eeb577cb2bfb9045e982a45ce2b192c1_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

eeb577cb2bfb9045e982a45ce2b192c1_JaffaCakes118
Size

191KB
MD5

eeb577cb2bfb9045e982a45ce2b192c1
SHA1

a0a85edc16546ca8bbd8ccd9f569baff6f84e5be
SHA256

10daa7489b6a122e3a2eee2844eb7f7211b2c84b57c6c4b5607722ace54a39ed
SHA512

09ff7c1dc1d8c332c87d43317ba32f49ea46982d373e8cca833bfaf3fd4fc7c017c8c6171919d0a135314ef32ec27618a9c71f3e4b498ab37439ba428ebdd5f7
SSDEEP

3072:lvMMrUKvz70K3Xpcwgu1dV0jFtOaptWv6AO1YyTNziTAQ625sGe:lvfP4Icfu1faFt3tW+YUUjSF

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
eeb577cb2bfb9045e982a45ce2b192c1_JaffaCakes118

Files

eeb577cb2bfb9045e982a45ce2b192c1_JaffaCakes118
.exe windows:5 windows x86 arch:x86

58c27f2520db4eabff64444c11b769cd

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualAlloc
GetProcAddress
LoadLibraryA
CloseHandle
CopyFileW
CreateFileMappingA
CreateFileW
CreateMutexW
CreateProcessW
CreateSemaphoreW
DeleteCriticalSection
EnterCriticalSection
ExitProcess
ExpandEnvironmentStringsA
FindClose
FindFirstFileW
FindNextFileW
FindResourceW
FlushConsoleInputBuffer
FormatMessageA
FormatMessageW
FreeLibrary
GetACP
GetCPInfo
GetCurrentProcessId
GetCurrentThread
GetCurrentThreadId
GetEnvironmentVariableW
GetFileAttributesW
GetFileSize
WriteFile
WideCharToMultiByte
WaitForSingleObject
WaitForMultipleObjects
UnmapViewOfFile
TlsSetValue
TlsGetValue
TlsFree
TlsAlloc
TerminateProcess
SuspendThread
SleepEx
Sleep
SizeofResource
SetThreadPriority
SetThreadLocale
SetLastError
SetErrorMode
SetCurrentDirectoryW
ResumeThread
ReleaseSemaphore
ReleaseMutex
ReadFile
QueryPerformanceFrequency
QueryPerformanceCounter
PeekNamedPipe
OutputDebugStringW
MultiByteToWideChar
MulDiv
MoveFileExW
MapViewOfFile
LockResource
LocalFree
LoadResource
LoadLibraryW
LeaveCriticalSection
IsValidLocale
IsValidCodePage
InterlockedIncrement
GetModuleHandleA
InterlockedDecrement
InitializeCriticalSection
GlobalMemoryStatus
GetVersionExW
GetVersionExA
GetVersion
GetUserDefaultLCID
GetTickCount
GetTempPathW
GetTempFileNameW
GetSystemTimeAsFileTime
GetSystemTimeAdjustment
GetSystemTime
GetStdHandle
GetModuleFileNameW
GetLogicalDriveStringsW
GetLocaleInfoW
GetFileType
GetFileTime

user32

SetTimer
SetWindowLongW
SetWindowPos
SetWindowRgn
SetWindowTextW
SetWindowsHookExW
ShowCursor
ShowWindow
SystemParametersInfoW
TrackPopupMenu
TranslateAcceleratorW
TranslateMessage
UnhookWindowsHookEx
UnionRect
UnregisterClassW
UnregisterHotKey
UpdateWindow
ValidateRect
ValidateRgn
VkKeyScanW
WindowFromPoint
keybd_event
wsprintfW
SendMessageTimeoutW
SendMessageA
ScrollWindow
ScreenToClient
RemoveMenu
ReleaseDC
ReleaseCapture
RegisterWindowMessageW
RegisterHotKey
RegisterClipboardFormatW
RegisterClassW
RedrawWindow
PtInRect
PostThreadMessageW
PostQuitMessage
PostMessageW
PeekMessageW
OffsetRect
MsgWaitForMultipleObjects
ModifyMenuW
MessageBoxW
MessageBoxA
MessageBeep
MapWindowPoints
MapVirtualKeyW
LoadImageW
LoadIconW
LoadCursorW
LoadBitmapW
KillTimer
IsZoomed
IsWindowVisible
IsWindowEnabled
IsWindow
IsRectEmpty
IsIconic
IsDialogMessageW
IsClipboardFormatAvailable
InvalidateRect
InsertMenuW
InsertMenuItemW
InflateRect
HideCaret
GetWindowTextW
GetWindowTextLengthW
GetWindowRect
GetWindowPlacement
GetWindowLongW
GetWindowDC
GetWindow
GetUserObjectInformationW
SetScrollInfo
GetSystemMetrics
GetSystemMenu
GetSysColorBrush
GetSysColor
GetSubMenu
GetScrollInfo
GetProcessWindowStation
GetParent
GetMessageW
GetMessageTime
GetMessagePos
GetMenuState
GetMenuItemInfoW
GetMenuItemCount
GetKeyState
GetIconInfo
GetFocus
GetDoubleClickTime
GetDlgItem
GetDialogBaseUnits
GetDesktopWindow
GetDC
GetCursorPos
GetClipboardFormatNameW
GetClientRect
GetClassNameW
GetCapture
GetAsyncKeyState
GetActiveWindow
FlashWindow
FindWindowW
FindWindowExW
FindWindowA
FillRect
EnumDisplaySettingsW
EndPaint
EndDeferWindowPos
EnableWindow
EnableScrollBar
EnableMenuItem
DrawTextW
DrawStateW
DrawMenuBar
DrawIconEx
DrawFrameControl
DrawFocusRect
DrawEdge
DispatchMessageW
DestroyWindow
DestroyMenu
DestroyIcon
DestroyCursor
DestroyAcceleratorTable
DeferWindowPos
DefWindowProcW
DdeUninitialize
DdeQueryStringW
DdePostAdvise
DdeNameService
DdeInitializeW
DdeGetLastError
DdeGetData
DdeFreeStringHandle
DdeFreeDataHandle
DdeDisconnect
DdeCreateStringHandleW
DdeCreateDataHandle
DdeConnect
DdeClientTransaction
CreateWindowExW
CreatePopupMenu
CreateMenu
CreateIconIndirect
CreateDialogParamW
CreateDialogIndirectParamW
SetRectEmpty
SetRect
SetParent
SetMenuItemInfoW
SetMenu
SetForegroundWindow
SetFocus
SetCursorPos
SetCursor
SetCapture
SetActiveWindow
GetUpdateRgn
SendMessageW
CreateAcceleratorTableW
CopyRect
ClientToScreen
ChildWindowFromPointEx
ChildWindowFromPoint
CheckMenuRadioItem
CheckMenuItem
ChangeDisplaySettingsW
CallWindowProcW
CallNextHookEx
BringWindowToTop
BeginPaint
BeginDeferWindowPos
AppendMenuW
AdjustWindowRectEx
LoadIconA
MoveWindow

