94cc0516d4f20560d6ed793050b67059_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

94cc0516d4f20560d6ed793050b67059_JaffaCakes118
Size

160KB
MD5

94cc0516d4f20560d6ed793050b67059
SHA1

ebdd18f2e1c4339d59bb2ecb29e9a837915389d7
SHA256

504e5e714fdf10d57faab25f4113879e7565a91afdad4b05cc20bd568a1fba4a
SHA512

926464e5a1f5fb78f50d1687475d61575dc5e7bd6c38b785ac5a8b369dbb563e03af1b47bd2c382bd9612ca09a13ba703a931824f8756ef0670f53400d1a3823
SSDEEP

3072:vE2Ryx362Fl1yCo85O1r56elfhVtCWwqj1aURHdLtFvhqD:rRt2TDI1dbtCfqj1aA9xRhqD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
94cc0516d4f20560d6ed793050b67059_JaffaCakes118

Files

94cc0516d4f20560d6ed793050b67059_JaffaCakes118
.exe windows:4 windows x86 arch:x86

be837c635fe27a0f1d6f278a2924cd21

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LCMapStringA
GetStringTypeW
GetStringTypeA
MultiByteToWideChar
LoadLibraryA
GetOEMCP
GetACP
GetCPInfo
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
FlushFileBuffers
SetEndOfFile
QueryPerformanceFrequency
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
GetProcAddress
HeapSize
GetCurrentProcess
TerminateProcess
IsBadWritePtr
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
GetTickCount
GetModuleFileNameA
SetStdHandle
GetModuleHandleA
HeapDestroy
RaiseException
GetEnvironmentStringsW
QueryPerformanceCounter
CreateFileA
GetFileType
GetStdHandle
SetHandleCount
SetFilePointer
ReadFile
WriteFile
CloseHandle
GetLastError
ExitProcess
GetVersion
GetCommandLineA
GetStartupInfoA
RtlUnwind
HeapFree
HeapAlloc
LCMapStringW

user32

GetDlgItemInt
MessageBoxA
GetWindowTextA
ReleaseDC
DestroyWindow
UnregisterClassA
LoadIconA
LoadCursorA
RegisterClassA
ChangeDisplaySettingsA
AdjustWindowRectEx
CreateWindowExA
ShowCursor
ShowWindow
SetForegroundWindow
SetFocus
DialogBoxParamA
PeekMessageA
TranslateMessage
DispatchMessageA
GetDC
SetTimer
DefWindowProcA
PostQuitMessage
KillTimer
InvalidateRect
GetDlgItem
SetWindowTextA
EndDialog

gdi32

SetPixelFormat
SwapBuffers
ChoosePixelFormat

comdlg32

GetOpenFileNameA

advapi32

SetFileSecurityW

opengl32

glPopMatrix
glPushMatrix
glClear
glEnd
glVertex2d
glFlush
glBegin
glTranslatef
glColor3f
glColor4ub
glEndList
glTranslated
glNewList
glVertex2i
glGenLists
glDeleteLists
glCallLists
glScalef
glListBase
glRotatef
wglDeleteContext
wglMakeCurrent
glViewport
glMatrixMode
glLoadIdentity
glOrtho
glClearColor
glClearDepth
glDepthFunc
glEnable
glBlendFunc
glGenTextures
glBindTexture
glTexParameterf
glTexImage2D
wglCreateContext
glTexCoord2f

winmm

PlaySoundA

Sections

.text
Size: 56KB - Virtual size: 52KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 88KB - Virtual size: 93KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 680B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

be837c635fe27a0f1d6f278a2924cd21

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

opengl32

winmm

Sections

.text Size: 56KB - Virtual size: 52KB

.rdata Size: 8KB - Virtual size: 6KB

.data Size: 88KB - Virtual size: 93KB

.rsrc Size: 4KB - Virtual size: 680B

.text
Size: 56KB - Virtual size: 52KB

.rdata
Size: 8KB - Virtual size: 6KB

.data
Size: 88KB - Virtual size: 93KB

.rsrc
Size: 4KB - Virtual size: 680B