2d155bfb895e66ac4d71c283734ee721_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2d155bfb895e66ac4d71c283734ee721_JaffaCakes118
Size

242KB
MD5

2d155bfb895e66ac4d71c283734ee721
SHA1

582c2f23514d11adf6e159f590699dafe85b8cb8
SHA256

97d33646eb6c452a3d4eaa21282a9cd8b0fbfe05e55b8bec3254cb7aa3118bc3
SHA512

ea5b229ace09ec8826b755247587222cd012edb4aeae971f9cfecf32bb62dbf0e8204ba9531f606890f35ff64a64bf775e990eec8577348f6afa9ccaaa5c0c50
SSDEEP

3072:1FKwttgar8KT486+Kpr8Rus6h9lltbRkFgjVF73BgSiZZOGcPcwieaSN6GB8y5U6:1FKwfbz4889tbRkFg5FPi03vzo0naGT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2d155bfb895e66ac4d71c283734ee721_JaffaCakes118

Files

2d155bfb895e66ac4d71c283734ee721_JaffaCakes118
.exe windows:4 windows x86 arch:x86

dcfc2466a8d232b20057c3b10138e0ad

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

PlaySoundA

kernel32

GetCPInfo
GetModuleHandleA
GetCommandLineA
ExitProcess
RaiseException
TerminateProcess
SetStdHandle
GetFileType
HeapSize
HeapFree
HeapAlloc
GetACP
GetOEMCP
GetTimeZoneInformation
HeapDestroy
HeapCreate
VirtualFree
VirtualAlloc
GetDriveTypeA
HeapReAlloc
RtlUnwind
GlobalHandle
SetHandleCount
GetStdHandle
SetUnhandledExceptionFilter
LCMapStringA
LCMapStringW
GetStringTypeA
GetStringTypeW
IsBadReadPtr
IsBadWritePtr
IsBadCodePtr
CompareStringA
CompareStringW
SetEnvironmentVariableA
GetLocaleInfoW
lstrcmpA
lstrcmpiA
GetCurrentThread
FileTimeToLocalFileTime
FileTimeToSystemTime
SetErrorMode
GlobalAddAtomA
GetFileTime
GetFileSize
GetFileAttributesA
GetVolumeInformationA
FindFirstFileA
FindClose
SetEndOfFile
UnlockFile
LockFile
FlushFileBuffers
SetFilePointer
WriteFile
ReadFile
CreateFileA
GetCurrentProcess
DuplicateHandle
GetCurrentDirectoryA
lstrcpyA
WritePrivateProfileStringA
GetVersionExA
GetProcessVersion
LoadLibraryA
GetProcAddress
FreeLibrary
GlobalFlags
TlsGetValue
LocalReAlloc
EnterCriticalSection
TlsSetValue
GetVersion
GlobalReAlloc
LeaveCriticalSection
FreeEnvironmentStringsW
DeleteCriticalSection
TlsAlloc
lstrcatA
InitializeCriticalSection
LocalAlloc
lstrcpynA
GetLastError
SetLastError
LocalFree
MultiByteToWideChar
WideCharToMultiByte
lstrlenA
InterlockedDecrement
InterlockedIncrement
MulDiv
GlobalUnlock
GlobalFree
GlobalLock
GlobalAlloc
GlobalDeleteAtom
GetEnvironmentStrings
GetEnvironmentStringsW
UnhandledExceptionFilter
FreeEnvironmentStringsA
GetCurrentThreadId
GetModuleFileNameA
GetPrivateProfileStringA
GetLocaleInfoA
GetSystemDefaultLCID
WinExec
GetFullPathNameA
GlobalGetAtomNameA
CreateProcessA
GetStartupInfoA
CloseHandle
GetExitCodeProcess
OpenProcess

