282721e361c5799f3f33a285e138da8a_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

282721e361c5799f3f33a285e138da8a_JaffaCakes118
Size

176KB
MD5

282721e361c5799f3f33a285e138da8a
SHA1

d468db3c31b53d2bcfcaba900ca863b4b5a56ef8
SHA256

15591245fa3ae259bf55c6350b0e93bb94dd298603e64af291692dbfa2d68338
SHA512

1e43e4d87d01dfd1f03c37ebf97625c6191ca7ee1437a3201276a675ead18f3e38f5ff1970aa32794e0af8e03269d3023a2bc9a318e4733a87d903180554bec8
SSDEEP

3072:clthFHO3kTtFHhzpQhNB1vhfzbQmBKwDQCLjjFs1QB/oVl1kFKABktLa3sPaz0WU:clthF/TtFBzAtfzJBKzyjyQpMqAacCwP

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
282721e361c5799f3f33a285e138da8a_JaffaCakes118

Files

282721e361c5799f3f33a285e138da8a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4a05f8d52f92041c02d1ecf688d7e1f4

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalAlloc
lstrlenA
lstrcmpA
GlobalLock
GlobalSize
GetProcAddress
GetCurrentThreadId
FormatMessageA
WideCharToMultiByte
MultiByteToWideChar
GlobalDeleteAtom
GlobalAddAtomA
SetErrorMode
GetFileAttributesA
GlobalGetAtomNameW
GetTickCount
CreateProcessA
Sleep
CreateEventA
GetVersionExA
FreeLibrary
MulDiv
RtlZeroMemory
GetLocaleInfoA
RtlMoveMemory
LocalReAlloc
GetPrivateProfileStringA
WaitForSingleObject
ExitThread
lstrcmpiA
GetProfileStringA
SetEvent
GetProfileIntA
CreateThread
CloseHandle
GetWindowsDirectoryA
LoadLibraryA
ExitProcess
lstrcpynA
SearchPathA
GetDriveTypeA
lstrcatA
GlobalUnlock
GlobalFree
LocalFree
LocalAlloc
GetStdHandle
GetOEMCP
GetACP
GetModuleFileNameA
UnhandledExceptionFilter
RtlUnwind
GetLastError
VirtualAlloc
VirtualFree
LeaveCriticalSection
EnterCriticalSection
InitializeCriticalSection
GetVersion
GetCommandLineA
GetEnvironmentStrings
GetStartupInfoA
GetModuleHandleA
GetFileType
TlsSetValue
TlsAlloc
TlsGetValue
lstrcpyA
GetCPInfo

