398ea4bb1ddb1301d05710330a908b4c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

398ea4bb1ddb1301d05710330a908b4c_JaffaCakes118
Size

2.7MB
MD5

398ea4bb1ddb1301d05710330a908b4c
SHA1

30b2ede8889ce68559fe5e7cbfc3974b4081d0ca
SHA256

5b0a949476c86c5326c17ca068bd7307c96a5b541077f9462a5cb1704ff82cc7
SHA512

4283f5baf389419442b0ff7e66c30799a6e83d18285087e02484d1fae5b6e00aec654490046fcba12e0ed7db7fcc676ad8e643fe832c10f9b30e10ba744fd723
SSDEEP

49152:xda9SElUeBQKPFUKEzDEs56LeqbBnYCrNmh7NHKX6W+nTAop:Z0sqYCZmh7NH+op

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
398ea4bb1ddb1301d05710330a908b4c_JaffaCakes118

Files

398ea4bb1ddb1301d05710330a908b4c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

dfeab95ad44277b416c4e552eb529b61

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

PDB Paths

c:\playbuilder2\depot\game\love-and-death-bitten\download\LoveAndDeath-Bitten.pdb

Imports

ddraw

DirectDrawEnumerateExA
DirectDrawCreateEx

dsound

DirectSoundCreate

gdi32

SetTextColor
CreateDIBSection
CreateBitmap
DeleteObject
StretchBlt
GetDeviceCaps
GetStockObject
SetBkMode
BitBlt
GetTextMetricsA
GetPaletteEntries

kernel32

GetOEMCP
GetACP
VirtualAlloc
GetCurrentProcessId
QueryPerformanceCounter
VirtualFree
HeapCreate
HeapDestroy
LockResource
GetEnvironmentStringsW
FreeEnvironmentStringsW
GetEnvironmentStrings
FreeEnvironmentStringsA
GetModuleFileNameA
GetStdHandle
WriteFile
HeapSize
GetCurrentThreadId
TlsFree
TlsSetValue
TlsAlloc
TlsGetValue
GetCPInfo
LCMapStringW
LCMapStringA
GetFileType
SetStdHandle
ExitProcess
CreateDirectoryA
GetSystemTimeAsFileTime
HeapReAlloc
DeleteFileW
GetStartupInfoA
GetProcessHeap
HeapAlloc
HeapFree
IsValidCodePage
RaiseException
IsDebuggerPresent
SetUnhandledExceptionFilter
UnhandledExceptionFilter
GetCurrentProcess
RtlUnwind
InterlockedExchange
InterlockedDecrement
InterlockedIncrement
GetWindowsDirectoryA
GetFileSize
DeleteFileA
FlushFileBuffers
CreateFileA
ReadFile
CreateFileW
CreateFileMappingA
MapViewOfFile
UnmapViewOfFile
GetFileAttributesA
SetFilePointer
GetConsoleCP
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
GetTickCount
GetVersion
ExitThread
GetConsoleMode
CompareStringA
CompareStringW
GetTimeZoneInformation
GetLocaleInfoA
GetStringTypeA
GetStringTypeW
GetUserDefaultLCID
EnumSystemLocalesA
IsValidLocale
GetLocaleInfoW
WriteConsoleA
GetConsoleOutputCP
WriteConsoleW
SetEndOfFile
SetEnvironmentVariableA
FindNextFileW
GetCommandLineA
LoadLibraryA
WaitForSingleObject
ReleaseMutex
CloseHandle
CreateMutexA
GetExitCodeThread
Sleep
CreateThread
GetProcAddress
FreeLibrary
FindClose
TerminateProcess
GetVersionExA
GetShortPathNameW
GetLastError
GlobalUnlock
GlobalLock
GlobalAlloc
SetCurrentDirectoryW
SetThreadPriority
SetLastError
GetCurrentDirectoryW
GetModuleFileNameW
GetSystemDirectoryW
LoadLibraryW
GetModuleHandleA
CreateEventA
WideCharToMultiByte
MultiByteToWideChar
GetFullPathNameW
FindFirstFileW
CreateDirectoryW

oleaut32

SysFreeString

shell32

SHGetSpecialFolderPathW
SHGetSpecialFolderPathA
ShellExecuteA

user32

GetParent
PostMessageA
SetWindowPos
IsWindowVisible
GetWindow
ShowWindow
GetWindowRect
SetActiveWindow
SetForegroundWindow
GetForegroundWindow
GetWindowLongA
TrackMouseEvent
SetClassLongA
SetCursorPos
DefWindowProcW
SetMenuItemInfoA
GetSystemMenu
GetCursorPos
DefWindowProcA
GetSystemMetrics
PostQuitMessage
SetClipboardData
CloseClipboard
EmptyClipboard
OpenClipboard
GetClipboardData
wsprintfA
DrawTextA
UnregisterClassA
CallWindowProcA
IsClipboardFormatAvailable
GetMenu
AdjustWindowRectEx
ClientToScreen
SetRect
GetCapture
CopyRect
DestroyCursor
CreateIconIndirect
SetCursor
InvalidateRect
MessageBoxA
SetParent
MoveWindow
GetDC
ReleaseDC
OffsetRect
IntersectRect
SystemParametersInfoA
FindWindowA
DestroyWindow
SetTimer
PeekMessageA
TranslateMessage
DispatchMessageW
DispatchMessageA
PeekMessageW
GetKeyState
BeginPaint
EndPaint
SetFocus
SetCapture
ReleaseCapture
MsgWaitForMultipleObjects
LoadIconA
LoadCursorA
RegisterClassW
RegisterClassA
IsWindow
CreateWindowExW
CreateWindowExA
GetClientRect
SetWindowLongW
SetWindowLongA
SetWindowTextW
SetWindowTextA
SendMessageA

version

GetFileVersionInfoSizeA
GetFileVersionInfoA
VerQueryValueA

wininet

InternetOpenA
InternetReadFile
InternetQueryDataAvailable
InternetOpenUrlA
HttpSendRequestA
HttpAddRequestHeadersA
InternetSetOptionA
InternetQueryOptionA
HttpOpenRequestA
InternetCloseHandle
InternetConnectA
InternetCrackUrlA

winmm

timeBeginPeriod
timeEndPeriod
timeGetTime

iphlpapi

GetAdaptersInfo

ole32

CoInitialize
CoCreateGuid

Sections

.text
Size: 2.0MB - Virtual size: 2.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 428KB - Virtual size: 432KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 85KB - Virtual size: 4.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 168KB - Virtual size: 168KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.TEDATA
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

dfeab95ad44277b416c4e552eb529b61

Headers

File Characteristics

PDB Paths

Imports

ddraw

dsound

gdi32

kernel32

oleaut32

shell32

user32

version

wininet

winmm

iphlpapi

ole32

Sections

.text Size: 2.0MB - Virtual size: 2.0MB

.rdata Size: 428KB - Virtual size: 432KB

.data Size: 85KB - Virtual size: 4.2MB

.rsrc Size: 168KB - Virtual size: 168KB

.TEDATA Size: 8KB - Virtual size: 8KB

.text
Size: 2.0MB - Virtual size: 2.0MB

.rdata
Size: 428KB - Virtual size: 432KB

.data
Size: 85KB - Virtual size: 4.2MB

.rsrc
Size: 168KB - Virtual size: 168KB

.TEDATA
Size: 8KB - Virtual size: 8KB