2d2c4453b883af7f17a77cd158fe5500_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2d2c4453b883af7f17a77cd158fe5500_JaffaCakes118
Size

869KB
MD5

2d2c4453b883af7f17a77cd158fe5500
SHA1

d2cfbc78f074f35e9e8d7f6253636ed02fb01af1
SHA256

0fe969b287be98fca6c38f6d443afe2710d11f3dd66fc1ac663e4ae0191e54e6
SHA512

e648db312b23f0d91f1c670c878e7745f97b51dcfc252db5c99fdc3fec9c8618e8f4d07b1803a8731e60f42d7fbb1d22ae091a0e1e41598cdaecd4e54bab2038
SSDEEP

24576:gfxuyNxJnJSl7qItxeQCU/hJseQ+V9EggMhWt:gpuyjJEd57eQf/hJbFV9HK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2d2c4453b883af7f17a77cd158fe5500_JaffaCakes118

Files

2d2c4453b883af7f17a77cd158fe5500_JaffaCakes118
.dll windows:5 windows x86 arch:x86

a132ef7c122c25a8a939860574f605f6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

kernel32

DeviceIoControl
GetTickCount
GetConsoleCursorInfo
VirtualProtect
GetModuleHandleA
GetStdHandle
GetConsoleCP
ExitProcess
LoadResource
FreeLibrary
InitializeCriticalSectionAndSpinCount
LoadLibraryA
OpenEventW
SetEndOfFile
FormatMessageW
GlobalFree
GetCurrentProcess
LoadLibraryExW
Process32FirstW
TerminateProcess
InterlockedDecrement
GetLastError
SetCurrentDirectoryW
UnhandledExceptionFilter
HeapFree
SetErrorMode
LoadLibraryW
IsDebuggerPresent
DuplicateHandle
HeapDestroy
HeapAlloc
SetFilePointer
Thread32Next
GlobalUnlock
WideCharToMultiByte
DeleteCriticalSection
GetFileSize
MulDiv
HeapSize
LockResource
HeapSetInformation
CreateFileW
LocalFree
EnterCriticalSection
GetProcessHeap
GetSystemDirectoryW
ResetEvent
SetUnhandledExceptionFilter
ReadFile
WaitForMultipleObjects
OutputDebugStringW
GetModuleFileNameW
CreateToolhelp32Snapshot
MultiByteToWideChar
GetStartupInfoW
WaitForSingleObject
InterlockedCompareExchange
WriteFile
SetLastError
GetProcAddress
OpenProcess
GetLogicalDriveStringsW
FindResourceExW
GetSystemTimeAsFileTime
GetFileAttributesExW
InterlockedExchange
Process32NextW
GetModuleHandleW
GetFullPathNameW
Sleep
Thread32First
QueryDosDeviceW
HeapReAlloc
VerSetConditionMask
IsProcessorFeaturePresent
GlobalLock
RaiseException
GlobalAlloc
GetFileAttributesW
GetVersion
LeaveCriticalSection
SizeofResource
GetExitCodeProcess
SetEvent
CloseHandle
LocalAlloc
GetCurrentProcessId
InterlockedIncrement
GetPrivateProfileIntW
QueryPerformanceCounter
VerifyVersionInfoW
CreateEventW
FindResourceW
CreateProcessW

user32

GetWindowRect
BeginPaint
ChangeDisplaySettingsW
ShowCaret
TranslateMessage
GetWindowTextW
GetMenuItemInfoW
UpdateWindow
DrawFocusRect
ChildWindowFromPoint
GetDesktopWindow
LoadIconW
SetClipboardData
GetCursorPos
SetWindowLongW
ShowWindow
SetFocus
CreateWindowExW
CreateAcceleratorTableW
GetSystemMenu
AdjustWindowRectEx
InsertMenuItemW
GetClassNameW
MoveWindow
DdeGetData
DdeConnect
CheckMenuItem
GetSubMenu
DestroyIcon
CallNextHookEx
RegisterClipboardFormatW
IsDialogMessageW
GetCapture
DeferWindowPos
GetClientRect
ReleaseCapture
GetWindowThreadProcessId
DdePostAdvise
DdeCmpStringHandles
CharLowerA
SetCursor
GetWindowDC
CallWindowProcW
SetScrollInfo
CreateIconIndirect
ToUnicode
GetMessageTime
DrawFrameControl
FlashWindow
EmptyClipboard
BeginDeferWindowPos
GetActiveWindow
DdeDisconnect
MsgWaitForMultipleObjects
DrawEdge
CreateDialogIndirectParamW
SystemParametersInfoW
LoadImageW
DdeInitializeW
GetMessagePos
LoadBitmapW
SetWindowsHookExW
ReleaseDC
ClientToScreen
keybd_event
KillTimer
DestroyWindow
ModifyMenuW
UnhookWindowsHookEx
CheckMenuRadioItem
SetWindowRgn
MessageBoxW
SetTimer
IsZoomed
MapWindowPoints
ScrollWindow
GetWindow
GetMenu
IsWindowEnabled
GetForegroundWindow
EnumDisplaySettingsW
CreatePopupMenu
GetClipboardData
SetMenu
PeekMessageW
RedrawWindow
EnableWindow
DrawTextW
IsClipboardFormatAvailable
DestroyCursor
PostQuitMessage
EnumThreadWindows
OpenClipboard
CreateMenu
CreateDialogParamW
DdeClientTransaction
DrawIconEx
ShowCursor
EndDeferWindowPos
LoadCursorFromFileW
GetWindowTextLengthW
InsertMenuW
GetKeyState
DdeCreateDataHandle
DestroyAcceleratorTable
DefWindowProcW
GetDoubleClickTime
GetWindowLongW
DdeQueryStringW
VkKeyScanW
GetMessageW
SetWindowPos
GetUpdateRgn
RegisterWindowMessageW
DdeFreeStringHandle
FindWindowExW
SetParent
SetWindowTextW
CloseClipboard
HideCaret
EnumClipboardFormats
DestroyMenu
GetAsyncKeyState
GetSysColor
DdeGetLastError
DrawMenuBar
TrackPopupMenu
SetForegroundWindow
GetMenuItemCount
PostMessageW
WindowFromPoint
DdeFreeDataHandle
GetFocus
GetIconInfo
InvalidateRect
GetKeyboardState
RemoveMenu
FillRect
OffsetRect
DdeCreateStringHandleW
MessageBeep
EndPaint
PostThreadMessageW
IsWindowVisible
DdeNameService
PtInRect
ValidateRect
GetMenuState
DrawIcon
GetUpdateRect
BringWindowToTop
CopyRect
UnregisterClassW
IsWindow
SetCursorPos
DdeUninitialize
WaitForInputIdle
DispatchMessageW
EndDialog
GetParent
SendMessageW
GetScrollInfo
EnumWindows
DrawStateW
GetDC
EnableMenuItem
GetClassInfoW
SetCapture
UnionRect
ExitWindowsEx
ScreenToClient
GetSystemMetrics
IsIconic
GetClipboardFormatNameW
SetMenuItemInfoW
InflateRect
TranslateAcceleratorW
AppendMenuW

