4341f4d167b9598e9323ecf9aee6f385_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

4341f4d167b9598e9323ecf9aee6f385_JaffaCakes118
Size

932KB
MD5

4341f4d167b9598e9323ecf9aee6f385
SHA1

c3eaf3e4f79f5ffc3b69c592a6c3a9a031a6e2df
SHA256

dbe34105d591e1f0d7f3930a6fcc0673b42799b3aa5edffcedadf1d47f7f677a
SHA512

b12b209a970444040f9e8b80778c72ce4adc846a2c43563117bbc95b00c4caead51d69b2da2cbb702f9d8b81f7d0dd8b0f8d336c65ab3e637e3af0f3e932bf1a
SSDEEP

24576:fsWoaNUUR6GIQyHfhLaesXlWx5qXkuFHPh5lI+gnM:iaNUxQQvek0HPhPIxM

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
4341f4d167b9598e9323ecf9aee6f385_JaffaCakes118

Files

4341f4d167b9598e9323ecf9aee6f385_JaffaCakes118
.exe windows:5 windows x86 arch:x86

353bfc28b467ca22940c30fa4701c97d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GlobalFree
HeapFree
CompareStringA
GetLocaleInfoW
CreateNamedPipeA
GetDriveTypeA
GetLocaleInfoA
CreateThread
InitializeCriticalSectionAndSpinCount
MultiByteToWideChar
lstrcmpA
SetFilePointer
Sleep
TerminateProcess
HeapAlloc
RaiseException
GetCurrentDirectoryA
VirtualFree
HeapSize
LCMapStringA
IsValidCodePage
GetProcessHeap
GetFileSize
QueryPerformanceCounter
GetStartupInfoA
GetConsoleCP
GetACP
GetModuleHandleW
FindClose
GetCPInfo
GetModuleFileNameA
SetHandleCount
GetTimeZoneInformation
GetSystemTimeAsFileTime
WriteConsoleA
lstrlenA
WideCharToMultiByte
GetVersionExA
GetStringTypeW
ExitThread
TlsSetValue
DeleteFileA
SetStdHandle
LoadLibraryA
LCMapStringW
ResetEvent
GetProcAddress
InterlockedDecrement
GetVersion
HeapCreate
InterlockedIncrement
GetCommandLineA
TlsAlloc
GlobalUnlock
ExitProcess
GetModuleHandleA
GetFileAttributesA
GetOEMCP
lstrcpyA
CloseHandle
WriteFile
GetConsoleMode
EnumSystemLocalesA
LeaveCriticalSection
GlobalAlloc
CreateEventA
GetLastError
CompareStringW
UnhandledExceptionFilter
lstrcpynA
GetFileInformationByHandle
SetLastError
SetConsoleTitleA
SetEnvironmentVariableA
SetThreadPriority
GetTickCount
GlobalLock
TlsFree
ResumeThread
SetEndOfFile
ReadFile
Beep
CreateFileA
GetDiskFreeSpaceExA
FileTimeToSystemTime
GetFileType
GetEnvironmentStrings
InitializeCriticalSection
EnterCriticalSection
FlushFileBuffers
GetCurrentProcess
GetCurrentThread
IsDebuggerPresent
GetFullPathNameA
FreeEnvironmentStringsA
FindFirstFileA
GetEnvironmentStringsW
GetCurrentThreadId
SetConsoleCtrlHandler
SetUnhandledExceptionFilter
GetConsoleOutputCP
GetUserDefaultLCID
WaitForSingleObject
RtlUnwind
GetStdHandle
FileTimeToLocalFileTime
HeapReAlloc
TlsGetValue
IsValidLocale
PeekNamedPipe
GetCurrentProcessId
ConnectNamedPipe
WriteConsoleW
DeviceIoControl
DeleteCriticalSection
FreeEnvironmentStringsW
GetStringTypeA
VirtualAlloc

