175ad6aa46231df2cec460561285886b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

175ad6aa46231df2cec460561285886b_JaffaCakes118
Size

128KB
MD5

175ad6aa46231df2cec460561285886b
SHA1

245ce91aacaa8170061ac7fa3c78a64435e82d59
SHA256

f6dcda186f288a5636a1e5de1d4c3477ec3202d7ce12f733b3b93f8726aca4a0
SHA512

621f1fb4ef2d6c7c8a85f08e1f5d5a46b15017eb611cf2a741d8afcb6c6146663bc9ad7ef374e6d4df67868a204aa5ab1f314510a1fb154b488b8de84198b244
SSDEEP

3072:iG0741/Mq/Eah4zoXwpPck40jLRE8UJzaTk1SlCNYTw+X:iV01/9EaGj2kk1bYTw+

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
175ad6aa46231df2cec460561285886b_JaffaCakes118

Files

175ad6aa46231df2cec460561285886b_JaffaCakes118
.exe windows:5 windows x86 arch:x86

c764157aabb5a4859495ab92e57ebee1

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

SetKernelObjectSecurity
DeregisterEventSource
GetCurrentHwProfileW
SetThreadToken
GetNamedSecurityInfoA
CopySid
CryptGenKey

user32

DrawTextExA
OpenWindowStationW
EnumPropsExW
TileWindows
DrawTextA
DlgDirSelectExW
MsgWaitForMultipleObjects
SetMenuContextHelpId
MessageBoxA
SetScrollInfo
GetShellWindow
KillTimer
OemToCharA
ReleaseDC
DialogBoxParamW
EnumClipboardFormats
InvalidateRgn
LoadCursorA
GetDlgItemTextW
EnumDisplayDevicesW
ExcludeUpdateRgn
SendMessageW
RedrawWindow
SendNotifyMessageA
ChangeDisplaySettingsA
GetMessageTime
ReplyMessage
SetWindowPlacement
CopyAcceleratorTableA
GetDesktopWindow
OpenInputDesktop
CreateMenu
ToUnicode
InflateRect
CharToOemBuffW
VkKeyScanW
GetMenuStringA
LockWindowUpdate
MapWindowPoints
ScrollWindow
ScreenToClient
EnumDesktopWindows
UnregisterClassW
LoadImageA
DdeQueryNextServer
DrawFrameControl
CharToOemBuffA
GetCapture
CreateAcceleratorTableW
PeekMessageA
MessageBoxIndirectW
GetKeyboardState
FindWindowA
DrawCaption
RegisterClipboardFormatW
OemToCharBuffW
SetClassLongW
DdeQueryConvInfo
DdeSetQualityOfService
GetMessageW
EnableMenuItem
ShowCursor
TabbedTextOutW
ChildWindowFromPoint
MapVirtualKeyExA
SetMessageQueue
GetClipboardViewer
BroadcastSystemMessageA
DdeConnect
DdeNameService
LoadStringW
InsertMenuW
GetQueueStatus
GetMenuDefaultItem
GetInputDesktop
SetMenu
RegisterHotKey
LoadIconW
EnumDesktopsA
DrawEdge
RemoveMenu
SetProcessDefaultLayout
InternalGetWindowText
CopyIcon
ToUnicodeEx
CallMsgFilterA
CreateIconFromResource
DialogBoxParamA
GetClassInfoW
GetWindowPlacement
DefDlgProcW
GetDC
DdeUninitialize
GetWindowRect
GetScrollRange
CharNextA
SetClassWord
GetDlgItemTextA
CreateIconIndirect
ShowWindow
MessageBeep
CloseWindow
GetCaretBlinkTime
EnumThreadWindows
CharToOemA
DefMDIChildProcW
GetMenuContextHelpId
CreateDialogParamA
SetCaretBlinkTime
EnumWindows
LoadAcceleratorsA
SetShellWindow
SwapMouseButton
SystemParametersInfoA
GetKBCodePage
IsDialogMessageW
VkKeyScanA
WindowFromDC
ChangeMenuA
MoveWindow
SetClassLongA
RegisterClassA
SetCapture
DestroyCursor
RealChildWindowFromPoint
DestroyMenu
LoadCursorFromFileW
EndPaint
GetUpdateRect
FlashWindowEx
GetGuiResources
GetScrollBarInfo
SendMessageCallbackW
CheckRadioButton
GetLastActivePopup
GetCursorPos
InsertMenuItemW
SendNotifyMessageW
SetCaretPos
DlgDirListW
RealGetWindowClass
DrawTextW
GetKeyNameTextW
EndDeferWindowPos
SetWindowRgn
GetClassInfoA
MessageBoxW
WINNLSGetIMEHotkey
GetPriorityClipboardFormat
SetWindowTextA
VkKeyScanExW
GetMenuItemInfoW
ReuseDDElParam
TileChildWindows
EnumChildWindows
DdeQueryStringA
CreateDialogIndirectParamW
FindWindowW
GetClassNameA
CreateCursor
SetActiveWindow
EnumDesktopsW
FillRect
TranslateMDISysAccel
LoadCursorW
CloseClipboard
GetScrollInfo
DdeAccessData
CreateWindowStationW
GetSysColor
DdeCreateDataHandle
DestroyWindow
GetNextDlgGroupItem
MonitorFromWindow
SwitchToThisWindow
IsWindow
RegisterClassW
GetUserObjectInformationA
DefFrameProcA
UnregisterHotKey
DragObject
DrawMenuBar
EnableScrollBar

