2ccdc9a51c61ff3f82eb3f0629679d39_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2ccdc9a51c61ff3f82eb3f0629679d39_JaffaCakes118
Size

342KB
MD5

2ccdc9a51c61ff3f82eb3f0629679d39
SHA1

7f1c9fbd3b5b62abb6f2a1deab999d3d37d8eaa0
SHA256

b7ab232018c3275b6edf20d7d6ce043b225d9b6c875960b2323715a48b9f5648
SHA512

f8e6987eda5a8e859802de47597e7500e06956b60e5b3c064b1f31868ecccb73eab3214e609e393916d0d9af514933e82d7cc9118273600d11c1f2b369799134
SSDEEP

3072:Zc+jof7EtljVibmk/b2QeC8cCXJf91IxAwvXLcIdc7+v1e+dNyU0JUwoK/i7fwhP:Zn0mViqkD2a7XRG7i1e+dVx7fwha0vj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2ccdc9a51c61ff3f82eb3f0629679d39_JaffaCakes118

Files

2ccdc9a51c61ff3f82eb3f0629679d39_JaffaCakes118
.exe windows:4 windows x86 arch:x86

086096529582805d228b90915f479218

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetHandleCount
GetStdHandle
GetEnvironmentStringsW
GetFileType
HeapDestroy
HeapCreate
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
IsBadWritePtr
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
HeapReAlloc
UnhandledExceptionFilter
TerminateProcess
VirtualFree
VirtualAlloc
GetFileTime
HeapSize
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
GlobalGetAtomNameA
lstrcmpiA
GlobalAddAtomA
GlobalFindAtomA
GlobalDeleteAtom
FindResourceA
LoadResource
LockResource
GlobalFree
InterlockedDecrement
GlobalLock
GetACP
HeapAlloc
RaiseException
HeapFree
ExitProcess
GetLocalTime
GetCommandLineA
GetStartupInfoA
RtlUnwind
GetSystemTime
GetTimeZoneInformation
SystemTimeToFileTime
SetErrorMode
GetShortPathNameA
LocalFileTimeToFileTime
GetFileSize
GetVolumeInformationA
GetThreadLocale
GetStringTypeExA
DeleteFileA
FindFirstFileA
FindClose
UnlockFile
MoveFileA
SetEndOfFile
SetFilePointer
LockFile
FlushFileBuffers
CreateFileA
WriteFile
ReadFile
GetCurrentProcess
DuplicateHandle
SizeofResource
GetOEMCP
GetCPInfo
LocalReAlloc
GetProcessVersion
TlsGetValue
TlsFree
TlsSetValue
GlobalReAlloc
LocalAlloc
GlobalHandle
TlsAlloc
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
FileTimeToLocalFileTime
InitializeCriticalSection
GlobalFlags
GetDiskFreeSpaceA
GlobalUnlock
MulDiv
FileTimeToSystemTime
GetLastError
GetFullPathNameA
SetFileTime
GetProcAddress
GetModuleHandleA
GlobalAlloc
FreeLibrary
GetTempFileNameA
GetFileAttributesA
WritePrivateProfileStringA
lstrcmpA
GetCurrentThread
lstrcpynA
GetPrivateProfileStringA
GetPrivateProfileIntA
GetModuleFileNameA
LocalFree
InterlockedIncrement
MultiByteToWideChar
WideCharToMultiByte
GetVersion
IsBadReadPtr
IsBadCodePtr
SetLastError
CloseHandle
LoadLibraryA
GetWindowsDirectoryA
lstrcpyA
WinExec
lstrlenA
lstrcatA
Sleep
GetProfileStringA
GetCurrentThreadId

