57208aca66a6175320894fe36ac01279_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

57208aca66a6175320894fe36ac01279_JaffaCakes118
Size

4.0MB
MD5

57208aca66a6175320894fe36ac01279
SHA1

745469c850f18183e3f33d20f36d42649132bd00
SHA256

7224a8f5f123e4e1cfcb05daac8a44982caacd62f414c5268316de6749d09e8d
SHA512

68c21b5345acc9387416fca152577c80fc12de936d09d04bc9b6c2a817f910df6c02271460b4e91d81b24db2d5cfdebb2b064d9d1bdaf600aa7a8370bcc68c06
SSDEEP

49152:mVc7tkxLZiTkTz0fOc0G+t6P0rpD3s1KgXO1fmZSXCFu:mu7KXiI/cLPxKB

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
57208aca66a6175320894fe36ac01279_JaffaCakes118

Files

57208aca66a6175320894fe36ac01279_JaffaCakes118
.exe windows:4 windows x86 arch:x86

2048932fcd5effd5d9899dc800c5bb5a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_DEBUG_STRIPPED

Imports

advapi32

ChangeServiceConfig2A
CloseServiceHandle
ControlService
CreateServiceA
DeleteService
EnumServicesStatusA
OpenSCManagerA
OpenServiceA
QueryServiceStatus
RegCloseKey
RegCreateKeyExA
RegEnumKeyExA
RegEnumValueA
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA
StartServiceA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

gdi32

BitBlt
CreateCompatibleBitmap
CreateCompatibleDC
CreateFontIndirectA
CreatePenIndirect
CreateSolidBrush
DPtoLP
DeleteDC
DeleteObject
Ellipse
GetObjectA
GetPixel
GetStockObject
GetTextExtentPointA
GetTextMetricsA
GetWorldTransform
LPtoDP
LineTo
MoveToEx
Pie
Rectangle
RestoreDC
RoundRect
SaveDC
SelectObject
SetArcDirection
SetBkColor
SetBkMode
SetGraphicsMode
SetMapMode
SetTextColor
SetWindowOrgEx
SetWorldTransform
StretchBlt
TextOutA

kernel32

AddAtomA
CloseHandle
CopyFileA
CreateDirectoryA
CreateFileA
CreateMutexA
CreatePipe
CreateProcessA
CreateThread
DeleteFileA
EscapeCommFunction
ExitProcess
ExitThread
FindAtomA
FormatMessageA
FreeEnvironmentStringsA
FreeLibrary
GetAtomNameA
GetCommState
GetCommTimeouts
GetCommandLineA
GetCurrentDirectoryA
GetCurrentThreadId
GetEnvironmentStrings
GetEnvironmentVariableA
GetExitCodeProcess
GetFullPathNameA
GetLastError
GetModuleHandleA
GetProcAddress
GetProcessHeap
GetStartupInfoA
GetTempFileNameA
GetTempPathA
GetVersionExA
HeapAlloc
HeapFree
HeapReAlloc
InterlockedIncrement
LoadLibraryA
LocalFree
MultiByteToWideChar
PeekNamedPipe
PurgeComm
ReadFile
ReleaseMutex
RemoveDirectoryA
SetCommState
SetCommTimeouts
SetEndOfFile
SetEnvironmentVariableA
SetLastError
SetThreadPriority
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TerminateThread
TlsAlloc
TlsGetValue
TlsSetValue
WaitForSingleObject
WideCharToMultiByte
WriteFile

msvcrt

_ltoa
_strdup
_strlwr
_strnset
_strupr
_write
__getmainargs
__p__environ
__p__fmode
__set_app_type
_assert
_cexit
_fileno
_findclose
_findfirst
_findnext
_flushall
_gcvt
_iob
_onexit
_setmode
_splitpath
_stricmp
_vsnprintf
abort
atan
atexit
atof
atol
ceil
exit
fclose
ferror
fopen
fprintf
fread
free
fseek
ftell
fwrite
localtime
malloc
memcmp
memcpy
memmove
memset
printf
realloc
signal
sin
strchr
strcmp
strcpy
strftime
strlen
strncmp
strncpy
strrchr
strstr
strtol
time

