d3a837038b20a41fecb93e893dfdc1d7_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

d3a837038b20a41fecb93e893dfdc1d7_JaffaCakes118
Size

760KB
MD5

d3a837038b20a41fecb93e893dfdc1d7
SHA1

a49ac02ddbfcc1d90c402dd9fdb338aa14e7db6c
SHA256

dd3b410927a1c9ee86cc61e70378c37f6cb9285f1da01ab0a07a182bfd4906aa
SHA512

942367890da8b62e06e3db04cddeeef803ce1e4dc7a2e3cacf8a7197b92c3c76c5420972d7fdd60652ac99142ded6043232520613572a7d67eca3f6a9c8ed447
SSDEEP

12288:3zgiXyC0EB3NGJwU888888888888888888888H0u7Kd6jIq+5ZWZXdSisd:UiXyC0m3Kj888888888888888888888u

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d3a837038b20a41fecb93e893dfdc1d7_JaffaCakes118

Files

d3a837038b20a41fecb93e893dfdc1d7_JaffaCakes118
.exe windows:4 windows x86 arch:x86

878b3c97f2cf4cbb19fae7bf08b6bf6d

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ws2_32

gethostname
gethostbyaddr
inet_ntoa
ntohl
WSACleanup
gethostbyname
inet_addr
WSAStartup

snmpapi

SnmpUtilMemFree
SnmpUtilMemAlloc
SnmpUtilOidFree
SnmpUtilOidCpy

kernel32

GetFullPathNameA
GetStringTypeExA
GetThreadLocale
GetShortPathNameA
GetFileAttributesA
GetFileSize
GetFileTime
LocalFileTimeToFileTime
SystemTimeToFileTime
SetFileTime
SetFileAttributesA
FileTimeToSystemTime
FileTimeToLocalFileTime
RtlUnwind
HeapAlloc
GetStartupInfoA
GetCommandLineA
ExitProcess
CreateThread
ExitThread
HeapFree
RaiseException
TerminateProcess
HeapReAlloc
HeapSize
GetACP
GetTimeZoneInformation
GetSystemTime
GetLocalTime
FatalAppExitA
Sleep
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
IsBadWritePtr
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetStdHandle
GetFileType
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadCodePtr
IsValidLocale
IsValidCodePage
GetLocaleInfoA
EnumSystemLocalesA
GetUserDefaultLCID
GetVersionExA
SetConsoleCtrlHandler
SetStdHandle
GetLocaleInfoW
CompareStringA
CompareStringW
SetEnvironmentVariableA
FindClose
DeleteFileA
MoveFileA
GetProfileStringA
SetEndOfFile
SetEvent
WaitForSingleObject
GetTickCount
GetProcAddress
LoadLibraryA
lstrcpynA
FreeLibrary
InitializeCriticalSection
DeleteCriticalSection
EnterCriticalSection
LeaveCriticalSection
CreateEventA
GetCurrentProcess
LoadLibraryW
ResetEvent
GetExitCodeThread
CloseHandle
ResumeThread
SetThreadPriority
GetCurrentThreadId
SuspendThread
GetVersion
GlobalAddAtomA
GlobalGetAtomNameA
GlobalUnlock
GlobalLock
lstrlenA
lstrcpyA
lstrcatA
GetModuleHandleA
GlobalDeleteAtom
GlobalFindAtomA
lstrcmpiA
LockResource
LoadResource
FindResourceA
InterlockedIncrement
InterlockedDecrement
WideCharToMultiByte
MultiByteToWideChar
GetModuleFileNameA
GlobalFree
lstrcmpA
GetVolumeInformationA
GetCurrentThread
GlobalAlloc
GetProcessVersion
MulDiv
GlobalFlags
LocalAlloc
LocalFree
TlsAlloc
GlobalHandle
TlsFree
GlobalReAlloc
TlsSetValue
LocalReAlloc
TlsGetValue
SetLastError
GetLastError
GetCPInfo
GetOEMCP
FormatMessageA
SizeofResource
GetPrivateProfileIntA
GetPrivateProfileStringA
WritePrivateProfileStringA
GetCurrentDirectoryA
SetErrorMode
DuplicateHandle
CreateFileA
ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
FindFirstFileA