user32

EnableMenuItem
CheckMenuItem
SetMenuItemBitmaps
ModifyMenuA
GetMenuState
GetMenuCheckMarkDimensions
MoveWindow
WindowFromPoint
SetRectEmpty
LoadAcceleratorsA
TranslateAcceleratorA
GetDesktopWindow
DestroyMenu
LoadMenuA
SetMenu
ReuseDDElParam
UnpackDDElParam
BringWindowToTop
PostQuitMessage
ShowOwnedPopups
GetClassNameA
GetSysColorBrush
LoadStringA
SetRect
SetParent
IsRectEmpty
AppendMenuA
DeleteMenu
GetSystemMenu
IsDialogMessageA
SetWindowTextA
GetDCEx
LockWindowUpdate
InvertRect
GetTopWindow
MessageBoxA
IsChild
WinHelpA
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetWindowTextLengthA
GetWindowTextA
GetDlgCtrlID
DefWindowProcA
GetClassLongA
SetPropA
RemovePropA
GetMessageTime
CharUpperA
GetLastActivePopup
GetForegroundWindow
SetWindowLongA
OffsetRect
IntersectRect
GetNextDlgTabItem
EndDialog
GetSystemMetrics
CreateDialogIndirectParamA
DestroyWindow
MapDialogRect
SetWindowPos
ShowWindow
GetCapture
SetActiveWindow
GetAsyncKeyState
GetWindowLongA
GetFocus
SetFocus
GetDlgItem
IsWindowEnabled
UnhookWindowsHookEx
GrayStringA
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
GetWindowDC
ClientToScreen
ScreenToClient
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
PeekMessageA
SetWindowsHookExA
CopyRect
wsprintfA
PostMessageA
FrameRect
FillRect
SystemParametersInfoA
GetCursorPos
KillTimer
SetTimer
MessageBeep
LoadCursorA
CopyIcon
GetWindowRect
GetParent
GetDC
ReleaseDC
InflateRect
IsWindow
GetSysColor
SetCursor
PtInRect
ReleaseCapture
LoadIconA
UpdateWindow
SendDlgItemMessageA
MapWindowPoints
AdjustWindowRectEx
EqualRect
DeferWindowPos
BeginDeferWindowPos
EndDeferWindowPos
IsIconic
GetWindowPlacement
GetMessagePos
RegisterWindowMessageA
InvalidateRect
SetCapture
GetClientRect
EnableWindow
LoadBitmapA
SendMessageA
DestroyIcon
CallWindowProcA
GetPropA
GetWindow
SetForegroundWindow
CreateWindowExA
DrawFocusRect
ExcludeUpdateRgn
DefDlgProcA
HideCaret
UnregisterClassA
IsWindowUnicode
CharNextA
ShowCaret

gdi32

GetObjectA
SelectObject
CreateDCA
GetTextExtentPoint32A
CreateRectRgnIndirect
DeleteDC
PatBlt
SaveDC
RestoreDC
SetBkColor
SetBkMode
SetROP2
SetViewportOrgEx
OffsetViewportOrgEx
SetMapMode
ScaleViewportExtEx
SetViewportExtEx
GetClipBox
SelectClipRgn
ScaleWindowExtEx
IntersectClipRect
ExcludeClipRect
LineTo
SetTextAlign
MoveToEx
DeleteObject
CreateRectRgn
GetDeviceCaps
CreatePen
CreatePatternBrush
CreateSolidBrush
PtVisible
RectVisible
ExtTextOutA
Escape
TextOutA
CreateBitmap
StretchDIBits
CreateCompatibleBitmap
GetCharWidthA
CreateCompatibleDC
SetRectRgn
CreateFontA
GetTextMetricsA
CombineRgn
CreateDIBitmap
BitBlt
SetWindowExtEx
GetTextExtentPointA
CreateFontIndirectA
GetStockObject
SetTextColor

comdlg32

GetOpenFileNameA
GetFileTitleA
GetSaveFileNameA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegEnumKeyA
RegSetValueA
RegCreateKeyA
GetFileSecurityA
SetFileSecurityA
RegOpenKeyA
RegCloseKey
RegDeleteKeyA
RegDeleteValueA
RegSetValueExA
RegQueryValueExA
RegCreateKeyExA
RegOpenKeyExA
RegQueryValueA

shell32

DragQueryFileA
DragFinish
ExtractIconA
ShellExecuteA
SHGetFileInfoA

comctl32

ImageList_LoadImageA
ImageList_Create
PropertySheetA
ord17
CreatePropertySheetPageA
DestroyPropertySheetPage
ImageList_Destroy
ImageList_GetIcon
ImageList_Draw
ImageList_Add
ImageList_AddMasked

winmm

mciSendCommandA

Sections

.text
Size: 180KB - Virtual size: 179KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 48KB - Virtual size: 45KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 98KB - Virtual size: 98KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

086096529582805d228b90915f479218

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

winmm

Sections

.text Size: 180KB - Virtual size: 179KB

.rdata Size: 48KB - Virtual size: 45KB

.data Size: 12KB - Virtual size: 26KB

.rsrc Size: 98KB - Virtual size: 98KB

.text
Size: 180KB - Virtual size: 179KB

.rdata
Size: 48KB - Virtual size: 45KB

.data
Size: 12KB - Virtual size: 26KB

.rsrc
Size: 98KB - Virtual size: 98KB