99fab94fd824737393f5184685e8edf2_JaffaCakes118

Resubmissions

25-11-2024 07:10

241125-hzdyrsvmhy 10

Sharing

Copy URL

Twitter E-mail

General

Target

99fab94fd824737393f5184685e8edf2_JaffaCakes118
Size

116KB
MD5

99fab94fd824737393f5184685e8edf2
SHA1

f7be20b4987fe6a68028f0a7d210f391905c6f8d
SHA256

2a39cf4bb8e1e82f10a73c656d8ed1d0a23e6f70aaac002f436b168c1eb91144
SHA512

c8d28d6c6935f566a71ed317193da3e1de571f4fc4a61069d06d0a5a5e632c55c8acc9156551e4e82695c38324de7fd98cddddd65d678ec7e060dc9fe84199e8
SSDEEP

3072:nuXF7B3Lb+gq7O4vySeecQ6lGxySOxT83TSMMJCDD2Emg3n:0LbdsxPWDSKTk3OK1

Score

1^/10

Malware Config

Signatures

Files

99fab94fd824737393f5184685e8edf2_JaffaCakes118
.exe windows:4 windows x86 arch:x86

b90936ec39f9ad19ac6adeb4a71e13bd

Code Sign

06:e2:bc:62:8e:28:f4:7d:b8:fd:0e:ea:7f:f3:37:50
Certificate

Issuer

CN=5r6Io0OJu3L2

Not Before

16-03-2012 07:53

Not After

31-12-2039 23:59

Subject

CN=5r6Io0OJu3L2

Extended Key Usages

ExtKeyUsageCodeSigning

6e:66:a4:12:6b:a5:80:29:e1:ee:9a:06:f4:23:62:7e:7a:03:17:02
Signer

Actual PE Digest

6e:66:a4:12:6b:a5:80:29:e1:ee:9a:06:f4:23:62:7e:7a:03:17:02

Digest Algorithm

sha1

PE Digest Matches

false

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryW
CreateFileA
GetWindowsDirectoryA
lstrlenA
lstrcpyA
VirtualAlloc

user32

GetDoubleClickTime
RegisterClassW
ChangeDisplaySettingsA
SetFocus
ValidateRect
CharPrevExA
OpenInputDesktop
AllowSetForegroundWindow
OpenIcon
GetMenuInfo
GetGUIThreadInfo
GetDlgItemTextA
DrawStateA
DefMDIChildProcA
CreateDialogParamA
LoadCursorW
FindWindowA
UnregisterClassW
DrawFrame
EnumDisplaySettingsW
EnumDisplayDevicesA
GetScrollBarInfo
CreateMenu
UnhookWindowsHookEx
GetScrollRange
IsClipboardFormatAvailable
GetWindow
DestroyAcceleratorTable
OpenWindowStationA
ClientToScreen
SetWindowPos
InsertMenuA
EnumDisplaySettingsA
ActivateKeyboardLayout
EnumDesktopsA
DrawFrameControl
ChangeClipboardChain
InvertRect
CallMsgFilter
OpenWindowStationW
GetAltTabInfo
IMPGetIMEA
OemToCharA
FindWindowExA
GetOpenClipboardWindow
PostQuitMessage
CharPrevW
GetClientRect
GetClipboardFormatNameA
MessageBoxA
PeekMessageA
GetThreadDesktop
GetUpdateRect
GetWindowRgn
GrayStringA
CreateIcon
GetLastInputInfo
GetMenuContextHelpId
RegisterClassA
TranslateMDISysAccel
CreateWindowExA
GetTitleBarInfo
BroadcastSystemMessageA
LoadKeyboardLayoutA
LockSetForegroundWindow
GetKBCodePage
CloseDesktop
IsDialogMessageW
IsWindow
UnhookWinEvent
GetMenuItemInfoW
DdeAddData
SendIMEMessageExA
CreateCursor
LoadCursorA
GetKeyboardLayoutNameA
ToUnicodeEx
GetQueueStatus
SetActiveWindow
SetCursorPos
OpenDesktopA
DdeSetQualityOfService
SetPropA
ExitWindowsEx
MapVirtualKeyExW
GetMessageW
ShowOwnedPopups
LoadIconW
CopyImage
RedrawWindow
CreateMDIWindowA
SetMenuInfo
GetClassLongW
GetCursor

comdlg32

PrintDlgExA
ChooseColorW
PrintDlgExW
ChooseColorA
GetFileTitleA
CommDlgExtendedError
GetSaveFileNameA
FindTextA
PageSetupDlgW
ChooseFontA
PageSetupDlgA
PrintDlgW
GetSaveFileNameW
ReplaceTextA
PrintDlgA
ChooseFontW
GetFileTitleW
GetOpenFileNameA
GetOpenFileNameW
ReplaceTextW
FindTextW

