3d4b5333d87ad545ca18c33dcc3b5e2f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3d4b5333d87ad545ca18c33dcc3b5e2f_JaffaCakes118
Size

424KB
MD5

3d4b5333d87ad545ca18c33dcc3b5e2f
SHA1

c13f58edd1f8754e62f1be4cf1c2fcafb604b335
SHA256

12d00b3cecc1f8ec50b90c6e88d80dabd7b688580168d66509a211065f1fe638
SHA512

634fef9ea31dd52ac4f131eb9b0aeda84bc3b053cc9eb1310587da0aa5dec7df33e9383cda92ede449b7ac54e96d43fe1864679ee3c52950069b592760f757d6
SSDEEP

6144:V691rq4XGqE8HDEqfbMviX1VzgY8WPXanS3Hatf1wkjqec5VaeVstHjtoO:CF8eBCQaqvMS3oheFLh2

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3d4b5333d87ad545ca18c33dcc3b5e2f_JaffaCakes118

Files

3d4b5333d87ad545ca18c33dcc3b5e2f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

4b1d34fb21bf2fbc9e22581c05b72339

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

ExitProcess
QueryPerformanceCounter
GetTickCount
GetCurrentThreadId
GetCurrentProcessId
GetSystemTimeAsFileTime
GetModuleFileNameA
GetProcAddress
GetModuleHandleA
TerminateProcess
GetCurrentProcess
LoadLibraryA
RtlUnwind
InterlockedExchange
VirtualQuery
HeapReAlloc
HeapAlloc
HeapFree
VirtualAlloc
GetVersionExW
OpenSemaphoreW
EnumResourceNamesA
SetFilePointer
GetProcessPriorityBoost
SetConsoleTitleA
GetPrivateProfileSectionNamesW
WaitNamedPipeA
LeaveCriticalSection
WriteConsoleInputA
ReadFileScatter
ResetWriteWatch
GetTempPathA
GetProcessTimes
GetSystemDirectoryA
FreeEnvironmentStringsA
OpenMutexW
ResumeThread
GetFullPathNameA
GetQueuedCompletionStatus
CreateProcessW
GlobalReAlloc
WriteFileEx
GetNumberFormatA
GetLongPathNameW
Module32Next
SetLastError
CompareFileTime
SetCurrentDirectoryW
ResetEvent
FlushInstructionCache
LocalFlags
SetComputerNameW
InitializeCriticalSection
GetPrivateProfileSectionA
InterlockedCompareExchange
WriteConsoleOutputAttribute
lstrcpyn
GetProfileStringW
SetCriticalSectionSpinCount
GetPrivateProfileStringW
CreateSemaphoreA
GetMailslotInfo
GetStringTypeExA
GetCurrentDirectoryA
lstrcpynA
UpdateResourceW
GetTempFileNameW
SetThreadContext
CreateNamedPipeA
OpenWaitableTimerW
WriteConsoleOutputA
EnumResourceTypesA
lstrcmpiW
PeekConsoleInputA
EnumDateFormatsExW
GetProfileSectionW
FindResourceA
GetPriorityClass
WriteConsoleOutputW
VirtualProtect
GlobalFindAtomW
PulseEvent
InitAtomTable
FlushConsoleInputBuffer
MoveFileW
WriteProfileStringW
RtlZeroMemory
TerminateThread
SetConsoleCP
FreeLibraryAndExitThread
CreateTapePartition
CopyFileExA
SleepEx
FreeResource
GetVolumeInformationW
SetTimeZoneInformation
DefineDosDeviceA
GlobalLock
LocalAlloc
GetEnvironmentStringsW
GetProcessHeaps
EnumSystemLocalesA
RemoveDirectoryW
WriteConsoleOutputCharacterW
FoldStringW
WaitForDebugEvent
GetConsoleCursorInfo
VirtualFreeEx
GetLongPathNameA
GlobalFlags
GlobalWire
SetConsoleTextAttribute

