread
CreateFileW
WideCharToMultiByte
DeleteCriticalSection
GetSystemInfo
GetProcessHeap
GetCurrentThreadId
FlushInstructionCache
VirtualQueryEx
GetStdHandle
lstrlenA
VirtualFree
ResumeThread
GetProcessVersion
GetLocalTime
GetDiskFreeSpaceW
CreateThread
LockResource
VirtualProtect
GlobalAlloc
WriteFile
FreeResource
EnterCriticalSection

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

gdi32

CreateSolidBrush
SetPixel
CreateEnhMetaFileW
SetViewportOrgEx
DeleteEnhMetaFile
GetBrushOrgEx
GetRgnBox
FrameRgn
CreateDIBSection
CreateCompatibleBitmap
MaskBlt
SetWinMetaFileBits
GetTextExtentPoint32A
GetWinMetaFileBits
SetTextColor
LineTo
GetTextExtentPointW
DeleteDC
CreateBrushIndirect
GetEnhMetaFilePaletteEntries
DeleteObject
CreatePenIndirect
PlayEnhMetaFile
GetObjectW
SetMapMode
GetEnhMetaFileDescriptionW
UnrealizeObject
GetDIBColorTable
GetBitmapBits
TranslateCharsetInfo
CreateCompatibleDC
CreateRectRgn
SetStretchBltMode
GetPixel
SetWindowOrgEx
GetDIBits
GetDCOrgEx
SetROP2
GetTextExtentPoint32W
RectVisible
Rectangle
GetClipRgn
CreatePalette
SetDIBColorTable
GetDeviceCaps
GetTextMetricsW
GetPaletteEntries
SetEnhMetaFileBits
StretchBlt
SaveDC
GetEnhMetaFileHeader
GetWindowOrgEx
ExtTextOutW
IntersectClipRect
MoveToEx
RealizePalette
SetBkMode
SelectPalette
RestoreDC
GetCurrentPositionEx
SelectClipRgn
GetViewportOrgEx
SetBrushOrgEx
SelectObject
GetTextMetricsA
GetStockObject
PatBlt
GetEnhMetaFileBits
CreateDIBitmap
CreateBitmap
CreateFontIndirectW
ExcludeClipRect
CloseEnhMetaFile
CreateHalftonePalette
GetSystemPaletteEntries
LPtoDP
BitBlt
CopyEnhMetaFileW
SetBkColor
GetClipBox

msimg32

AlphaBlend

iphlpapi

GetTcpTable
GetUdpTable
GetUdpStatistics
GetPerAdapterInfo
GetNumberOfInterfaces
Icmp6ParseReplies
InternalGetTcpTable
GetBestInterface

kbdhu

KbdLayerDescriptor

Sections

.text
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 272KB - Virtual size: 324KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0389146e1a543ca9c5f1b00a3632b6ca

Headers

File Characteristics

Imports

shell32

oleaut32

comctl32

ole32

user32

advapi32

kernel32

version

gdi32

msimg32

iphlpapi

kbdhu

Sections

.text Size: 27KB - Virtual size: 26KB

.rdata Size: 12KB - Virtual size: 11KB

.data Size: 272KB - Virtual size: 324KB

.rsrc Size: 512B - Virtual size: 4KB

.text
Size: 27KB - Virtual size: 26KB

.rdata
Size: 12KB - Virtual size: 11KB

.data
Size: 272KB - Virtual size: 324KB

.rsrc
Size: 512B - Virtual size: 4KB