2793202b4f1f2eb67adc9464c632a920_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

2793202b4f1f2eb67adc9464c632a920_JaffaCakes118
Size

536KB
MD5

2793202b4f1f2eb67adc9464c632a920
SHA1

39b9af73a0b3cf5d0d73a485dc7d3e73a20c6058
SHA256

e2e276b2a0c39d16df252e5e10e0f3cfbfe8761130b1b69f79c313ed15d3cc34
SHA512

a7fab7e2ab40b46d2f9fd13b7fa43dd5e24f1f8db3452a1866766363a741a60c235cc313d98d6a60c8caebc25e64fd52d71fe3ccc4b3309ebaa946eccb3f89e0
SSDEEP

12288:UnkXLhE7D7+w+T3vq5W1Eyx5RRLot4Dkq2e:UchG7+6W2yx5Pjkle

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2793202b4f1f2eb67adc9464c632a920_JaffaCakes118

Files

2793202b4f1f2eb67adc9464c632a920_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2f6072e116719861ab6bfbecc9150ef7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

wininet

InternetSetStatusCallback
InternetGetLastResponseInfoA
InternetOpenUrlA
InternetOpenA
GopherFindFirstFileA
InternetFindNextFileA
FtpFindFirstFileA
HttpQueryInfoA
HttpSendRequestExA
HttpEndRequestA
HttpSendRequestA
HttpAddRequestHeadersA
InternetErrorDlg
HttpOpenRequestA
GopherOpenFileA
GopherGetAttributeA
GopherCreateLocatorA
FtpGetFileA
FtpPutFileA
FtpOpenFileA
FtpGetCurrentDirectoryA
FtpSetCurrentDirectoryA
FtpRemoveDirectoryA
FtpCreateDirectoryA
FtpRenameFileA
FtpDeleteFileA
InternetConnectA
InternetQueryDataAvailable
InternetWriteFile
InternetSetFilePointer
InternetGetCookieA
InternetSetCookieA
InternetReadFile
InternetSetOptionExA
InternetCloseHandle
InternetCrackUrlA
InternetCanonicalizeUrlA
InternetQueryOptionA

kernel32

SetFileTime
SetFileAttributesA
SetErrorMode
GetPrivateProfileIntA
GetPrivateProfileStringA
WritePrivateProfileStringA
GetCurrentDirectoryA
RtlUnwind
GetTimeZoneInformation
GetSystemTime
GetLocalTime
ExitProcess
GetStartupInfoA
GetCommandLineA
RaiseException
CreateThread
ExitThread
GetACP
HeapReAlloc
HeapSize
SetStdHandle
GetFileType
FatalAppExitA
LCMapStringA
LCMapStringW
UnhandledExceptionFilter
SystemTimeToFileTime
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
HeapCreate
VirtualFree
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
VirtualAlloc
IsBadWritePtr
GetDriveTypeA
IsBadReadPtr
IsBadCodePtr
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
SetConsoleCtrlHandler
GetLocaleInfoW
CompareStringA
CompareStringW
SetEnvironmentVariableA
LocalFileTimeToFileTime
GetFileTime
GetFileSize
CopyFileA
GlobalSize
GetOEMCP
GetCPInfo
TlsGetValue
LocalReAlloc
TlsSetValue
GlobalReAlloc
TlsFree
GlobalHandle
TlsAlloc
SizeofResource
GlobalFlags
GetProcessVersion
FindNextFileA
GlobalAlloc
GetCurrentThread
lstrcmpA
GetShortPathNameA
GetStringTypeExA
FindFirstFileA
FindClose
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
ReadFile
GetCurrentProcess
DuplicateHandle
LeaveCriticalSection
DeleteCriticalSection
InitializeCriticalSection
LocalAlloc
EnterCriticalSection
lstrcpynA
FileTimeToLocalFileTime
FileTimeToSystemTime
CreateEventA
SuspendThread
SetThreadPriority
ResumeThread
SetEvent
GetThreadLocale
FormatMessageA
LocalFree
InterlockedDecrement
InterlockedIncrement
GetVersion
GetProfileStringA
lstrcatA
GlobalGetAtomNameA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
MulDiv
GetModuleHandleA
GlobalLock
GlobalUnlock
GlobalFree
LockResource
FindResourceA
LoadResource
GetFileAttributesA
MoveFileA
DeleteFileA
HeapAlloc
HeapFree
WideCharToMultiByte
SetLastError
OpenProcess
WaitForSingleObject
TerminateProcess
GetModuleFileNameA
GetSystemDirectoryA
CreateMutexA
lstrcmpiA
FreeLibrary
LoadLibraryA
GetProcAddress
CreateFileA
WriteFile
CloseHandle
lstrcpyA
GetFullPathNameA
MultiByteToWideChar
lstrlenW
GetVolumeInformationA
GetLastError
GetTickCount
GetCurrentThreadId
lstrlenA
Sleep
FreeEnvironmentStringsA

