2a57afd12b96d0b62c450f72c6fe8a80_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2a57afd12b96d0b62c450f72c6fe8a80_JaffaCakes118
Size

340KB
MD5

2a57afd12b96d0b62c450f72c6fe8a80
SHA1

f04251114cec2e3f7280dfd76112c26561e8bf77
SHA256

0d4fad19625fa85546f88a63c438d5ead1dcdd7b4c74604b90f5f7fe19d8d7c8
SHA512

d37739357541693be1ac4c5cbafaefff73ec6683007b5ad0a9617f96ca95dd6884832e28938ff45dc80db241a84611d42364065521ce6b956e889da2a0732c2e
SSDEEP

6144:Fm4plVob8vIW7UxSh4HeHgvOkVTtnkat5Zowd2:Fzl68vIkj1wOkVtJtXd2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2a57afd12b96d0b62c450f72c6fe8a80_JaffaCakes118

Files

2a57afd12b96d0b62c450f72c6fe8a80_JaffaCakes118
.exe windows:5 windows x86 arch:x86

605c7e63b55d9269a723d1c4df35427c

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

SetMenuItemBitmaps
GetMenuCheckMarkDimensions
ModifyMenuW
CheckMenuItem
RegisterWindowMessageW
SendDlgItemMessageA
WinHelpW
GetCapture
GetClassLongW
GetClassNameW
SetPropW
GetPropW
RemovePropW
GetForegroundWindow
SetActiveWindow
GetMessageTime
MapWindowPoints
UpdateWindow
GetMenu
GetClassInfoExW
GetClassInfoW
RegisterClassW
AdjustWindowRectEx
CallWindowProcW
IsIconic
MessageBeep
IsChild
GetTopWindow
GetNextDlgTabItem
GetNextDlgGroupItem
ReleaseCapture
GetDesktopWindow
SetCapture
SetRect
IsRectEmpty
CopyAcceleratorTableW
OffsetRect
PtInRect
CharNextW
GetFocus
SetFocus
MoveWindow
GetDlgCtrlID
IsDialogMessageW
SendDlgItemMessageW
CharUpperW
SetWindowsHookExW
CallNextHookEx
GetActiveWindow
GetKeyState
GetCursorPos
GetWindowTextW
GetSysColorBrush
UnhookWindowsHookEx
IntersectRect
CopyRect
GetWindowDC
ClientToScreen
MessageBoxW
LoadStringW
RedrawWindow
DrawStateW
PostThreadMessageW
ReleaseDC
DrawTextW
DestroyMenu
CreateDialogIndirectParamW
UnregisterClassA
EqualRect
ValidateRect
DefWindowProcW
GetWindowLongW
DispatchMessageW
TranslateMessage
GetMessageW
PostMessageW
PeekMessageW
SetWindowLongW
GrayStringW
DrawTextExW
TabbedTextOutW
GetWindow
SetWindowContextHelpId
MapDialogRect
GetWindowThreadProcessId
SendMessageW
GetParent
GetLastActivePopup
GetMenuState
GetMenuItemID
GetMenuItemCount
GetSubMenu
BringWindowToTop
LoadBitmapW
SetWindowTextW
LoadCursorW
LoadIconW
RegisterClassExW
CreateWindowExW
MessageBoxA
EndDialog
ScreenToClient
GetWindowRect
EnableMenuItem
GetSystemMenu
SetClassLongA
IsWindowEnabled
SetCursor
LoadCursorA
CheckDlgButton
GetMessagePos
LoadBitmapA
CloseClipboard
EmptyClipboard
RegisterClassA
TrackPopupMenu
AppendMenuA
CreatePopupMenu
SetDlgItemTextA
GetDlgItemTextA
MessageBoxIndirectA
CharPrevA
DispatchMessageA
PeekMessageA
DestroyWindow
CreateDialogParamA
SetTimer
PostQuitMessage
SetForegroundWindow
wsprintfA
SendMessageTimeoutA
FindWindowExA
SystemParametersInfoA
GetClassInfoA
DialogBoxParamA
CharNextA
OpenClipboard
ExitWindowsEx
GetDlgItem
SetWindowLongA
LoadImageA
GetDC
EnableWindow
SendMessageA
DefWindowProcA
BeginPaint
FillRect
DrawTextA
EndPaint
GetWindowLongA
SetClipboardData
SetWindowTextA
SetParent
GetSystemMetrics
ShowWindow
InvalidateRect
GetClientRect
GetSysColor
InflateRect
IsDialogMessageA
InvalidateRgn
DrawIcon
GetPropA
CallWindowProcA
GetWindowPlacement
HideCaret
ShowCaret
ExcludeUpdateRgn
DefDlgProcA
IsWindowUnicode
FindWindowA
SystemParametersInfoW
InsertMenuW
SetWinEventHook
CreateWindowExA
RegisterClipboardFormatW
wvsprintfA
DdeFreeDataHandle
GetTabbedTextExtentA
DefDlgProcW
AppendMenuW
SetWindowPos
RegisterShellHookWindow
SetSysColors
IsWindowVisible
IsWindow
SetProcessDefaultLayout
CheckRadioButton

