78eb03f6bc8bbfdfe49ccc20b8a39de4_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

78eb03f6bc8bbfdfe49ccc20b8a39de4_JaffaCakes118
Size

91KB
MD5

78eb03f6bc8bbfdfe49ccc20b8a39de4
SHA1

d8aa1650aedb5ced58b9e7f8d2df97abb64f5cee
SHA256

d3dc964d98bd53ccaf881367307ec7d88934714c3aeb95f19fda299e37eee15e
SHA512

8b7bc41cbcf6a68fa9a8005959021054c89b3d1347223a3bb4fd437659dfb56f535efff07c1272224affa4b57feb5fcf8f17ee553681bcfd827d64461aba00d0
SSDEEP

1536:v3ijApM1iyxfuHsVGDmohgc63BHTp3r0f4xCaWkdUed2TNyYsn4CdN:Pijigiyx2CGmB13rE4fWkUed2AYs4SN

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
78eb03f6bc8bbfdfe49ccc20b8a39de4_JaffaCakes118

Files

78eb03f6bc8bbfdfe49ccc20b8a39de4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

08388521eb39eac35ba0bb8aee6327b1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvcrt

_except_handler3
calloc
_adjust_fdiv
memmove
qsort
strstr
_vsnprintf
fopen
_snprintf
realloc
floor
_CxxThrowException
fwrite
_purecall
sprintf
__CxxFrameHandler
_initterm
__dllonexit
_onexit
sscanf
isalnum
ceil
_strlwr
atoi
malloc
fflush
_stricmp
strchr
fclose
free
wcsrchr
_CIpow

kernel32

LoadLibraryA
DebugBreak
SetThreadAffinityMask
InterlockedCompareExchange
WaitForSingleObject
GetEnvironmentVariableA
SetFilePointer
WaitNamedPipeA
QueryPerformanceFrequency
ReleaseMutex
ConnectNamedPipe
MoveFileA
GetNativeSystemInfo
GetCurrentProcess
SetEvent
CreateEventA
GetTempPathA
GetModuleHandleA
PeekNamedPipe
TlsAlloc
OutputDebugStringA
Sleep
DisconnectNamedPipe
VirtualProtect
CloseHandle
CreateNamedPipeA
DisableThreadLibraryCalls
TlsSetValue
CreateMutexA
ReleaseSemaphore
GetSystemDirectoryA
TransactNamedPipe
InterlockedDecrement
VirtualAlloc
DeleteCriticalSection
CreateThread
LocalAlloc
GetSystemInfo
GetModuleFileNameA
SetThreadPriority
GetSystemTimeAsFileTime
ExitThread
LeaveCriticalSection
TerminateProcess
MultiByteToWideChar
OpenMutexA
GetLastError
GetProcAddress
VerifyVersionInfoA
IsProcessorFeaturePresent
FreeLibrary
InterlockedIncrement
lstrcpynA
GetCurrentProcessId
ReadFile
GetVersionExA
TlsGetValue
lstrcmpA
WriteFile
SetErrorMode
GetPrivateProfileStringA
CreateFileA
InterlockedExchange
VerSetConditionMask
CreateSemaphoreA
FlushFileBuffers
GetTickCount
VirtualFree
QueryPerformanceCounter
GetFileSize
InitializeCriticalSection
ResumeThread
GetProcessAffinityMask
SetNamedPipeHandleState
LocalFree
GetCurrentThread
UnhandledExceptionFilter
WaitForMultipleObjects
DeleteFileA
GetCurrentThreadId
SetUnhandledExceptionFilter
WideCharToMultiByte
EnterCriticalSection