advapi32

RegOpenKeyExW

ole32

CreateDataCache
GetDocumentBitStg
BindMoniker
CreateGenericComposite
OleTranslateAccelerator
SNB_UserUnmarshal
HENHMETAFILE_UserUnmarshal
HBRUSH_UserFree
HWND_UserFree
StgOpenPropStg
StgCreateStorageEx
StgOpenStorageEx
HICON_UserUnmarshal
CLSIDFromProgID
CoLoadLibrary
OleCreateLinkToFile
HMETAFILE_UserFree
HPALETTE_UserFree
HDC_UserUnmarshal
OleIsRunning
StgIsStorageFile
CoTestCancel
CoGetApartmentID
CoQueryAuthenticationServices
CoEnableCallCancellation
CoGetTreatAsClass
HBRUSH_UserUnmarshal
OleCreateFromFile
CoReactivateObject
CreateObjrefMoniker
StgSetTimes
CoIsOle1Class
CoLockObjectExternal
CoGetCancelObject
GetClassFile
StgPropertyLengthAsVariant
HBRUSH_UserSize
OleDoAutoConvert
OleSetAutoConvert
CoRegisterMessageFilter
CoMarshalInterThreadInterfaceInStream
CoCreateInstance
CreatePointerMoniker
CoAllowSetForegroundWindow
CoRegisterSurrogate
HACCEL_UserMarshal
DllGetClassObjectWOW
HDC_UserFree
HDC_UserMarshal
WdtpInterfacePointer_UserFree
HMENU_UserMarshal
CoCreateFreeThreadedMarshaler
CoUnloadingWOW
CoQueryReleaseObject
CoRegisterChannelHook
WdtpInterfacePointer_UserMarshal
StgGetIFillLockBytesOnFile
IsEqualGUID
STGMEDIUM_UserMarshal
CoMarshalHresult
WdtpInterfacePointer_UserUnmarshal
CoMarshalInterface
CoFreeLibrary
CLIPFORMAT_UserUnmarshal
HWND_UserSize
ReadOleStg
STGMEDIUM_UserSize
StringFromIID
UtGetDvtd32Info
CoFileTimeNow
HMETAFILE_UserMarshal
OleNoteObjectVisible
CoGetClassVersion
GetConvertStg
WriteClassStm
HBITMAP_UserSize
CreateILockBytesOnHGlobal
MkParseDisplayName
WdtpInterfacePointer_UserSize
CoDisableCallCancellation
HWND_UserUnmarshal
WriteOleStg
CoTaskMemAlloc
CoGetCallerTID

comctl32

ImageList_GetIcon
ImageList_DrawIndirect
DestroyPropertySheetPage
ImageList_AddMasked
ImageList_SetIconSize
ImageList_DrawEx
UninitializeFlatSB
ImageList_LoadImage
ImageList_ReplaceIcon
ImageList_SetBkColor
GetMUILanguage
FlatSB_SetScrollProp
DrawStatusTextW
CreateStatusWindow
ImageList_DragLeave
ImageList_LoadImageW
ord13
InitMUILanguage
ImageList_SetFilter
FlatSB_SetScrollPos
ImageList_Destroy
PropertySheetA
FlatSB_SetScrollInfo
ImageList_Replace
ImageList_GetDragImage
ord2
ImageList_Merge
InitializeFlatSB
ImageList_Read
CreatePropertySheetPageW
ImageList_DragEnter
ord17
ImageList_GetImageRect
ImageList_SetDragCursorImage
ImageList_Create
ImageList_EndDrag
CreateToolbarEx
FlatSB_GetScrollProp
ord8
PropertySheet
ImageList_GetBkColor
FlatSB_GetScrollPos
FlatSB_SetScrollRange
CreatePropertySheetPage
CreatePropertySheetPageA
ImageList_BeginDrag
ord7
ImageList_DragShowNolock
ImageList_AddIcon
FlatSB_GetScrollInfo
ord15
ImageList_SetImageCount
DrawStatusText
ImageList_Remove
ord6
ord3

Sections

.text
Size: 95KB - Virtual size: 94KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Resubmissions

Sharing

General

Malware Config

Signatures

Files

b90936ec39f9ad19ac6adeb4a71e13bd

Code Sign

06:e2:bc:62:8e:28:f4:7d:b8:fd:0e:ea:7f:f3:37:50Certificate

Extended Key Usages

6e:66:a4:12:6b:a5:80:29:e1:ee:9a:06:f4:23:62:7e:7a:03:17:02Signer

Headers

File Characteristics

Imports

kernel32

user32

comdlg32

advapi32

ole32

comctl32

Sections

.text Size: 95KB - Virtual size: 94KB

.data Size: 8KB - Virtual size: 7KB

.rsrc Size: 9KB - Virtual size: 9KB

.reloc Size: 1KB - Virtual size: 1KB

06:e2:bc:62:8e:28:f4:7d:b8:fd:0e:ea:7f:f3:37:50
Certificate

6e:66:a4:12:6b:a5:80:29:e1:ee:9a:06:f4:23:62:7e:7a:03:17:02
Signer

.text
Size: 95KB - Virtual size: 94KB

.data
Size: 8KB - Virtual size: 7KB

.rsrc
Size: 9KB - Virtual size: 9KB

.reloc
Size: 1KB - Virtual size: 1KB