1b1c741e0024ea04b37c83c17fde84aa_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

1b1c741e0024ea04b37c83c17fde84aa_JaffaCakes118
Size

852KB
MD5

1b1c741e0024ea04b37c83c17fde84aa
SHA1

92318c4e724fd17d442465ddfd836d7ee897489f
SHA256

8153bf852ee9dbe132619bd924dc541c47a750a97edaadde6a31a1a917525f4a
SHA512

650f25a99664a71ab958a4ab2af30e09dedb1ed591c3784c85eff32141d6d32abdc264f76037c071bdc3fc4532dd1540d9366eaa6bc9e1cc2b9e95bda21165c8
SSDEEP

12288:9TbEblEqvPedr2DQFN7DE9auJF+3nuBAqyvK5YISC048KZj/C6Zc492g8MhD9I7S:Z4blESedCDqlESxzKc4PHhD94tEMBU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1b1c741e0024ea04b37c83c17fde84aa_JaffaCakes118

Files

1b1c741e0024ea04b37c83c17fde84aa_JaffaCakes118
.exe windows:4 windows x86 arch:x86

55c85abe0934f6ca87f4de210392cc8c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetEnvironmentStrings
GetEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
RaiseException
FreeEnvironmentStringsW
FlushFileBuffers
UnhandledExceptionFilter
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
GetFileAttributesA
CompareStringW
GetStdHandle
SetEnvironmentVariableA
GetACP
SetStdHandle
HeapSize
HeapReAlloc
HeapAlloc
RtlUnwind
GetVersion
GetCommandLineA
GetStartupInfoA
DeleteFileA
MoveFileA
GetLocalTime
TerminateProcess
MulDiv
GetCurrentDirectoryA
GetPrivateProfileStringA
GetPrivateProfileIntA
GetCPInfo
GetStringTypeW
GetOEMCP
GetStringTypeA
IsBadCodePtr
SetUnhandledExceptionFilter
IsBadReadPtr
SetEndOfFile
LCMapStringA
LCMapStringW
SetFilePointer
CompareStringA
ReadFile
HeapDestroy
GetFileType
SetHandleCount
MultiByteToWideChar
ExitProcess
HeapFree
GetCurrentProcess
WideCharToMultiByte
LoadLibraryA
GetProcAddress
GetModuleHandleA
WriteFile
GetLastError
CreateFileA
GetVersionExA
CloseHandle
IsProcessorFeaturePresent
GetTimeZoneInformation
GetSystemTime

user32

TranslateMessage
DispatchMessageA
TranslateAcceleratorA
GetWindowRect
ClientToScreen
GetClientRect
SetDlgItemTextA
EndDialog
ShowWindow
EnableWindow
GetDlgItem
GetDlgItemTextA
PostMessageA
DefWindowProcA
DestroyCursor
LoadCursorFromFileA
LoadCursorA
DrawMenuBar
RedrawWindow
GetSystemMetrics
PeekMessageA
SendDlgItemMessageA
WaitMessage
CreateWindowExA
PostQuitMessage
DialogBoxParamA
LoadIconA
RegisterClassA
UpdateWindow
LoadAcceleratorsA
SetCursor
GetForegroundWindow
MessageBoxA

winmm

timeGetTime
waveOutSetVolume
auxSetVolume
mciSendStringA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

ole32

CoInitialize
CoUninitialize
CoCreateInstance

advapi32

RegOpenKeyExA
RegDeleteValueA
RegCreateKeyExA
RegSetValueExA
RegQueryValueExA
RegOpenKeyA
RegCloseKey

gdi32

SetMapMode
GetDeviceCaps
CreateDIBSection
SelectObject
SetTextColor
CreateFontA
SetTextAlign
GetTextExtentPoint32A
SetBkColor
DeleteObject
DeleteDC
ExtTextOutA
GetStockObject
CreateCompatibleDC

shell32

ShellExecuteA

d3d8

Direct3DCreate8

dsound

ord11

Sections

.text
Size: 508KB - Virtual size: 504KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 68KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 116KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rrdata
Size: 60KB - Virtual size: 60KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

55c85abe0934f6ca87f4de210392cc8c

Headers

File Characteristics

Imports

kernel32

user32

winmm

comdlg32

ole32

advapi32

gdi32

shell32

d3d8

dsound

Sections

.text Size: 508KB - Virtual size: 504KB

.rdata Size: 24KB - Virtual size: 20KB

.data Size: 68KB - Virtual size: 1.4MB

.data1 Size: 4KB - Virtual size: 2KB

.rsrc Size: 116KB - Virtual size: 115KB

.rrdata Size: 60KB - Virtual size: 60KB

.text
Size: 508KB - Virtual size: 504KB

.rdata
Size: 24KB - Virtual size: 20KB

.data
Size: 68KB - Virtual size: 1.4MB

.data1
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 116KB - Virtual size: 115KB

.rrdata
Size: 60KB - Virtual size: 60KB