a27f11228b7c12fce6557da4f406d55b_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

a27f11228b7c12fce6557da4f406d55b_JaffaCakes118
Size

504KB
MD5

a27f11228b7c12fce6557da4f406d55b
SHA1

e62c6607244af642e62fbd220ff95ab8f5bf7d5a
SHA256

9e7c7af6833c51a346fba9007bd55f00aed8e8e60d0512ce84aae1d38d731e37
SHA512

14e8c40dfd2a8ea6a9764189e0f6b6a9cd3ab0f69a7f3167227f6e1425085718effbdb0bca7b57b7e15b5845edd3dd7fb3e62acc47320631653c80687e97e861
SSDEEP

6144:ofDdhH7Yshky2p5zrCFTYCiCA//aYyjLJtSIJOZudtJj5:ob7H7YsWJzrWTy//qZJcgHt

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a27f11228b7c12fce6557da4f406d55b_JaffaCakes118

Files

a27f11228b7c12fce6557da4f406d55b_JaffaCakes118
.exe windows:5 windows x86 arch:x86

24492cce4e000645a8dbe79cc40cee8d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WideCharToMultiByte
WriteConsoleA
WriteConsoleW
WriteFile
WritePrivateProfileStringW
WriteProcessMemory
WaitForSingleObject
lstrcpyW
lstrcpynW
lstrlenA
LoadLibraryA
WaitForMultipleObjects
VirtualProtect
UnhandledExceptionFilter
TlsSetValue
TlsGetValue
TlsFree
TlsAlloc
TerminateThread
TerminateProcess
Sleep
SizeofResource
SetUnhandledExceptionFilter
SetStdHandle
SetLastError
SetHandleCount
SetFilePointer
SetEvent
SetErrorMode
SetEnvironmentVariableW
SetEnvironmentVariableA
SetEndOfFile
SetCurrentDirectoryW
SetConsoleCursorPosition
RtlUnwind
ReadProcessMemory
ReadFile
ReadConsoleOutputCharacterA
RaiseException
QueryPerformanceFrequency
QueryPerformanceCounter
OutputDebugStringW
OpenProcess
MultiByteToWideChar
MulDiv
MoveFileW
LockResource
LocalFree
LocalAlloc
LoadResource
LoadLibraryW
LeaveCriticalSection
LCMapStringW
IsValidLocale
IsValidCodePage
IsProcessorFeaturePresent
IsDebuggerPresent
IsBadWritePtr
IsBadStringPtrA
IsBadReadPtr
InterlockedIncrement
InterlockedExchange
InterlockedDecrement
InitializeCriticalSectionAndSpinCount
InitializeCriticalSection
HeapSize
HeapSetInformation
HeapReAlloc
HeapFree
HeapCreate
HeapAlloc
GlobalUnlock
GlobalSize
GlobalLock
GlobalFree
GlobalAlloc
GetVolumeInformationW
GetVersionExW
GetVersionExA
GetUserDefaultLCID
GetTimeZoneInformation
GetTimeFormatW
GetTickCount
GetTempPathW
GetTempFileNameW
GetSystemTimeAsFileTime
GetSystemTime
GetStringTypeW
GetStdHandle
GetStartupInfoW
GetStartupInfoA
GetProcessHeap
GetProcAddress
GetOEMCP
GetModuleHandleW
GetModuleHandleA
GetModuleFileNameW
GetLocaleInfoW
GetLocaleInfoA
GetLastError
GetFullPathNameW
GetFileType
GetFileTime
GetFileAttributesW
GetExitCodeProcess
GetEnvironmentVariableW
GetEnvironmentStringsW
GetDriveTypeW
GetDateFormatW
GetCurrentThreadId
GetCurrentThread
GetCurrentProcessId
GetCurrentProcess
GetCurrentDirectoryW
GetConsoleScreenBufferInfo
GetConsoleMode
GetConsoleCP
GetCommandLineW
GetCPInfo
CloseHandle
GetACP
FreeLibrary
FreeEnvironmentStringsW
FreeConsole
FormatMessageW
FlushFileBuffers
FindResourceW
FindNextFileW
FindFirstFileW
FindClose
FillConsoleOutputCharacterW
FileTimeToSystemTime
FileTimeToLocalFileTime
ExpandEnvironmentStringsW
ExitProcess
EnumSystemLocalesA
EnterCriticalSection
EncodePointer
DeleteFileW
DeleteCriticalSection
DecodePointer
DebugBreak
CreateFileW
CopyFileW
CompareStringW
lstrcmpW

