95dc2e2c8676bc2c9b36750117e5ab47_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

95dc2e2c8676bc2c9b36750117e5ab47_JaffaCakes118
Size

361KB
MD5

95dc2e2c8676bc2c9b36750117e5ab47
SHA1

ae8dd8cc2163d3ab60b71b794941d9e4e008192a
SHA256

283b14f2fd94acf8c512609aec8e7de83f68c8adad7378214209722b2eef2fa0
SHA512

e7d7c9bdcd90a6e2735d7e691a1259b91b36e5586cb6c62d892de22acefa6f37a5b42c27149966887a1c602f13ac7493f09a4b5f5d0d14b9a8c40938943d360a
SSDEEP

6144:sOcCUShK6X1mxSCoA9x7X6WBWEKXa/QIoA:SyYY8B4aoi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
95dc2e2c8676bc2c9b36750117e5ab47_JaffaCakes118

Files

95dc2e2c8676bc2c9b36750117e5ab47_JaffaCakes118
.exe windows:5 windows x86 arch:x86

24383fdaa4a373861cd2bf4ce3387901

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

SetErrorMode
SetEvent
SetFileAttributesA
SetFilePointer
SetHandleCount
SetHandleInformation
SetLastError
SetPriorityClass
SetStdHandle
SetThreadPriority
SetUnhandledExceptionFilter
Sleep
TerminateProcess
TerminateThread
TlsAlloc
SetEnvironmentVariableW
TlsGetValue
TlsSetValue
UnhandledExceptionFilter
UpdateResourceW
VirtualAlloc
VirtualAllocEx
VirtualFree
VirtualProtect
VirtualQuery
WaitForSingleObject
WideCharToMultiByte
WriteFile
WritePrivateProfileStringA
SetEnvironmentVariableA
SetEndOfFile
SetCurrentDirectoryW
SetCurrentDirectoryA
SetConsoleCursor
RtlUnwind
RtlMoveMemory
ResumeThread
RemoveDirectoryW
RemoveDirectoryA
ReleaseMutex
ReadFile
RaiseException
QueryPerformanceFrequency
QueryPerformanceCounter
PeekNamedPipe
PeekConsoleInputA
OutputDebugStringA
OpenProcess
MultiByteToWideChar
MoveFileW
MoveFileA
LocalShrink
LocalFree
LocalAlloc
LoadLibraryW
LoadLibraryA
LeaveCriticalSection
LCMapStringW
LCMapStringA
IsValidLocale
IsValidCodePage
IsDebuggerPresent
IsBadWritePtr
IsBadReadPtr
IsBadCodePtr
InterlockedIncrement
InterlockedExchange
InterlockedDecrement
InterlockedCompareExchange
InitializeCriticalSection
HeapSize
HeapReAlloc
HeapLock
HeapFree
HeapDestroy
HeapCreate
HeapAlloc
GlobalUnlock
GlobalSize
GlobalLock
GlobalAlloc
GetWindowsDirectoryW
GetVolumeInformationW
GetVolumeInformationA
GetVersionExA
GetUserDefaultLangID
GetUserDefaultLCID
GetTimeZoneInformation
GetTimeFormatW
GetTimeFormatA
GetTickCount
GetSystemWindowsDirectoryA
GetSystemTimeAsFileTime
GetSystemTime
GetSystemInfo
GetSystemDirectoryA
GetStringTypeW
GetStringTypeA
GetStdHandle
GetStartupInfoA
CancelIo
GetProfileIntA
GetProcessShutdownParameters
GetProcAddress
GetPrivateProfileStringA
GetOverlappedResult
GetOEMCP
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameW
GetModuleFileNameA
GetLogicalDrives
GetLocaleInfoW
GetLocaleInfoA
GetLocalTime
GetLastError
GetFullPathNameW
GetFullPathNameA
GetFileType
GetFileSize
GetFileInformationByHandle
GetFileAttributesW
GetFileAttributesA
GetEnvironmentVariableA
GetEnvironmentStringsW
GetEnvironmentStrings
GetDriveTypeW
GetDriveTypeA
GetDiskFreeSpaceW
GetDiskFreeSpaceExW
GetDiskFreeSpaceExA
GetDefaultCommConfigW
GetDateFormatW
GetDateFormatA
GetCurrentThreadId
GetCurrentThread
GetCurrentProcessId
GetCurrentProcess
GetCurrentDirectoryW
GetCurrentDirectoryA
GetConsoleTitleA
GetCommandLineA
GetCommProperties
GetCPInfo
GetACP
FreeUserPhysicalPages
FreeLibrary
FreeEnvironmentStringsW
FreeEnvironmentStringsA
FormatMessageW
FormatMessageA
FlushFileBuffers
FindNextFileW
FindNextFileA
FindFirstFileW
FindFirstFileA
FindClose
FileTimeToSystemTime
FileTimeToLocalFileTime
ExitThread
ExitProcess
EnumSystemLocalesA
EnumDateFormatsExW
EnterCriticalSection
DeleteVolumeMountPointW
DeleteFileW
DeleteFileA
DeleteCriticalSection
DefineDosDeviceW
CreateThread
CreateTapePartition
CreateProcessW
CreateProcessA
CreatePipe
CreateMutexW
CreateMutexA
CreateFileW
CreateFileMappingA
CreateFileA
CreateEventA
CreateDirectoryW
CreateDirectoryA
CreateConsoleScreenBuffer
CompareStringW
CompareStringA
CompareFileTime
CloseHandle
TlsFree