user32

AttachThreadInput
BeginPaint
BringWindowToTop
CallNextHookEx
CallWindowProcA
ClientToScreen
CreateIconIndirect
CreatePopupMenu
CreateWindowExA
DefWindowProcA
DestroyCursor
DestroyMenu
DestroyWindow
DispatchMessageA
DrawTextA
EnableScrollBar
EnableWindow
EndMenu
EndPaint
FillRect
GetActiveWindow
GetClassInfoA
GetClassLongA
GetClientRect
GetDC
GetFocus
GetForegroundWindow
GetKeyState
GetKeyboardState
GetMenuItemCount
GetMessageA
GetScrollInfo
GetScrollPos
GetScrollRange
GetSystemMetrics
GetWindow
GetWindowLongA
GetWindowRect
GetWindowTextA
GetWindowTextLengthA
GetWindowThreadProcessId
InsertMenuItemA
InvalidateRect
IsChild
IsWindow
IsWindowEnabled
KillTimer
LoadCursorA
LoadIconA
LoadImageA
MessageBoxA
MoveWindow
PeekMessageA
PostMessageA
PostQuitMessage
RegisterClassExA
ReleaseCapture
ReleaseDC
ScreenToClient
ScrollWindowEx
SendMessageA
SetActiveWindow
SetCapture
SetCursor
SetFocus
SetForegroundWindow
SetMenuInfo
SetParent
SetScrollInfo
SetScrollPos
SetTimer
SetWindowLongA
SetWindowPos
SetWindowTextA
SetWindowsHookExA
ShowScrollBar
ShowWindow
ToAscii
TrackPopupMenuEx
TranslateMessage
UnhookWindowsHookEx
UpdateWindow

msimg32

TransparentBlt

winmm

PlaySoundA
mciSendCommandA
sndPlaySoundA
timeGetTime

comctl32

CreateToolbarEx
ImageList_Add
ImageList_AddMasked
ImageList_Create
ImageList_Destroy
InitCommonControlsEx
_TrackMouseEvent

ole32

CoCreateInstance
CoInitialize
CoUninitialize
OleCreate
OleInitialize
OleSetContainedObject
OleUninitialize

oleaut32

SafeArrayCreateVector
SafeArrayDestroy
SafeArrayPutElement
SysAllocString
SysFreeString
SysStringLen
VariantChangeType
VariantClear
VariantInit

shell32

ExtractIconA
SHGetSpecialFolderPathA
ShellExecuteA

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

ws2_32

WSAAsyncSelect
WSACleanup
WSACloseEvent
WSACreateEvent
WSAEnumNetworkEvents
WSAEventSelect
WSAGetLastError
WSAStartup
WSAWaitForMultipleEvents
accept
bind
closesocket
connect
gethostbyaddr
gethostbyname
htons
inet_addr
listen
recv
send
socket

Sections

.text
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 27KB - Virtual size: 26KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.bss
Size: - Virtual size: 26KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

2048932fcd5effd5d9899dc800c5bb5a

Headers

File Characteristics

Imports

advapi32

comdlg32

gdi32

kernel32

msvcrt

user32

msimg32

winmm

comctl32

ole32

oleaut32

shell32

version

ws2_32

Sections

.text Size: 1.5MB - Virtual size: 1.5MB

.data Size: 27KB - Virtual size: 26KB

.bss Size: - Virtual size: 26KB

.idata Size: 9KB - Virtual size: 9KB

.rsrc Size: 9KB - Virtual size: 9KB

.text
Size: 1.5MB - Virtual size: 1.5MB

.data
Size: 27KB - Virtual size: 26KB

.bss
Size: - Virtual size: 26KB

.idata
Size: 9KB - Virtual size: 9KB

.rsrc
Size: 9KB - Virtual size: 9KB