37a299e8bb3ff15788b4ecbe08c3c887_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

37a299e8bb3ff15788b4ecbe08c3c887_JaffaCakes118
Size

696KB
MD5

37a299e8bb3ff15788b4ecbe08c3c887
SHA1

5ead3209cf9c8685a782ad178cca5c7093b9f97a
SHA256

6a60695f780b05caebb3748d009b2e0f336f7740981551bed21cfd5256ebb7b6
SHA512

2d86d682cdd19f73cadd97587a31949d011ef04a734c12382577b56faa1c317cc2eb23336ed6b5ab7c508e39f0b496547ffe1f7a2106ea75c405fa43198ee215
SSDEEP

12288:xHDBnqHkl0TP9I/WoBGKJM0yBAXlL4e7fpKJ+bnLZeZnpE0:llnakl0TPcZMt2L4e7fZjLZeZn60

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
37a299e8bb3ff15788b4ecbe08c3c887_JaffaCakes118

Files

37a299e8bb3ff15788b4ecbe08c3c887_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bc720d452d59ad31f501637dad6324e4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalFree
GlobalAlloc
SetEndOfFile
PeekNamedPipe
SetCurrentDirectoryA
GetCurrentDirectoryA
CompareStringA
FlushFileBuffers
WriteConsoleW
GetConsoleOutputCP
WriteConsoleA
SetStdHandle
RtlUnwind
GetStringTypeW
GetStringTypeA
GetConsoleMode
GetConsoleCP
GetCurrentProcessId
QueryPerformanceCounter
GetFileType
SetHandleCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
GlobalLock
FreeEnvironmentStringsA
HeapCreate
HeapDestroy
HeapReAlloc
VirtualAlloc
VirtualFree
HeapSize
RaiseException
LCMapStringW
LCMapStringA
IsValidCodePage
GetOEMCP
GetACP
GetCPInfo
GetTimeZoneInformation
InterlockedDecrement
SetLastError
InterlockedIncrement
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
IsDebuggerPresent
UnhandledExceptionFilter
TerminateProcess
GetCommandLineA
GetSystemTimeAsFileTime
GlobalUnlock
CreateThread
GetDriveTypeA
GetLogicalDriveStringsA
GetComputerNameA
GetStdHandle
GetCurrentThread
DuplicateHandle
GetThreadPriority
CreatePipe
ReleaseMutex
CreateMutexA
FindResourceA
GetProcessHeap
LockResource
HeapAlloc
LoadResource
HeapFree
GetEnvironmentVariableA
SizeofResource
LocalFileTimeToFileTime
FileTimeToSystemTime
FileTimeToLocalFileTime
SystemTimeToFileTime
GetModuleHandleA
GetVersionExA
ExitProcess
GetCurrentThreadId
GetModuleFileNameA
SetUnhandledExceptionFilter
VirtualQuery
GetLocaleInfoA
GetTickCount
LocalAlloc
LocalFree
GetCurrentProcess
GetStartupInfoA
WinExec
RemoveDirectoryA
UnmapViewOfFile
MapViewOfFile
OpenFileMappingA
WideCharToMultiByte
FindFirstFileA
SetThreadPriority
SetFilePointer
CreateFileA
CreateDirectoryA
WaitForSingleObject
DeleteCriticalSection
CreateEventA
CloseHandle
GetTempPathA
ResetEvent
MultiByteToWideChar
GetFileTime
DeviceIoControl
FreeLibrary
DeleteFileA
ReadFile
WriteFile
GetProcAddress
FindNextFileA
EnterCriticalSection
Sleep
FindClose
GetTempFileNameA
GetLastError
SetEvent
CopyFileA
SetEnvironmentVariableA
GetFileAttributesA
InitializeCriticalSection
WaitForMultipleObjects
LeaveCriticalSection
GetFileSize
CreateProcessA
LoadLibraryA
GetEnvironmentStrings
CompareStringW

