25360f0ca02e5356d32a283a6f3ddcf5_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

25360f0ca02e5356d32a283a6f3ddcf5_JaffaCakes118
Size

1.7MB
MD5

25360f0ca02e5356d32a283a6f3ddcf5
SHA1

8d0860c5f94b3ae5aebbf7c22648629a41fb2c30
SHA256

5db4e96644cc09ddc0828cb11e986390daff41b212ca8728612878d6e79e4026
SHA512

a47579ec95ffb74f4b158db46b8afe2e64e625be406a83d13de557038ee1407401e7efe8e62568b793e8b95a957d8549f1cbef59a85586ffd2bb108e307b173c
SSDEEP

49152:T/wY51crAMt19trFsGwqiAvCz6XkJHMVMdRQNGeNZcdY:Tt1crAo7rFsGwBAUMk9MVmRQc7dY

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
25360f0ca02e5356d32a283a6f3ddcf5_JaffaCakes118

Files

25360f0ca02e5356d32a283a6f3ddcf5_JaffaCakes118
.exe windows:5 windows x86 arch:x86

cf3b6b603d477eb6093f33ed101a3940

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetPrivateProfileIntA
GetCurrentThreadId
lstrlenA
GlobalUnlock
lstrcmpW
GetLastError
GlobalFindAtomA
GlobalAddAtomA
GlobalGetAtomNameA
CloseHandle
SetThreadPriority
ResumeThread
WaitForSingleObject
GetCurrentProcessId
InterlockedIncrement
GetThreadLocale
MulDiv
lstrlenW
LocalFree
FormatMessageA
GlobalSize
GetModuleFileNameW
InterlockedDecrement
FileTimeToSystemTime
FileTimeToLocalFileTime
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
LocalAlloc
DeleteFileA
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
GetFileSize
DuplicateHandle
GetCurrentProcess
FindClose
FindFirstFileA
GetVolumeInformationA
GetFullPathNameA
CreateFileA
GetCurrentDirectoryA
GlobalFlags
TlsGetValue
GlobalReAlloc
GlobalHandle
TlsAlloc
TlsSetValue
LocalReAlloc
TlsFree
lstrcpyA
GetFileAttributesA
GetFileSizeEx
GetFileTime
GetCPInfo
GetOEMCP
GetModuleHandleW
FreeResource
GetTempFileNameA
GetTempPathA
SearchPathA
GetTickCount
GetProfileIntA
VirtualProtect
FindResourceExA
GetSystemTimeAsFileTime
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
GetCommandLineA
GetStartupInfoA
HeapAlloc
HeapFree
RtlUnwind
ExitProcess
RaiseException
ExitThread
CreateThread
HeapReAlloc
VirtualAlloc
GetSystemInfo
VirtualQuery
HeapSize
SetStdHandle
GetFileType
GetConsoleCP
GetConsoleMode
GetACP
IsValidCodePage
GetStdHandle
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
HeapCreate
VirtualFree
QueryPerformanceCounter
InitializeCriticalSectionAndSpinCount
GetStringTypeA
GetStringTypeW
GetTimeZoneInformation
CompareStringW
LCMapStringA
LCMapStringW
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
GetProcessHeap
SetEnvironmentVariableA
ConvertDefaultLocale
EnumResourceLanguagesA
GetLocaleInfoA
LoadLibraryA
CompareStringA
InterlockedExchange
GlobalLock
lstrcmpA
FreeLibrary
GetModuleHandleA
GetProcAddress
SetLastError
GlobalDeleteAtom
SetErrorMode
GetCurrentThread
MultiByteToWideChar
CopyFileA
WinExec
Sleep
GlobalFree
GlobalAlloc
GetSystemWindowsDirectoryA
GetModuleFileNameA
GetVersionExA
FindResourceA
LoadResource
LockResource
SizeofResource
WritePrivateProfileStringA
WideCharToMultiByte

