5f7c6abfed4311dae6db65462aa46f0c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

5f7c6abfed4311dae6db65462aa46f0c_JaffaCakes118
Size

2.7MB
MD5

5f7c6abfed4311dae6db65462aa46f0c
SHA1

f06027b2c53264eb84a3e3ae2d06758ba052cc24
SHA256

c843c3484e8378c456e173b9eda5df23150a8c29f6c99eae1be34012a644e881
SHA512

cf73c8264f95d4c978974b47f32360f2bac0a3d1266c06af5c4694fdd5d26519df0cd94b94c7ba01a33338f57f8aa71e7e257ff0c161337453a90e9484e4066d
SSDEEP

49152:1mLAQDdnB2pQbUL/OtU/+VuEvlTlE5vZMw:Ak26CmmW/uuEvlTC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
5f7c6abfed4311dae6db65462aa46f0c_JaffaCakes118

Files

5f7c6abfed4311dae6db65462aa46f0c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d15b3dbfd694f767d4bfcd2c42232c37

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

shell32

ShellExecuteA

user32

SetCursorPos
ClientToScreen
BeginPaint
ClipCursor
GetWindowLongA
DialogBoxIndirectParamA
MessageBoxA
EndDialog
SendDlgItemMessageA
AdjustWindowRect
ShowWindow
UpdateWindow
CreateWindowExA
SetWindowTextA
IsWindow
DestroyWindow
DefWindowProcA
PostQuitMessage
EndPaint
PostMessageA
PeekMessageA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
SendMessageA
GetClientRect
MoveWindow
ShowCursor
GetCursorPos
GetWindowRect
ScreenToClient
GetKeyboardState
CharToOemA
RegisterClassA
LoadCursorA
LoadIconA

mss32

_AIL_open_filter@8
_AIL_enumerate_filters@12
_AIL_release_3D_sample_handle@4
_AIL_3D_room_type@4
_AIL_set_3D_room_type@8
_AIL_open_digital_driver@16
_AIL_set_3D_position@16
_AIL_set_3D_velocity_vector@16
_AIL_close_3D_provider@4
_AIL_WAV_info@8
_AIL_mem_free_lock@4
_AIL_decompress_ASI@24
_AIL_file_size@4
_AIL_last_error@0
_AIL_file_read@8
_AIL_process_digital_audio@24
_AIL_mem_alloc_lock@4
_AIL_size_processed_digital_audio@16
_AIL_allocate_sample_handle@4
_AIL_allocate_3D_sample_handle@4
_AIL_release_sample_handle@4
_AIL_enumerate_3D_providers@12
_AIL_start_sample@4
_AIL_set_sample_loop_count@8
_AIL_set_sample_file@12
_AIL_init_sample@4
_AIL_stop_sample@4
_AIL_set_sample_volume@8
_AIL_set_sample_playback_rate@8
_AIL_sample_status@4
_AIL_start_3D_sample@4
_AIL_set_3D_sample_loop_count@8
_AIL_set_3D_sample_info@8
_AIL_stop_3D_sample@4
_AIL_set_3D_sample_volume@8
_AIL_set_3D_sample_playback_rate@8
_AIL_set_3D_sample_effects_level@8
_AIL_shutdown@0
_AIL_3D_sample_status@4
_AIL_set_3D_sample_distances@12
_AIL_set_named_sample_file@20
_AIL_startup@0
_AIL_open_3D_provider@4
_AIL_set_3D_speaker_type@8
_AIL_set_3D_provider_preference@12
_AIL_open_3D_listener@4
_AIL_set_DirectSound_HWND@8
_AIL_set_3D_orientation@28
_AIL_close_3D_listener@4
_AIL_close_digital_driver@4
_AIL_set_redist_directory@4

comctl32

InitCommonControlsEx

kernel32

VirtualFree
HeapDestroy
HeapCreate
TerminateProcess
QueryPerformanceFrequency
QueryPerformanceCounter
CompareStringW
CompareStringA
SetEndOfFile
IsBadCodePtr
SetFilePointer
GetStringTypeW
GetStringTypeA
CreateFileA
SetStdHandle
FlushFileBuffers
ReadFile
SetUnhandledExceptionFilter
GetOEMCP
GetACP
GetCPInfo
GetDriveTypeA
LCMapStringW
LCMapStringA
WriteFile
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
CloseHandle
LoadLibraryA
RtlUnwind
HeapSize
GetCurrentProcess
IsBadWritePtr
VirtualAlloc
GetSystemTimeAsFileTime
GetEnvironmentVariableA
GetProcAddress
GetCurrentDirectoryA
SetEnvironmentVariableA
GetVersionExA
MultiByteToWideChar
lstrlenA
OutputDebugStringA
HeapFree
IsBadReadPtr
GetModuleFileNameA
GetLastError
CreateDirectoryA
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
FindFirstFileA
FileTimeToSystemTime
FileTimeToLocalFileTime
GetTimeZoneInformation
GetSystemTime
GetLocalTime
HeapAlloc
GetFullPathNameA
RaiseException
HeapReAlloc
SetFileAttributesA
GetFileAttributesA

ole32

CoInitialize
CoCreateInstance

winmm

timeGetTime

dinput

DirectInputCreateA

ddraw

DirectDrawEnumerateA

gdi32

GetStockObject

Sections

.text
Size: 2.3MB - Virtual size: 2.3MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 140KB - Virtual size: 139KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 244KB - Virtual size: 276KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d15b3dbfd694f767d4bfcd2c42232c37

Headers

File Characteristics

Imports

shell32

user32

mss32

comctl32

kernel32

ole32

winmm

dinput

ddraw

gdi32

Sections

.text Size: 2.3MB - Virtual size: 2.3MB

.rdata Size: 140KB - Virtual size: 139KB

.data Size: 244KB - Virtual size: 276KB

.text
Size: 2.3MB - Virtual size: 2.3MB

.rdata
Size: 140KB - Virtual size: 139KB

.data
Size: 244KB - Virtual size: 276KB