shell32

SHGetFileInfoA
SHFileOperationA
SHGetSpecialFolderLocation
DragAcceptFiles
DragQueryFileA
SHGetDesktopFolder
SHBrowseForFolderA
SHGetPathFromIDListA
ShellExecuteExA
ShellExecuteA
SHGetMalloc

advapi32

RegCloseKey
RegEnumKeyA
RegEnumValueA
AdjustTokenPrivileges
RegCreateKeyExA
RegQueryValueA
RegSetValueExA
RegDeleteValueA
RegDeleteKeyA
RegQueryValueExA
RegOpenKeyExA

gdi32

GetWindowExtEx
GetViewportExtEx
SetWindowOrgEx
CreatePolygonRgn
GetCurrentPositionEx
LineTo
MoveToEx
IntersectClipRect
SelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
DeleteObject
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
RestoreDC
SaveDC
GetClipBox
SetTextColor
SetBkMode
TextOutA
GetSystemPaletteEntries
RemoveFontResourceA
AddFontResourceA
StartDocA
StartPage
EndPage
AbortDoc
GetPixel
Polygon
Ellipse
GetWindowOrgEx
GdiFlush
CreatePen
GetStockObject
PtVisible
GetRegionData
ExtCreateRegion
CreatePalette
GetEnhMetaFileBits
SetEnhMetaFileBits
PlayEnhMetaFile
DeleteEnhMetaFile
CreateFontA
GetCharWidthA
DPtoLP
SetMapMode
SetBkColor
GetTextMetricsA
CreateBitmap
ExtTextOutA
PatBlt
CreateDIBitmap
CreateCompatibleDC
CreateCompatibleBitmap
GetDIBits
DeleteDC
StretchDIBits
SetDIBitsToDevice
GetTextExtentPoint32A
CreateFontIndirectA
RealizePalette
CreateSolidBrush
GetObjectA
GetDeviceCaps
GetMapMode
SelectObject
SelectPalette
BitBlt
OffsetRgn
CombineRgn
CreateRectRgnIndirect
CreateRectRgn
EqualRgn
CreateBrushIndirect
SetTextAlign
RectVisible
Escape
GetTextColor
GetBkColor
DeleteMetaFile
CloseMetaFile
GetTextAlign
CreateDCA
LPtoDP
GetTextExtentPointA
SetRectRgn
EndDoc