user32

CheckMenuItem
RegisterClassA
CallWindowProcA
SetCursorPos
GetDlgItemTextA
DialogBoxParamA
GetActiveWindow
MapDialogRect
wsprintfA
EnableMenuItem
SetFocus
ReleaseDC
PostMessageA
GetDlgItem
UpdateWindow
InvalidateRect
MessageBeep
SetClipboardData
GetClassInfoA
DrawTextA
GetClipboardData
SetRect
EndDialog
LoadMenuA
CloseClipboard
SetParent
OpenClipboard
SetWindowLongA
ScreenToClient
IsWindowEnabled
SendMessageA
GetWindowRect
PostQuitMessage
GetParent
KillTimer
GetSysColorBrush
TranslateMessage
IsWindowVisible
EndPaint
GetDlgItemInt
AdjustWindowRect
SetWindowTextA
GetCursorPos
SetCursor
GetWindowTextA
MessageBoxA
FindWindowA
SetTimer
LoadCursorA
ClientToScreen
EmptyClipboard
GetKeyState
RegisterClassExA
CreateWindowExA
BeginPaint
GetDesktopWindow
EnableWindow
GetSubMenu
SetWindowPos
AdjustWindowRectEx
GetForegroundWindow
ShowCursor
GetMessageA
GetDC
DispatchMessageA
GetMessageTime
GetWindowLongA
GetSystemMetrics
GetSysColor
ShowWindow
DestroyWindow
DefWindowProcA
GetClientRect
MoveWindow
GetFocus
LoadIconA

gdi32

GetTextFaceA
DPtoLP
PatBlt
StretchBlt
SetBkMode
StretchDIBits
DeleteObject
CreateBitmap
GetTextMetricsA
SetBitmapBits
SelectObject
CreateFontIndirectA
SetMapMode
SetBkColor
GetObjectA
CreateCompatibleBitmap
SetTextColor
DeleteDC
CreateCompatibleDC
GetStockObject
BitBlt
GetMapMode

comdlg32

GetOpenFileNameA
CommDlgExtendedError
GetSaveFileNameA
ChooseFontA

advapi32

RegCloseKey
RegOpenKeyExA
RegQueryValueExA

shell32

SHGetMalloc
SHGetPathFromIDListA
SHBrowseForFolderA

comctl32

ord16
ord17
ord4
ord6

winmm

waveOutWrite
midiOutOpen
midiOutLongMsg
midiOutClose
waveOutReset
waveOutClose
midiOutShortMsg
waveOutGetErrorTextA
waveOutUnprepareHeader
midiOutPrepareHeader
midiOutReset
waveOutOpen
midiOutUnprepareHeader
joyGetPos
waveOutPrepareHeader

wsock32

bind
WSACleanup
connect
closesocket
recv
WSAStartup
htons
socket
ntohs
gethostbyname
accept
htonl
select
setsockopt
listen
ntohl
send

secur32

DeleteSecurityContext

Sections

.text
Size: 118KB - Virtual size: 117KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.textes
Size: 252KB - Virtual size: 251KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 310KB - Virtual size: 309KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 230KB - Virtual size: 2.0MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.catow
Size: 11KB - Virtual size: 10KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

353bfc28b467ca22940c30fa4701c97d

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

comctl32

winmm

wsock32

secur32

Sections

.text Size: 118KB - Virtual size: 117KB

.textes Size: 252KB - Virtual size: 251KB

.rdata Size: 310KB - Virtual size: 309KB

.data Size: 230KB - Virtual size: 2.0MB

.catow Size: 11KB - Virtual size: 10KB

.rsrc Size: 2KB - Virtual size: 2KB

.reloc Size: 7KB - Virtual size: 7KB

.text
Size: 118KB - Virtual size: 117KB

.textes
Size: 252KB - Virtual size: 251KB

.rdata
Size: 310KB - Virtual size: 309KB

.data
Size: 230KB - Virtual size: 2.0MB

.catow
Size: 11KB - Virtual size: 10KB

.rsrc
Size: 2KB - Virtual size: 2KB

.reloc
Size: 7KB - Virtual size: 7KB