23e4f3c634fe8c2d17c25054d72c8c05_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

23e4f3c634fe8c2d17c25054d72c8c05_JaffaCakes118
Size

205KB
MD5

23e4f3c634fe8c2d17c25054d72c8c05
SHA1

51cc9b9c80672b9cb429734e241ed32d37ee04cb
SHA256

14b8cb8d66f93b39edb13193a2f1cea3450a3b576e668d8e7f087d8b121f02c4
SHA512

f808c37370131440559c4f8ba74e663efc0c7577c385c6e46e7a8ea3dbe4e6302da960260519b9950ddbe846b506eea9717dc74d367247527439fb84633e1f83
SSDEEP

3072:y3nVZSIM907SJCY8c9yVDl83hzt9kKsWouCulRKkcbm0kEmNhJdiO875vbf:hp90MCLc9ygQ3WouCqRKHbmc0J9875b

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
23e4f3c634fe8c2d17c25054d72c8c05_JaffaCakes118

Files

23e4f3c634fe8c2d17c25054d72c8c05_JaffaCakes118
.exe windows:2 windows x86 arch:x86

30ae9c8d011c550428216f75826b2380

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

malloc
_initterm
free
_vsnprintf
wcslen
qsort
_vsnwprintf

user32

EndDeferWindowPos
GetUpdateRect
SendDlgItemMessageW
ClientToScreen
GetCursorPos
SetParent
GetDC
CreateIconIndirect
GetIconInfo
LoadImageW
CopyImage
InflateRect
GetWindow
LoadStringA
GetWindowTextA
LoadIconW
SetDlgItemTextW
GetDlgItemTextW
GetSysColor
FillRect
DrawFocusRect
CreatePopupMenu
AppendMenuW
TrackPopupMenu
DestroyMenu
ChildWindowFromPointEx
GetFocus
LoadCursorW
SetCursor
EndDialog
GetWindowDC
ReleaseDC
InvalidateRect
GetClientRect
DeferWindowPos
CheckDlgButton
EnableWindow
ShowWindow
SetWindowTextW
GetWindowTextW
MessageBeep
GetWindowTextLengthW
SetWindowPos
GetSystemMetrics
SetPropW
SendMessageW
PostMessageW
GetParent
RemovePropW
GetPropW
SetFocus
GetDlgCtrlID
GetWindowRect
MapWindowPoints
EnumChildWindows
SetWindowLongW
DestroyIcon
LoadStringW
ScreenToClient
GetWindowLongW
SetWindowContextHelpId
WinHelpW
DestroyWindow
BeginDeferWindowPos
MessageBoxA
DialogBoxParamW
DialogBoxIndirectParamW
ReleaseCapture
GetCapture
CheckRadioButton
CreateWindowExW

gdi32

SetTextColor
DeleteObject
SetBkMode
DeleteDC
CreateCompatibleDC
TextOutW
SelectObject
GetTextMetricsW
CreateSolidBrush
StretchDIBits
CreateCompatibleBitmap
Rectangle
GetStockObject
BitBlt
SetStretchBltMode
GetObjectW
GetBitmapBits
StretchBlt
CreateBitmap
SetDIBitsToDevice
MoveToEx
SetTextAlign
SetBkColor
IntersectClipRect
CreateFontIndirectW
GetTextExtentPointW

kernel32

CreateMutexW
ReleaseActCtx
ReleaseMutex
WaitForSingleObject
GetCurrentThreadId
TlsAlloc
TlsFree
TlsSetValue
TlsGetValue
CloseHandle
LoadResource
LockResource
FreeResource
MultiByteToWideChar
GetModuleFileNameW
LoadLibraryW
GetProcAddress
FreeLibrary
lstrcmpA
lstrcmpW
LocalFree
LocalAlloc
lstrlenA
lstrlenW
IsBadWritePtr
GetModuleFileNameA
DeactivateActCtx
ActivateActCtx
SetLastError
GetLastError
AddRefActCtx
QueryPerformanceCounter
GetTickCount
GetCurrentProcessId
GetSystemTimeAsFileTime
TerminateProcess
GetCurrentProcess
UnhandledExceptionFilter
SetUnhandledExceptionFilter
GetModuleHandleW
CreateActCtxW
GetWindowsDirectoryW
lstrcpynW
SearchPathW
FindClose
FindFirstFileW
FindResourceW
VirtualAlloc
lstrcmpiA

advapi32

RegQueryValueExW
RegCloseKey
RegSetValueExW
RegCreateKeyW

msimg32

TransparentBlt

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

shlwapi

wnsprintfW

winmm

waveInPrepareHeader
mmioRenameA
mciGetErrorStringW
timeGetDevCaps
waveInReset
timeKillEvent
mciGetCreatorTask
mmioCreateChunk
midiOutGetNumDevs
midiInStop
waveOutUnprepareHeader
mciGetDeviceIDW
mixerGetNumDevs
mmioInstallIOProcA

Sections

.text
Size: 17KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.bss
Size: 9KB - Virtual size: 160KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 152KB - Virtual size: 339KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.icode
Size: 7KB - Virtual size: 162KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

30ae9c8d011c550428216f75826b2380

Headers

File Characteristics

Imports

msvcrt

user32

gdi32

kernel32

advapi32

msimg32

version

shlwapi

winmm

Sections

.text Size: 17KB - Virtual size: 16KB

.bss Size: 9KB - Virtual size: 160KB

.rdata Size: 5KB - Virtual size: 4KB

.data Size: 152KB - Virtual size: 339KB

.icode Size: 7KB - Virtual size: 162KB

.rsrc Size: 10KB - Virtual size: 10KB

.text
Size: 17KB - Virtual size: 16KB

.bss
Size: 9KB - Virtual size: 160KB

.rdata
Size: 5KB - Virtual size: 4KB

.data
Size: 152KB - Virtual size: 339KB

.icode
Size: 7KB - Virtual size: 162KB

.rsrc
Size: 10KB - Virtual size: 10KB