305f1c1b183c77775ad8c5abbbae91d3_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

305f1c1b183c77775ad8c5abbbae91d3_JaffaCakes118
Size

444KB
MD5

305f1c1b183c77775ad8c5abbbae91d3
SHA1

d1154083e1ec826bb1701bbdac1cac1937d9d3f1
SHA256

b68113c6b0cb8e95d70e19ee1a53726af430bcc69eaa846f49b00509d60bde2f
SHA512

c4433ce20b0841a32b285294f844e34a8e47a8b261e1934d4a5002d0f86ea85ad3d361108c83bb411cd535d3d4e81eddf88fed6f401acac4c6c22d799782b2ec
SSDEEP

12288:MMMnMMMMMUMul+N9vpBmmxomXc9PkLAVtUYaSz:MMMnMMMMM7u0HvHf+mMFGAVzaSz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
305f1c1b183c77775ad8c5abbbae91d3_JaffaCakes118

Files

305f1c1b183c77775ad8c5abbbae91d3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

f3d20d06299a736df60d2fb7f0029d25

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc

rtutils

TraceDumpExA
TraceDumpExW

gdi32

CreateHalftonePalette
GetTextExtentExPointI
CreateEnhMetaFileA
CloseEnhMetaFile
SetWindowOrgEx
ExtCreateRegion
SetWindowExtEx
ExtTextOutW
GetDIBits
GetObjectW
GetBkMode
CloseMetaFile
DeleteEnhMetaFile
SetBkColor
CreatePatternBrush
OffsetRgn
SetDCPenColor
CreateCompatibleDC
GetRgnBox
SetViewportExtEx
CreateFontIndirectW
LPtoDP
SetStretchBltMode
CreateRectRgn
CombineRgn
StretchDIBits
SaveDC
CreateCompatibleBitmap
SetRectRgn
GetTextAlign
GetTextCharset
TextOutA
CreateDIBSection
RestoreDC
PatBlt
GetBkColor
CreateRectRgnIndirect
OffsetWindowOrgEx
GetLayout
CreateSolidBrush
SetTextColor
MoveToEx
GetBrushOrgEx
SetViewportOrgEx
CreateDIBPatternBrushPt
GetStockObject
GetDCOrgEx
CreatePolygonRgn
CreateFontW
GetTextExtentPointW
GetTextMetricsW
SetPaletteEntries
GetPaletteEntries
StretchBlt
GetPixel
CreateDCW
GetClipBox
SetBkMode
CreatePalette
BitBlt
TextOutW
CreateBitmap
RealizePalette
SetTextAlign
GetTextColor
CreateMetaFileW
SetLayout
SetMapMode
GetTextExtentPoint32A
GetDeviceCaps
CreatePen
RectVisible
GetSystemPaletteEntries
GetRegionData
SetBrushOrgEx
GetObjectA
LineTo
SelectPalette
IntersectClipRect
SelectObject
EqualRgn
GetTextExtentPoint32W
Rectangle
DeleteDC
GetGlyphIndicesW
DeleteObject
CreateDCA
CreateFontIndirectA
PlayEnhMetaFile

uxtheme

SetWindowTheme
OpenThemeData
CloseThemeData
DrawThemeBackground
GetThemeAppProperties
GetThemeFont
IsThemeActive
GetThemeColor
GetThemePartSize
IsAppThemed
GetThemeMargins
GetThemeMetric
GetThemeBackgroundContentRect
DrawThemeParentBackground
GetThemeBackgroundExtent

psapi

GetProcessImageFileNameW

ntdll

RtlAddAccessAllowedObjectAce
NtSetSystemEnvironmentValue
NtQuerySemaphore
RtlAdjustPrivilege

shell32

SHGetPathFromIDListW
SHGetSpecialFolderLocation
Shell_NotifyIconW
SHGetDesktopFolder
Shell_NotifyIconA
SHCreateShellItem
ShellAboutW
SHPathPrepareForWriteW
ShellExecuteW
SHGetFolderLocation
ExtractAssociatedIconExW
SHSetLocalizedName
SHGetInstanceExplorer
SHAppBarMessage
SHGetFileInfoW
SHGetSpecialFolderPathW
SHFileOperationW
SHGetFolderPathW
ExtractIconExW
SHBrowseForFolderW
SHGetPathFromIDListA
DragQueryFileW
ShellExecuteExW
SHChangeNotify
SHGetDataFromIDListW
SHGetFolderPathAndSubDirW
ExtractIconW
SHBindToParent
ShellExecuteA

