9a4cc81fdf4ff4117cf31313b0c41238_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

9a4cc81fdf4ff4117cf31313b0c41238_JaffaCakes118
Size

321KB
MD5

9a4cc81fdf4ff4117cf31313b0c41238
SHA1

626075a6ca235c4b37fcae6689a1a9ddd9197d84
SHA256

923bc7641ff951ee9d5c248e26268a97df150351e70b2b40fd7cb058fc8a7a03
SHA512

3e5c7980d2ce68af072ec05227cd43251465436f54a4324ea5eb1d263bd02a41fb9bc4aa21552acd4b66cf043afa516e83b5c864528ebe5547ba44643a7562f8
SSDEEP

6144:1Eh53xXoWFphWmpKdVZhP2+eqxRFeDR9EenzeaX9I2wD+vp6WcHj:KnyerYP2hkRQNe899wD+vExj

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
unpack001/54987171228690403848042072963010428256570551793178102301527820085900750925005634446887951863161674661854486149705485391499905265.exe

Files

9a4cc81fdf4ff4117cf31313b0c41238_JaffaCakes118
.rar
54987171228690403848042072963010428256570551793178102301527820085900750925005634446887951863161674661854486149705485391499905265.exe
.exe windows:4 windows x86 arch:x86

e3e79a9e16d4ef83bdfa9ebe566f1520

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

FlushFileBuffers
MultiByteToWideChar
GetStringTypeExA
GetVersion
GetLastError
lstrcmpiA
InterlockedExchange
GetEnvironmentVariableA
CompareStringW
WideCharToMultiByte
CompareStringA
GetFullPathNameA
GetStartupInfoA
MoveFileExA
GlobalUnlock
QueueUserAPC
DeleteFileA
GetCPInfo
SleepEx
GlobalAddAtomA
SetEvent
FindFirstFileA
CloseHandle
GetProcessWorkingSetSize
GetLogicalDrives
WaitForMultipleObjects
lstrcpyA
CreatePipe
GetCurrentThreadId
CreateFileA
GetWindowsDirectoryA
FreeLibrary
GlobalFree
GetConsoleWindow
WaitForSingleObject
GlobalGetAtomNameA
LocalFree
SetEnvironmentVariableA
WriteConsoleW
Sleep
GlobalAlloc
GetFileAttributesW
CreateEventA
GetConsoleOutputCP
WriteConsoleA
LoadLibraryA
GetWindowsDirectoryW
VirtualAlloc
LocalAlloc
GetFirmwareEnvironmentVariableA
GlobalDeleteAtom
GlobalLock
CreateProcessA
GetCurrentProcess
SetLastError
GetCurrentThread
ReleaseMutex
CreateMutexA
SizeofResource
LockResource
LoadResource
FindResourceA
GetVersionExA
GetProcAddress
GetModuleHandleA
lstrcmpW
GlobalFindAtomA
FreeResource
MulDiv
FormatMessageA
GetCurrentProcessId
GetFileAttributesA
SetFileTime
GetFileTime
GetTempFileNameA
GetDiskFreeSpaceA
GetModuleFileNameA
lstrcmpA
GetLocaleInfoA
EnumResourceLanguagesA
ConvertDefaultLocale
GetModuleFileNameW
InterlockedDecrement
GetTickCount
LeaveCriticalSection
TlsGetValue
EnterCriticalSection
GlobalReAlloc
GlobalHandle
InitializeCriticalSection
TlsAlloc
TlsSetValue
LocalReAlloc
DeleteCriticalSection
TlsFree
GlobalFlags
InterlockedIncrement
GetOEMCP
MoveFileA
GetThreadLocale
ReadFile
WriteFile
SetFilePointer
lstrlenA
LockFile
UnlockFile
SetEndOfFile
GetFileSize
DuplicateHandle
FindClose
GetVolumeInformationA
GetShortPathNameA
FileTimeToSystemTime
FileTimeToLocalFileTime
LocalFileTimeToFileTime
SystemTimeToFileTime
GetPrivateProfileIntA
WritePrivateProfileStringA
GetPrivateProfileStringA
GetCurrentDirectoryA
SetErrorMode
HeapAlloc
HeapReAlloc
HeapFree
VirtualProtect
GetSystemInfo
VirtualQuery
ExitProcess
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
ExitThread
CreateThread
GetCommandLineA
GetProcessHeap
RtlUnwind
RaiseException
HeapSize
VirtualFree
HeapDestroy
HeapCreate
GetStdHandle
GetACP
IsValidCodePage
LCMapStringA
LCMapStringW
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
SetHandleCount
GetFileType
QueryPerformanceCounter
GetSystemTimeAsFileTime
GetTimeZoneInformation
GetStringTypeA
GetStringTypeW
GetConsoleCP
GetConsoleMode
SetStdHandle