gdi32

GetTextMetricsW
GetRgnBox
SetROP2
RestoreDC
SetMetaFileBitsEx
SetBkMode
GetClipBox
GetPixel
GetDIBits
Pie
BitBlt
MoveToEx
Arc
RectInRegion
GetDeviceCaps
Rectangle
ExtFloodFill
LineTo
SetViewportExtEx
CreateICW
ExtCreatePen
RoundRect
GetWinMetaFileBits
CreateRectRgn
SetPolyFillMode
CreateDIBitmap
CreateSolidBrush
CreateRectRgnIndirect
GetTextExtentPoint32W
SelectObject
SetViewportOrgEx
GetPaletteEntries
SetWindowExtEx
PtInRegion
CreateBitmapIndirect
SetBrushOrgEx
ExtCreateRegion
DeleteEnhMetaFile
EqualRgn
CreatePalette
CreateCompatibleBitmap
SetWinMetaFileBits
PatBlt
GetNearestPaletteIndex
SetBkColor
GetRegionData
RealizePalette
CreatePen
StretchDIBits
SetMapMode
CreatePolygonRgn
Ellipse
CreateEnhMetaFileW
EnumFontFamiliesExW
GetTextExtentExPointW
GetSystemPaletteEntries
SelectPalette
CopyEnhMetaFileW
StretchBlt
GetObjectW
GetMetaFileBitsEx
CreateBitmap
SetTextAlign
CloseEnhMetaFile
CreateHatchBrush
ExtSelectClipRgn
MaskBlt
SetWindowOrgEx
SetPixel
GetEnhMetaFileW
GetStockObject
GetDIBColorTable
CombineRgn
CreatePatternBrush
SelectClipRgn
GetCharABCWidthsW
OffsetRgn
ExcludeClipRect
SaveDC
GetEnhMetaFileHeader
CreateFontIndirectW
SetStretchBltMode
CreateCompatibleDC
DeleteObject
GetBkColor
GdiFlush
DeleteDC
Polygon
GetTextColor
TextOutW
CreateDIBSection
Polyline
SetTextColor
PlayEnhMetaFile

comdlg32

ChooseColorW
ChooseFontW
GetOpenFileNameW
GetSaveFileNameW
CommDlgExtendedError

advapi32

RegDeleteValueW
RegCreateKeyW
RegEnumKeyW
RegOpenKeyExW
AdjustTokenPrivileges
GetUserNameW
RegQueryValueExW
RegCloseKey
RegSetValueExW
RegQueryValueExA
LookupPrivilegeValueW
RegQueryInfoKeyW
RegEnumValueW
RegOpenKeyExA
OpenProcessToken
RegDeleteKeyW

shell32

SHGetFileInfoW
DragAcceptFiles
DragQueryPoint
DragFinish
SHGetMalloc
Shell_NotifyIconW
ExtractIconW
ExtractIconExW
SHGetPathFromIDListW
SHFileOperationW
SHGetFolderPathW
ShellExecuteExW
SHGetIconOverlayIndexW
SHBrowseForFolderW
SHGetSpecialFolderLocation
DragQueryFileW

oleaut32

SysAllocString
SysStringLen

Sections

.text
Size: 481KB - Virtual size: 481KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 87KB - Virtual size: 86KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 259KB - Virtual size: 330KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a132ef7c122c25a8a939860574f605f6

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

oleaut32

Sections

.text Size: 481KB - Virtual size: 481KB

.rdata Size: 87KB - Virtual size: 86KB

.data Size: 259KB - Virtual size: 330KB

.rsrc Size: 36KB - Virtual size: 36KB

.reloc Size: 4KB - Virtual size: 3KB

.text
Size: 481KB - Virtual size: 481KB

.rdata
Size: 87KB - Virtual size: 86KB

.data
Size: 259KB - Virtual size: 330KB

.rsrc
Size: 36KB - Virtual size: 36KB

.reloc
Size: 4KB - Virtual size: 3KB