2779bcaecbfc54ef87a074947f1915ae_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

2779bcaecbfc54ef87a074947f1915ae_JaffaCakes118
Size

524KB
MD5

2779bcaecbfc54ef87a074947f1915ae
SHA1

7392bf34e5f7c7ffacf9f71d9afc4e499e2c1cdb
SHA256

f5f4ef40f9fa15ec7936144543a72958f2e851b70ffc8fb9c69507955861d796
SHA512

1c08d151561df56196ebed6a499724ac9946ae2772d964e862b7bb73810c099eebd5a15706563a59c5b47ee6d4fa30726251f4c803b52fcebf53f86290eda366
SSDEEP

6144:2Y7O053DKjPiwbz3pu+Bzp4fEx2Nqi8FyVoX8FwjXy4DZO/wdtX+Zz0BVkPxSAKz:9t53wPiwZu+B9x2QjCMyKEobjUSj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2779bcaecbfc54ef87a074947f1915ae_JaffaCakes118

Files

2779bcaecbfc54ef87a074947f1915ae_JaffaCakes118
.exe windows:4 windows x86 arch:x86

56724404e665b012cd4d36b823d1b7e4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

InternetReadFile
InternetGetLastResponseInfoA
InternetOpenUrlA
InternetOpenA
GopherFindFirstFileA
InternetFindNextFileA
FtpFindFirstFileA
HttpQueryInfoA
HttpSendRequestExA
HttpEndRequestA
HttpSendRequestA
HttpAddRequestHeadersA
InternetErrorDlg
HttpOpenRequestA
GopherOpenFileA
GopherGetAttributeA
GopherCreateLocatorA
FtpGetFileA
FtpPutFileA
FtpOpenFileA
FtpGetCurrentDirectoryA
FtpSetCurrentDirectoryA
FtpRemoveDirectoryA
FtpCreateDirectoryA
FtpRenameFileA
FtpDeleteFileA
InternetConnectA
InternetQueryDataAvailable
InternetWriteFile
InternetSetFilePointer
InternetGetCookieA
InternetSetCookieA
InternetSetStatusCallback
InternetSetOptionExA
InternetCloseHandle
InternetQueryOptionA
InternetCrackUrlA
InternetCanonicalizeUrlA

kernel32

LocalFileTimeToFileTime
SystemTimeToFileTime
SetFileTime
SetFileAttributesA
SetErrorMode
GetPrivateProfileIntA
GetPrivateProfileStringA
WritePrivateProfileStringA
GetCurrentDirectoryA
RtlUnwind
GetTimeZoneInformation
GetSystemTime
GetLocalTime
ExitProcess
GetStartupInfoA
GetCommandLineA
RaiseException
CreateThread
ExitThread
GetACP
HeapReAlloc
HeapSize
SetStdHandle
GetFileType
FatalAppExitA
LCMapStringA
GetFileTime
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
VirtualAlloc
IsBadWritePtr
GetDriveTypeA
IsBadReadPtr
IsBadCodePtr
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
SetConsoleCtrlHandler
GetLocaleInfoW
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetFileSize
CopyFileA
GlobalSize
GetOEMCP
GetCPInfo
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
SizeofResource
GlobalFlags
GetProcessVersion
FindNextFileA
GlobalAlloc
GetCurrentThread
lstrcmpA
GetShortPathNameA
GetStringTypeExA
FindFirstFileA
FindClose
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
ReadFile
GetCurrentProcess
DuplicateHandle
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
LocalAlloc
EnterCriticalSection
lstrcpynA
FileTimeToLocalFileTime
FileTimeToSystemTime
CreateEventA
SuspendThread
SetThreadPriority
ResumeThread
SetEvent
GetThreadLocale
FormatMessageA
LocalFree
InterlockedDecrement
InterlockedIncrement
GetVersion
lstrcatA
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
MulDiv
GetModuleHandleA
GlobalLock
GlobalUnlock
GlobalFree
LockResource
FindResourceA
LoadResource
GetFileAttributesA
MoveFileA
DeleteFileA
HeapAlloc
HeapFree
WideCharToMultiByte
SetLastError
OpenProcess
WaitForSingleObject
TerminateProcess
GetModuleFileNameA
GetSystemDirectoryA
CreateMutexA
lstrcmpiA
FreeLibrary
LoadLibraryA
GetProcAddress
CreateFileA
WriteFile
CloseHandle
lstrcpyA
GetFullPathNameA
MultiByteToWideChar
lstrlenW
GetVolumeInformationA
GetLastError
GetTickCount
GetCurrentThreadId
lstrlenA
Sleep
LCMapStringW