ddraw

DirectDrawCreate

advapi32

SetTokenInformation
GetLengthSid
CryptHashData
GetTraceLoggerHandle
RegDeleteKeyA
RegOpenKeyExW
RegCloseKey
RegQueryValueExA
RegQueryValueW
RegDeleteValueA
UnregisterTraceGuids
CryptReleaseContext
RegSetValueExW
CreateProcessAsUserW
CryptCreateHash
RegSetValueExA
RegCreateKeyA
SetThreadToken
RegOpenKeyW
TraceMessage
IsTextUnicode
RegCreateKeyExW
RegQueryValueExW
RegOpenCurrentUser
ConvertSidToStringSidW
OpenProcessToken
CryptDestroyHash
RegEnumValueA
RegDeleteValueW
RegisterTraceGuidsW
RegOpenKeyExA
RegEnumKeyW
GetUserNameW
ConvertStringSidToSidW
RegCreateKeyExA
CryptGetHashParam
ImpersonateSelf
RegDeleteKeyW
ConvertStringSecurityDescriptorToSecurityDescriptorW
GetTokenInformation
GetTraceEnableFlags
OpenThreadToken
CryptAcquireContextW
RegQueryInfoKeyW
RegEnumValueW
TraceEvent
RegEnumKeyExW
DuplicateTokenEx
GetTraceEnableLevel