comctl32

ImageList_Destroy
ImageList_AddMasked
ImageList_Create
ord17

kernel32

WideCharToMultiByte
CreateEventW
SetEvent
GetVersionExW
LoadLibraryExW
WritePrivateProfileStringW
GetPrivateProfileStringW
GetLocaleInfoW
GetSystemDefaultLCID
GetEnvironmentVariableW
GetCommandLineW
CreateDirectoryW
RemoveDirectoryW
GetSystemDirectoryW
GetWindowsDirectoryW
GetTempPathW
GetCurrentDirectoryW
GetDiskFreeSpaceExW
GetFullPathNameW
CopyFileW
DeleteFileW
SetFileAttributesW
GetFileAttributesW
SetEndOfFile
LoadLibraryW
CreateFileW
BeginUpdateResourceW
EndUpdateResourceW
SetFilePointerEx
FindResourceExW
CreateMutexW
ReleaseMutex
GetCurrentThreadId
GetUserDefaultLCID
GetSystemDefaultLangID
SetCurrentDirectoryW
GetModuleFileNameW
FindResourceW
LoadResource
SizeofResource
CloseHandle
SetFileTime
CompareFileTime
SearchPathA
GetShortPathNameA
GetFullPathNameA
MoveFileA
GetDriveTypeW
GetFileAttributesA
GetLastError
CreateDirectoryA
SetFileAttributesA
Sleep
GetFileSize
GetModuleFileNameA
GetTickCount
GetCurrentProcess
lstrcmpiA
ExitProcess
GetWindowsDirectoryA
GetTempPathA
lstrcpynA
GetDiskFreeSpaceA
GlobalUnlock
CreateThread
CreateProcessA
RemoveDirectoryA
CreateFileA
GetTempFileNameA
lstrlenA
lstrcatA
GetSystemDirectoryA
lstrcmpA
GetEnvironmentVariableA
ExpandEnvironmentStringsA
GlobalFree
GlobalAlloc
WaitForSingleObject
GetExitCodeProcess
SetErrorMode
GetModuleHandleA
LoadLibraryA
GetProcAddress
FreeLibrary
MultiByteToWideChar
WritePrivateProfileStringA
GetPrivateProfileStringA
WriteFile
ReadFile
SetFilePointer
FindClose
FindNextFileA
FindFirstFileA
DeleteFileA
GetExitCodeThread
SetLastError
lstrlenW
LocalFree
FormatMessageW
GetCurrentProcessId
FreeResource
GetModuleHandleW
GlobalDeleteAtom
lstrcmpW
CompareStringA
EnumResourceLanguagesW
GetVersion
ConvertDefaultLocale
GetCurrentThread
FindNextFileW
FileTimeToSystemTime
FileTimeToLocalFileTime
FindFirstFileW
LocalAlloc
LeaveCriticalSection
TlsGetValue
EnterCriticalSection
GlobalReAlloc
GlobalHandle
InitializeCriticalSection
TlsAlloc
TlsSetValue
LocalReAlloc
DeleteCriticalSection
TlsFree
GetThreadLocale
FormatMessageA
ResetEvent
GetLogicalDriveStringsW
CreatePipe
GetDriveTypeA
GetCurrentDirectoryA
SetEnvironmentVariableW
SetEnvironmentVariableA
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
IsValidLocale
EnumSystemLocalesA
GetStringTypeW
GetStringTypeA
GetConsoleMode
GetConsoleCP
GetTimeZoneInformation
GetDateFormatA
GetTimeFormatA
QueryPerformanceCounter
VirtualFree
HeapCreate
HeapDestroy
GetStartupInfoA
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetStdHandle
FlushFileBuffers
LCMapStringA
IsValidCodePage
GetOEMCP
GetCPInfo
VirtualQuery
GetSystemInfo
VirtualAlloc
VirtualProtect
HeapSize
GetFileType
SetStdHandle
HeapReAlloc
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetSystemTimeAsFileTime
GetStartupInfoW
GetProcessHeap
HeapAlloc
HeapFree
RtlUnwind
RaiseException
GetLocaleInfoA
GetACP
GlobalFlags
GlobalAddAtomW
GlobalFindAtomW
CompareStringW
GetVersionExA
GetFileTime
GetVolumeInformationW
DuplicateHandle
UnlockFile
LockFile
InterlockedIncrement
InterlockedDecrement
InitializeCriticalSectionAndSpinCount
SetCurrentDirectoryA
GlobalLock
GetOverlappedResult
EnumResourceNamesW
CreateSemaphoreW
LCMapStringW
LockResource
PeekNamedPipe
GlobalGetAtomNameA
MulDiv
GetCommandLineA
GetWriteWatch
TryEnterCriticalSection
GetTapePosition
GetProcessAffinityMask
UpdateResourceW
CopyFileA

Sections

.text
Size: 144KB - Virtual size: 144KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 24KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 163KB - Virtual size: 163KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

605c7e63b55d9269a723d1c4df35427c

Headers

DLL Characteristics

File Characteristics

Imports

user32

shell32

advapi32

gdi32

comctl32

kernel32

Sections

.text Size: 144KB - Virtual size: 144KB

.rdata Size: 24KB - Virtual size: 24KB

.data Size: 7KB - Virtual size: 132KB

.rsrc Size: 163KB - Virtual size: 163KB

.text
Size: 144KB - Virtual size: 144KB

.rdata
Size: 24KB - Virtual size: 24KB

.data
Size: 7KB - Virtual size: 132KB

.rsrc
Size: 163KB - Virtual size: 163KB