JaffaCakes118_248c3a051d68a51532d4076435ddf3e83e62b3025653da2554c098b46fb457eb

Sharing

Copy URL

Twitter E-mail

General

Target

JaffaCakes118_248c3a051d68a51532d4076435ddf3e83e62b3025653da2554c098b46fb457eb
Size

417KB
MD5

698be27222c60a9dfd79a25b1b076a7e
SHA1

f725a2cbd62dd595d082ac6ecd52215513ee0770
SHA256

248c3a051d68a51532d4076435ddf3e83e62b3025653da2554c098b46fb457eb
SHA512

ea151b7d0fac0a2bdf7e6bd295a740b46aa5256c405c23d50f37c45b164cdebd99c6571e268e33602a5704ccceb2cb95506b58adfe7469035c27ab47e8b64094
SSDEEP

6144:B61wc5wDHpRxnKdvmkHLtlyB+m3Nk06z+ymWYghuGSvji9g6Zn7FgBmHjb:B61wrxKdekZsMk6zvVYghKvjiTd

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
JaffaCakes118_248c3a051d68a51532d4076435ddf3e83e62b3025653da2554c098b46fb457eb

Files

JaffaCakes118_248c3a051d68a51532d4076435ddf3e83e62b3025653da2554c098b46fb457eb
.dll windows:5 windows x86 arch:x86

e93a7ed991dbeb31a512df9945892e57

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DLL

Imports

dbghelp

SymCleanup
SymGetOptions
SymUnloadModule64
SymGetLineFromAddr64
SymGetSymFromAddr64
SymLoadModuleExW
SymSetOptions
SymInitialize
SymGetModuleInfo64

imagehlp

UnMapAndLoad
MapAndLoad

kernel32

ReadFile
WriteFile
SetFilePointer
FlushFileBuffers
LockFile
UnlockFile
SetEndOfFile
GetFileSize
DuplicateHandle
GetCurrentProcess
GetVolumeInformationW
GetShortPathNameW
CreateFileW
LocalFileTimeToFileTime
GetFileSizeEx
HeapAlloc
HeapFree
GetSystemTimeAsFileTime
GetCommandLineA
RtlUnwind
RaiseException
HeapReAlloc
Sleep
HeapSize
TerminateProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
IsDebuggerPresent
lstrcmpiW
VirtualFree
VirtualAlloc
HeapCreate
HeapDestroy
GetStdHandle
GetModuleFileNameA
GetCurrentDirectoryA
GetDriveTypeA
GetCPInfo
GetACP
GetOEMCP
IsValidCodePage
LCMapStringW
SetHandleCount
GetFileType
GetStartupInfoA
FreeEnvironmentStringsA
GetEnvironmentStrings
FreeEnvironmentStringsW
GetEnvironmentStringsW
QueryPerformanceCounter
GetTickCount
GetTimeZoneInformation
InitializeCriticalSectionAndSpinCount
GetConsoleCP
GetConsoleMode
LCMapStringA
GetStringTypeA
GetStringTypeW
GetLocaleInfoA
SetStdHandle
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
CreateFileA
SetEnvironmentVariableA
GetStringTypeExW
DeleteFileW
MoveFileW
GetCurrentDirectoryW
GlobalFlags
SystemTimeToFileTime
GetThreadLocale
TlsFree
DeleteCriticalSection
LocalReAlloc
TlsSetValue
TlsAlloc
InitializeCriticalSection
GlobalHandle
GlobalReAlloc
EnterCriticalSection
TlsGetValue
LeaveCriticalSection
LocalAlloc
InterlockedIncrement
GetDiskFreeSpaceW
GetFullPathNameW
GetTempFileNameW
GetFileTime
SetFileTime
GetFileAttributesW
CloseHandle
GetPrivateProfileStringW
WritePrivateProfileStringW
GetPrivateProfileIntW
GetCurrentThread
ConvertDefaultLocale
EnumResourceLanguagesW
GetLocaleInfoW
CompareStringA
InterlockedExchange
GlobalGetAtomNameW
lstrlenA
lstrcmpA
FindFirstFileW
FileTimeToLocalFileTime
FileTimeToSystemTime
FindNextFileW
FindClose
InterlockedDecrement
FreeResource
GetCurrentThreadId
GlobalAddAtomW
GlobalFindAtomW
GlobalDeleteAtom
GetVersionExW
CompareStringW
LoadLibraryA
lstrcmpW
GetVersionExA
GetModuleHandleA
GetCurrentProcessId
GlobalFree
GlobalAlloc
GlobalLock
GlobalUnlock
lstrlenW
MulDiv
ExitProcess
CreateProcessW
GetModuleFileNameW
lstrcatW
GetCommandLineW
GetProcAddress
LoadLibraryW
GetLastError
SetLastError
GetModuleHandleW
LocalFree
FormatMessageW
GetEnvironmentVariableW
GetWindowsDirectoryW
GetSystemDirectoryW
SearchPathW
MultiByteToWideChar
FreeLibrary
IsBadReadPtr
LoadLibraryExW
LockResource
SizeofResource
WideCharToMultiByte
FindResourceW
LoadResource

