f4e360c059477442c325c8c0284a88ef_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f4e360c059477442c325c8c0284a88ef_JaffaCakes118
Size

68KB
MD5

f4e360c059477442c325c8c0284a88ef
SHA1

3f3e0c60ee26f21d0160664f38630b81ae777921
SHA256

2b7560e62fe6a98ee83a0a7b5c7d4b8eafdbfa1d7e527426a634ff3a973646ac
SHA512

da4cacd6c5d4e2e16f9a132eb0b8c6e2f4d195126128a6104d146d74d8eb949703e31bf1cd10c6fd5af22e3f8db30e53836b2599fc552c313b5d4ebc4f4fdd5f
SSDEEP

1536:0songUqpmVH3Y9D/Uhy1jjxa6jKTvFPhwMl0aCdwAzgPVXe9:0Ap83Y9D/Uhy1j1a6jKDxNOdpg9O9

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f4e360c059477442c325c8c0284a88ef_JaffaCakes118

Files

f4e360c059477442c325c8c0284a88ef_JaffaCakes118
.exe windows:4 windows x86 arch:x86

db16bb2699764b5dfbda41f7f2ed8c45

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ddraw

DirectDrawCreateEx
DirectDrawCreate

user32

TranslateMessage
DispatchMessageW
GetSysColorBrush
MessageBeep
GetNextDlgGroupItem
CreateWindowExW
InvalidateRgn
PostMessageW
UpdateWindow
SetTimer
IsIconic
GetSystemMetrics
GetClientRect
DrawIcon
EnableWindow
PostQuitMessage
SetWindowPos
MapDialogRect
GetParent
SetWindowContextHelpId
GetWindow
EndDialog
GetNextDlgTabItem
IsWindowEnabled
GetDlgItem
GetWindowLongW
IsWindow
DestroyWindow
CreateDialogIndirectParamW
SetActiveWindow
GetActiveWindow
GetDesktopWindow
CheckMenuItem
EnableMenuItem
GetMenuState
ModifyMenuW
GetFocus
LoadBitmapW
GetMenuCheckMarkDimensions
SetMenuItemBitmaps
ValidateRect
GetCursorPos
PeekMessageW
GetKeyState
IsWindowVisible
SetMenu

kernel32

GetModuleHandleW
WideCharToMultiByte
GlobalUnlock
GlobalLock
GlobalAlloc
FlushInstructionCache
GetCurrentProcess
lstrcmpW
MulDiv
SetLastError
WaitForSingleObject
HeapSetInformation
GlobalFree
DeleteCriticalSection
GetTickCount
MultiByteToWideChar
lstrlenA
GlobalHandle
FormatMessageW
InterlockedDecrement
InterlockedIncrement
CreateFileW
CloseHandle
LocalAlloc
GetLocaleInfoW
GetComputerNameW
InitializeCriticalSection
LeaveCriticalSection
EnterCriticalSection
RaiseException
lstrlenW
InterlockedExchange
OpenProcess
GetModuleFileNameW
GetProcessId
CreateThread
Sleep
WaitForMultipleObjects
ProcessIdToSessionId
GetSystemDirectoryW
LCMapStringW
LoadLibraryExW
VirtualUnlock
VirtualLock
GetSystemInfo
ReleaseMutex
CreateMutexW
ResetEvent
SetEvent
CreateEventW
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
TerminateProcess
GetSystemTimeAsFileTime
QueryPerformanceCounter
GetStartupInfoW
VirtualAlloc
VirtualFree
IsProcessorFeaturePresent
LoadLibraryA
InterlockedCompareExchange
GetThreadLocale
GetLocaleInfoA
GetACP
HeapSize
HeapDestroy
GetVersionExA
FreeLibrary
LoadLibraryW
GetProcAddress
GetCurrentThreadId
GetLastError
LocalFree
GetVersionExW
HeapFree
HeapReAlloc
HeapAlloc
FindResourceExW
FindResourceW
LoadResource
LockResource
SizeofResource
GetTempPathW

msvcrt

_XcptFilter
_cexit
_initterm
__wgetmainargs
log10
memset
_wtoi64
iswdigit
_controlfp
?terminate@@YAXXZ
__set_app_type
__p__fmode
__p__commode
__setusermatherr
_amsg_exit
exit
_exit
_wcmdln
_initterm
memcpy

Sections

.text
Size: 35KB - Virtual size: 35KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 25KB - Virtual size: 25KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

db16bb2699764b5dfbda41f7f2ed8c45

Headers

File Characteristics

Imports

ddraw

user32

kernel32

msvcrt

Sections

.text Size: 35KB - Virtual size: 35KB

.rdata Size: 4KB - Virtual size: 3KB

.data Size: 25KB - Virtual size: 25KB

.rsrc Size: 2KB - Virtual size: 2KB

.text
Size: 35KB - Virtual size: 35KB

.rdata
Size: 4KB - Virtual size: 3KB

.data
Size: 25KB - Virtual size: 25KB

.rsrc
Size: 2KB - Virtual size: 2KB