version

VerQueryValueA
GetFileVersionInfoSizeA
GetFileVersionInfoA

ws2_32

WSAGetLastError

d3d8thk

OsThunkDdBlt
OsThunkDdCanCreateSurface
OsThunkDdEndMoCompFrame
OsThunkD3dDrawPrimitives2
OsThunkD3dContextDestroyAll
OsThunkDdDestroyD3DBuffer
OsThunkDdFlip
OsThunkDdGetMoCompFormats
OsThunkDdGetDriverState
OsThunkDdDestroySurface
OsThunkDdResetVisrgn
OsThunkDdCanCreateD3DBuffer
OsThunkDdWaitForVerticalBlank
OsThunkDdCreateSurfaceObject
OsThunkDdGetDriverInfo
OsThunkDdGetFlipStatus
OsThunkD3dValidateTextureStageState
OsThunkDdCreateMoComp
OsThunkDdGetBltStatus
OsThunkDdSetExclusiveMode
OsThunkDdDeleteDirectDrawObject
OsThunkDdReleaseDC
OsThunkDdQueryDirectDrawObject
OsThunkDdDeleteSurfaceObject
OsThunkD3dContextDestroy
OsThunkDdQueryMoCompStatus
OsThunkDdGetInternalMoCompInfo
OsThunkDdFlipToGDISurface
OsThunkDdGetScanLine
OsThunkDdGetDC
OsThunkDdSetGammaRamp
OsThunkDdReenableDirectDrawObject
OsThunkDdBeginMoCompFrame
OsThunkDdLockD3D
OsThunkDdUnlock
OsThunkD3dContextCreate
OsThunkDdUnlockD3D
OsThunkDdRenderMoComp
OsThunkDdAttachSurface
OsThunkDdGetMoCompGuids
OsThunkDdCreateD3DBuffer
OsThunkDdLock
OsThunkDdCreateSurfaceEx
OsThunkDdDestroyMoComp
OsThunkDdGetAvailDriverMemory
OsThunkDdGetMoCompBuffInfo
OsThunkDdCreateSurface

crypt32

RegEnumValueU
CertCloseStore

user32

ReleaseDC
SetRect
ShowWindow
DefWindowProcA
GetWindowLongA
PtInRect
SetWindowPos
GetKeyState
wsprintfA
OffsetRect
LoadStringA
ChangeDisplaySettingsA
GetDC
SetCursorPos
GetWindowDC
CreateIconIndirect
mouse_event
DestroyIcon
SetWindowLongA
GetClientRect
EnumDisplaySettingsA
IsWindow
SystemParametersInfoA
OpenInputDesktop
GetUserObjectInformationA
IsIconic
GetCursor
SetCursor
GetSystemMetrics
GetForegroundWindow
CloseDesktop
KillTimer
GetThreadDesktop
CallWindowProcA
IntersectRect
IsZoomed
GetDesktopWindow
GetMonitorInfoA
GetWindowThreadProcessId
SetTimer
SetForegroundWindow
SendMessageA
ClientToScreen
GetCursorPos
IsWindowVisible
PostMessageA

winmm

timeBeginPeriod
timeEndPeriod

gdi32

StretchBlt
SelectObject
GetSystemPaletteEntries
CreateRectRgn
GetNearestColor
BitBlt
GetDeviceGammaRamp
GetDeviceCaps
GdiEntry1
GdiEntry13
GetRandomRgn
DeleteDC
GetRegionData
CreateDCA
SetStretchBltMode
CreateCompatibleBitmap
CreateDIBSection
CreateDIBitmap
GetDIBits
CreateCompatibleDC
DeleteObject

Sections

.textbss
Size: 78KB - Virtual size: 448KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 512B - Virtual size: 440B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 512B - Virtual size: 32B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 1024B - Virtual size: 812B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

08388521eb39eac35ba0bb8aee6327b1

Headers

File Characteristics

Imports

msvcrt

kernel32

version

ws2_32

d3d8thk

crypt32

user32

winmm

gdi32

Sections

.textbss Size: 78KB - Virtual size: 448KB

.text Size: 512B - Virtual size: 440B

.rdata Size: 512B - Virtual size: 32B

.idata Size: 7KB - Virtual size: 6KB

.data Size: 1024B - Virtual size: 812B

.rsrc Size: 3KB - Virtual size: 3KB

.textbss
Size: 78KB - Virtual size: 448KB

.text
Size: 512B - Virtual size: 440B

.rdata
Size: 512B - Virtual size: 32B

.idata
Size: 7KB - Virtual size: 6KB

.data
Size: 1024B - Virtual size: 812B

.rsrc
Size: 3KB - Virtual size: 3KB