b06fa14356d022550f58213c8d3ad534_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b06fa14356d022550f58213c8d3ad534_JaffaCakes118
Size

112KB
MD5

b06fa14356d022550f58213c8d3ad534
SHA1

935b95c4ed52c3f3d24e66942cd683e21bb1a43d
SHA256

09331fe7db7d1030558ff29d8a7a83d9bf0230439a8014f539f4d29c3ae591d1
SHA512

ac2d43d686d9ca59a50e0989b3566fb58221b4d63a455120d42a9edd52222532c5dac6b1f14dc35adbb55611f5547292f1793e9a1af478734d92639768c9b4ec
SSDEEP

3072:2n7QTVLk61VVJdw/XQHZXTY72au7zx1BTWs:2n7QB461fIvgZXTY72au7zxms

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b06fa14356d022550f58213c8d3ad534_JaffaCakes118

Files

b06fa14356d022550f58213c8d3ad534_JaffaCakes118
.exe windows:5 windows x86 arch:x86

d4fa7f9704c92aac609652c0b05d8c5d

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

msvcrt

_exit
memmove
_XcptFilter
exit
_acmdln
__getmainargs
_initterm
wcstombs
_adjust_fdiv
__p__commode
__p__fmode
__set_app_type
_except_handler3
_controlfp
__setusermatherr
mbstowcs
_getmbcp

advapi32

OpenSCManagerW
RegEnumKeyW
OpenServiceW
AllocateAndInitializeSid
EqualSid
FreeSid
GetSidIdentifierAuthority
GetSidSubAuthorityCount
GetSidSubAuthority
IsValidSid
LookupAccountSidW
OpenProcessToken
GetTokenInformation
RegQueryValueExW
RegCloseKey
CloseServiceHandle
QueryServiceStatus
StartServiceW
GetUserNameW
RegDeleteValueW
RegSetValueW
RegOpenKeyExW
RegSetValueExW
RegCreateKeyExW
RegOpenKeyW

kernel32

WriteFile
FreeLibrary
GetTempPathW
LoadResource
SetFileAttributesW
GetTempFileNameW
LoadLibraryW
SizeofResource
LockResource
FindResourceW
GlobalAlloc
GlobalLock
GlobalUnlock
GlobalSize
GetDiskFreeSpaceW
GetFullPathNameW
MultiByteToWideChar
GetCommandLineW
GetVersionExW
DeleteFileW
CreateProcessW
GetLastError
GetShortPathNameW
GetProcAddress
GlobalHandle
ReadFile
SetFilePointer
SearchPathW
GetLocalTime
GetCurrentProcess
SetLastError
GetModuleHandleA
GetStartupInfoA
CopyFileW
lstrcpynW
CreateFileW
CloseHandle
lstrcmpiW
LocalAlloc
LocalFree
FindNextFileW
WritePrivateProfileStringW
FindClose
GetFileAttributesW
CompareStringW
GetModuleFileNameW
FindFirstFileW
lstrcatW
GetWindowsDirectoryW
lstrcpyW
GetPrivateProfileStringW
lstrcmpW
lstrlenA
lstrlenW
WideCharToMultiByte
GlobalFree
ExpandEnvironmentStringsW
GetPrivateProfileIntW

gdi32

CreateFontIndirectW
GetMetaFileBitsEx
DeleteMetaFile
SetPaletteEntries
SetDIBColorTable
CreateDIBSection
StretchDIBits
CreatePatternBrush
CreateHalftonePalette
IntersectClipRect
SetStretchBltMode
SelectClipRgn
GetNearestPaletteIndex
GetNearestColor
GetTextColor
SaveDC
RestoreDC
CreateCompatibleBitmap
CreateBitmap
GetStockObject
GetDIBColorTable
SelectPalette
PatBlt
CreateDIBitmap
CreatePalette
RealizePalette
SetTextColor
CreateCompatibleDC
SetBkColor
StretchBlt
BitBlt
SelectObject
GetTextMetricsW
SetBkMode
DeleteDC
DeleteObject
GetObjectW
TextOutW
CreateSolidBrush
GetPaletteEntries
GetTextExtentPoint32W
GetDeviceCaps

user32

InvalidateRect
RegisterClassW
LoadCursorW
LoadIconW
DefDlgProcW
LoadStringW
UpdateWindow
ShowWindow
MoveWindow
SystemParametersInfoW
GetWindowRect
EnableWindow
GetDlgItem
DestroyWindow
CreateDialogParamW
SetCursor
SendMessageW
PostMessageW
GetSysColor
SetSysColors
MessageBoxW
wsprintfW
SetDlgItemTextW
EndDialog
SendDlgItemMessageW
GetDlgItemTextW
LoadBitmapW
DestroyCursor
DrawFocusRect
FillRect
GetSysColorBrush
SetWindowLongW
WinHelpW
SetFocus
SetWindowTextW
GetParent
CharNextW
ReleaseDC
GetDC
GetSystemMetrics
InflateRect
DrawFrameControl
DestroyIcon
DrawStateW
DrawTextW
DrawEdge
DispatchMessageW
TranslateMessage
IsDialogMessageW
keybd_event
SetForegroundWindow
GetLastActivePopup
BringWindowToTop
IsIconic
FindWindowW
MessageBoxA
LoadStringA
PtInRect
InsertMenuW
GetSystemMenu
MapWindowPoints
EndPaint
BeginPaint
PostQuitMessage
DialogBoxParamW
CheckRadioButton
IsWindowEnabled
DrawIconEx
SetActiveWindow
KillTimer
PeekMessageW
SetTimer
DrawCaptionTempW
SetSysColorsTemp
CharPrevW
LoadImageW
OffsetRect
GetMessageW
IsDlgButtonChecked
CheckDlgButton

comdlg32

CommDlgExtendedError
GetFileTitleW
GetOpenFileNameW
GetSaveFileNameW

shell32

SHChangeNotify

ole32

CoTaskMemFree
CoUninitialize
CoInitialize
CoCreateInstance

comctl32

PropertySheetW

winmm

waveOutGetDevCapsW
PlaySoundW
waveOutGetNumDevs
sndPlaySoundW
mmioSeek
mmioClose
mmioAscend
mmioRead
mmioDescend
mmioOpenW

mpr

WNetGetUserW

Sections

.text
Size: 67KB - Virtual size: 67KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 5KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 38KB - Virtual size: 41KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d4fa7f9704c92aac609652c0b05d8c5d

Headers

DLL Characteristics

File Characteristics

Imports

msvcrt

advapi32

kernel32

gdi32

user32

comdlg32

shell32

ole32

comctl32

winmm

mpr

Sections

.text Size: 67KB - Virtual size: 67KB

.data Size: 5KB - Virtual size: 27KB

.rsrc Size: 38KB - Virtual size: 41KB

.text
Size: 67KB - Virtual size: 67KB

.data
Size: 5KB - Virtual size: 27KB

.rsrc
Size: 38KB - Virtual size: 41KB