gdi32

GetStretchBltMode
ExtFloodFill
DeviceCapabilitiesExW
CopyEnhMetaFileW
ResetDCW
GetCharWidth32A
PolylineTo
AnimatePalette
SetMetaFileBitsEx
GetLogColorSpaceA
CreateMetaFileW
CopyMetaFileW
GdiSetBatchLimit
CreateFontIndirectA
ScaleViewportExtEx
GetClipBox
GetCharABCWidthsW
BitBlt
GetStockObject
GetClipRgn
GetCharWidthW
Rectangle
GetRasterizerCaps
EndDoc
EnumEnhMetaFile
AddFontResourceW
EnumObjects
Chord
SetPaletteEntries
SetAbortProc
CreateRectRgn
StartPage
StrokeAndFillPath
GetColorAdjustment
SetICMProfileA
CreateHatchBrush
SelectObject
CreateDiscardableBitmap
ArcTo
EndPath
GetTextMetricsA
PathToRegion
TextOutA
CreateFontA
FlattenPath
GetDIBColorTable
ScaleWindowExtEx
SetViewportOrgEx
Escape
SaveDC
LPtoDP
CancelDC
GetRandomRgn
Ellipse
SetTextJustification
EnableEUDC
GetEnhMetaFileHeader
GetCharacterPlacementW
GetMapMode
GetMetaFileBitsEx
PlayEnhMetaFileRecord
GetBrushOrgEx
GetNearestColor
GetCharWidth32W
SetPixelV
EndPage
GetTextCharsetInfo
PatBlt
UpdateColors
CreatePolygonRgn
CombineRgn
EnumICMProfilesW
EqualRgn
SetLayout
GetTextExtentPoint32W
ResizePalette
GetEnhMetaFileA
LineDDA
GetDIBits
StretchBlt
GetICMProfileW
CreatePen
CreateEllipticRgn
SetMagicColors
CloseMetaFile
OffsetRgn
SetBkColor
GetMetaFileW
CreateFontW
SetBoundsRect
PlayMetaFile
CreateBrushIndirect
GetSystemPaletteEntries
GdiPlayDCScript
SetICMMode
CreateICA
GetWorldTransform
GetBitmapBits
Polyline
AddFontResourceA
SetStretchBltMode
PolyTextOutA
StrokePath
InvertRgn
GetViewportOrgEx
DeviceCapabilitiesExA
GdiPlayJournal
Pie
CreateColorSpaceW
SetSystemPaletteUse
PolyPolygon
GetTextExtentExPointA
SetRectRgn
CopyEnhMetaFileA
GetGlyphOutlineA
GetKerningPairs
EnumFontFamiliesExA
SetBitmapDimensionEx
GetTextExtentExPointW
FloodFill
ExtEscape
UpdateICMRegKeyA
GetPath
GetEnhMetaFileDescriptionW
SetFontEnumeration
GetFontData
GetRegionData
SelectClipPath
CreateEnhMetaFileA
SetPixelFormat
EnumFontsA
GetPaletteEntries
Arc
GetOutlineTextMetricsA
ExtSelectClipRgn
GdiGetBatchLimit
GetObjectW
SetDIBColorTable
GetRgnBox
SetDeviceGammaRamp
StretchDIBits
ChoosePixelFormat
GetTextCharset
EnumFontFamiliesA
ExtCreateRegion
SetBkMode
CreateHalftonePalette
GetViewportExtEx
StartDocW
ColorMatchToTarget
LineTo
SelectClipRgn
GetMetaRgn
PlgBlt
EnumFontFamiliesExW
CopyMetaFileA
RemoveFontResourceA
CreatePenIndirect
PolyPolyline
CreatePalette
GetCharWidthA
GetBkMode
GetGlyphOutlineW
PolyBezier
CreateEllipticRgnIndirect
GetDCOrgEx
GetBkColor
AbortPath
AbortDoc
CreateDIBPatternBrush
GetCurrentPositionEx
FixBrushOrgEx
SetWinMetaFileBits
StartDocA
SetMapMode
SetTextColor
GetColorSpace
DeleteObject
GetWinMetaFileBits
IntersectClipRect
SetTextAlign
RoundRect
FillPath
ExtCreatePen
OffsetClipRgn
SetWorldTransform
GetGlyphOutline
PlayEnhMetaFile
GetROP2
CloseFigure
CombineTransform
GetLayout
PlayMetaFileRecord
GetTextExtentPointW
GetTextColor
MaskBlt
GetTextFaceW
GetKerningPairsA
SetColorAdjustment
FillRgn
CreateCompatibleDC
CreatePolyPolygonRgn
GetTextExtentPointA
SetMiterLimit
GetAspectRatioFilterEx
CreateEnhMetaFileW
PaintRgn
SetROP2
Polygon
SetColorSpace
PtVisible
SetMapperFlags
SwapBuffers
GetOutlineTextMetricsW
CreateScalableFontResourceW
GetMiterLimit
PolyTextOutW
CreateBitmapIndirect
GetLogColorSpaceW
GetBoundsRect
EnumFontFamiliesW
CreateCompatibleBitmap
GetKerningPairsW
DeleteEnhMetaFile
ColorCorrectPalette
SetWindowOrgEx
CreateDIBPatternBrushPt
SetViewportExtEx
GetTextFaceA
CreateDIBitmap
UnrealizeObject
ExcludeClipRect
SetEnhMetaFileBits
RemoveFontResourceW
CreateICW
GetTextMetricsW
PtInRegion
DeleteMetaFile
GetWindowOrgEx
SelectPalette
GetEnhMetaFileDescriptionA
ResetDCA
GetEnhMetaFilePaletteEntries
RestoreDC
GetGraphicsMode
CreateFontIndirectW
UpdateICMRegKeyW
GetCharABCWidthsA
AngleArc
CheckColorsInGamut
GetObjectA
GetPixelFormat
RectInRegion
DeleteDC
GetCurrentObject
CreateDIBSection
CreateBitmap
GetArcDirection
GetPixel
GetBitmapDimensionEx
RectVisible
DrawEscape
RealizePalette
DeleteColorSpace
GdiFlush
GetFontLanguageInfo
SetPixel
GetCharWidthFloatA
TranslateCharsetInfo
GetDeviceCaps
CreatePatternBrush
CreateDCA
EnumMetaFile
SetPolyFillMode
GetTextAlign
GetCharABCWidthsFloatW
GetWindowExtEx
WidenPath
GdiPlayScript
GetEnhMetaFileBits
GetSystemPaletteUse
ExtTextOutW
SetBrushOrgEx
SetBitmapBits
SetArcDirection
GetCharWidthFloatW
GetEnhMetaFileW
CreateColorSpaceA
FrameRgn
ModifyWorldTransform
TextOutW
GetMetaFileA
OffsetWindowOrgEx
MoveToEx
EnumICMProfilesA
CloseEnhMetaFile
SetGraphicsMode