user32

SetCursor
ShowOwnedPopups
GetWindowThreadProcessId
CharNextA
CheckDlgButton
IsDialogMessageA
SetWindowTextA
MoveWindow
ShowWindow
RemoveMenu
InsertMenuA
AppendMenuA
GetMenuStringA
FillRect
TabbedTextOutA
DrawTextA
DrawTextExA
GrayStringA
ClientToScreen
GetDC
ReleaseDC
GetWindowDC
BeginPaint
EndPaint
CharUpperA
SetCapture
WindowFromPoint
LoadCursorA
ReleaseCapture
DeleteMenu
SetRectEmpty
GetSysColorBrush
LoadMenuA
PostThreadMessageA
DestroyMenu
CopyAcceleratorTableA
ToAsciiEx
MapVirtualKeyA
GetKeyboardLayout
GetKeyboardState
GetAsyncKeyState
DestroyAcceleratorTable
LoadAcceleratorsA
CreateAcceleratorTableA
SetWindowRgn
NotifyWinEvent
CreatePopupMenu
SetParent
SetClassLongA
GetSystemMenu
IsMenu
InflateRect
InvalidateRect
IsRectEmpty
BringWindowToTop
LockWindowUpdate
EnumChildWindows
RegisterClipboardFormatA
DrawStateA
OpenClipboard
CopyImage
DestroyIcon
LoadImageA
SetClipboardData
CloseClipboard
EmptyClipboard
SetRect
InvalidateRgn
GetNextDlgGroupItem
GetMenuItemInfoA
UnregisterClassA
TranslateAcceleratorA
InsertMenuItemA
ReuseDDElParam
UnpackDDElParam
DrawEdge
DrawFrameControl
DrawFocusRect
DrawIconEx
SetCursorPos
UnionRect
EnableScrollBar
UpdateLayeredWindow
SetMenuDefaultItem
GetMenuDefaultItem
IsCharLowerA
GetKeyNameTextA
MapVirtualKeyExA
IsClipboardFormatAvailable
DefFrameProcA
DefMDIChildProcA
DrawMenuBar
GetMenuState
GetMessageA
GetUpdateRect
CharUpperBuffA
CopyIcon
SubtractRect
GetIconInfo
GetDoubleClickTime
CreateMenu
GetWindowRgn
DestroyCursor
RemovePropA
GetFocus
SetFocus
GetWindowTextLengthA
GetWindowTextA
GetForegroundWindow
GetLastActivePopup
BeginDeferWindowPos
EndDeferWindowPos
GetTopWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
MapWindowPoints
ScrollWindow
TrackPopupMenu
GetKeyState
SetMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
SetForegroundWindow
ShowScrollBar
IsWindowVisible
UpdateWindow
GetSubMenu
GetMenuItemID
GetMenuItemCount
MessageBoxA
CreateWindowExA
GetClassInfoExA
GetClassInfoA
RegisterClassA
GetSysColor
AdjustWindowRectEx
ScreenToClient
EqualRect
DeferWindowPos
GetScrollInfo
SetScrollInfo
SetWindowPlacement
CopyRect
GetDlgCtrlID
DefWindowProcA
CallWindowProcA
PtInRect
GetMenu
SetWindowLongA
IntersectRect
GetWindowPlacement
GetWindowRect
GetDesktopWindow
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
IsWindow
GetWindowLongA
GetDlgItem
IsWindowEnabled
GetNextDlgTabItem
EndDialog
GetWindow
SetWindowContextHelpId
GetParent
MapDialogRect
SetWindowPos
WaitMessage
PeekMessageA
DispatchMessageA
WinHelpA
SystemParametersInfoA
OffsetRect
MessageBeep
RedrawWindow
IsZoomed
PostQuitMessage
PostMessageA
LoadIconA
SendMessageA
SetTimer
IsIconic
GetSystemMetrics
GetClientRect
DrawIcon
KillTimer
EnableWindow
EnableMenuItem
GetPropA
TranslateMessage
GetCursorPos
ValidateRect
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
LoadBitmapA
FrameRect
ModifyMenuA
RegisterWindowMessageA
SendDlgItemMessageA
IsChild
GetCapture
SetWindowsHookExA
CallNextHookEx
GetClassLongA
GetClassNameA
TranslateMDISysAccel
SetPropA
CheckMenuItem

advapi32

RegQueryValueExA
RegCloseKey
RegCreateKeyExA
RegDeleteValueA
RegDeleteKeyA
RegEnumKeyA
RegOpenKeyA
RegQueryValueA
RegEnumKeyExA
RegOpenKeyExA
RegSetValueExA

shell32

SHGetFileInfoA
SHGetPathFromIDListA
SHBrowseForFolderA
DragFinish
DragQueryFileA
ShellExecuteA
SHAppBarMessage

oleaut32

SysAllocStringByteLen
VariantTimeToSystemTime
SystemTimeToVariantTime
SafeArrayDestroy
VariantCopy
SysStringLen
OleCreateFontIndirect
VariantInit
VariantChangeType
VariantClear
SysAllocStringLen
SysFreeString
SysAllocString

msimg32

TransparentBlt
AlphaBlend

comctl32

ImageList_GetIconSize
InitCommonControlsEx

shlwapi

PathIsUNCA
PathStripToRootA
UrlUnescapeA
PathFindFileNameA
PathFindExtensionA
PathRemoveFileSpecW

