d96103542ad88b7dd63633e1402d004d_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

d96103542ad88b7dd63633e1402d004d_JaffaCakes118
Size

368KB
MD5

d96103542ad88b7dd63633e1402d004d
SHA1

f139d0cdf959da734adb8218bb9ab1070589f0ba
SHA256

73da1b9b157a7d2ae3a21c90a114ca7251c32545511a38a3e92b777e59009c45
SHA512

c39095411c803ffe51d7adc67b5ac31897fad8914c3c09ea53fee4c3123ac3655dec98af425db093405b079a81aa97e2e5f6a2dc8061a5c812347d2a476753bb
SSDEEP

6144:oL9rKjvNvkH1sGf7L4JZ9oL+5b/OcGBJL8dxjHtgWECmCTPqsUPpII:5jo1sWUCL+5b/DGHL8bjHtgWL1TPqsiC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d96103542ad88b7dd63633e1402d004d_JaffaCakes118

Files

d96103542ad88b7dd63633e1402d004d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

523a1e46e365ed24e88e8ee8e6df5ff7

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

advapi32

RegSetKeySecurity
StartServiceCtrlDispatcherW
InitializeSid
RegConnectRegistryA
SetEntriesInAclW
GetSidSubAuthority
RevertToSelf
RegOpenKeyExW
AllocateAndInitializeSid
SetSecurityDescriptorOwner
LsaFreeMemory
RegisterServiceCtrlHandlerA
GetLengthSid
OpenServiceA
OpenThreadToken
OpenSCManagerA
RegSetValueExA
QueryServiceStatus
StartServiceA
RegUnLoadKeyW
MakeAbsoluteSD
LsaQueryInformationPolicy
GetSidLengthRequired
RegSetValueA
RegCreateKeyW
RegSetValueExW
QueryServiceConfigW
ControlService
SetKernelObjectSecurity
SetSecurityDescriptorGroup
GetSidIdentifierAuthority
GetUserNameA
RegEnumKeyExA
CreateServiceW
RegQueryInfoKeyW
RegQueryValueA
RegQueryInfoKeyA
EnumDependentServicesA
GetSidSubAuthorityCount
RegCreateKeyExW
SetFileSecurityW
AdjustTokenPrivileges
ChangeServiceConfigA
ChangeServiceConfig2W
InitiateSystemShutdownA
SetSecurityDescriptorSacl
LsaOpenPolicy
LogonUserA
CreateProcessAsUserA

version

VerQueryValueW
GetFileVersionInfoSizeW
VerFindFileA
VerQueryValueA
GetFileVersionInfoW
GetFileVersionInfoA
VerInstallFileW

msvcrt

_wcsrev
__dllonexit
_onexit
pow
_safe_fdiv
_y0
_acmdln
__getmainargs
_initterm
__setusermatherr
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_CItanh
_controlfp
tolower

gdi32

GetPixel
ExtCreatePen
CreateBitmap
GetBrushOrgEx
GdiFlush
GetObjectType
SetDIBColorTable
MoveToEx
GetGlyphOutlineA
RectVisible
SetROP2
DeleteEnhMetaFile
ExtSelectClipRgn
UnrealizeObject
CreateDCW
PtVisible
SetMapMode
CreateRoundRectRgn
CreateFontA
GetEnhMetaFilePaletteEntries
StartPage
SaveDC
GetWinMetaFileBits
IntersectClipRect
GetTextColor
CloseEnhMetaFile
ResizePalette
CreateCompatibleBitmap
SetTextAlign
SetPixelV
SetBkColor
ExtFloodFill
DeleteDC
SetWindowExtEx
CreatePen
GetStockObject
GetEnhMetaFileHeader
GetClipRgn
GetCharWidthA
SetTextColor
GetBkColor
SetWinMetaFileBits
ScaleViewportExtEx
SwapBuffers
Rectangle
EqualRgn
CreateFontW
GetGlyphOutlineW
RealizePalette

user32

GetDlgCtrlID
GetGUIThreadInfo
CreateDialogIndirectParamA
SetTimer
wvsprintfA
GetDlgItemTextA
SetWindowPos
CopyAcceleratorTableW
ChildWindowFromPointEx
IsChild
CallMsgFilterA
IsCharAlphaW
CheckRadioButton
FindWindowExW
OffsetRect
KillTimer
MapDialogRect
CheckMenuItem
ScreenToClient
InsertMenuA
DispatchMessageA
SetCaretBlinkTime
SetWindowLongW
PostQuitMessage
CharUpperW
SetDlgItemInt
MapWindowPoints
SendNotifyMessageW
GetParent
AppendMenuW
ShowCaret
ChangeDisplaySettingsA
SendInput
LoadCursorA
SetWindowPlacement
MessageBoxA
GetLastActivePopup
GetClassNameA
RegisterClipboardFormatA
GetMessageExtraInfo
PeekMessageW
LoadBitmapW
GetMenu
LoadImageA
DestroyCaret
IsMenu
GetDlgItemInt
CharToOemA
GetClassInfoW
CharLowerA
SetForegroundWindow
SendDlgItemMessageW
GetSystemMetrics
RegisterHotKey
ShowOwnedPopups
CharLowerBuffA
TranslateMessage
SetClipboardData
ChangeClipboardChain
LoadCursorFromFileA
FindWindowA
CopyImage
GetWindow
GetCursorPos
CharUpperA
MapVirtualKeyExW
SetWindowTextA
GetKeyNameTextW
LoadIconA
CreateWindowExW
GetWindowTextA
DefFrameProcW
DrawStateW
SetCaretPos
RegisterWindowMessageA
GetSysColorBrush
ShowCursor
DispatchMessageW
VkKeyScanW
CharNextW
SetClassLongA
GetSysColor
WinHelpW
GetCapture
GetMessagePos
UnionRect
GetFocus
CharPrevW
LoadKeyboardLayoutW
SetWindowTextW
SetScrollPos
GetMessageA
GetKeyboardState
GetWindowLongA
AdjustWindowRect
LoadStringW
ShowScrollBar
GetClipboardViewer
CreateDialogIndirectParamW
GetTabbedTextExtentA
GetQueueStatus
DialogBoxParamA
IntersectRect
GetWindowTextLengthA
ScrollWindow
SetRect
GetProcessWindowStation
SystemParametersInfoA
LoadAcceleratorsA
LoadMenuA
FillRect
InsertMenuW
UnpackDDElParam
DrawTextA
CreateDialogParamA
CopyIcon
MoveWindow

Sections

.text
Size: 72KB - Virtual size: 69KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 48KB - Virtual size: 46KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 542KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 236KB - Virtual size: 232KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

523a1e46e365ed24e88e8ee8e6df5ff7

Headers

File Characteristics

Imports

advapi32

version

msvcrt

gdi32

user32

Sections

.text Size: 72KB - Virtual size: 69KB

.rdata Size: 48KB - Virtual size: 46KB

.data Size: 8KB - Virtual size: 542KB

.rsrc Size: 236KB - Virtual size: 232KB

.text
Size: 72KB - Virtual size: 69KB

.rdata
Size: 48KB - Virtual size: 46KB

.data
Size: 8KB - Virtual size: 542KB

.rsrc
Size: 236KB - Virtual size: 232KB