user32

SetClipboardViewer
SetClipboardData
SetCaretPos
SetCapture
SendMessageW
SendMessageA
ScrollWindowEx
ScreenToClient
ReleaseDC
ReleaseCapture
RegisterWindowMessageW
RegisterWindowMessageA
RegisterClipboardFormatA
RegisterClassW
RegisterClassA
PostThreadMessageW
PostThreadMessageA
PostMessageW
PostMessageA
PeekMessageW
PeekMessageA
OpenClipboard
MsgWaitForMultipleObjects
MoveWindow
MessageBoxA
MessageBeep
MapVirtualKeyW
LoadKeyboardLayoutW
LoadIconW
LoadIconA
LoadCursorW
LoadCursorA
KillTimer
IsZoomed
IsWindowVisible
IsWindowEnabled
IsRectEmpty
IsIconic
IsChild
InvalidateRect
HideCaret
GetWindowRgn
GetWindowRect
GetWindowPlacement
GetWindowLongA
GetWindowDC
GetUpdateRgn
GetUpdateRect
SetCursor
GetSystemMenu
GetSysColor
GetParent
GetMessageW
GetMessageA
GetKeyboardLayoutNameA
GetKeyState
GetFocus
GetDoubleClickTime
GetDlgItemInt
GetDesktopWindow
GetDC
GetCursorPos
GetClipboardData
GetClientRect
GetClassLongA
GetCaretBlinkTime
GetActiveWindow
FindWindowExW
ExitWindowsEx
EnumClipboardFormats
EndPaint
EnableMenuItem
EmptyClipboard
DrawIconEx
DrawFocusRect
DlgDirSelectComboBoxExA
DispatchMessageW
DispatchMessageA
DestroyWindow
DestroyIcon
DestroyCursor
DefWindowProcW
DefWindowProcA
DdePostAdvise
DdeGetData
CreateWindowExW
CreateWindowExA
CreateIconIndirect
SetDebugErrorLevel
SetFocus
SetForegroundWindow
SetParent
SetRect
SetTimer
SetWindowLongA
SetWindowPos
SetWindowRgn
SetWindowTextA
SetWindowTextW
SetWindowsHookExA
ShowWindow
SystemParametersInfoA
SystemParametersInfoW
TrackPopupMenuEx
TranslateMessage
UnhookWindowsHookEx
UnregisterClassA
UnregisterClassW
UpdateWindow
ValidateRect
ValidateRgn
WindowFromPoint
wsprintfA
DrawMenuBar
GetClipboardViewer
BeginPaint
BroadcastSystemMessageW
CallNextHookEx
ChangeClipboardChain
ClientToScreen
CloseClipboard
CloseWindow
CopyIcon
CreateCaret
CreateCursor
IsClipboardFormatAvailable
GetSystemMetrics
MapVirtualKeyA