shlwapi

UrlCombineA
PathMakeSystemFolderA
PathCommonPrefixW
StrCmpNW
PathCompactPathA
SHRegDeleteUSValueW
UrlApplySchemeA

kernel32

GetVersionExW
FormatMessageW
GetPriorityClass
GetConsoleMode
GlobalReAlloc
DeleteFileW
TlsFree
IsSystemResumeAutomatic
GetPrivateProfileIntW
EnumDateFormatsA
IsBadReadPtr
GetCompressedFileSizeW
ExitProcess
WaitNamedPipeA
WinExec
GetVersion
GetUserDefaultLangID
PeekConsoleInputW
GetTempFileNameA
GlobalCompact
GetEnvironmentStringsW
GetCPInfo
GetPrivateProfileSectionNamesA
EnumSystemLocalesW
WriteConsoleInputW
InitializeCriticalSectionAndSpinCount
DeleteFiber
Heap32ListNext
IsValidLocale
GetComputerNameW
GlobalFree
GetTempFileNameW
CreateEventA
VirtualAlloc
LocalCompact
FillConsoleOutputCharacterW
EnumResourceNamesA
GetExitCodeProcess
MulDiv
FindNextChangeNotification
PulseEvent
GetProcAddress
GetDiskFreeSpaceA
UnhandledExceptionFilter
IsBadWritePtr
SetConsoleCursorInfo
GetConsoleOutputCP
CreateMutexA
GetBinaryTypeA
ResetWriteWatch
WriteFileGather
CreateDirectoryW
GetLogicalDriveStringsW
ReadConsoleOutputA
GetLocaleInfoA
ReadConsoleOutputW
CloseHandle
GetConsoleTitleA
TerminateProcess
WritePrivateProfileSectionA
GetWriteWatch
LocalHandle
SetCurrentDirectoryW
SetThreadIdealProcessor
LockFileEx
GetVolumeInformationW
GetLongPathNameA
WaitForSingleObject
PeekConsoleInputA
Heap32ListFirst
GetProfileStringA
ReadConsoleInputW
lstrlenW
GetFileAttributesExA
EnumResourceTypesA
LCMapStringW
FreeLibrary
SwitchToThread
VirtualFree
GetWindowsDirectoryA
FindFirstFileW
SystemTimeToTzSpecificLocalTime
GetDevicePowerState
LocalAlloc
WideCharToMultiByte
CreateEventW
WriteConsoleInputA
SetHandleCount
LocalSize
GetEnvironmentVariableA
DisconnectNamedPipe
GetCurrentThreadId
EnumCalendarInfoA
FatalExit
EnumSystemLocalesA
WaitNamedPipeW
FileTimeToDosDateTime
GetSystemTime
GetThreadContext
HeapDestroy
GetOEMCP
OpenFileMappingA
GetLastError
SetFileTime
SwitchToFiber
LoadLibraryExW
ConvertThreadToFiber
CreatePipe
FindAtomA
GetThreadTimes
GetConsoleScreenBufferInfo
SetConsoleCursorPosition
GetConsoleCursorInfo
SetSystemTimeAdjustment
TerminateThread
LCMapStringA
SetWaitableTimer
FormatMessageA
FlushInstructionCache
GetSystemDefaultLCID
GetDriveTypeW
GetNamedPipeHandleStateA
GetProcessWorkingSetSize
CancelIo
OpenEventW
GetPrivateProfileIntA
WritePrivateProfileStructA
HeapCompact
CreateMailslotW
EnumCalendarInfoW
CreateDirectoryExW
Heap32First
GetSystemInfo
PeekNamedPipe
SetMailslotInfo
GetLogicalDriveStringsA
GetEnvironmentStringsA
FileTimeToSystemTime
RemoveDirectoryW
SleepEx
ReadConsoleOutputCharacterW
EnumResourceNamesW
GetTimeFormatA
GetProfileSectionW
FlushConsoleInputBuffer
SuspendThread
GetProfileStringW
GetCurrentProcessId
SetStdHandle
ReadConsoleA
GetDriveTypeA
WriteConsoleOutputA
GetPrivateProfileSectionA
GetLocalTime
GetFullPathNameW
FoldStringA
WritePrivateProfileSectionW
GetDiskFreeSpaceExW
GetCurrentDirectoryW
VirtualProtect
OpenSemaphoreW
GetProfileIntA
CreateSemaphoreW
LoadLibraryA

ole32

OleGetClipboard
CoGetMarshalSizeMax
OleConvertOLESTREAMToIStorageEx
OleCreateFromFileEx
CoGetObject
CoLockObjectExternal

Sections

.text
Size: 91KB - Virtual size: 90KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c764157aabb5a4859495ab92e57ebee1

Headers

DLL Characteristics

File Characteristics

Imports

advapi32

user32

shlwapi

kernel32

ole32

Sections

.text Size: 91KB - Virtual size: 90KB

.rdata Size: 36KB - Virtual size: 35KB

.data Size: 512B - Virtual size: 12KB

.rsrc Size: 2KB - Virtual size: 1KB

.text
Size: 91KB - Virtual size: 90KB

.rdata
Size: 36KB - Virtual size: 35KB

.data
Size: 512B - Virtual size: 12KB

.rsrc
Size: 2KB - Virtual size: 1KB