5a106c8fc51112e92c2a71431535eadf_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

5a106c8fc51112e92c2a71431535eadf_JaffaCakes118
Size

316KB
MD5

5a106c8fc51112e92c2a71431535eadf
SHA1

33a222c83a4866702532d809082db0a03a4cae22
SHA256

53e1d91cbcfbd1092de665d8b8dfda3bc6a687271ba84205a1c68357f8f7df60
SHA512

7419d734365da7257a32f05bdde96d0a2d053b81669b09a891eede24b78bcb3f19c3b03375a8d16ba46e2d5c6bdceed9a30b2f2e7f2ef885524ed8a172f41f89
SSDEEP

3072:1LPF3lWC4S8MoJ7loZV2voo83r58ze4Bonu3CzcGbsZ3S6oP0q0anqw46v/HJ5hp:1LPzWOVdaooqr5we4XUcpQJJ5w

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5a106c8fc51112e92c2a71431535eadf_JaffaCakes118

Files

5a106c8fc51112e92c2a71431535eadf_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a52da9be219bcc8d4e0bdc86e372c377

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

ShellExecuteA
SHGetPathFromIDListA
ord155
SHGetSpecialFolderPathA

winmm

waveInPrepareHeader
waveInReset
waveInAddBuffer
timeGetTime
waveInStart
waveInOpen
mixerOpen
waveInClose
waveOutUnprepareHeader
mmioClose
mmioOpenA
mixerSetControlDetails
waveInUnprepareHeader
mixerClose
PlaySoundW
PlaySoundA

comdlg32

GetOpenFileNameA
ChooseColorW
PrintDlgA
GetSaveFileNameA

version

GetFileVersionInfoSizeA
VerQueryValueA
GetFileVersionInfoA

winspool.drv

GetPrinterDriverDirectoryA
ClosePrinter
ord204
GetPrinterA
EnumPrinterDriversA
OpenPrinterA
AddPrinterDriverA
EnumJobsA
DeviceCapabilitiesA
DocumentPropertiesA
AddPrinterA

user32

DestroyWindow
CreatePopupMenu
GetKeyState
GetClientRect
IntersectRect
MessageBoxW
GetSystemMetrics
EnableWindow
GetDesktopWindow
GetWindowLongW
LoadStringW
GetClipboardData
GetMenuItemCount
MoveWindow
FillRect
KillTimer
DestroyAcceleratorTable
SendMessageA
LoadBitmapW
IsWindowVisible
ReuseDDElParam
SetCapture
GetWindowRect
CallNextHookEx
GetCursorPos
RegisterClassExW
CreateWindowExW
CheckDlgButton
ShowWindow
EmptyClipboard
SetScrollInfo
DestroyIcon
DefWindowProcW
LoadCursorW
MapWindowPoints
LoadIconW
SetActiveWindow
RedrawWindow
RegisterClassW
GetMenuDefaultItem
ScreenToClient
WaitForInputIdle

kernel32

HeapFree
IsValidCodePage
GetConsoleOutputCP
EnterCriticalSection
HeapReAlloc
GetFileType
SetLastError
UnhandledExceptionFilter
IsDebuggerPresent
ReadFile
TlsAlloc
TerminateProcess
GetTickCount
WriteFile
GetStringTypeA
GetCommandLineW
WideCharToMultiByte
SetFilePointer
SetStdHandle
LoadLibraryA
GetCurrentThreadId
QueryPerformanceCounter
LCMapStringW
SetUnhandledExceptionFilter
DeleteCriticalSection
FlushFileBuffers
TlsSetValue
InitializeCriticalSectionAndSpinCount
GetEnvironmentStringsW
FreeEnvironmentStringsW
HeapSize
CompareStringW
GetOEMCP
GetModuleHandleW
RtlUnwind
GetProcAddress
GetACP
SetHandleCount
TlsGetValue
CloseHandle
GetDateFormatA
GetStringTypeW
GetCurrentProcessId
CreateFileA
InterlockedDecrement
GetStartupInfoA
GetTimeZoneInformation
InterlockedExchange
GetCPInfo
LeaveCriticalSection
InterlockedIncrement
RaiseException
GetStartupInfoW
ExitProcess
LoadLibraryW
GetConsoleCP
CompareStringA
SetEnvironmentVariableA
LocalFree
GetLocaleInfoA
GetSystemTimeAsFileTime
WriteConsoleW
WaitForSingleObject
GetLastError
WriteConsoleA
GetConsoleMode
VirtualFree
CreateMutexW
Sleep
VirtualQuery
GetModuleHandleA
MultiByteToWideChar
VirtualAlloc
HeapAlloc
GetModuleFileNameW
GetTimeFormatA
GetCurrentProcess
TlsFree
GetModuleFileNameA
LCMapStringA
HeapCreate
GetStdHandle

ole32

CoTaskMemFree
CoTaskMemAlloc
RegisterDragDrop
OleInitialize
OleSetContainedObject
DoDragDrop
OleGetClipboard
CoInitialize
CoUninitialize
OleUninitialize
GetRunningObjectTable
CoGetClassObject
StgOpenStorageOnILockBytes
OleIsCurrentClipboard
CreateStreamOnHGlobal

Sections

.text
Size: 108KB - Virtual size: 106KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 104KB - Virtual size: 100KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 64KB - Virtual size: 73KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a52da9be219bcc8d4e0bdc86e372c377

Headers

File Characteristics

Imports

shell32

winmm

comdlg32

version

winspool.drv

user32

kernel32

ole32

Sections

.text Size: 108KB - Virtual size: 106KB

.rdata Size: 104KB - Virtual size: 100KB

.data Size: 64KB - Virtual size: 73KB

.rsrc Size: 36KB - Virtual size: 34KB

.text
Size: 108KB - Virtual size: 106KB

.rdata
Size: 104KB - Virtual size: 100KB

.data
Size: 64KB - Virtual size: 73KB

.rsrc
Size: 36KB - Virtual size: 34KB