gdi32

CreateCompatibleDC
CreateCompatibleBitmap
CreateBitmap
CopyMetaFileW
CombineRgn
Chord
BitBlt
BeginPath
Arc
AddFontMemResourceEx
EngFreeModule
EngGetDriverName
EngMarkBandingSurface
EngStretchBlt
EngTransparentBlt
EnumFontFamiliesExA
EnumFontFamiliesExW
EnumFontsA
EnumICMProfilesW
EqualRgn
ExtCreatePen
ExtCreateRegion
ExtTextOutW
FONTOBJ_pvTrueTypeFontFile
FillPath
FlattenPath
GdiEntry11
GdiEntry13
GdiFlush
GdiQueryTable
GetBkColor
GetCharABCWidthsA
GetCharABCWidthsFloatW
GetCharABCWidthsW
GetCharWidthFloatA
GetClipRgn
GetCurrentPositionEx
GetDIBits
GetDeviceCaps
GetFontData
GetGlyphIndicesW
GetGlyphOutlineA
GetGlyphOutlineW
GetMetaFileA
GetNearestPaletteIndex
GetObjectA
GetObjectW
GetOutlineTextMetricsA
GetPaletteEntries
GetRandomRgn
GetRegionData
GetRgnBox
GetStockObject
CreateDIBSection
GetTextCharsetInfo
GetTextExtentExPointI
GetTextExtentPoint32W
GetTextMetricsA
GetTextMetricsW
GetWindowExtEx
LineTo
MaskBlt
ModifyWorldTransform
MoveToEx
OffsetRgn
PaintRgn
PatBlt
Pie
PlayEnhMetaFileRecord
PolyBezier
Polygon
Polyline
PtInRegion
RealizePalette
RectInRegion
Rectangle
ResizePalette
RoundRect
ScaleViewportExtEx
SelectClipRgn
SelectObject
SelectPalette
SetBkColor
SetBkMode
SetBrushOrgEx
SetDCBrushColor
SetDIBitsToDevice
SetGraphicsMode
SetMetaRgn
SetPaletteEntries
SetPixelV
SetPolyFillMode
SetROP2
SetStretchBltMode
SetSystemPaletteUse
SetTextAlign
SetTextColor
SetWindowOrgEx
SetWorldTransform
StretchBlt
StretchDIBits
StrokePath
TextOutA
TextOutW
UnrealizeObject
WidenPath
cGetTTFFromFOT
CreateEllipticRgn
CreateEnhMetaFileW
CreateFontA
CreateFontIndirectW
CreateFontIndirectA
CreateHalftonePalette
CreateHatchBrush
CreatePalette
CreatePatternBrush
CreatePen
CreatePolygonRgn
CreateRectRgn
CreateSolidBrush
DeleteDC
DeleteObject
Ellipse
EnableEUDC
EndPath
GetSystemPaletteEntries
EngFillPath

comdlg32

GetSaveFileNameA
GetOpenFileNameW
GetOpenFileNameA
GetSaveFileNameW

advapi32

RegSetValueExW
RegSetValueExA
RegQueryValueExW
RegQueryValueExA
RegOpenKeyExW
RegOpenKeyExA
RegFlushKey
RegCreateKeyExW
RegCreateKeyExA
RegCloseKey
OpenProcessToken
LookupPrivilegeValueA
AdjustTokenPrivileges
RegOpenKeyA

shell32

SHGetFolderPathA
ShellExecuteW
DragAcceptFiles
DragQueryFileAorW
ExtractIconA
ExtractIconExA
FindExecutableA
SHAddToRecentDocs
SHBrowseForFolderA
SHEmptyRecycleBinW
SHFileOperationW
SHGetDataFromIDListW
SHGetDiskFreeSpaceExW
Shell_NotifyIcon
SHGetIconOverlayIndexA
SHGetIconOverlayIndexW
SHGetMalloc
SHGetPathFromIDList
SHGetPathFromIDListA
SHGetPathFromIDListW
SHGetSpecialFolderLocation
SHIsFileAvailableOffline
SHLoadInProc
SHQueryRecycleBinA
ShellExecuteExA
ShellExecuteExW

ole32

StringFromGUID2
RevokeDragDrop
ReleaseStgMedium
RegisterDragDrop
OleUninitialize
OleInitialize
DoDragDrop
CoUninitialize
CoLockObjectExternal
CoInitialize
CoGetMalloc
CoCreateInstance
CoCreateGuid

shlwapi

StrCmpNIA
StrRChrIA

imm32

ImmAssociateContext
ImmGetCompositionStringA
ImmGetCompositionStringW
ImmGetContext
ImmNotifyIME
ImmReleaseContext
ImmSetCandidateWindow
ImmSetCompositionFontA
ImmSetCompositionFontW
ImmSetCompositionWindow

Sections

.text
Size: 213KB - Virtual size: 213KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 39KB - Virtual size: 39KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 62KB - Virtual size: 61KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

24383fdaa4a373861cd2bf4ce3387901

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

ole32

shlwapi

imm32

Sections

.text Size: 213KB - Virtual size: 213KB

.rdata Size: 45KB - Virtual size: 44KB

.data Size: 39KB - Virtual size: 39KB

.rsrc Size: 62KB - Virtual size: 61KB

.text
Size: 213KB - Virtual size: 213KB

.rdata
Size: 45KB - Virtual size: 44KB

.data
Size: 39KB - Virtual size: 39KB

.rsrc
Size: 62KB - Virtual size: 61KB