user32

SetWindowTextA
MoveWindow
IsWindowEnabled
DefFrameProcA
DefMDIChildProcA
DrawMenuBar
GetActiveWindow
BringWindowToTop
TranslateMDISysAccel
TranslateAcceleratorA
RedrawWindow
RemoveMenu
InsertMenuA
AppendMenuA
GetMenuStringA
GetMenuState
GetDesktopWindow
SetMenu
SetRectEmpty
CreatePopupMenu
InsertMenuItemA
LoadAcceleratorsA
ReleaseCapture
SetCursor
GetWindowThreadProcessId
DestroyMenu
LoadMenuA
ReuseDDElParam
CheckMenuItem
EnableMenuItem
ModifyMenuA
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
IsRectEmpty
DeleteMenu
GetSystemMenu
SetParent
IsZoomed
TabbedTextOutA
DrawTextExA
GrayStringA
ClientToScreen
GetWindowDC
DestroyCursor
ValidateRect
MapDialogRect
SetWindowContextHelpId
ShowOwnedPopups
EndDialog
GetNextDlgTabItem
CreateDialogIndirectParamA
RegisterClipboardFormatA
InflateRect
GetMenuItemInfoA
SetTimer
KillTimer
WindowFromPoint
LockWindowUpdate
FindWindowA
DrawIcon
SetWindowRgn
CopyAcceleratorTableA
CreateMenu
PostThreadMessageA
CharNextA
InvalidateRgn
GetNextDlgGroupItem
MessageBeep
UnregisterClassA
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
MapWindowPoints
ScrollWindow
GetClassLongA
GetKeyState
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
SetForegroundWindow
ShowScrollBar
IsWindowVisible
GetClientRect
GetMenu
GetSubMenu
GetMenuItemID
GetMenuItemCount
MessageBoxA
GetClassInfoA
RegisterClassA
GetSysColor
AdjustWindowRectEx
GetParent
ScreenToClient
EqualRect
DeferWindowPos
CopyRect
GetScrollInfo
SetScrollInfo
PtInRect
CallWindowProcA
GetWindowLongA
SetWindowLongA
IntersectRect
IsIconic
GetWindowPlacement
GetWindowRect
GetWindow
GetDCEx
GetClassNameA
SetPropA
GetPropA
RemovePropA
CharUpperA
EnableWindow
SetRect
OffsetRect
InvalidateRect
CharLowerBuffA
LoadCursorA
GetDlgItem
SetActiveWindow
GetClassInfoExA
IsDlgButtonChecked
FillRect
GetFocus
TrackPopupMenu
RegisterWindowMessageA
SendDlgItemMessageA
WinHelpA
IsChild
GetCapture
SetWindowsHookExA
GetTabbedTextExtentA
CallNextHookEx
UpdateWindow
GetWindowTextA
GetForegroundWindow
GetLastActivePopup
BeginDeferWindowPos
EndDeferWindowPos
GetIconInfo
GetAncestor
SetWindowPos
GetSysColorBrush
GetSystemMetrics
UnpackDDElParam
SetFocus
GetCursorPos
PostMessageA
GetDC
ShowWindow
CopyImage
DefWindowProcA
LoadImageA
DrawFrameControl
SendMessageA
SetCapture
GetKeyboardType
SystemParametersInfoA
SetDlgItemTextA
DestroyIcon
PackDDElParam
PeekMessageA
DispatchMessageA
PostQuitMessage
BeginPaint
IsDialogMessageA
TranslateMessage
EndPaint
GetDlgCtrlID
LoadIconA
FreeDDElParam
GetTopWindow
DestroyWindow
GetWindowTextLengthA
SetLayeredWindowAttributes
GetMessageA
IsWindow
DrawTextA
DialogBoxIndirectParamA
CreateWindowExA
ReleaseDC
AttachThreadInput
LoadBitmapA
GetDlgItemTextA
CreateDialogParamA

