3a316cf9f5e76593615a9e1dfb675a3e_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3a316cf9f5e76593615a9e1dfb675a3e_JaffaCakes118
Size

654KB
MD5

3a316cf9f5e76593615a9e1dfb675a3e
SHA1

659f66be75377b3d8f61ff22169f0a5ab3d4c0ed
SHA256

ac39d4be80e02ec948dbcf82617746aeabdc236b12e7ff1012d61081ff8c4c26
SHA512

68f0e266b1ec42291634974eb288913b86ea9c204ed44fe14dfac3e59a9b812636042cca1b9b8390a7fdd22283e48109e268d11cda660da1029106c58c6a9335
SSDEEP

12288:dLdjFYOqL8FYQFkDX8JePlR18ZLPcxqd+5/sYwpvoewMtaZwOtVKN8s:dZjF9YQFkDX8Je9wZIxqdAsnpI1VKD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3a316cf9f5e76593615a9e1dfb675a3e_JaffaCakes118

Files

3a316cf9f5e76593615a9e1dfb675a3e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a6883639cd3e792f23552c55e7f8d54f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetCommandLineA
RaiseException
HeapReAlloc
GetStartupInfoA
HeapSize
GetACP
ExitProcess
HeapAlloc
GetEnvironmentVariableA
GetVersionExA
HeapDestroy
TerminateProcess
VirtualFree
VirtualAlloc
IsBadWritePtr
SetHandleCount
GetTimeZoneInformation
UnhandledExceptionFilter
HeapCreate
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
LCMapStringA
LCMapStringW
SetUnhandledExceptionFilter
GetStringTypeA
GetStringTypeW
RtlUnwind
SetStdHandle
CompareStringA
CompareStringW
SetEnvironmentVariableA
WinExec
FindResourceA
LoadResource
LockResource
SizeofResource
GlobalAlloc
GlobalLock
GlobalUnlock
MulDiv
WriteFile
MultiByteToWideChar
GetCurrentDirectoryA
GetSystemDirectoryA
GetWindowsDirectoryA
GetModuleHandleA
GetProcAddress
GetLogicalDrives
GetDriveTypeA
lstrcatA
lstrlenA
CreateDirectoryA
lstrcpyA
HeapFree
FileTimeToLocalFileTime
GetOEMCP
GetCPInfo
FindResourceExA
FileTimeToSystemTime
SetErrorMode
GetProcessVersion
LocalReAlloc
GlobalFlags
TlsGetValue
GlobalReAlloc
TlsSetValue
EnterCriticalSection
GlobalHandle
LeaveCriticalSection
TlsFree
InitializeCriticalSection
DeleteCriticalSection
TlsAlloc
SetFileTime
LocalAlloc
SetFileAttributesA
GetFileTime
SystemTimeToFileTime
LocalFileTimeToFileTime
FreeLibrary
GetFileSize
GetFileAttributesA
GlobalAddAtomA
GetVersion
GlobalGetAtomNameA
GlobalFindAtomA
FindNextFileA
GetVolumeInformationA
GetFullPathNameA
LoadLibraryA
FindFirstFileA
FindClose
lstrcmpiA
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
ReadFile
CreateFileA
GetCurrentProcess
DuplicateHandle
GetLastError
LocalFree
lstrcpynA
GlobalFree
SetLastError
CloseHandle
GetModuleFileNameA
WideCharToMultiByte
InterlockedDecrement
InterlockedIncrement
GlobalDeleteAtom
lstrcmpA
GetCurrentThread
GetCurrentThreadId
GetShortPathNameA
WritePrivateProfileStringA
IsBadReadPtr
IsBadCodePtr
GetStdHandle
GetFileType
FreeEnvironmentStringsA

user32

AdjustWindowRectEx
MapWindowPoints
UpdateWindow
GetClassNameA
PtInRect
GetSysColorBrush
DestroyMenu
GetClassInfoA
RegisterClassA
GetMenu
GetMenuItemCount
GetSubMenu
GetMenuItemID
DefWindowProcA
CreateWindowExA
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetForegroundWindow
SetForegroundWindow
GetWindow
RegisterWindowMessageA
GetWindowPlacement
EndDialog
IsWindow
CreateDialogIndirectParamA
DestroyWindow
CharUpperA
wsprintfA
LoadStringA
SetWindowLongA
GetDlgCtrlID
GetWindowTextLengthA
IsDialogMessageA
SetDlgItemTextA
MapDialogRect
SetWindowPos
ShowWindow
GetCapture
SetActiveWindow
GetAsyncKeyState
SetFocus
DrawTextA
TabbedTextOutA
EndPaint
BeginPaint
ReleaseDC
ClientToScreen
ScreenToClient
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetNextDlgTabItem
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
PeekMessageA
GetCursorPos
SetWindowsHookExA
GetLastActivePopup
IsWindowEnabled
GetWindowLongA
PostQuitMessage
LoadCursorA
SetCursor
SystemParametersInfoA
GetWindowThreadProcessId
IsIconic
DrawIcon
LoadIconA
MessageBeep
GetDC
GetUpdateRect
GetWindowRect
GetTopWindow
GetParent
PostMessageA
SendMessageA
MessageBoxA
EnableWindow
CopyRect
GetClientRect
GetSysColor
LoadImageA
GetSystemMetrics
SetRect
OffsetRect
WinHelpA
GetWindowTextA
SetWindowTextA
GrayStringA
GetDlgItem
SendDlgItemMessageA
UnregisterClassA

gdi32

GetObjectA
DeleteObject
PatBlt
DeleteDC
BitBlt
RealizePalette
CreateCompatibleBitmap
SetStretchBltMode
CreateBitmap
SaveDC
RestoreDC
GetStockObject
SelectPalette
SetBkColor
SetBkMode
SetTextColor
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
GetClipBox
MoveToEx
LineTo
StretchBlt
SelectObject
CreateSolidBrush
CreatePen
RectVisible
TextOutA
PtVisible
Escape
ExtTextOutA
DPtoLP
EnumFontFamiliesExA
CreateCompatibleDC
GetDeviceCaps
CreateFontIndirectA

comdlg32

GetFileTitleA

winspool.drv

DocumentPropertiesA
ClosePrinter
OpenPrinterA

advapi32

RegSetValueExA
RegQueryValueExA
RegOpenKeyExA
RegCreateKeyExA
RegCloseKey

shell32

SHGetSpecialFolderLocation
SHFileOperationA
SHGetFileInfoA
SHBrowseForFolderA
SHGetPathFromIDListA

comctl32

DestroyPropertySheetPage
PropertySheetA
ImageList_Destroy
ord17
CreatePropertySheetPageA

ole32

CreateStreamOnHGlobal
CoInitialize
CoUninitialize
CoTaskMemFree
CoCreateInstance

olepro32

ord251

Sections

.rdata
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 157KB - Virtual size: 176KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 63KB - Virtual size: 63KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a6883639cd3e792f23552c55e7f8d54f

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

ole32

olepro32

Sections

.rdata Size: 37KB - Virtual size: 37KB

.data Size: 157KB - Virtual size: 176KB

.rsrc Size: 63KB - Virtual size: 63KB

.rdata
Size: 37KB - Virtual size: 37KB

.data
Size: 157KB - Virtual size: 176KB

.rsrc
Size: 63KB - Virtual size: 63KB