user32

ShowWindow
GetSystemMetrics
EndDialog
GetDC
ReleaseDC
BeginPaint
EndPaint
TabbedTextOutA
DrawTextA
GrayStringA
SetWindowTextA
ClientToScreen
GetDesktopWindow
GetSysColorBrush
DestroyMenu
FindWindowA
LoadStringA
CharUpperA
GetClassNameA
LoadMenuA
SetMenu
ReuseDDElParam
UnpackDDElParam
IsIconic
BringWindowToTop
GetMessageA
TranslateMessage
GetActiveWindow
ValidateRect
GetCursorPos
MessageBoxA
SetCursor
ShowOwnedPopups
LoadIconA
PostMessageA
SystemParametersInfoA
MapWindowPoints
GetSysColor
PeekMessageA
DispatchMessageA
GetFocus
SetActiveWindow
IsWindow
SetRectEmpty
TranslateAcceleratorA
EqualRect
DeferWindowPos
BeginDeferWindowPos
LoadAcceleratorsA
ReleaseCapture
IsWindowVisible
ScreenToClient
ScrollWindow
CopyRect
ShowScrollBar
SetScrollRange
GetScrollPos
SetScrollPos
IsWindowEnabled
IsChild
GetParent
GetCapture
wsprintfA
GetClassInfoA
RegisterClassA
GetMenuItemCount
GetSubMenu
GetMenuItemID
GetMenu
GetDlgItem
GetWindowTextA
GetDlgCtrlID
GetKeyState
DefWindowProcA
DestroyWindow
CreateWindowExA
SetWindowsHookExA
CallNextHookEx
GetClassLongA
SetPropA
UnhookWindowsHookEx
GetLastActivePopup
GetForegroundWindow
SetForegroundWindow
SendMessageA
GetPropA
CallWindowProcA
RemovePropA
GetMessageTime
GetMessagePos
GetWindow
GetWindowRect
GetWindowLongA
SetWindowLongA
SetWindowPos
RegisterWindowMessageA
EnableWindow
PostQuitMessage
WinHelpA
InvalidateRect
PtInRect
UpdateWindow
LoadCursorA
GetClientRect
GetMenuCheckMarkDimensions
LoadBitmapA
GetMenuState
ModifyMenuA
SetMenuItemBitmaps
CheckMenuItem
EnableMenuItem
EndDeferWindowPos
SetFocus
GetNextDlgTabItem
AdjustWindowRectEx
GetTopWindow
SetScrollInfo
WindowFromPoint
UnregisterClassA

gdi32

CreateSolidBrush
RealizePalette
SetTextColor
SetBkColor
GetObjectA
CreateBitmap
DeleteDC
SaveDC
RestoreDC
SelectObject
GetStockObject
SelectPalette
SetMapMode
SetViewportOrgEx
OffsetViewportOrgEx
SetViewportExtEx
ScaleViewportExtEx
SetWindowExtEx
ScaleWindowExtEx
GetClipBox
DeleteObject
GetDeviceCaps
PtVisible
RectVisible
TextOutA
ExtTextOutA
Escape
CreatePalette
StretchDIBits

comdlg32

GetFileTitleA

winspool.drv

ClosePrinter
DocumentPropertiesA
OpenPrinterA

advapi32

RegOpenKeyExA
RegQueryValueExA
RegCreateKeyExA
RegSetValueExA
RegConnectRegistryA
RegOpenKeyA
RegCloseKey

shell32

DragFinish
ShellExecuteA
DragQueryFileA

comctl32

ord17
ImageList_Destroy

Sections

.text
Size: 94KB - Virtual size: 93KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 25KB - Virtual size: 24KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 15KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 107KB - Virtual size: 128KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

dcfc2466a8d232b20057c3b10138e0ad

Headers

File Characteristics

Imports

winmm

kernel32

user32

gdi32

comdlg32

winspool.drv

advapi32

shell32

comctl32

Sections

.text Size: 94KB - Virtual size: 93KB

.rdata Size: 25KB - Virtual size: 24KB

.data Size: 15KB - Virtual size: 37KB

.rsrc Size: 107KB - Virtual size: 128KB

.text
Size: 94KB - Virtual size: 93KB

.rdata
Size: 25KB - Virtual size: 24KB

.data
Size: 15KB - Virtual size: 37KB

.rsrc
Size: 107KB - Virtual size: 128KB