user32

ReleaseCapture
WaitMessage
WindowFromPoint
DeleteMenu
GetNextDlgGroupItem
MessageBeep
InflateRect
DestroyIcon
SetRectEmpty
LoadAcceleratorsA
TranslateAcceleratorA
LoadMenuA
SetMenu
ReuseDDElParam
UnpackDDElParam
InvalidateRect
BringWindowToTop
GetDialogBaseUnits
PtInRect
GetClassNameA
GetSysColorBrush
LoadCursorA
MapDialogRect
SetWindowContextHelpId
SetCursor
ShowOwnedPopups
PostQuitMessage
CharUpperA
GetDesktopWindow
RegisterClipboardFormatA
GetMessageA
TranslateMessage
ValidateRect
GetCursorPos
wvsprintfA
CharNextA
OemToCharA
CharToOemA
ShowWindow
MoveWindow
IsDialogMessageA
ScrollWindowEx
IsDlgButtonChecked
SetDlgItemTextA
SetDlgItemInt
GetDlgItemTextA
GetDlgItemInt
CheckRadioButton
CheckDlgButton
LoadIconA
UpdateWindow
SendDlgItemMessageA
MapWindowPoints
GetSysColor
PeekMessageA
DispatchMessageA
SetFocus
AdjustWindowRectEx
EqualRect
DeferWindowPos
SetCapture
CopyRect
EndDeferWindowPos
IsWindowVisible
ScrollWindow
GetScrollInfo
SetScrollInfo
ShowScrollBar
GetScrollRange
SetScrollRange
GetScrollPos
SetScrollPos
MessageBoxA
IsChild
GetCapture
WinHelpA
wsprintfA
GetClassInfoA
RegisterClassA
LoadStringA
GetMenuItemCount
GetSubMenu
GetMenuItemID
TrackPopupMenu
SetWindowPlacement
GetDlgCtrlID
GetKeyState
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
DefWindowProcA
GetMessageTime
GetMessagePos
GetLastActivePopup
GetWindow
UnregisterClassA
HideCaret
ShowCaret
ExcludeUpdateRgn
DrawFocusRect
DefDlgProcA
IsWindowUnicode
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
RemoveMenu
GetMenuStringA
AppendMenuA
InsertMenuA
PostThreadMessageA
SetRect
BeginDeferWindowPos
CopyAcceleratorTableA
GetDC
ScreenToClient
EndDialog
GetActiveWindow
SetActiveWindow
CreateDialogIndirectParamA
DestroyWindow
GetWindowLongA
GetDlgItem
IsWindowEnabled
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
SendMessageA
EnableMenuItem
GetFocus
GetParent
GetNextDlgTabItem
PostMessageA
EnumWindows
GetWindowTextLengthA
GetWindowTextA
IsWindow
SetWindowTextA
EnableWindow
GetForegroundWindow
GetWindowThreadProcessId
AttachThreadInput
SetForegroundWindow
OffsetRect
ClientToScreen
GetWindowRect
GetClientRect
SetTimer
GetSystemMetrics
GetMenu
DestroyMenu
KillTimer
GetTopWindow