user32

RemovePropW
ScreenToClient
ScrollWindow
SendMessageW
SetCapture
SetCursor
SetCursorPos
SetFocus
SetForegroundWindow
SetMenu
SetMenuItemInfoW
SetParent
SetPropW
SetRect
SetScrollInfo
SetTimer
SetWindowLongW
SetWindowPos
SetWindowRgn
SetWindowTextW
SetWindowsHookExW
ShowCursor
ShowWindow
SystemParametersInfoW
TrackPopupMenu
TranslateAcceleratorW
TranslateMessage
UnhookWindowsHookEx
UnionRect
UnregisterClassW
UnregisterHotKey
UpdateWindow
ValidateRect
ValidateRgn
VkKeyScanW
WindowFromPoint
keybd_event
wsprintfW
IsCharUpperA
IsCharAlphaNumericW
LoadCursorFromFileW
GetLastActivePopup
GetMenuContextHelpId
IsWindowUnicode
GetKeyboardLayout
ShowCaret
GetWindowTextLengthA
IsCharAlphaA
LoadCursorFromFileA
WindowFromDC
VkKeyScanA
GetMenu
OpenIcon
IsCharAlphaW
GetListBoxInfo
IsCharUpperW
IsCharLowerA
GetThreadDesktop
IsMenu
GetKeyboardType
IsGUIThread
IsCharLowerW
OemKeyScan
PaintDesktop
GetWindowContextHelpId
IsCharAlphaNumericA
GetTopWindow
GetQueueStatus
LoadIconA
LoadCursorA
RegisterHotKey
RegisterClipboardFormatW
RegisterClassW
RedrawWindow
PtInRect
PostThreadMessageW
PostQuitMessage
PostMessageW
PeekMessageW
OffsetRect
OemToCharA
MsgWaitForMultipleObjects
MoveWindow
ModifyMenuW
MessageBoxW
MessageBoxA
MessageBeep
MapWindowPoints
MapVirtualKeyW
LoadImageW
LoadIconW
LoadCursorW
LoadBitmapW
RemoveMenu
IsZoomed
IsWindowVisible
IsWindow
IsIconic
IsDialogMessageW
IsClipboardFormatAvailable
InvalidateRect
InsertMenuW
InsertMenuItemW
InflateRect
HideCaret
GetWindowTextW
GetWindowTextLengthW
GetWindowRect
GetWindowPlacement
GetWindowLongW
GetWindowDC
GetWindow
GetUpdateRgn
GetSystemMetrics
GetSystemMenu
GetSysColorBrush
GetSysColor
GetSubMenu
GetScrollRange
GetScrollPos
GetScrollInfo
GetParent
GetMessageW
GetMessageTime
GetMessagePos
GetMenuState
GetMenuItemInfoW
GetMenuItemCount
GetKeyState
GetIconInfo
GetFocus
GetDoubleClickTime
GetDlgItem
GetDialogBaseUnits
GetDesktopWindow
GetDC
GetCursorPos
GetCursor
GetClipboardFormatNameW
GetClientRect
GetClassNameW
GetCapture
GetAsyncKeyState
GetActiveWindow
FrameRect
FlashWindow
FindWindowExW
FillRect
EnumDisplaySettingsW
EndPaint
EndDeferWindowPos
EnableWindow
EnableScrollBar
EnableMenuItem
DrawTextW
DrawStateW
DrawMenuBar
DrawIconEx
DrawFrameControl
DrawFocusRect
DrawEdge
DispatchMessageW
DestroyWindow
DestroyMenu
DestroyIcon
DestroyCursor
DestroyAcceleratorTable
DeferWindowPos
DefWindowProcW
DdeUninitialize
DdeQueryStringW
DdePostAdvise
DdeNameService
DdeInitializeW
DdeGetLastError
DdeGetData
DdeFreeStringHandle
DdeFreeDataHandle
DdeDisconnect
DdeCreateStringHandleW
DdeCreateDataHandle
DdeConnect
DdeClientTransaction
CreateWindowExW
CreatePopupMenu
CreateMenu
CreateIconIndirect
CreateDialogParamW
ReleaseDC
KillTimer
ReleaseCapture
AdjustWindowRectEx
AppendMenuW
BeginDeferWindowPos
BeginPaint
BringWindowToTop
CallNextHookEx
CallWindowProcW
ChangeDisplaySettingsW
CheckMenuItem
CheckMenuRadioItem
ChildWindowFromPoint
ChildWindowFromPointEx
ClientToScreen
CopyRect
CreateAcceleratorTableW
CreateDialogIndirectParamW
IsWindowEnabled