user32

SystemParametersInfoA
FindWindowA
SetForegroundWindow
SetRectEmpty
SetMenu
CharLowerBuffA
SetMenuItemInfoA
GetMenuItemInfoA
InsertMenuA
DeleteMenu
GetWindowPlacement
DestroyMenu
CreateMenu
RemoveMenu
GetMenuItemCount
GetDesktopWindow
CheckMenuItem
EqualRect
FrameRect
DrawIcon
DrawTextA
UnhookWindowsHook
TranslateMessage
TranslateAcceleratorA
GetMessageA
SetWindowsHookA
IsWindowEnabled
RedrawWindow
EndDeferWindowPos
DeferWindowPos
BeginDeferWindowPos
LoadImageA
IsZoomed
GetMenuState
PostQuitMessage
DestroyIcon
RegisterClipboardFormatA
GetClassNameA
ShowCursor
GetAsyncKeyState
GetKeyState
UpdateWindow
PeekMessageA
MsgWaitForMultipleObjects
GetWindow
DestroyWindow
CreateWindowExA
DrawMenuBar
OffsetRect
MapWindowPoints
GetDlgItemTextA
SetDlgItemTextA
SendDlgItemMessageA
CheckDlgButton
EnableWindow
GetDlgCtrlID
WinHelpA
LoadStringA
SetWindowTextA
EndDialog
GetFocus
IsDlgButtonChecked
GetDlgItem
SetFocus
CheckRadioButton
SetDlgItemInt
GetDlgItemInt
MessageBeep
DialogBoxParamA
GetWindowTextA
SetWindowLongA
CallWindowProcA
PostMessageA
wsprintfA
LoadCursorA
RegisterClassA
DefWindowProcA
BeginPaint
GetClientRect
GetSysColor
FillRect
EndPaint
SetCapture
GetParent
GetWindowRect
CopyRect
ReleaseCapture
KillTimer
GetDC
ScreenToClient
InvertRect
LoadIconA
GetSubMenu
LoadAcceleratorsA
CopyAcceleratorTableA
InflateRect
IntersectRect
MoveWindow
InvalidateRect
IsCharAlphaNumericA
IsCharAlphaA
GetDialogBaseUnits
CharPrevA
GetWindowThreadProcessId
wvsprintfA
ClientToScreen
ReleaseDC
ValidateRect
GetWindowLongA
SendMessageA
SetTimer
GetMessagePos
PtInRect
MessageBoxA
GetMenu
EnableMenuItem
IsWindowVisible
GetActiveWindow
IsRectEmpty
GetSystemMetrics
SetRect
AdjustWindowRect
ShowWindow
BringWindowToTop
SetActiveWindow
IsIconic
SetCursor
SetParent
SetWindowPos
IsWindow
ModifyMenuA
LoadMenuA
DispatchMessageA

gdi32

Polygon
SetWindowExtEx
SetWindowOrgEx
SetViewportExtEx
SetViewportOrgEx
SetMapMode
SetTextColor
SelectObject
GetStockObject
DeleteObject
CreateSolidBrush
CreatePatternBrush
CreateBitmap
GetTextExtentPoint32A
GetDeviceCaps
GetObjectA
SelectPalette
CreateFontIndirectA
SetROP2
SetBkMode
Rectangle
GetBkMode
GetROP2
CreatePen
DeleteDC
StretchBlt
CreateCompatibleDC
TextOutA
PatBlt
CreateCompatibleBitmap
RestoreDC
ExcludeClipRect
SaveDC
CreatePalette
GetPaletteEntries
DeleteMetaFile
CloseMetaFile
StretchDIBits
SetStretchBltMode
RealizePalette
CreateMetaFileA
MoveToEx
LineTo
GetSystemPaletteEntries
GetSystemPaletteUse
SetBkColor
GetDIBits

comctl32

ord17
ord6
CreateToolbarEx

shell32

ShellAboutA
ExtractIconA
DragQueryFileA
DragFinish
SHGetFileInfoA
DragAcceptFiles

winmm

OpenDriver
CloseDriver
mciSendStringA
mciSendCommandA
sndPlaySoundA
mciGetErrorStringA

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCloseKey
RegCreateKeyA
RegCreateKeyExA
RegSetValueExA
RegDeleteValueA

Sections

.text
Size: 92KB - Virtual size: 91KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 33KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 12KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.rrdata
Size: 20KB - Virtual size: 20KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

4a05f8d52f92041c02d1ecf688d7e1f4

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comctl32

shell32

winmm

advapi32

Sections

.text Size: 92KB - Virtual size: 91KB

.rdata Size: 4KB - Virtual size: 1KB

.data Size: 12KB - Virtual size: 33KB

.idata Size: 8KB - Virtual size: 6KB

.rsrc Size: 24KB - Virtual size: 20KB

.reloc Size: 12KB - Virtual size: 10KB

.rrdata Size: 20KB - Virtual size: 20KB

.text
Size: 92KB - Virtual size: 91KB

.rdata
Size: 4KB - Virtual size: 1KB

.data
Size: 12KB - Virtual size: 33KB

.idata
Size: 8KB - Virtual size: 6KB

.rsrc
Size: 24KB - Virtual size: 20KB

.reloc
Size: 12KB - Virtual size: 10KB

.rrdata
Size: 20KB - Virtual size: 20KB