965f10c3192f07639eaaff4bd05cc82b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

965f10c3192f07639eaaff4bd05cc82b_JaffaCakes118
Size

205KB
MD5

965f10c3192f07639eaaff4bd05cc82b
SHA1

ef2a9dd0c2b8a7436f3a139102e6c66d3568eb30
SHA256

c034fd82fe0fb3e522d91468b886e4749c16a7081cd2d84db9d918b5f786e050
SHA512

511c4e2ea1693ba80ccc5edb3e41e749214f628a53b7ac3ff1f0b77e4c8761c5c28f75bbb10cc9d004dd2a2fdda445e28e2a14ad6216f597566ba40ddf75127e
SSDEEP

3072:zdopEEWFlX64kpVcIBSJV9fxs/gndw6sx14O41xfMChsw7aDUdHi29ZNhflB:ScFjIwJVBxsbH9qxfMChsw7aR2Rh

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
965f10c3192f07639eaaff4bd05cc82b_JaffaCakes118

Files

965f10c3192f07639eaaff4bd05cc82b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

eb217d9eea0a0683842e0a74eaa62c28

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

cncs32

ord4
ord69
ord150
ord70
ord159
ord16
ord46
ord47
ord58
ord77
ord6
ord78
ord42
ord64
ord24
ord158
ord81
ord23
ord43
ord120
ord3
ord2
ord33
ord179
ord178
ord30
ord146
ord167
ord176
ord140
ord151
ord104
ord147
ord36
ord89
ord165
ord90
ord141
ord136
ord109
ord163
ord166
ord92
ord94
ord93
ord91
ord52
ord168
ord138
ord56
ord162
ord108
ord19
ord50
ord76
ord68
ord32
ord181
ord180
ord206
ord57
ord35
ord148
ord73
ord83
ord55
ord29
ord137
ord118
ord119
ord117
ord86
ord98
ord61
ord125
ord60
ord132
ord131
ord34
ord80
ord54
ord48
ord133
ord129
ord75
ord143
ord177
ord115
ord149
ord169
ord116
ord66
ord185
ord106
ord171
ord107
ord173
ord172
ord112
ord113
ord114
ord88
ord96
ord160
ord111
ord95
ord161
ord71
ord101
ord18
ord65
ord12

winmm

joyGetPos
timeGetTime

kernel32

GlobalReAlloc
GlobalSize
GlobalUnlock
GlobalFree
GlobalAddAtomA
GlobalDeleteAtom
GetProcAddress
FreeLibrary
SetErrorMode
LoadLibraryA
GlobalLock
GetModuleFileNameA
_lwrite
CreateProcessA
LocalFree
lstrlenA
GetPrivateProfileIntA
GlobalAlloc
lstrcpy
lstrcmp
lstrcat
lstrlen
_hread
FindResourceA
SizeofResource
LoadResource
LockResource
FreeResource
GetTickCount
_llseek
_lread
_lcreat
_lopen
_lclose
LocalAlloc
GetTempPathA
GetTempFileNameA
GetVersion
lstrcpyA
GetExitCodeProcess
WriteFile
VirtualFree
HeapFree
HeapDestroy
GetStdHandle
HeapCreate
SetHandleCount
GetEnvironmentStringsW
GetFileType
GetEnvironmentStrings
FreeEnvironmentStringsA
FreeEnvironmentStringsW
RtlUnwind
LCMapStringW
UnhandledExceptionFilter
LCMapStringA
MultiByteToWideChar
WideCharToMultiByte
TerminateProcess
ExitProcess
GetCurrentProcess
GetACP
GetCPInfo
GetOEMCP
GetStartupInfoA
GetModuleHandleA
GetCommandLineA
GetCurrentDirectoryA
SetEnvironmentVariableA
SetCurrentDirectoryA
GetLastError
HeapAlloc
DeleteFileA
GetStringTypeW
VirtualAlloc
GetStringTypeA

user32

GetUpdateRect
CheckRadioButton
PostQuitMessage
RegisterClassA
RegisterClassExA
LoadImageA
LoadIconA
GetClassNameA
GetTopWindow
SetCapture
GetCursorPos
SetCursorPos
ReleaseCapture
ShowCursor
GetFocus
GetPropA
SetPropA
CallWindowProcA
RemovePropA
GetSystemMetrics
IntersectRect
FillRect
IsDlgButtonChecked
EnumThreadWindows
GetWindowRect
GetAsyncKeyState
IsZoomed
SetWindowPos
GetClientRect
GetWindowLongA
SetWindowLongA
UpdateWindow
LoadMenuIndirectA
LoadMenuA
GetSubMenu
InvalidateRect
ShowWindow
DestroyMenu
GetMenu
wsprintfA
SetWindowTextA
GetMenuItemCount
GetMenuState
DeleteMenu
CheckMenuItem
SetMenu
IsIconic
GetKeyState
EnableMenuItem
PostMessageA
SetForegroundWindow
SendMessageA
GetWindow
EndPaint
WinHelpA
BeginPaint
GetDC
ClientToScreen
PtInRect
GetDlgItem
ScreenToClient
ReleaseDC
SetDlgItemTextA
MapVirtualKeyA
SetTimer
GetDlgItemTextA
KillTimer
SendDlgItemMessageA
MessageBoxA
EndDialog
LoadStringA
GetInputState
CopyRect
OffsetRect
IsWindowVisible
PeekMessageA
SetFocus
RedrawWindow
GetDesktopWindow
GetActiveWindow

gdi32

DeleteObject
GetStockObject
CreateSolidBrush
CreatePalette
SelectObject
LineTo
MoveToEx
Rectangle
CreateHatchBrush
CreatePen
StretchDIBits
SelectPalette
RealizePalette
CreateFontIndirectA
GetObjectA
GetTextExtentPointA
GetDeviceCaps

advapi32

RegQueryValueA
RegOpenKeyA
RegCloseKey

Sections

.text
Size: 89KB - Virtual size: 89KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1024B - Virtual size: 1024B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 13KB - Virtual size: 18KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

TEXT_1
Size: 41KB - Virtual size: 41KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

eb217d9eea0a0683842e0a74eaa62c28

Headers

File Characteristics

Imports

cncs32

winmm

kernel32

user32

gdi32

advapi32

Sections

.text Size: 89KB - Virtual size: 89KB

.rdata Size: 1024B - Virtual size: 1024B

.data Size: 13KB - Virtual size: 18KB

.idata Size: 5KB - Virtual size: 5KB

TEXT_1 Size: 41KB - Virtual size: 41KB

.rsrc Size: 9KB - Virtual size: 9KB

.reloc Size: 13KB - Virtual size: 13KB

.text
Size: 89KB - Virtual size: 89KB

.rdata
Size: 1024B - Virtual size: 1024B

.data
Size: 13KB - Virtual size: 18KB

.idata
Size: 5KB - Virtual size: 5KB

TEXT_1
Size: 41KB - Virtual size: 41KB

.rsrc
Size: 9KB - Virtual size: 9KB

.reloc
Size: 13KB - Virtual size: 13KB