gdi32

ExtFloodFill
ExtSelectClipRgn
ExtTextOutW
GdiFlush
GetBkColor
GetCharABCWidthsW
GetClipBox
GetCurrentObject
GetDIBColorTable
GetDIBits
GetDeviceCaps
GetEnhMetaFileHeader
GetEnhMetaFileW
GetNearestPaletteIndex
GetObjectType
GetObjectW
GetOutlineTextMetricsW
GetPaletteEntries
GetPixel
GetRegionData
GetRgnBox
GetStockObject
GetSystemPaletteEntries
GetTextExtentExPointW
GetTextExtentPoint32W
GetTextMetricsW
GetViewportOrgEx
IntersectClipRect
LineTo
MaskBlt
MoveToEx
OffsetRgn
Pie
PlayEnhMetaFile
PolyBezier
ExtCreateRegion
Polygon
Polyline
PtInRegion
RealizePalette
RectInRegion
Rectangle
RestoreDC
RoundRect
SaveDC
SelectClipRgn
SelectObject
SelectPalette
SetAbortProc
SetBkColor
SetBkMode
SetBrushOrgEx
SetMapMode
SetPixel
SetPolyFillMode
SetROP2
SetStretchBltMode
SetTextAlign
SetTextColor
SetViewportExtEx
SetViewportOrgEx
SetWindowExtEx
SetWindowOrgEx
StartDocW
StartPage
StretchBlt
StretchDIBits
AddFontResourceA
AbortPath
AddFontResourceW
ExtCreatePen
ExcludeClipRect
EqualRgn
EnumFontFamiliesExW
EndPage
EndDoc
Ellipse
DeleteObject
DeleteEnhMetaFile
DeleteDC
CreateSolidBrush
CreateRectRgnIndirect
CreateRectRgn
CreatePen
CreatePatternBrush
CreatePalette
CreateICW
CreateHatchBrush
CreateHalftonePalette
CreateFontIndirectW
CreateEnhMetaFileW
CreateDIBitmap
CreateDIBSection
CreateDCW
CreateCompatibleDC
CreateCompatibleBitmap
CreateBitmap
CombineRgn
CloseEnhMetaFile
BitBlt
PolyPolygon
Arc

advapi32

GetUserNameW
OpenProcessToken
RegCloseKey
RegCreateKeyExW
RegDeleteKeyW
RegDeleteValueW
RegEnumKeyW
RegEnumValueW
RegOpenKeyExW
RegOpenKeyW
RegQueryValueExW
RegSetValueExW
RevertToSelf
ImpersonateLoggedOnUser

shell32

ShellExecuteW
ShellExecuteExW

ole32

RevokeDragDrop
ReleaseStgMedium
RegisterDragDrop
OleUninitialize
OleSetClipboard
OleIsCurrentClipboard
OleInitialize
OleGetClipboard
OleFlushClipboard
CoUninitialize
CoTaskMemAlloc
CoSetProxyBlanket
CoLockObjectExternal
CoInitializeEx
CoCreateInstance

comctl32

ImageList_BeginDrag
ImageList_Create
ImageList_Destroy
ImageList_DragEnter
ImageList_DragLeave
ImageList_DragMove
ImageList_Draw
ImageList_EndDrag
ImageList_GetIconSize
ImageList_GetImageCount
ImageList_Remove
ImageList_Replace
ImageList_ReplaceIcon
ImageList_SetBkColor
ImageList_Add
ImageList_SetDragCursorImage

Sections

.text
Size: 259KB - Virtual size: 258KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 173KB - Virtual size: 172KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 26KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

24492cce4e000645a8dbe79cc40cee8d

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

shell32

ole32

comctl32

Sections

.text Size: 259KB - Virtual size: 258KB

.rdata Size: 173KB - Virtual size: 172KB

.data Size: 45KB - Virtual size: 44KB

.rsrc Size: 26KB - Virtual size: 25KB

.text
Size: 259KB - Virtual size: 258KB

.rdata
Size: 173KB - Virtual size: 172KB

.data
Size: 45KB - Virtual size: 44KB

.rsrc
Size: 26KB - Virtual size: 25KB