gdi32

SetMapMode
ExcludeClipRect
IntersectClipRect
LineTo
MoveToEx
SetTextAlign
GetViewportExtEx
GetWindowExtEx
BitBlt
GetPixel
PtVisible
RectVisible
ExtTextOutA
Escape
SetViewportOrgEx
OffsetViewportOrgEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
GetCurrentPositionEx
RestoreDC
ExtSelectClipRgn
CreatePatternBrush
GetStockObject
CreatePen
GetViewportOrgEx
PatBlt
CreateFontIndirectA
SetROP2
SetPolyFillMode
SetViewportExtEx
SetBkMode
CreateRectRgnIndirect
SetRectRgn
GetMapMode
GetBkColor
LPtoDP
GetNearestColor
SaveDC
EndDoc
AbortDoc
SetAbortProc
FrameRgn
SelectClipRgn
SetPixelFormat
CombineRgn
CreateEllipticRgn
StartDocA
SetStretchBltMode
SetWindowOrgEx
EndPage
StartPage
DPtoLP
StretchDIBits
CreateFontA
GetCharWidthA
CreateBitmap
CreateDCA
GetObjectA
SetBkColor
GetClipBox
GetRgnBox
GetWindowOrgEx
GetTextFaceA
GetTextAlign
GetTextColor
GetStretchBltMode
GetROP2
GetPolyFillMode
GetBkMode
RoundRect
Ellipse
Rectangle
GetDeviceCaps
TextOutA
CreateCompatibleDC
DeleteDC
GetCurrentObject
CreateRectRgn
CreateCompatibleBitmap
DeleteObject
GetTextExtentPoint32A
CreateSolidBrush
GetTextMetricsA
SelectObject
SetTextColor

advapi32

RegCloseKey
RegOpenKeyA
SetFileSecurityA
GetFileSecurityA
RegQueryValueExA
RegOpenKeyExA
RegDeleteKeyA
RegEnumKeyA
RegQueryValueA
RegCreateKeyExA
RegSetValueExA
RegDeleteValueA
RegCreateKeyA
GetTokenInformation
OpenProcessToken
RegSetValueA

shell32

SHParseDisplayName
DragFinish
ShellExecuteA
SHGetFileInfoA
ExtractIconA
DragQueryFileA

ole32

OleIsCurrentClipboard
OleFlushClipboard
CoRegisterMessageFilter
StgCreateDocfileOnILockBytes
CLSIDFromProgID
CoTaskMemAlloc
CoTaskMemFree
CoRevokeClassObject
StgOpenStorageOnILockBytes
CoGetClassObject
OleDestroyMenuDescriptor
OleCreateMenuDescriptor
IsAccelerator
StgOpenStorage
CreateILockBytesOnHGlobal
OleTranslateAccelerator
OleInitialize
CoFreeUnusedLibraries
OleUninitialize
CLSIDFromString

oleaut32

SysAllocString
OleCreateFontIndirect
SystemTimeToVariantTime
VariantTimeToSystemTime
SafeArrayDestroy
VarUI1FromR8
VarUI1FromCy
VarUI1FromR4
VariantCopy
SysAllocStringByteLen
SysFreeString
SysStringLen
SysAllocStringLen
VariantInit
VariantChangeType
VariantClear

comctl32

ImageList_ReplaceIcon
ImageList_Create
InitCommonControlsEx

shlwapi

PathFindExtensionA
PathFindFileNameA
PathStripToRootA
PathIsUNCA
PathAppendW

oledlg

ord8

wininet

FtpGetCurrentDirectoryW

ws2_32

WSAStartup
WSAGetLastError
WSACleanup
WSASocketA
htonl

netapi32

NetShareGetInfo

winmm

mmioAscend

pdh

PdhCollectQueryData

rpcrt4

UuidCreate
RpcStringFreeA
UuidToStringA

secur32

LsaGetLogonSessionData

wtsapi32

WTSQuerySessionInformationA

winspool.drv

GetJobA
DocumentPropertiesA
OpenPrinterA
ClosePrinter

comdlg32

GetFileTitleA

Sections

.text
Size: 360KB - Virtual size: 357KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 108KB - Virtual size: 107KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 180KB - Virtual size: 178KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e3e79a9e16d4ef83bdfa9ebe566f1520

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

oleaut32

comctl32

shlwapi

oledlg

wininet

ws2_32

netapi32

winmm

pdh

rpcrt4

secur32

wtsapi32

winspool.drv

comdlg32

Sections

.text Size: 360KB - Virtual size: 357KB

.rdata Size: 108KB - Virtual size: 107KB

.data Size: 16KB - Virtual size: 27KB

.rsrc Size: 180KB - Virtual size: 178KB

.text
Size: 360KB - Virtual size: 357KB

.rdata
Size: 108KB - Virtual size: 107KB

.data
Size: 16KB - Virtual size: 27KB

.rsrc
Size: 180KB - Virtual size: 178KB