3b535efd39efaf022736d9a31c65c40f_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

3b535efd39efaf022736d9a31c65c40f_JaffaCakes118
Size

2.4MB
MD5

3b535efd39efaf022736d9a31c65c40f
SHA1

054d45e0493a86c00b756d84a715e29320594bd7
SHA256

89549ad82b0f9bbb5b358d3577c20daf07212d902b15bc32b5f9ee11d55126c8
SHA512

b2aa2359a196896a406c4513c897d3ed18f8bb54c8e7246076eafa9d0d098f7e736653d4a5a7b92d3959720d75b9842b87691b767bfbd3533724c59374ef5338
SSDEEP

24576:nktKL/4LbxOkK4piJgzyn+tF2lljZYLyYhoSLnIlm/guxSu5TcBMGr:nktu4LgkK4xFT2NZRYhoS02gBYIqE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
3b535efd39efaf022736d9a31c65c40f_JaffaCakes118

Files

3b535efd39efaf022736d9a31c65c40f_JaffaCakes118
.exe windows:5 windows x86 arch:x86

1c340d5a38f94f0592d7a2860ae54520

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

imm32

ImmGetOpenStatus
ImmSetCompositionWindow
ImmGetDefaultIMEWnd
ImmSetOpenStatus
ImmReleaseContext
ImmGetCompositionStringA
ImmGetContext

msvfw32

MCIWndCreateA

version

VerQueryValueA
GetFileVersionInfoA
GetFileVersionInfoSizeA

winmm

joyGetPos
mixerGetDevCapsA
mixerSetControlDetails
mixerGetControlDetailsA
joyGetNumDevs
mixerGetLineInfoA
mixerGetLineControlsA
mixerOpen
mciSendCommandA
timeGetTime
joyGetPosEx
mixerClose

kernel32

GetTimeFormatA
GetVersionExA
CreateFileA
GetFileAttributesA
FileTimeToSystemTime
CreateDirectoryA
GetLocalTime
GetFileTime
CloseHandle
FileTimeToLocalFileTime
Sleep
FreeLibrary
GetLogicalDrives
WriteFile
GetDriveTypeA
FlushFileBuffers
SetCurrentDirectoryA
GetLastError
GetProcAddress
LoadLibraryA
GetModuleFileNameA
GetFileSize
SetFilePointer
ReadFile
CreateThread
QueryPerformanceCounter
QueryPerformanceFrequency
GlobalMemoryStatus
CreateMutexA
MultiByteToWideChar
GetExitCodeThread
OutputDebugStringA
GetFullPathNameA
GetStringTypeW
GetStringTypeA
GetConsoleMode
GetConsoleCP
HeapSize
GetSystemTimeAsFileTime
GetCurrentProcessId
GetDateFormatA
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
LCMapStringW
WideCharToMultiByte
LCMapStringA
InitializeCriticalSectionAndSpinCount
InterlockedExchange
SetConsoleCtrlHandler
RtlUnwind
GetFileType
SetHandleCount
GetStdHandle
VirtualAlloc
EnterCriticalSection
FatalAppExitA
LeaveCriticalSection
DeleteCriticalSection
VirtualFree
HeapDestroy
HeapCreate
GetCurrentThread
GetCurrentThreadId
SetLastError
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
IsValidCodePage
GetOEMCP
GetACP
InterlockedDecrement
InterlockedIncrement
GetCPInfo
RaiseException
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
LocalFree
GetStartupInfoA
GetCommandLineA
ExitProcess
GetModuleHandleW
HeapReAlloc
HeapAlloc
HeapFree
GetUserDefaultLCID
GetLocaleInfoA
EnumSystemLocalesA
IsValidLocale
GetModuleHandleA
SetStdHandle
GetLocaleInfoW
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
GetTimeZoneInformation
SetEndOfFile
GetProcessHeap
CompareStringA
CompareStringW
SetEnvironmentVariableA
LocalAlloc
GetTickCount

user32

MessageBoxA
wsprintfA
keybd_event
GetKeyboardState
GetAsyncKeyState
MapVirtualKeyA
EndPaint
SetCursor
RegisterClassExA
SendDlgItemMessageA
GetKeyState
SetForegroundWindow
LoadBitmapA
GetParent
LoadIconA
SetFocus
BeginPaint
TranslateMessage
CreateWindowExA
PeekMessageA
DefWindowProcA
GetCursorPos
DispatchMessageA
UpdateWindow
FindWindowA
LoadCursorA
DialogBoxParamA
ValidateRect
GetDlgItem
EndDialog
CheckDlgButton
IsDlgButtonChecked
CheckRadioButton
EnableWindow
SetDlgItemTextA
EnumDisplaySettingsA
GetDC
GetWindowLongA
ReleaseDC
SetWindowPos
MapWindowPoints
ChangeDisplaySettingsA
MoveWindow
GetClientRect
SetWindowLongA
SetLayeredWindowAttributes
ShowWindow
GetSystemMetrics
ClientToScreen
ShowCursor
SetCursorPos
GetActiveWindow
SendMessageA
SetWindowTextA
DestroyWindow
ScreenToClient

gdi32

DeleteObject
CreateFontIndirectA
GetOutlineTextMetricsA
BitBlt
GetDeviceCaps
SelectObject
CreateHatchBrush
DeleteDC
CreateFontA
EnumFontFamiliesExA
CreateCompatibleDC
GetGlyphOutlineA
StretchDIBits

advapi32

RegEnumValueA
RegCloseKey
RegOpenKeyExA

shell32

SHGetFolderPathA
ShellExecuteExA

ole32

CoUninitialize
CoCreateInstance
CoInitialize

Sections

s01
Size: 500KB - Virtual size: 500KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

s04
Size: 106KB - Virtual size: 105KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

s02
Size: - Virtual size: 708KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

s05
Size: 1.5MB - Virtual size: 1.5MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

s03
Size: 303KB - Virtual size: 560KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

1c340d5a38f94f0592d7a2860ae54520

Headers

DLL Characteristics

File Characteristics

Imports

imm32

msvfw32

version

winmm

kernel32

user32

gdi32

advapi32

shell32

ole32

Sections

s01 Size: 500KB - Virtual size: 500KB

s04 Size: 106KB - Virtual size: 105KB

s02 Size: - Virtual size: 708KB

s05 Size: 1.5MB - Virtual size: 1.5MB

s03 Size: 303KB - Virtual size: 560KB

s01
Size: 500KB - Virtual size: 500KB

s04
Size: 106KB - Virtual size: 105KB

s02
Size: - Virtual size: 708KB

s05
Size: 1.5MB - Virtual size: 1.5MB

s03
Size: 303KB - Virtual size: 560KB