gdi32

GetViewportExtEx
GetWindowExtEx
CreatePen
SetColorAdjustment
ExtCreatePen
CreateSolidBrush
CreateHatchBrush
CreatePatternBrush
CreateDIBPatternBrushPt
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
GetDCOrgEx
GetObjectA
GetDeviceCaps
GetBkColor
BitBlt
CreateCompatibleDC
GetTextExtentPoint32A
GetTextMetricsA
CreateFontIndirectA
DPtoLP
LPtoDP
CopyMetaFileA
CreateDCA
GetMapMode
PatBlt
SetRectRgn
CombineRgn
CreateRectRgnIndirect
PlayMetaFile
EnumMetaFile
GetObjectType
PlayMetaFileRecord
ExtSelectClipRgn
SelectClipPath
CreateRectRgn
GetClipRgn
DeleteObject
GetTextExtentPointA
CreateDIBitmap
DeleteDC
CreateBitmap
GetTextColor
CreateFontA
PolylineTo
PolyDraw
SetArcDirection
ArcTo
GetCurrentPositionEx
SetMapperFlags
SetTextCharacterExtra
SetTextJustification
SetTextAlign
LineTo
MoveToEx
OffsetClipRgn
IntersectClipRect
ExcludeClipRect
SelectClipRgn
GetClipBox
ScaleWindowExtEx
SetWindowExtEx
OffsetWindowOrgEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetTextColor
SetStretchBltMode
SetROP2
SetPolyFillMode
SetBkMode
SetBkColor
SelectPalette
GetStockObject
SelectObject
RestoreDC
SaveDC
StartDocA
PolyBezierTo

comdlg32

GetOpenFileNameA
GetFileTitleA
GetSaveFileNameA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegDeleteValueA
RegCreateKeyA
RegEnumKeyA
RegQueryValueA
RegSetValueA
RegOpenKeyA
RegCloseKey
RegDeleteKeyA
RegOpenKeyExA
RegQueryValueExA
RegCreateKeyExA
RegSetValueExA

shell32

DragFinish
ExtractIconA
SHGetFileInfoA
DragAcceptFiles
SHGetSpecialFolderLocation
SHGetPathFromIDListA
DragQueryFileA

comctl32

ord17

oledlg

ord8

ole32

CLSIDFromProgID
CLSIDFromString
CoDisconnectObject
CoGetClassObject
StgOpenStorageOnILockBytes
StgCreateDocfileOnILockBytes
CreateILockBytesOnHGlobal
CoTaskMemFree
CoTaskMemAlloc
CoRegisterMessageFilter
CoRegisterClassObject
CoFreeUnusedLibraries
ReleaseStgMedium
OleSetClipboard
OleIsCurrentClipboard
OleDuplicateData
CreateBindCtx
SetConvertStg
WriteFmtUserTypeStg
WriteClassStg
OleRegGetUserType
ReadFmtUserTypeStg
OleUninitialize
OleInitialize
OleRun
CoCreateInstance
CoUninitialize
CreateStreamOnHGlobal
CoRevokeClassObject
OleFlushClipboard
ReadClassStg
StringFromCLSID
CoTreatAsClass

olepro32

ord253

oleaut32

SafeArrayUnaccessData
LoadTypeLi
SysStringLen
VariantTimeToSystemTime
SysReAllocStringLen
SysAllocStringLen
SafeArrayDestroyDescriptor
SafeArrayDestroyData
SafeArrayUnlock
SafeArrayLock
SafeArrayPutElement
SafeArrayPtrOfIndex
SafeArrayGetElement
SafeArrayAllocDescriptor
SafeArrayAllocData
SafeArrayCopy
VarBstrFromDate
VarDateFromStr
VarBstrFromCy
VarCyFromStr
SysStringByteLen
VariantChangeType
SysAllocStringByteLen
VariantCopy
SafeArrayRedim
SafeArrayCreate
SafeArrayGetDim
SafeArrayGetElemsize
SafeArrayGetLBound
SafeArrayGetUBound
VariantClear
VariantInit
SysFreeString
SysAllocString
SafeArrayCreateVector
SafeArrayAccessData
SafeArrayDestroy
GetErrorInfo
SetErrorInfo
CreateErrorInfo

Sections

.text
Size: 368KB - Virtual size: 365KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 96KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 36KB - Virtual size: 58KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 31KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

2f6072e116719861ab6bfbecc9150ef7

Headers

File Characteristics

Imports

wininet

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

oledlg

ole32

olepro32

oleaut32

Sections

.text Size: 368KB - Virtual size: 365KB

.rdata Size: 96KB - Virtual size: 92KB

.data Size: 36KB - Virtual size: 58KB

.rsrc Size: 32KB - Virtual size: 31KB

.text
Size: 368KB - Virtual size: 365KB

.rdata
Size: 96KB - Virtual size: 92KB

.data
Size: 36KB - Virtual size: 58KB

.rsrc
Size: 32KB - Virtual size: 31KB