af956f193ae060170093e4a95a6f38a4_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

af956f193ae060170093e4a95a6f38a4_JaffaCakes118
Size

1.3MB
MD5

af956f193ae060170093e4a95a6f38a4
SHA1

2012516a73245b846e956d4414df4efe2ea30247
SHA256

7cfc139715c5af99a09e5e7f9d7067950be6e6ee783c5f67ff9c7d54887cf475
SHA512

8a229046c0448b5c762b55bbf0f3e4be08f1139fb0381c988b9e4072389e0460433d08794b2b99b96d3a2564f9bc87089bd3c1807b0b8df088f7d68ede97d5e7
SSDEEP

24576:zDJmX3h3FdeNqYdhwnsFmTmLxoVjsZdrNlqfG63qa+YGcIdAJS/MXioD5nxmqT:nJmHh3FdeNqowSFlrajvIeJxS

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
af956f193ae060170093e4a95a6f38a4_JaffaCakes118

Files

af956f193ae060170093e4a95a6f38a4_JaffaCakes118
.exe windows:4 windows x86 arch:x86

9cf540137bfd1da71ffe6c182cb282e6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateDirectoryA
MulDiv
GetFileSize
SetFilePointer
lstrcpynA
GetFileTime
DeleteFileA
CreateMutexA
OpenMutexA
GetDiskFreeSpaceA
GetLogicalDriveStringsA
GlobalHandle
GlobalUnlock
GlobalFree
GetLastError
FindFirstFileA
FindNextFileA
FindClose
MultiByteToWideChar
CreateFileA
WriteFile
CloseHandle
ReadFile
GetCurrentDirectoryA
GlobalLock
GetDriveTypeA
SetCurrentDirectoryA
GlobalAlloc
GetModuleHandleA
GetWindowsDirectoryA
GetModuleFileNameA
SetEnvironmentVariableA
CompareStringW
CompareStringA
SetEndOfFile
RaiseException
LoadLibraryA
GetStringTypeW
GetStringTypeA
FlushFileBuffers
SetStdHandle
IsBadCodePtr
IsBadWritePtr
IsBadReadPtr
SetUnhandledExceptionFilter
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetOEMCP
GetACP
GetCPInfo
GetEnvironmentStringsW
RtlUnwind
GetEnvironmentStrings
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
LCMapStringW
LCMapStringA
WideCharToMultiByte
HeapSize
HeapReAlloc
GetFileType
GetStdHandle
SetHandleCount
GetCurrentProcess
TerminateProcess
GetProcAddress
HeapAlloc
HeapFree
ExitProcess
GetVersion
GetCommandLineA
GetStartupInfoA
GetLocalTime
GetSystemTime
GetTimeZoneInformation

user32

DispatchMessageA
SetWindowLongA
GetWindowLongA
SetRect
GetSystemMetrics
ReleaseDC
GetDC
DefWindowProcA
GetAsyncKeyState
AdjustWindowRectEx
GetMenu
SystemParametersInfoA
SetWindowTextA
EndDialog
SetDlgItemTextA
ShowCursor
DialogBoxParamA
LoadIconA
LoadCursorA
GetMessageA
PeekMessageA
TranslateMessage
DestroyWindow
ClientToScreen
InvalidateRect
SetWindowPos
CreateWindowExA
RegisterClassA
wsprintfA
GetKeyboardState
MessageBoxA
PostQuitMessage
UpdateWindow
ShowWindow

gdi32

CreateFontA
ExtTextOutA
SetTextColor
TextOutA
SetBkMode
SelectObject
GetTextExtentPoint32A
GetStockObject
GetDeviceCaps
DeleteObject

advapi32

RegSetValueExA
RegCreateKeyExA
RegQueryValueExA
RegCloseKey
RegOpenKeyExA

ole32

CoUninitialize
CoCreateInstance
CoInitialize

winmm

timeGetTime
joyGetPosEx
joyGetDevCapsA
joyGetNumDevs
mmioRead
mmioClose
mmioOpenA
mmioAscend
mmioDescend

ddraw

DirectDrawCreate
DirectDrawEnumerateA

dsound

ord1

msacm32

acmStreamPrepareHeader
acmDriverDetailsA
acmFormatSuggest
acmMetrics
acmStreamClose
acmStreamUnprepareHeader
acmStreamConvert
acmStreamSize
acmStreamOpen
acmDriverClose
acmDriverEnum
acmDriverOpen

imm32

ImmAssociateContext

Sections

.text
Size: 1.1MB - Virtual size: 1.1MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 15KB - Virtual size: 14KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 171KB - Virtual size: 5.6MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9cf540137bfd1da71ffe6c182cb282e6

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

ole32

winmm

ddraw

dsound

msacm32

imm32

Sections

.text Size: 1.1MB - Virtual size: 1.1MB

.rdata Size: 15KB - Virtual size: 14KB

.data Size: 171KB - Virtual size: 5.6MB

.rsrc Size: 2KB - Virtual size: 2KB

.text
Size: 1.1MB - Virtual size: 1.1MB

.rdata
Size: 15KB - Virtual size: 14KB

.data
Size: 171KB - Virtual size: 5.6MB

.rsrc
Size: 2KB - Virtual size: 2KB