user32

MessageBoxA
GetTopWindow
SetScrollPos
IsChild
SetScrollRange
GetScrollRange
ShowScrollBar
SetScrollInfo
GetScrollInfo
ScrollWindow
EndDeferWindowPos
BeginDeferWindowPos
GetClientRect
DeferWindowPos
ScreenToClient
AdjustWindowRectEx
GetSysColor
MapWindowPoints
SendDlgItemMessageA
CheckDlgButton
CheckRadioButton
GetDlgItemInt
GetDlgItemTextA
SetDlgItemInt
SetDlgItemTextA
IsDlgButtonChecked
ScrollWindowEx
IsDialogMessageA
SetWindowTextA
MoveWindow
ReleaseDC
GetDC
PtInRect
IsZoomed
CharToOemA
OemToCharA
SetParent
IsRectEmpty
AppendMenuA
DeleteMenu
GetSystemMenu
SetTimer
KillTimer
WindowFromPoint
ClientToScreen
SetRect
CreateDialogIndirectParamA
EndDialog
wvsprintfA
PostQuitMessage
ShowOwnedPopups
LoadCursorA
GetSysColorBrush
GetClassNameA
LoadStringA
GetWindowDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
InflateRect
SetCapture
InvertRect
FillRect
GetDCEx
LockWindowUpdate
GetDialogBaseUnits
InsertMenuA
GetMenuStringA
CharUpperA
RegisterClassA
TrackPopupMenu
SetWindowPlacement
GetWindowTextLengthA
GetWindowTextA
DefWindowProcA
DestroyWindow
CreateWindowExA
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetForegroundWindow
SetForegroundWindow
OffsetRect
IntersectRect
SystemParametersInfoA
GetWindowPlacement
GetWindowRect
GetSystemMetrics
GetLastActivePopup
BringWindowToTop
IsIconic
EqualRect
CopyRect
GetDlgItem
InvalidateRect
SetWindowLongA
SetWindowPos
GetDlgCtrlID
UpdateWindow
GetMenuItemCount
GetSubMenu
GetMenuItemID
ReuseDDElParam
SetActiveWindow
WinHelpA
SetMenu
GetMenu
LoadIconA
GetClassInfoA
LoadMenuA
DestroyMenu
SetFocus
ShowWindow
GetWindowLongA
GetDesktopWindow
GetWindow
IsWindowEnabled
SetCursor
GetCapture
ReleaseCapture
TranslateAcceleratorA
LoadAcceleratorsA
SetRectEmpty
RegisterWindowMessageA
GetMessageA
TranslateMessage
DispatchMessageA
GetActiveWindow
GetKeyState
CallNextHookEx
ValidateRect
IsWindowVisible
PeekMessageA
GetCursorPos
SetWindowsHookExA
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
GetFocus
GetParent
GetNextDlgTabItem
IsWindow
EnableWindow
wsprintfA
SendMessageA
PostMessageA
GetScrollPos
IsWindowUnicode
CharNextA
DefDlgProcA
DrawFocusRect
ExcludeUpdateRgn
ShowCaret
HideCaret
UnregisterClassA
UnpackDDElParam

gdi32

GetTextExtentPointA
CreateDCA
DPtoLP
CreateRectRgnIndirect
CombineRgn
SetRectRgn
PatBlt
GetMapMode
BitBlt
CreateFontIndirectA
Escape
ExtTextOutA
TextOutA
RectVisible
PtVisible
CreateDIBPatternBrushPt
CreatePatternBrush
CreateHatchBrush
CreateSolidBrush
ExtCreatePen
CreatePen
GetWindowExtEx
GetViewportExtEx
PlayMetaFile
EnumMetaFile
GetObjectType
PlayMetaFileRecord
ExtSelectClipRgn
SelectClipPath
CreateRectRgn
GetClipRgn
PolyBezierTo
SetColorAdjustment
PolylineTo
PolyDraw
SetArcDirection
ArcTo
GetCurrentPositionEx
SetMapperFlags
SetTextCharacterExtra
SetTextJustification
SetTextAlign
LineTo
MoveToEx
OffsetClipRgn
IntersectClipRect
ExcludeClipRect
SelectClipRgn
ScaleWindowExtEx
SetWindowExtEx
OffsetWindowOrgEx
SetWindowOrgEx
ScaleViewportExtEx
SetViewportExtEx
OffsetViewportOrgEx
SetViewportOrgEx
SetMapMode
SetStretchBltMode
SetROP2
SetPolyFillMode
SetBkMode
SelectPalette
GetStockObject
RestoreDC
SaveDC
StartDocA
GetDeviceCaps
GetTextMetricsA
GetTextExtentPoint32A
CreateFontA
GetCharWidthA
DeleteObject
CreateCompatibleBitmap
CreateCompatibleDC
SelectObject
StretchDIBits
DeleteDC
GetObjectA
SetBkColor
SetTextColor
GetClipBox
GetDCOrgEx
CreateBitmap
CreateDIBitmap

comdlg32

PrintDlgA
GetOpenFileNameA
GetSaveFileNameA
GetFileTitleA
CommDlgExtendedError
PageSetupDlgA

winspool.drv

OpenPrinterA
DocumentPropertiesA
ClosePrinter

advapi32

RegCreateKeyExA
RegCloseKey
RegOpenKeyExA
RegQueryValueExA
RegSetValueExA
RegDeleteValueA
RegDeleteKeyA
RegOpenKeyA

shell32

DragAcceptFiles
DragQueryFileA
SHGetFileInfoA
DragFinish

comctl32

ord17

Sections

.text
Size: 316KB - Virtual size: 313KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 44KB - Virtual size: 40KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 20KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 16KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 336KB - Virtual size: 332KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 24KB - Virtual size: 21KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

878b3c97f2cf4cbb19fae7bf08b6bf6d

Headers

File Characteristics

Imports

ws2_32

snmpapi

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

Sections

.text Size: 316KB - Virtual size: 313KB

.rdata Size: 44KB - Virtual size: 40KB

.data Size: 20KB - Virtual size: 36KB

.idata Size: 16KB - Virtual size: 13KB

.rsrc Size: 336KB - Virtual size: 332KB

.reloc Size: 24KB - Virtual size: 21KB

.text
Size: 316KB - Virtual size: 313KB

.rdata
Size: 44KB - Virtual size: 40KB

.data
Size: 20KB - Virtual size: 36KB

.idata
Size: 16KB - Virtual size: 13KB

.rsrc
Size: 336KB - Virtual size: 332KB

.reloc
Size: 24KB - Virtual size: 21KB