a2cf57f354720f1a55293f825c06a072_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

a2cf57f354720f1a55293f825c06a072_JaffaCakes118
Size

163KB
MD5

a2cf57f354720f1a55293f825c06a072
SHA1

e85f7a4d725af889628d3f21ed8eaea2070f79e8
SHA256

1c2d0ae97e8825d8b1c60f1d5b52ad3865caf4e42ecbf2eb6fad5a5e35869f70
SHA512

ee03d16aa7b1172d42f158ba5aeb2b740faa7d33a06d4c6f3011df6ce045164a1afb3b2af06e4b1bcca064d4bd988565a98e3630a51947a3157aec3f81e82749
SSDEEP

3072:VhvfGhRTL+9PcKulcBqDaPRa+fqW9oRHk0jteQ/0/VXhDFPZ8svDGGhqEl2wO:juhR+9elcBx519oRHkgQfRhDFrGGjsl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
a2cf57f354720f1a55293f825c06a072_JaffaCakes118

Files

a2cf57f354720f1a55293f825c06a072_JaffaCakes118
.exe windows:4 windows x86 arch:x86

a5a66415cccd5f7d10bcdbe33c532a4e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvfw32

ICOpen
ICSendMessage
ICDecompress
ICClose

avifil32

AVISaveOptions
AVIStreamSetFormat
AVIStreamInfoA
AVIFileCreateStreamA
AVIStreamGetFrame
AVIFileInit
AVIStreamWrite
AVIStreamGetFrameOpen
AVIStreamGetFrameClose
AVIFileRelease
AVIFileOpenA
AVIStreamRelease
AVIFileGetStream
AVIMakeCompressedStream

gdi32

DeleteDC
CreateDIBSection
DeleteObject
SetDIBColorTable
SelectObject
CombineRgn
StretchDIBits
CreateRectRgn
CreateCompatibleDC
GetCurrentObject
FillRgn
GetStockObject
SetDIBitsToDevice
SetStretchBltMode
GetObjectA
BitBlt
StretchBlt

kernel32

QueryDosDeviceW
WriteFile
LocalFree
CloseHandle
UnmapViewOfFile
GetProcessId
ReadFile
ProcessIdToSessionId
CreateFileA
GlobalSize
EnumResourceTypesA
lstrlenA
GlobalAlloc
DisableThreadLibraryCalls
LocalAlloc
GetFileSize
SetFilePointer
ExitProcess
Sleep
MapViewOfFile
CreateFileMappingA
GlobalFree

user32

IsWindow
DefWindowProcA
wsprintfA
ShowWindow
GetMessageA
MessageBoxA
SubtractRect
SetFocus
BeginPaint
CallWindowProcA
MoveWindow
GetClientRect
GetClassLongA
DestroyWindow
PeekMessageA
CreateWindowExA
GetFocus
LoadCursorA
GetKeyState
SetWindowLongA
LoadIconA
SetWindowTextA
SendMessageA
GetWindowLongA
TranslateMessage
RegisterClassA
OffsetRect
InvalidateRect
wvsprintfA
EndPaint
GetWindowRect
ScreenToClient
ReleaseCapture
SetCursor
UpdateWindow
DispatchMessageA
SetCapture

avicap32

capCreateCaptureWindowA
capGetDriverDescriptionA

comctl32

CreateToolbarEx

Sections

.text
Size: 97KB - Virtual size: 97KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 61KB - Virtual size: 60KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 92KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

a5a66415cccd5f7d10bcdbe33c532a4e

Headers

File Characteristics

Imports

msvfw32

avifil32

gdi32

kernel32

user32

avicap32

comctl32

Sections

.text Size: 97KB - Virtual size: 97KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 61KB - Virtual size: 60KB

.tls Size: 1024B - Virtual size: 92KB

.text
Size: 97KB - Virtual size: 97KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 61KB - Virtual size: 60KB

.tls
Size: 1024B - Virtual size: 92KB