user32

GetMenuStringA
RemoveMenu
SetCapture
ReleaseCapture
WaitMessage
WindowFromPoint
DeleteMenu
GetNextDlgGroupItem
MessageBeep
InflateRect
DestroyIcon
SetRectEmpty
LoadAcceleratorsA
TranslateAcceleratorA
LoadMenuA
SetMenu
ReuseDDElParam
UnpackDDElParam
InvalidateRect
BringWindowToTop
PtInRect
GetClassNameA
GetSysColorBrush
LoadCursorA
MapDialogRect
SetWindowContextHelpId
SetCursor
ShowOwnedPopups
PostQuitMessage
CharUpperA
GetDesktopWindow
RegisterClipboardFormatA
GetMessageA
TranslateMessage
ValidateRect
GetCursorPos
wvsprintfA
CharNextA
OemToCharA
CharToOemA
ShowWindow
MoveWindow
IsDialogMessageA
ScrollWindowEx
IsDlgButtonChecked
SetDlgItemTextA
SetDlgItemInt
GetDlgItemTextA
GetDlgItemInt
CheckRadioButton
CheckDlgButton
LoadIconA
UpdateWindow
SendDlgItemMessageA
MapWindowPoints
GetSysColor
PeekMessageA
DispatchMessageA
SetFocus
AdjustWindowRectEx
EqualRect
AppendMenuA
BeginDeferWindowPos
CopyRect
EndDeferWindowPos
IsWindowVisible
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
GetTopWindow
MessageBoxA
IsChild
GetCapture
WinHelpA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
TrackPopupMenu
SetWindowPlacement
GetDlgCtrlID
GetKeyState
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetWindow
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
ScreenToClient
EndDialog
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
GetWindowLongA
InsertMenuA
PostThreadMessageA
SetRect
CopyAcceleratorTableA
LoadStringA
DestroyMenu
DeferWindowPos
GetDialogBaseUnits
GetDlgItem
IsWindowEnabled
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
SendMessageA
EnableMenuItem
GetFocus
GetParent
GetNextDlgTabItem
PostMessageA
EnumWindows
GetWindowTextLengthA
GetWindowTextA
IsWindow
SetWindowTextA
EnableWindow
GetForegroundWindow
GetWindowThreadProcessId
AttachThreadInput
SetForegroundWindow
OffsetRect
ClientToScreen
GetWindowRect
GetClientRect
SetTimer
GetSystemMetrics
KillTimer
UnregisterClassA
wsprintfA

gdi32

CreatePen
ExtCreatePen
CreateSolidBrush
CreateHatchBrush
CreatePatternBrush
DeleteObject
CreateDIBPatternBrushPt
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetDCOrgEx
GetObjectA
GetTextColor
GetBkColor
BitBlt
CreateCompatibleDC
GetTextExtentPoint32A
GetWindowExtEx
CreateFontIndirectA
DPtoLP
LPtoDP
CopyMetaFileA
CreateDCA
GetMapMode
PatBlt
SetRectRgn
CombineRgn
CreateRectRgnIndirect
PolyBezierTo
SetColorAdjustment
PolylineTo
PolyDraw
SetArcDirection
ArcTo
GetCurrentPositionEx
SetMapperFlags
GetViewportExtEx
GetDeviceCaps
PlayMetaFile
EnumMetaFile
GetObjectType
PlayMetaFileRecord
ExtSelectClipRgn
SelectClipPath
CreateRectRgn
SaveDC
StartDocA
DeleteDC
CreateBitmap
GetTextMetricsA
CreateFontA
SetTextCharacterExtra
SetTextJustification
SetTextAlign
LineTo
MoveToEx
OffsetClipRgn
IntersectClipRect
ExcludeClipRect
SelectClipRgn
GetClipBox
ScaleWindowExtEx
SetWindowExtEx
OffsetWindowOrgEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetTextColor
SetStretchBltMode
SetROP2
SetPolyFillMode
SetBkMode
SetBkColor
SelectPalette
GetStockObject
SelectObject
RestoreDC
GetClipRgn

