32ff7a9677011842242d13be091249fc_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

32ff7a9677011842242d13be091249fc_JaffaCakes118
Size

590KB
MD5

32ff7a9677011842242d13be091249fc
SHA1

d1ee9a7a99be19a2938dad16a845a6846b03e54f
SHA256

1ec9ca5f70ee6c8af38b11c8fb08834105a0f28c8cb25cf002a4f77e592e684d
SHA512

52d67e74a59ba8f236985436edbea1ccb750dbc577e1f50cd7c7d722ca3e42b337a60353afbc92f1c2ed1a7e517dd51bfec8a8ee4d1a1640a777901deeacf5e6
SSDEEP

6144:K4Y4FKEAWrLtiWFpnRHCtA6RD2WFjFgbyCiWf1sDHisn4CUPUbYDJeLU6IlYxwFs:HLLrLt/uA6RD2WXm0vY76IixwFrOTp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
32ff7a9677011842242d13be091249fc_JaffaCakes118

Files

32ff7a9677011842242d13be091249fc_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0468252ab3019b37c849fbe3795f083b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

dinput

DirectInputCreateEx

gfx_manager

DDLoadBitmap
GFXMNG_SetColorKey
GFXMNG_SetCTS
DDReLoadBitmap
DDLoadBitmapSys

dsound

ord1

winmm

timeGetTime

ddraw

DirectDrawCreateEx

kernel32

MultiByteToWideChar
LoadLibraryA
GetOEMCP
GetACP
GetCPInfo
FlushFileBuffers
SetStdHandle
IsBadCodePtr
IsBadReadPtr
SetUnhandledExceptionFilter
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetStringTypeA
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
QueryPerformanceCounter
QueryPerformanceFrequency
OutputDebugStringA
WriteFile
CreateFileA
ReadFile
CloseHandle
GetModuleFileNameA
GetFullPathNameA
SetFilePointer
HeapSize
GetStringTypeW
LCMapStringA
LCMapStringW
GetEnvironmentStrings
GetCurrentProcess
TerminateProcess
RtlUnwind
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
GetProcAddress
HeapFree
HeapAlloc
GetLastError
HeapReAlloc
SetEndOfFile

user32

DialogBoxParamA
wsprintfA
PeekMessageA
GetMessageA
TranslateMessage
DispatchMessageA
WaitMessage
GetDlgItemTextA
InvalidateRgn
LoadBitmapA
GetCursorPos
GetWindowRect
SendDlgItemMessageA
BlockInput
EndDialog
DefWindowProcA
DestroyWindow
LoadIconA
LoadCursorA
RegisterClassA
GetSystemMetrics
CreateWindowExA
ShowWindow
UpdateWindow
SetFocus
ShowCursor
MessageBoxA
PostQuitMessage

gdi32

PtInRegion
CreateRectRgn
CreateCompatibleDC
SelectObject
BitBlt
DeleteDC
SetBkMode
SetTextColor
TextOutA
GetStockObject

advapi32

RegSetValueExA
RegCreateKeyA
RegCloseKey
RegQueryValueExA

shell32

ShellExecuteA

Sections

.text
Size: 128KB - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 12KB - Virtual size: 55KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 280KB - Virtual size: 278KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0468252ab3019b37c849fbe3795f083b

Headers

File Characteristics

Imports

dinput

gfx_manager

dsound

winmm

ddraw

kernel32

user32

gdi32

advapi32

shell32

Sections

.text Size: 128KB - Virtual size: 124KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 12KB - Virtual size: 55KB

.rsrc Size: 280KB - Virtual size: 278KB

.text
Size: 128KB - Virtual size: 124KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 12KB - Virtual size: 55KB

.rsrc
Size: 280KB - Virtual size: 278KB