28252709d5a493f6722fb870cd6d8862_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

28252709d5a493f6722fb870cd6d8862_JaffaCakes118
Size

170KB
MD5

28252709d5a493f6722fb870cd6d8862
SHA1

9a42e3447a096e45d96a678f5f2b3230c92ef24f
SHA256

aa4e46d070661391194e9c9ec1d42ce6a2e40723893cf4c7149084ecbc96c8cf
SHA512

33ef54bdcbd805600251463eab4d249f5ab0050df17a36fb646d88c0601d3c802fe7ff9fb93d33797374ef8eef778a8e6c921989b03611549a2525ccd76ad396
SSDEEP

3072:RAP/3a3VUjZhuzXFCi39Qwbb9316Vg7TE2lGHVCfLKolKPfxfQv5IuPawrD39:s/KHrFCiNtF6gfEGYenlKPJIR9awrD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
28252709d5a493f6722fb870cd6d8862_JaffaCakes118

Files

28252709d5a493f6722fb870cd6d8862_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b2fbd9919a240917f8104685e34fd55d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTimeFormatA
FindNextFileW
CompareStringA
GetStartupInfoA
GetFullPathNameW
GlobalSize
CreateFileA
CloseHandle
PeekNamedPipe
GetFileAttributesW
EnumSystemLocalesA
SetCurrentDirectoryW
FreeEnvironmentStringsW
FindResourceW
GetDateFormatW
FileTimeToLocalFileTime
GetCurrentProcessId
HeapAlloc
GetStdHandle
UnhandledExceptionFilter
GetDateFormatA
HeapFree
GetCurrentDirectoryA
GetCommandLineW
GetStringTypeA
GetLastError
SetFileAttributesW
LocalUnlock
MulDiv
GetUserDefaultLCID
GetACP
CreateThread
LCMapStringA
LoadLibraryA
IsValidLocale
GetCommandLineA
HeapCreate
WideCharToMultiByte
GetDriveTypeW
GetVersionExW
TerminateThread
LoadLibraryW
GetSystemTimeAsFileTime
GetModuleHandleW
TerminateProcess
GetEnvironmentStringsW
InterlockedCompareExchange
OpenEventW
SetLastError
SetFilePointer
QueryPerformanceCounter
GlobalLock
InterlockedIncrement
WaitForSingleObject
FindFirstFileW
GetModuleFileNameW
GetTempPathW
GetTickCount
GetVersionExA
CreatePipe
CompareStringW
GetTimeZoneInformation
VirtualAlloc
CreateEventW
DeleteFileW
LCMapStringW
LockResource
lstrcmpiW
ReadFile
FreeLibrary
LeaveCriticalSection
TlsFree
VirtualFree
GetProcessHeap
SizeofResource
HeapDestroy
RaiseException
GetEnvironmentStrings
FormatMessageW
WriteFile
GetCurrentProcess
WriteConsoleA
GetProcAddress
GetLocaleInfoA
VirtualQuery
InterlockedExchange
RtlUnwind
IsBadWritePtr
HeapReAlloc
MultiByteToWideChar
GetFileType
GetModuleHandleA
GetSystemInfo
CreateProcessW
GetModuleFileNameA
FreeEnvironmentStringsA
CreateMutexW
GetExitCodeProcess
LocalLock
GetCurrentThreadId
GetCurrentDirectoryW
TlsGetValue
IsValidCodePage
InterlockedDecrement
CreateDirectoryW
LocalAlloc
lstrcpyW
GetCPInfo
SetEvent
WaitForMultipleObjects
LoadResource
CreateFileW
Sleep
ExitProcess
SetEnvironmentVariableA
TlsSetValue
GetTimeFormatW
ExpandEnvironmentStringsW
LocalFree
FlushFileBuffers
GetConsoleCP
SetHandleCount
WriteConsoleW
FindClose
lstrlenW
GetOEMCP
HeapSize
GetLocaleInfoW
lstrcpynW
GetStringTypeW
EnterCriticalSection
VirtualProtect
DeleteCriticalSection
FileTimeToSystemTime
InitializeCriticalSection
GetConsoleMode
TlsAlloc
lstrcmpW

