31f973a24222098eb128e735b6b4cb6c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

31f973a24222098eb128e735b6b4cb6c_JaffaCakes118
Size

77KB
MD5

31f973a24222098eb128e735b6b4cb6c
SHA1

a82c0c58310142782e7740df2026f04057dd3fef
SHA256

9145cd8f729de8d7abf73f2eaa5fdf473b84c0748ea37a820e2a0309c5fc1e8f
SHA512

04a5f152047b59a40dc4aa93736339495c39d8b1a816303436d63ba21c122c3191db950a43df35c5220c15e677f6e2a6936e9480e6e15091f257d5578242d80d
SSDEEP

768:ky2/1aB5zJMU0qd3nsnX1gk+r8lNJaIKznokFQ+i3aQRmH51KhmRDd5v:lnsqd3n2dS8lN9KznokFQ+3eYKsD

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
31f973a24222098eb128e735b6b4cb6c_JaffaCakes118

Files

31f973a24222098eb128e735b6b4cb6c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

312eab96d28d25806709037e05f95844

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

dsound

ord1
ord2

kernel32

lstrcpyA
GetProcAddress
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
VirtualAlloc
WriteFile
RtlUnwind
VirtualFree
HeapCreate
HeapDestroy
GetFileType
GetStdHandle
SetHandleCount
GetOEMCP
GetACP
GetCPInfo
GetEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
GetCurrentProcess
TerminateProcess
HeapFree
HeapAlloc
ExitProcess
GetVersion
CreateFileA
DeviceIoControl
LocalAlloc
LocalFree
lstrcatA
WideCharToMultiByte
MultiByteToWideChar
lstrlenA
lstrcmpiA
GetTickCount
WaitForMultipleObjects
SetEvent
WaitForSingleObject
CloseHandle
SearchPathA
WinExec
lstrcmpA
CreateMutexA
GetLastError
GetVersionExA
CreateEventA
CreateThread
LoadLibraryA
GetCommandLineA
GetStartupInfoA
GetModuleHandleA

user32

LoadCursorA
LoadIconA
SendMessageA
GetClassNameA
GetWindow
GetDesktopWindow
CreateWindowExA
LoadImageA
RegisterClassA
DispatchMessageA
TranslateMessage
GetMessageA
ShowWindow
CharUpperA
GetSysColor
SystemParametersInfoA
GetDC
GetMenuCheckMarkDimensions
ReleaseDC
CreatePopupMenu
InsertMenuItemA
GetCursorPos
TrackPopupMenu
DestroyMenu
PostQuitMessage
PostMessageA
SetForegroundWindow
DefWindowProcA
LoadStringA

gdi32

CreateCompatibleDC
BitBlt
DeleteDC
CreatePen
MoveToEx
LineTo
CreateBrushIndirect
Rectangle
GetTextColor
SetTextColor
GetBkMode
SetBkMode
GetTextAlign
SetTextAlign
ExtTextOutA
CreateFontIndirectA
SelectObject
GetTextExtentPoint32A
DeleteObject

advapi32

RegDeleteValueA
RegCloseKey
RegSetValueExA
RegEnumKeyA
RegOpenKeyA
RegCreateKeyA
RegQueryValueExA

shell32

Shell_NotifyIconA

setupapi

SetupDiGetDeviceInterfaceDetailA
SetupDiEnumDeviceInterfaces
SetupDiGetDeviceInstanceIdA
SetupDiEnumDeviceInfo
SetupDiGetClassDevsA
SetupDiDestroyDeviceInfoList

winmm

mixerGetLineInfoA
mixerGetLineControlsA
mixerGetControlDetailsA
mixerGetNumDevs
mixerGetID
mixerGetDevCapsA
mixerOpen
mixerClose

Sections

.text
Size: 27KB - Virtual size: 27KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 4KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 32KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

312eab96d28d25806709037e05f95844

Headers

File Characteristics

Imports

dsound

kernel32

user32

gdi32

advapi32

shell32

setupapi

winmm

Sections

.text Size: 27KB - Virtual size: 27KB

.rdata Size: 4KB - Virtual size: 4KB

.data Size: 12KB - Virtual size: 18KB

.rsrc Size: 32KB - Virtual size: 46KB

.text
Size: 27KB - Virtual size: 27KB

.rdata
Size: 4KB - Virtual size: 4KB

.data
Size: 12KB - Virtual size: 18KB

.rsrc
Size: 32KB - Virtual size: 46KB