user32

SetActiveWindow
SystemParametersInfoA
HideCaret
GetDesktopWindow
BeginDeferWindowPos
CharNextW
MessageBoxExW
WaitForInputIdle
SetPropA
IsDlgButtonChecked
SetForegroundWindow
CreateWindowExW
SetCapture
ChildWindowFromPoint
GetMenuState
GetSystemMetrics
LoadBitmapW
GetSubMenu
GetClipboardFormatNameW
SetMenuItemInfoW
SendMessageTimeoutA
DdeUninitialize
AdjustWindowRect
GetCursor
CallNextHookEx
GetLastInputInfo
FindWindowW
IsWindow
RedrawWindow
GetMenuItemCount
RemovePropW
SetParent
EqualRect
SystemParametersInfoW
PostMessageA
RegisterWindowMessageA
RemoveMenu
CopyRect
EnableWindow
MessageBeep
InsertMenuItemW
ShowCaret
GetComboBoxInfo
GetWindowTextW
GetWindowDC
GetFocus
IsWindowUnicode
FillRect
wsprintfW
DeleteMenu
DrawIconEx
DdeConnect
SendDlgItemMessageW
MessageBoxW
DdeQueryStringW
ReleaseCapture
PeekMessageW
IsDialogMessageW
VkKeyScanExW
SetDlgItemTextW
EmptyClipboard
GetDC
GetIconInfo
GetMenuStringW
GetTopWindow
KillTimer
DialogBoxIndirectParamA
GetMessagePos
PostQuitMessage
GetWindowLongW
SetWindowRgn
TrackMouseEvent
CharNextA
GetKeyState
SetClipboardData
LoadAcceleratorsW
ScreenToClient
SetFocus
DestroyAcceleratorTable
GetWindowPlacement
DdeClientTransaction
TrackPopupMenuEx
GetAncestor
SetWindowTextW
CheckMenuRadioItem
EnumDisplaySettingsW
RemovePropA
OffsetRect
CharPrevA
EndDeferWindowPos
CallWindowProcW
DefWindowProcA
GetClassLongW
GetCursorPos
SetWindowLongW
DdeFreeStringHandle
GetDlgItemTextW
EndDialog
SetCursor
GetShellWindow
LoadStringA
LoadCursorA
SetMenu
GetMonitorInfoW
SetWindowLongA
GetScrollInfo
TranslateAcceleratorW
SetTimer
MapDialogRect
GetWindow
IntersectRect
DrawTextExW
FindWindowExW
DrawEdge
RegisterClassW
GetForegroundWindow
WinHelpW
EnumWindows
OpenClipboard
DestroyMenu
GetPropA
LoadImageW
IsCharAlphaNumericW
CreateDialogParamW
BeginPaint
SendMessageA
GetWindowTextLengthW
AttachThreadInput
SetDlgItemInt
PostThreadMessageW
InsertMenuW
MsgWaitForMultipleObjects
SetRect
GetKeyboardLayout
RegisterClipboardFormatW
GetActiveWindow
GetClientRect
GetDoubleClickTime
DrawFrameControl
CharLowerW
SetPropW
LoadStringW
DialogBoxParamA
PostMessageW
CharLowerBuffW
CheckMenuItem
DrawTextW
RegisterClassExW
RegisterClipboardFormatA
CloseClipboard
UpdateLayeredWindow
LoadIconW
SendNotifyMessageW
IsRectEmpty
DdeGetData
ShowOwnedPopups
DialogBoxIndirectParamW
EndMenu
GetClassInfoExW
AdjustWindowRectEx
GetProcessWindowStation
UnionRect
EnumDesktopWindows
UpdateWindow
GetMenuDefaultItem
GetMessageW
IsWindowVisible
MonitorFromRect
WindowFromPoint
LockSetForegroundWindow
GetMenuItemInfoA
GetCapture
MoveWindow
CallMsgFilterW
IsIconic
GetSystemMenu
GetNextDlgTabItem
GetMenuItemInfoW
PeekMessageA
GetDialogBaseUnits
EnumChildWindows
GetWindowThreadProcessId
NotifyWinEvent
MonitorFromPoint
WaitMessage
CopyImage
SetClipboardViewer
DestroyIcon
IsChild
CopyIcon
ChangeClipboardChain
SetWindowsHookExW
GetKeyNameTextW
SetRectEmpty
MessageBoxIndirectA
DialogBoxParamW
RegisterWindowMessageW
CheckDlgButton
CreateMenu
GetWindowRect
IsMenu
TranslateMessage
GetClipboardData
GetSysColor
GetClassWord
GetParent
GetSysColorBrush
SetMenuItemBitmaps
MonitorFromWindow
UnregisterClassW
MessageBoxIndirectW
GetWindowInfo
AnimateWindow
MsgWaitForMultipleObjectsEx
CheckRadioButton
PostThreadMessageA
GetWindowRgnBox
ShowWindow
LoadCursorW
GetDlgItem
PtInRect
DdeCreateStringHandleW
IsWindowEnabled
IsHungAppWindow
SetCursorPos
TrackPopupMenu
DrawFocusRect
InvalidateRect
GetMenuItemID
SendMessageTimeoutW
EnumThreadWindows
DeferWindowPos
GetDlgCtrlID
DdeDisconnect
SetScrollPos
GetClassNameW
DispatchMessageW
CharPrevW
ClientToScreen
GetMessageTime
SetWindowPos
CreateIconIndirect
GetAsyncKeyState
GetClassInfoW
FindWindowA
SendMessageW
DdeFreeDataHandle
GetLastActivePopup
EndPaint
MapVirtualKeyW
AppendMenuW
CreatePopupMenu
GetMessageA
UnhookWindowsHookEx
DestroyWindow
MapWindowPoints
DdeCreateDataHandle
SetWindowPlacement
ReleaseDC
AllowSetForegroundWindow
SetScrollInfo
DdeInitializeW
InflateRect
LoadMenuW
SetMenuDefaultItem
MessageBoxExA
EnableMenuItem
GetWindowLongA
DdeNameService
DispatchMessageA
ShowScrollBar
GetPropW
DefWindowProcW
CharUpperW

Sections

.text
Size: 1024B - Virtual size: 1004B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.idata
Size: 12KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 58KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 396KB - Virtual size: 2.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 64KB - Virtual size: 64KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f3d20d06299a736df60d2fb7f0029d25

Headers

File Characteristics

Imports

kernel32

rtutils

gdi32

uxtheme

psapi

ntdll

shell32

ddraw

advapi32

user32

Sections

.text Size: 1024B - Virtual size: 1004B

.idata Size: 12KB - Virtual size: 12KB

.rsrc Size: 58KB - Virtual size: 57KB

.data Size: 396KB - Virtual size: 2.0MB

.rdata Size: 64KB - Virtual size: 64KB

.text
Size: 1024B - Virtual size: 1004B

.idata
Size: 12KB - Virtual size: 12KB

.rsrc
Size: 58KB - Virtual size: 57KB

.data
Size: 396KB - Virtual size: 2.0MB

.rdata
Size: 64KB - Virtual size: 64KB