oledlg

ord8

gdiplus

GdiplusStartup
GdiplusShutdown
GdipGetImageGraphicsContext
GdipDrawImageI
GdipCloneImage
GdipFree
GdipAlloc
GdipDeleteGraphics
GdipDisposeImage
GdipGetImageWidth
GdipGetImageHeight
GdipGetImagePixelFormat
GdipGetImagePaletteSize
GdipBitmapUnlockBits
GdipGetImagePalette
GdipCreateBitmapFromStream
GdipCreateBitmapFromStreamICM
GdipCreateBitmapFromScan0
GdipBitmapLockBits

ws2_32

WSASetLastError
WSAStartup
WSACleanup

wininet

InternetQueryDataAvailable
InternetQueryOptionA
InternetCanonicalizeUrlA
InternetCrackUrlA
InternetOpenUrlA
HttpSendRequestA
InternetReadFile
InternetWriteFile
InternetSetFilePointer
InternetSetStatusCallback
InternetOpenA
InternetGetLastResponseInfoA
InternetCloseHandle
HttpQueryInfoA

oleacc

CreateStdAccessibleObject
AccessibleObjectFromWindow
LresultFromObject

imm32

ImmReleaseContext
ImmGetContext
ImmGetOpenStatus

winmm

PlaySoundA

gdi32

CopyMetaFileA
SaveDC
RestoreDC
SetBkMode
SetPolyFillMode
SetROP2
GetTextColor
GetBkColor
GetDeviceCaps
GetStockObject
CreateBitmap
GetObjectA
SetBkColor
SetTextColor
GetClipBox
DeleteDC
SetMapMode
ExcludeClipRect
IntersectClipRect
LineTo
MoveToEx
SetTextAlign
DeleteObject
SelectClipRgn
CreateRectRgn
GetViewportExtEx
GetWindowExtEx
BitBlt
GetPixel
PtVisible
RectVisible
TextOutA
ExtSelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
OffsetWindowOrgEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
GetDCOrgEx
SetPixelV
GetTextFaceA
EnumFontFamiliesExA
GetSystemPaletteEntries
GetNearestPaletteIndex
SetPaletteEntries
ExtFloodFill
LPtoDP
GetViewportOrgEx
GetBoundsRect
FrameRgn
FillRgn
PtInRegion
GetWindowOrgEx
GetPaletteEntries
CreatePalette
RoundRect
Rectangle
Polygon
Ellipse
Polyline
CreatePolygonRgn
CreateEllipticRgn
DPtoLP
GetMapMode
SetRectRgn
CreateDIBSection
SetPixel
StretchBlt
CombineRgn
RealizePalette
GetDIBits
PatBlt
SetDIBColorTable
GetTextExtentPoint32A
CreateRoundRectRgn
GetTextCharsetInfo
EnumFontFamiliesA
GetTextMetricsA
ExtTextOutA
Escape
SelectObject
SetViewportOrgEx
CreatePatternBrush
CreateCompatibleDC
SelectPalette
CreateCompatibleBitmap
CreateFontIndirectA
GetObjectType
CreatePen
CreateSolidBrush
CreateHatchBrush
CreateRectRgnIndirect
OffsetRgn
GetRgnBox
CreateDIBitmap
OffsetViewportOrgEx

winspool.drv

ClosePrinter
OpenPrinterA
DocumentPropertiesA

comdlg32

GetFileTitleA

ole32

CoFreeUnusedLibraries
OleInitialize
CoUninitialize
CoInitializeEx
OleCreateMenuDescriptor
OleDestroyMenuDescriptor
OleTranslateAccelerator
IsAccelerator
OleUninitialize
RegisterDragDrop
CoLockObjectExternal
RevokeDragDrop
CoRevokeClassObject
CoRegisterMessageFilter
OleGetClipboard
DoDragDrop
OleFlushClipboard
OleIsCurrentClipboard
OleLockRunning
CoCreateInstance
CreateILockBytesOnHGlobal
StgCreateDocfileOnILockBytes
StgOpenStorageOnILockBytes
CoGetClassObject
CreateStreamOnHGlobal
OleDuplicateData
CoTaskMemAlloc
ReleaseStgMedium
CoTaskMemFree
CLSIDFromString
CLSIDFromProgID

Sections

.text
Size: 1.7MB - Virtual size: 1.7MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 16KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

cf3b6b603d477eb6093f33ed101a3940

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

advapi32

shell32

oleaut32

msimg32

comctl32

shlwapi

oledlg

gdiplus

ws2_32

wininet

oleacc

imm32

winmm

gdi32

winspool.drv

comdlg32

ole32

Sections

.text Size: 1.7MB - Virtual size: 1.7MB

.rsrc Size: 16KB - Virtual size: 16KB

.reloc Size: 16KB - Virtual size: 16KB

.text
Size: 1.7MB - Virtual size: 1.7MB

.rsrc
Size: 16KB - Virtual size: 16KB

.reloc
Size: 16KB - Virtual size: 16KB