shell32

RealShellExecuteExA
DragQueryPoint
ShellExecuteExA
ShellExecuteA
SHInvokePrinterCommandA
SHGetSettings
SHGetDataFromIDListW
SheChangeDirExW
SheSetCurDrive
DoEnvironmentSubstW
SHGetSpecialFolderPathW
ExtractIconA
ShellHookProc
SHFreeNameMappings
SheGetDirA
DuplicateIcon
SHAppBarMessage
DoEnvironmentSubstA
SHGetPathFromIDList
SHQueryRecycleBinW
DragQueryFile
SHGetMalloc
DragQueryFileA
RealShellExecuteA
SHBrowseForFolderW
RealShellExecuteW
SHGetDataFromIDListA
SHGetSpecialFolderPathA
FreeIconList
ExtractAssociatedIconExA
SHFileOperation
ShellAboutW
CommandLineToArgvW
DragAcceptFiles
SHBrowseForFolder
SHEmptyRecycleBinA
SHFileOperationW
SHFormatDrive
ExtractIconExW
SHGetPathFromIDListA
SHAddToRecentDocs
CheckEscapesW
DragFinish
SHQueryRecycleBinA
SheChangeDirA
SHGetDiskFreeSpaceA
SHLoadInProc
SHEmptyRecycleBinW
ShellExecuteExW
SHChangeNotify
SHGetNewLinkInfo
ExtractAssociatedIconA
FindExecutableA
SHBrowseForFolderA
ExtractIconExA
ExtractIconEx
SHGetFileInfoA
RealShellExecuteExW
ExtractAssociatedIconExW
InternalExtractIconListA
InternalExtractIconListW
ShellAboutA
SHFileOperationA
SHGetFileInfo
DragQueryFileW
SHGetPathFromIDListW
DragQueryFileAorW
SHGetInstanceExplorer
ExtractIconW
FindExecutableW
SHUpdateRecycleBinIcon
SHGetDesktopFolder
ShellExecuteW
ExtractAssociatedIconW
SHGetFileInfoW
SHGetSpecialFolderLocation

advapi32

RegQueryValueExA
LogonUserA
LookupAccountNameA
CryptDestroyKey
CryptAcquireContextW
CryptEnumProviderTypesA
LogonUserW
CryptSignHashW
ReportEventW
LookupPrivilegeValueW
CryptGetHashParam
RegQueryInfoKeyA
CryptSetProviderExW
CryptSetHashParam
RegConnectRegistryA
CryptEnumProvidersW
RegEnumKeyExA
RegEnumValueW
CryptDeriveKey
DuplicateToken
CryptSignHashA
LookupPrivilegeNameW
RegConnectRegistryW
RegSetValueW
CryptSetProviderExA
LookupPrivilegeDisplayNameW
GetUserNameW
LookupPrivilegeDisplayNameA
CryptSetProvParam
InitializeSecurityDescriptor
ReportEventA
RegDeleteValueW
InitiateSystemShutdownA
RegReplaceKeyA
CryptDecrypt
InitiateSystemShutdownW
RegEnumValueA
RegSetKeySecurity
AbortSystemShutdownW
RegCloseKey
LookupAccountSidW
CryptContextAddRef

Sections

.text
Size: 140KB - Virtual size: 139KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 264KB - Virtual size: 263KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 19KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

4b1d34fb21bf2fbc9e22581c05b72339

Headers

File Characteristics

Imports

kernel32

gdi32

shell32

advapi32

Sections

.text Size: 140KB - Virtual size: 139KB

.data Size: 264KB - Virtual size: 263KB

.reloc Size: 19KB - Virtual size: 18KB

.text
Size: 140KB - Virtual size: 139KB

.data
Size: 264KB - Virtual size: 263KB

.reloc
Size: 19KB - Virtual size: 18KB