user32

GetDlgCtrlID
GetKeyNameTextA
MapVirtualKeyA
GetKeyState
IsDialogMessageA
CreateDialogParamA
EnableWindow
GetMessageA
CallWindowProcA
InsertMenuA
DestroyIcon
DrawStateA
GetWindowTextA
DrawEdge
GetIconInfo
SetCapture
PostQuitMessage
InsertMenuItemA
SetWindowPos
BeginPaint
SetForegroundWindow
GetSubMenu
EndPaint
SetMenuItemInfoA
IsWindow
GetParent
GetWindowPlacement
DialogBoxParamA
SendMessageA
EndDialog
MessageBoxA
IsZoomed
GetDlgItem
SetActiveWindow
GetSysColorBrush
MapDialogRect
DrawTextA
UpdateWindow
CheckMenuItem
DrawFocusRect
FillRect
InflateRect
CallNextHookEx
SetWindowsHookExA
UnhookWindowsHookEx
GetWindowDC
GetSysColor
MsgWaitForMultipleObjects
CreateWindowExA
RegisterClassA
FindWindowA
SendMessageTimeoutA
DefWindowProcA
CheckDlgButton
IsDlgButtonChecked
GetDlgItemTextA
GetDC
ReleaseDC
ScreenToClient
SetWindowPlacement
SetDlgItemTextA
GetFocus
IsWindowVisible
GetSystemMetrics
IsIconic
GetMessagePos
LoadIconA
GetDlgItemInt
MonitorFromWindow
LoadImageA
GetMonitorInfoA
DestroyWindow
MonitorFromRect
GetClientRect
GetPropA
SetTimer
MoveWindow
PostMessageA
SetPropA
GetMenu
InvalidateRect
TrackPopupMenu
GetMenuItemInfoA
ClientToScreen
GetMenuItemCount
ModifyMenuA
AppendMenuA
GetDesktopWindow
LoadCursorA
CreatePopupMenu
GetWindowLongA
SetMenu
KillTimer
SetFocus
SetCursor
SetWindowLongA
WaitForInputIdle
ReleaseCapture
GetActiveWindow
DispatchMessageA
GetCursorPos
CreateMenu
ShowWindow
SendDlgItemMessageA
EnableMenuItem
GetWindowRect
RemovePropA
SetWindowTextA
TranslateMessage
PeekMessageA
DestroyMenu

gdi32

CreateFontIndirectA
CreateCompatibleBitmap
GetStockObject
BitBlt
CreateDIBSection
CreateFontIndirectW
LineTo
MoveToEx
CreateSolidBrush
CreatePen
SetTextColor
SetBkMode
CreateFontA
DeleteObject
StretchBlt
CreateCompatibleDC
DeleteDC
GetObjectA
GetDeviceCaps
CreateDIBitmap
GetTextExtentPoint32A
ExtTextOutA
SelectObject
SetTextAlign

comdlg32

GetOpenFileNameA
GetSaveFileNameA

advapi32

SetFileSecurityA
RegQueryValueExA
AddAccessAllowedAce
InitializeAcl
GetAce
GetSidSubAuthority
SetSecurityDescriptorDacl
InitializeSid
RegQueryValueExW
RegDeleteValueA
RegOpenKeyA
RegQueryValueA
RegCloseKey
RegOpenKeyExA
RegSetValueExA
RegCreateKeyExA
RegDeleteKeyA
GetSidLengthRequired
InitializeSecurityDescriptor

shell32

SHGetPathFromIDListA
SHBrowseForFolderA
SHGetMalloc
DragFinish
DragAcceptFiles
DragQueryPoint
DragQueryFileA
ShellExecuteExA
ShellExecuteA

ole32

CoGetMalloc
CoTaskMemFree
CoCreateInstance
CoInitialize
CoUninitialize
CreateStreamOnHGlobal
CoTaskMemAlloc

oleaut32

SysFreeString
SysAllocString
OleLoadPicturePath
OleLoadPicture

comctl32

ImageList_DragLeave
ImageList_Destroy
ord17
PropertySheetA
ImageList_DrawEx
ImageList_GetIconSize
ImageList_ReplaceIcon
ImageList_DragMove
ImageList_Merge
ImageList_GetImageInfo
ImageList_DragShowNolock
ImageList_BeginDrag
ImageList_DragEnter
_TrackMouseEvent
CreateToolbarEx
ImageList_Create
ImageList_EndDrag

msacm32

acmFormatTagEnumA
acmDriverOpen
acmDriverEnum
acmDriverDetailsA
acmDriverClose
acmStreamUnprepareHeader
acmStreamOpen
acmStreamClose
acmStreamConvert
acmStreamSize
acmStreamPrepareHeader

winmm

waveOutRestart
waveOutClose
waveOutPrepareHeader
waveOutOpen
waveOutReset
waveOutPause
waveOutWrite
waveOutUnprepareHeader

ws2_32

socket
WSAGetLastError
ioctlsocket
select
htons
connect
closesocket
__WSAFDIsSet
recv
gethostbyname
inet_addr
WSAStartup
send

Sections

.rdata
Size: 96KB - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 404KB - Virtual size: 413KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 136KB - Virtual size: 132KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bc720d452d59ad31f501637dad6324e4

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

oleaut32

comctl32

msacm32

winmm

ws2_32

Sections

.rdata Size: 96KB - Virtual size: 92KB

.data Size: 404KB - Virtual size: 413KB

.rsrc Size: 136KB - Virtual size: 132KB

.rdata
Size: 96KB - Virtual size: 92KB

.data
Size: 404KB - Virtual size: 413KB

.rsrc
Size: 136KB - Virtual size: 132KB