2cafb9e00ccc149f22c1647c255d7df5_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2cafb9e00ccc149f22c1647c255d7df5_JaffaCakes118
Size

77KB
MD5

2cafb9e00ccc149f22c1647c255d7df5
SHA1

ca2ced41821b62a3d7288a60d17727051d4c2013
SHA256

77a8b2f55fa19552c3063bcf56e4c0feb286fb84d73ef2e154a57739104326c4
SHA512

5b8c6911cff348ca8910997ffe9e90fb5d5b02512f6b75638953582ab9dde51e68ad1d94433f9181b07c3816690119037a9e0386c28bcdf9d5fce2795ff42e9c
SSDEEP

1536:+1N87o2+qb5dxdEq0fOqyQG08vvmLiZhgilIs4L7Nfc:+H12bdxdEqcOXQP8vVZemE7Nfc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2cafb9e00ccc149f22c1647c255d7df5_JaffaCakes118

Files

2cafb9e00ccc149f22c1647c255d7df5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

69d0af97e66c8b77bba10bb0478c6f90

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

BeginPaint
InvalidateRect
EndPaint
GetWindowLongW
IsWindow
GetMessageTime
UnregisterDeviceNotification
GetWindowTextW
DrawIconEx
RedrawWindow
ChildWindowFromPoint
GetWindowDC
DefWindowProcW
EnableWindow
GetWindowRect
LoadImageW
SetWindowLongW
wsprintfW
RegisterDeviceNotificationW
SetRect
DrawTextW
IsWindowVisible
MapWindowPoints
GetCursorPos
GetClientRect
SendMessageW
DestroyWindow
GetSysColor
WinHelpW
GetDlgItem
GetDC
CreateWindowExW
GetParent
SetTimer
SetWindowPos
KillTimer
GetDlgCtrlID
ScreenToClient
RegisterClassExW
DestroyIcon
PostMessageW
SendDlgItemMessageW
ReleaseDC
LoadStringW
GetSystemMetrics
UnregisterClassW
MessageBoxW

advapi32

RegCloseKey
RegQueryValueExW
RegOpenKeyExW

cmdial32

AutoDialFunc

comctl32

CreatePropertySheetPageW
DllGetVersion

kernel32

GetSystemTimeAsFileTime
Sleep
LeaveCriticalSection
EnterCriticalSection
GetTickCount
GetLastError
TerminateProcess
DisableThreadLibraryCalls
GetCurrentProcess
InterlockedIncrement
GetCurrentProcessId
VirtualAlloc
SetUnhandledExceptionFilter
DeleteCriticalSection
lstrlenW
LocalFree
InitializeCriticalSection
IsBadWritePtr
LocalAlloc
UnhandledExceptionFilter
GetCurrentThreadId
IsBadReadPtr
QueryPerformanceCounter
MulDiv
SetLastError

msvcrt

_adjust_fdiv
free
_except_handler3
__CxxFrameHandler
wcslen
malloc

dinput

DirectInputCreateW

crypt32

CryptLoadSip

gdi32

DPtoLP
PaintRgn
CreatePolygonRgn
GetStockObject
Ellipse
SetDCPenColor
MoveToEx
CreateCompatibleDC
SetViewportExtEx
ExtTextOutW
GetMapMode
LineTo
CreateSolidBrush
BitBlt
CreatePenIndirect
DeleteObject
DeleteDC
SetBkColor
SetTextColor
SetMapMode
CreateFontW
SetViewportOrgEx
SetWindowExtEx
GetDeviceCaps
SetBkMode
SelectObject
GetRgnBox

shlwapi

StrNCatW
StrCpyNW
StrDupW

Sections

.text
Size: 512B - Virtual size: 420B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 50KB - Virtual size: 50KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 28B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

.idata
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: - Virtual size: 656KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 19KB - Virtual size: 19KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

69d0af97e66c8b77bba10bb0478c6f90

Headers

DLL Characteristics

File Characteristics

Imports

user32

advapi32

cmdial32

comctl32

kernel32

msvcrt

dinput

crypt32

gdi32

shlwapi

Sections

.text Size: 512B - Virtual size: 420B

.rsrc Size: 50KB - Virtual size: 50KB

.reloc Size: 512B - Virtual size: 28B

.idata Size: 5KB - Virtual size: 4KB

.data Size: - Virtual size: 656KB

.rdata Size: 19KB - Virtual size: 19KB

.text
Size: 512B - Virtual size: 420B

.rsrc
Size: 50KB - Virtual size: 50KB

.reloc
Size: 512B - Virtual size: 28B

.idata
Size: 5KB - Virtual size: 4KB

.data
Size: - Virtual size: 656KB

.rdata
Size: 19KB - Virtual size: 19KB