user32

CallNextHookEx
SetScrollPos
CreateWindowExW
IsChild
SetWindowPlacement
IsWindowVisible
GetWindowPlacement
CheckMenuItem
IsIconic
GetSysColor
PtInRect
DrawTextExW
DestroyIcon
EndDeferWindowPos
HideCaret
SetMenu
CreateDialogIndirectParamW
LoadStringW
ScrollWindow
SetWindowLongA
SetWindowTextW
GetFocus
DeleteMenu
GetCapture
InflateRect
MoveWindow
SetCaretPos
RegisterWindowMessageW
DrawMenuBar
EmptyClipboard
GetSubMenu
ReleaseCapture
GetMessageW
SetDlgItemTextW
CallWindowProcW
DrawFrameControl
GetWindowRect
GetActiveWindow
GetMenuState
GetSystemMetrics
PostMessageW
SystemParametersInfoW
GetScrollRange
MonitorFromWindow
FrameRect
GetCursorPos
FindWindowW
CallWindowProcA
CreateDialogParamW
MessageBoxW
CloseClipboard
GetMonitorInfoW
ClientToScreen
SetScrollInfo
TranslateAcceleratorW
GetMenuItemID
SetParent
CreateCursor
GetClassNameW
EnableWindow
BeginPaint
wsprintfW
DestroyCaret
DeferWindowPos
EnableMenuItem
LoadBitmapW
CharLowerW
ModifyMenuW
CreateAcceleratorTableW
CreateCaret
ToAscii
LoadMenuW
BeginDeferWindowPos
GetMenu
UnhookWindowsHookEx
SendDlgItemMessageW
FillRect
GetKeyState
DialogBoxIndirectParamW
RegisterClassExW
GetMenuStringW
GetDlgItemInt
SendMessageW
ReleaseDC
SetWindowPos
MessageBeep
DrawFocusRect
SetWindowsHookExW
IsClipboardFormatAvailable
IsWindowUnicode
RegisterClassW
DragDetect
UpdateWindow
GetWindowTextW
DestroyCursor
IsZoomed
CharUpperW
WindowFromPoint
GetMessageA
TrackPopupMenu
SetForegroundWindow
LoadCursorW
IsWindow
DestroyMenu
CreatePopupMenu
SetWindowLongW
ShowScrollBar
GetClipboardData
DestroyAcceleratorTable
IsDialogMessageW
SetDlgItemInt
LoadIconW
DispatchMessageW
RemoveMenu
DefWindowProcW
RealChildWindowFromPoint
mouse_event
InvalidateRect
ShowCaret
SetClipboardData
InsertMenuItemW
DialogBoxParamW
OpenClipboard
DrawEdge
GetParent
DrawIcon
ScreenToClient
GetDlgItemTextW
GetWindowLongW
PeekMessageW
CreateMenu
GetDlgItem
SetMenuItemInfoW
GetClientRect
AppendMenuW
DrawTextW
SetCapture
SetScrollRange
RedrawWindow
EndDialog
PostQuitMessage
DestroyWindow
ShowWindow
GetKeyboardState
IsDialogMessageA
SetCursor
MapWindowPoints

gdi32

SetWindowOrgEx
CreateCompatibleDC
MoveToEx
LineTo
ExtTextOutW
SetTextColor
DeleteDC
SetBkColor
CreateFontIndirectW
GetTextExtentPointW
EndDoc
SetBrushOrgEx
CreateCompatibleBitmap
BitBlt
GetTextMetricsW
GetPixel
DPtoLP
GetROP2
GetDeviceCaps
SelectObject
CreateFontW
EnumFontFamiliesExW
SetROP2
SetBkMode
OffsetWindowOrgEx
CreateSolidBrush
RestoreDC
Rectangle
GetObjectW
CreateHatchBrush
DeleteObject
CreatePen
CreatePatternBrush
AddFontResourceW
CreateBitmap
StartPage
SetTextAlign
EndPage
SaveDC
PatBlt
GetTextExtentPoint32W
GetStockObject
StartDocW
RemoveFontResourceW

comdlg32

GetFileTitleA
GetSaveFileNameW
ChooseFontW
PageSetupDlgW
PageSetupDlgA
ChooseColorA
ReplaceTextW
ReplaceTextA
GetFileTitleW
ChooseFontA
PrintDlgA
ChooseColorW
GetSaveFileNameA
FindTextW
PrintDlgW
GetOpenFileNameW
GetOpenFileNameA
FindTextA

ole32

StgOpenAsyncDocfileOnIFillLockBytes
WriteClassStm

Sections

.text
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 115KB - Virtual size: 331KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

b2fbd9919a240917f8104685e34fd55d

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

ole32

Sections

.text Size: 37KB - Virtual size: 37KB

.rdata Size: 12KB - Virtual size: 11KB

.data Size: 115KB - Virtual size: 331KB

.rsrc Size: 4KB - Virtual size: 4KB

.text
Size: 37KB - Virtual size: 37KB

.rdata
Size: 12KB - Virtual size: 11KB

.data
Size: 115KB - Virtual size: 331KB

.rsrc
Size: 4KB - Virtual size: 4KB