gdi32

CloseMetaFile
FillPath
BeginPath
DeleteObject
DeleteEnhMetaFile
CreateHalftonePalette
DeleteColorSpace
CreatePatternBrush
CreateCompatibleDC
CloseEnhMetaFile
GdiFlush
EndPage
CloseFigure
AbortDoc
EndDoc
Arc
BitBlt
CombineRgn
CreateBitmap
CreateCompatibleBitmap
CreateDCW
CreateDIBSection
CreateDIBitmap
CreateEnhMetaFileW
CreateFontIndirectW
CreateHatchBrush
CreateICW
CreatePalette
CreatePen
CreateRectRgn
CreateRectRgnIndirect
Ellipse
EnumFontFamiliesExW
EqualRgn
ExcludeClipRect
ExtCreatePen
ExtCreateRegion
ExtFloodFill
ExtSelectClipRgn
ExtTextOutW
CancelDC
GetCharABCWidthsW
GetClipBox
GetDIBColorTable
GetDIBits
GetDeviceCaps
GetEnhMetaFileHeader
GetEnhMetaFileW
GetNearestPaletteIndex
GetObjectType
GetObjectW
GetOutlineTextMetricsW
GetPaletteEntries
GetPixel
GetRegionData
GetRgnBox
GetStockObject
GetSystemPaletteEntries
GetTextExtentExPointW
GetTextExtentPoint32W
GetTextMetricsW
LineTo
MaskBlt
MoveToEx
OffsetRgn
Pie
PlayEnhMetaFile
PolyBezier
PolyPolygon
Polygon
Polyline
PtInRegion
RealizePalette
RectInRegion
Rectangle
RoundRect
SelectClipRgn
SelectObject
SelectPalette
SetAbortProc
SetBkColor
SetBkMode
CreateSolidBrush
AbortPath
DeleteMetaFile
DeleteDC
GdiGetBatchLimit
GetBkColor
SetWindowOrgEx
StretchDIBits
StretchBlt
StartPage
StartDocW
EndPath
SetWindowExtEx
SetViewportOrgEx
SetViewportExtEx
SetTextColor
SetTextAlign
SetStretchBltMode
SetROP2
SetPolyFillMode
SetPixel
SetMapMode
SetBrushOrgEx

comdlg32

ChooseFontW
GetOpenFileNameW
GetSaveFileNameW
PageSetupDlgW
PrintDlgW
CommDlgExtendedError

advapi32

GetUserNameW
RegQueryValueExW
DeregisterEventSource
ReportEventA
RegCloseKey
RegCreateKeyExW
RegDeleteKeyW
RegDeleteValueW
RegEnumKeyW
RegEnumValueW
RegOpenKeyExW
RegSetValueExW
RegisterEventSourceA

shell32

DragFinish
DragQueryFileW
DragQueryPoint
ExtractIconExW
ExtractIconW
SHFileOperationW
SHGetFileInfoW
SHGetMalloc
SHGetPathFromIDListW
SHGetSpecialFolderLocation
ShellExecuteExW
DragAcceptFiles

comctl32

ImageList_Add
ImageList_BeginDrag
ImageList_Create
ImageList_Destroy
ImageList_DragEnter
ImageList_DragLeave
ImageList_DragMove
ImageList_Draw
ImageList_EndDrag
ImageList_GetIconSize
ImageList_GetImageCount
ImageList_Remove
ImageList_Replace
ImageList_ReplaceIcon
ImageList_SetBkColor
ImageList_SetDragCursorImage

Sections

.text
Size: 160KB - Virtual size: 159KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 2KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 512B - Virtual size: 16B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

58c27f2520db4eabff64444c11b769cd

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

comctl32

Sections

.text Size: 160KB - Virtual size: 159KB

.rdata Size: 27KB - Virtual size: 27KB

.data Size: 2KB - Virtual size: 1KB

.rsrc Size: 512B - Virtual size: 16B

.text
Size: 160KB - Virtual size: 159KB

.rdata
Size: 27KB - Virtual size: 27KB

.data
Size: 2KB - Virtual size: 1KB

.rsrc
Size: 512B - Virtual size: 16B