user32

DestroyMenu
ReuseDDElParam
UnpackDDElParam
PostQuitMessage
ValidateRect
TranslateMessage
GetMessageW
ShowOwnedPopups
SetWindowRgn
SetTimer
KillTimer
IsZoomed
WindowFromPoint
GetSysColorBrush
GetMenuItemInfoW
DeleteMenu
DestroyIcon
CharUpperW
DrawMenuBar
DefMDIChildProcW
DefFrameProcW
InflateRect
GetDesktopWindow
GetActiveWindow
CreateDialogIndirectParamW
GetNextDlgTabItem
EndDialog
SetMenuItemBitmaps
GetMenuCheckMarkDimensions
ModifyMenuW
EnableMenuItem
CheckMenuItem
SetWindowTextW
IsDialogMessageW
RegisterWindowMessageW
SendDlgItemMessageW
SendDlgItemMessageA
WinHelpW
IsChild
GetCapture
SetWindowsHookExW
CallNextHookEx
GetClassLongW
GetClassNameW
SetPropW
GetPropW
RemovePropW
GetFocus
SetFocus
GetWindowTextLengthW
GetWindowTextW
LoadAcceleratorsW
SetActiveWindow
DispatchMessageW
GetDlgItem
GetTopWindow
DestroyWindow
UnhookWindowsHookEx
GetMessageTime
GetMessagePos
PeekMessageW
ScrollWindow
TrackPopupMenu
GetKeyState
SetMenu
SetScrollRange
GetScrollRange
SetScrollPos
GetScrollPos
SetForegroundWindow
ShowScrollBar
IsWindowVisible
PostMessageW
CreateWindowExW
GetClassInfoW
RegisterClassW
AdjustWindowRectEx
EqualRect
GetScrollInfo
SetScrollInfo
CopyRect
PtInRect
GetDlgCtrlID
DefWindowProcW
CallWindowProcW
GetMenu
SetWindowLongW
SetWindowPos
OffsetRect
IntersectRect
SystemParametersInfoA
IsIconic
GetWindowPlacement
GetWindow
GetSysColor
EndPaint
BeginPaint
GetWindowDC
ReleaseDC
GetDC
ClientToScreen
ScreenToClient
GrayStringW
DrawTextExW
DrawTextW
TabbedTextOutW
GetWindowThreadProcessId
GetWindowLongW
GetLastActivePopup
IsWindowEnabled
MessageBoxW
LoadMenuW
GetMenuState
GetMenuStringW
GetMenuItemID
InsertMenuW
GetMenuItemCount
GetSubMenu
SetCursor
LoadCursorW
InsertMenuItemW
CreatePopupMenu
SetRectEmpty
GetCursorPos
DestroyCursor
SetCursorPos
ReleaseCapture
SetCapture
RedrawWindow
TranslateAcceleratorW
TranslateMDISysAccel
GetForegroundWindow
BringWindowToTop
CopyIcon
InvalidateRect
SystemParametersInfoW
ShowWindow
MessageBeep
EndDeferWindowPos
DeferWindowPos
MapWindowPoints
BeginDeferWindowPos
IsWindow
UpdateWindow
LoadBitmapW
GetWindowRect
GetParent
SetLastErrorEx
FillRect
SetRect
DrawIcon
LoadIconW
GetClientRect
GetSystemMetrics
SendMessageW
EnableWindow
GetClassInfoExW

gdi32

TextOutW
ExtTextOutW
Escape
SelectObject
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
DeleteDC
CreatePatternBrush
CreateBitmap
RectVisible
CreateSolidBrush
PatBlt
DPtoLP
CreateEllipticRgn
LPtoDP
Ellipse
GetTextMetricsW
GetTextExtentPoint32W
GetCharWidthW
CreateFontW
StretchDIBits
GetBkColor
PtVisible
GetPixel
SetBkColor
RestoreDC
SaveDC
GetDeviceCaps
CreateFontIndirectW
GetObjectW
Rectangle
StretchBlt
CreateCompatibleDC
CreateCompatibleBitmap
GetStockObject
DeleteObject
IntersectClipRect
ExcludeClipRect
GetClipBox
SetMapMode
SetTextColor
SetBkMode
BitBlt

comdlg32

GetFileTitleW

winspool.drv

DocumentPropertiesW
ClosePrinter
OpenPrinterW

advapi32

GetFileSecurityW
SetFileSecurityW
RegQueryValueW
RegOpenKeyW
RegEnumKeyW
RegDeleteKeyW
RegDeleteValueW
RegSetValueExW
RegCreateKeyExW
RegOpenKeyExW
RegQueryValueExW
RegSetValueW
RegCloseKey
RegCreateKeyW

shell32

DragFinish
DragQueryFileW
ExtractIconW
SHGetFileInfoW
ShellExecuteW

shlwapi

PathRemoveExtensionW
PathFindFileNameW
PathRemoveFileSpecW
PathStripToRootW
PathFindExtensionW
PathIsUNCW

ole32

CoTaskMemFree
CoUninitialize
CoCreateInstance
CoInitializeEx

oleaut32

VariantInit
VariantChangeType
VariantClear
SysAllocStringLen

Exports

Exports

asbEHOEjtlynCxOB

Sections

.text
Size: 274KB - Virtual size: 274KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 73KB - Virtual size: 72KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 10KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 22KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 36KB - Virtual size: 35KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

e93a7ed991dbeb31a512df9945892e57

Headers

DLL Characteristics

File Characteristics

Imports

dbghelp

imagehlp

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

shlwapi

ole32

oleaut32

Exports

Exports

Sections

.text Size: 274KB - Virtual size: 274KB

.rdata Size: 73KB - Virtual size: 72KB

.data Size: 10KB - Virtual size: 25KB

.rsrc Size: 22KB - Virtual size: 22KB

.reloc Size: 36KB - Virtual size: 35KB

.text
Size: 274KB - Virtual size: 274KB

.rdata
Size: 73KB - Virtual size: 72KB

.data
Size: 10KB - Virtual size: 25KB

.rsrc
Size: 22KB - Virtual size: 22KB

.reloc
Size: 36KB - Virtual size: 35KB