comdlg32

GetOpenFileNameA
GetSaveFileNameA
GetFileTitleA

winspool.drv

ClosePrinter
OpenPrinterA
DocumentPropertiesA

advapi32

RegDeleteValueA
RegCreateKeyA
RegEnumKeyA
RegQueryValueA
RegSetValueA
RegOpenKeyA
RegCloseKey
RegDeleteKeyA
RegOpenKeyExA
RegQueryValueExA
RegCreateKeyExA
RegSetValueExA

shell32

DragFinish
ExtractIconA
SHGetFileInfoA
DragAcceptFiles
SHGetSpecialFolderLocation
SHGetPathFromIDListA
DragQueryFileA

comctl32

ord17

oledlg

ord8

ole32

CoRegisterClassObject
StringFromCLSID
CoUninitialize
CoCreateInstance
OleRun
OleInitialize
OleUninitialize
CoFreeUnusedLibraries
CLSIDFromProgID
CLSIDFromString
CoDisconnectObject
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CoTaskMemFree
CoTaskMemAlloc
CoRegisterMessageFilter
ReadClassStg
CoRevokeClassObject
ReleaseStgMedium
OleSetClipboard
OleFlushClipboard
OleIsCurrentClipboard
OleDuplicateData
CreateBindCtx
SetConvertStg
WriteFmtUserTypeStg
WriteClassStg
OleRegGetUserType
ReadFmtUserTypeStg
CreateStreamOnHGlobal
CoTreatAsClass

olepro32

ord253

oleaut32

VariantChangeType
LoadTypeLi
SysStringLen
VariantTimeToSystemTime
SysReAllocStringLen
SysAllocStringLen
SafeArrayDestroyDescriptor
SafeArrayDestroyData
SafeArrayUnlock
SafeArrayLock
SafeArrayPutElement
SafeArrayPtrOfIndex
SafeArrayGetElement
SafeArrayAllocDescriptor
SafeArrayAllocData
SafeArrayCopy
VarBstrFromDate
VarDateFromStr
VarBstrFromCy
VarCyFromStr
SysStringByteLen
CreateErrorInfo
SysAllocStringByteLen
VariantCopy
SafeArrayRedim
SafeArrayCreate
SafeArrayGetDim
SafeArrayGetElemsize
SafeArrayGetLBound
SafeArrayGetUBound
VariantClear
VariantInit
SysFreeString
SysAllocString
SafeArrayCreateVector
SafeArrayAccessData
SafeArrayUnaccessData
SafeArrayDestroy
SetErrorInfo
GetErrorInfo

Sections

.text
Size: 356KB - Virtual size: 352KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 96KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 56KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

56724404e665b012cd4d36b823d1b7e4

Headers

File Characteristics

Imports

wininet

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

Sections

.text Size: 356KB - Virtual size: 352KB

.rdata Size: 96KB - Virtual size: 92KB

.data Size: 36KB - Virtual size: 56KB

.rsrc Size: 32KB - Virtual size: 31KB

.text
Size: 356KB - Virtual size: 352KB

.rdata
Size: 96KB - Virtual size: 92KB

.data
Size: 36KB - Virtual size: 56KB

.rsrc
Size: 32KB - Virtual size: 31KB