1a9ab9e924a6856d642bbe88064e4236_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

1a9ab9e924a6856d642bbe88064e4236_JaffaCakes118
Size

418KB
MD5

1a9ab9e924a6856d642bbe88064e4236
SHA1

d9d445e9dcb8694398c7acb33f38d7261c95321c
SHA256

69155f404a1482e4188726cb0f88b6c6fd6ca94d834b31e05f36e88662281e22
SHA512

f41e93d25fe32248f55dbf5c1c721e4af5d2c28531816955094585a00afa94ea2dab0a6e25191abe8896a2185cdbc535d9dcf3beac14b683d05e1c8c7c6f80b2
SSDEEP

6144:/lhEMsxe34/JTpHIOdX2JOVM8aSC4Zl7rOfT+yIaIWk3HtlE0/Ce+Mx62q2jQ1+d:7ssoJhf8JOqQC4/7CfTk/rsh2jQ1T0jv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
1a9ab9e924a6856d642bbe88064e4236_JaffaCakes118

Files

1a9ab9e924a6856d642bbe88064e4236_JaffaCakes118
.exe windows:4 windows x86 arch:x86

fe2764a1e6b1ade8120093890fa49774

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

netapi32

NetServerEnum

mpr

WNetCancelConnection2A
WNetGetProviderNameA

user32

ClipCursor
GetCaretPos
SetActiveWindow
ChangeClipboardChain
GetCapture
LoadBitmapW
DialogBoxParamA
GetKeyNameTextW
CreateDialogIndirectParamW
UnpackDDElParam
GetMessageExtraInfo
EmptyClipboard
PostMessageA
IsZoomed
IsDialogMessageA
ValidateRect
GetDlgItem
InsertMenuA
GetClassLongA
SetPropA
BeginDeferWindowPos
CharUpperW
RegisterClipboardFormatA
GetClassInfoW
CallMsgFilterA
DrawStateA
RegisterHotKey
GetKeyboardLayoutList
LoadKeyboardLayoutW
IsCharLowerA
SetKeyboardState
GetSysColorBrush
OffsetRect
OemToCharBuffA
MapVirtualKeyExA
ReleaseDC
SetCaretPos
EnumDisplaySettingsW
AdjustWindowRect
SetCaretBlinkTime
CopyAcceleratorTableW
CharLowerBuffA
DrawTextA
LoadCursorFromFileA
AttachThreadInput
IsCharAlphaW
ShowWindow
GetDlgItemInt
GetSysColor
PostThreadMessageA
GetWindowTextA
SetRectEmpty
CloseDesktop
GetKeyboardLayoutNameW
SetWindowTextW
GetScrollPos
MapWindowPoints
TrackPopupMenu
CharPrevW
GetWindowLongW
GetDlgItemTextA
CopyImage
RegisterClipboardFormatW
TranslateAcceleratorA
DialogBoxIndirectParamW
MapDialogRect
SetClassLongA
IsClipboardFormatAvailable
SendDlgItemMessageW
GetWindow
WaitMessage
CreateWindowExW
IsWindowEnabled
FindWindowExW
GetClassNameW
CharUpperA
SetCursor
GetClipboardData
DdeFreeStringHandle
LoadStringW
CharLowerA
GetClipboardViewer
IsDlgButtonChecked
ClientToScreen
WindowFromPoint
mouse_event
CreateMenu
BlockInput
GetWindowTextLengthA
GetQueueStatus
GetMessagePos
ShowOwnedPopups
ShowCaret
WinHelpW
IsIconic
GetScrollInfo
SystemParametersInfoA
GetKeyState

kernel32

GetDiskFreeSpaceA
GetStartupInfoA
GetModuleHandleA

msvcrt

__set_app_type
__p__fmode
__p__commode
_adjust_fdiv
__setusermatherr
_initterm
__getmainargs
_except_handler3
exit
_searchenv
_eof
_onexit
__dllonexit
_ismbslead
_eof
_acmdln
_controlfp

gdi32

SetAbortProc
Polygon
SetDIBColorTable
GetPixel
EndPage
GetWinMetaFileBits
SetTextColor
GetGlyphOutlineW
CreateRectRgn
CreateCompatibleDC
OffsetViewportOrgEx
ExtFloodFill
SetViewportOrgEx
GetBrushOrgEx
RestoreDC
GetObjectW
EnumFontFamiliesExW
OffsetWindowOrgEx
TextOutA
RealizePalette
GetTextMetricsA
Ellipse
PolyBezierTo
CreateFontIndirectA
GetGlyphOutlineA
SetWorldTransform
CreateCompatibleBitmap
GetRgnBox
GetTextExtentPoint32A
SetWindowOrgEx
ExtSelectClipRgn
GetMapMode
CombineRgn
GetStockObject
RemoveFontResourceA
StartDocA
GetNearestPaletteIndex
CreateICW
DPtoLP
GetTextCharsetInfo
CreateFontA
DeleteEnhMetaFile
CreateSolidBrush
StrokePath
EndDoc
CopyEnhMetaFileA
GetTextFaceA
GetDIBColorTable
SelectClipRgn
GetClipRgn
SetBkColor
IntersectClipRect
SetViewportExtEx
GetEnhMetaFilePaletteEntries
CreateFontW
ScaleViewportExtEx
SetMapMode
OffsetClipRgn
CreatePenIndirect
BeginPath
SetPolyFillMode
Polyline
GetROP2
GetTextAlign
GetDeviceCaps
StretchBlt
GetBkColor
MoveToEx
BitBlt
SetBitmapBits
FillPath
GetFontData
PolyPolyline
DeleteObject
GetWindowOrgEx
AbortDoc
FillRgn
GetKerningPairsA
CreateDIBPatternBrushPt
ScaleWindowExtEx
ExtCreatePen
ResizePalette
LPtoDP
Rectangle
Pie
Arc
GetObjectA
GetSystemPaletteEntries
CreatePen
SwapBuffers
CreateDCW
SetTextCharacterExtra
SetPixel
CreateBitmap
CancelDC
PtVisible
GetEnhMetaFileBits
SetROP2
PatBlt
CloseEnhMetaFile
DeleteDC

advapi32

BuildExplicitAccessWithNameA
SetThreadToken
SetSecurityDescriptorGroup
CreateServiceA
SetSecurityDescriptorDacl
CreateProcessAsUserA
FreeSid
GetSecurityDescriptorDacl
GetSecurityDescriptorOwner
MakeSelfRelativeSD
GetTokenInformation

Sections

.text
Size: 92KB - Virtual size: 90KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 72KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 541KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 60KB - Virtual size: 59KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fe2764a1e6b1ade8120093890fa49774

Headers

File Characteristics

Imports

netapi32

mpr

user32

kernel32

msvcrt

gdi32

advapi32

Sections

.text Size: 92KB - Virtual size: 90KB

.rdata Size: 72KB - Virtual size: 70KB

.data Size: 12KB - Virtual size: 541KB

.rsrc Size: 60KB - Virtual size: 59KB

.text
Size: 92KB - Virtual size: 90KB

.rdata
Size: 72KB - Virtual size: 70KB

.data
Size: 12KB - Virtual size: 541KB

.rsrc
Size: 60KB - Virtual size: 59KB