b0bf5d4448090e1eff6e7bbeb2912d1c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

b0bf5d4448090e1eff6e7bbeb2912d1c_JaffaCakes118
Size

121KB
MD5

b0bf5d4448090e1eff6e7bbeb2912d1c
SHA1

b8a8af2940f2685b846af45b94a40432eaa21826
SHA256

c2212bd86bd67d038a6691b23382ba30d2f97d22479859eb5227c02f732126bd
SHA512

66a88986e5ed63c6b8ba6109d67a50c2d4ef9a2613bf28095fd0c3d34d04c3fab3208fc627e48663dd15ef5a9cf82e538c8e11d70c1a39770ddec2ed1ce2939d
SSDEEP

3072:81Nf8OaA2ISjPJwRT0td2C2tsE2r6ZcSLi4Jp8:oNhqICgcp1r6FtJK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b0bf5d4448090e1eff6e7bbeb2912d1c_JaffaCakes118

Files

b0bf5d4448090e1eff6e7bbeb2912d1c_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3d34bea655061682b9aae986ef62ae33

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GlobalLock
GetProcAddress
FreeLibrary
GlobalReAlloc
MulDiv
LocalLock
lstrcpyA
CreateFileA
WritePrivateProfileStringA
Sleep
LocalReAlloc
WriteFile
lstrlenA
GetTickCount
SetEndOfFile
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
InterlockedIncrement
InterlockedDecrement
FlushFileBuffers
OutputDebugStringA
TlsGetValue
SetLastError
TlsAlloc
HeapAlloc
GetCurrentThreadId
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
CloseHandle
CreateProcessA
SetThreadPriority
GetCurrentThread
GetCurrentProcess
SetPriorityClass
ResumeThread
GetWindowsDirectoryA
GetFileAttributesA
SetFileAttributesA
CopyFileA
GetShortPathNameA
GlobalAlloc
LocalFree
GetModuleFileNameA
GetOEMCP
GetACP
GlobalFree
GlobalHandle
GlobalUnlock
LocalAlloc
LocalUnlock
SetStdHandle
GetCPInfo
SetFilePointer
ReadFile
GetLastError
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
RtlUnwind
GetVersion
TerminateProcess
TlsSetValue
GetVersionExA
GetModuleHandleA
GetSystemPowerStatus
UnhandledExceptionFilter
ExitProcess
GetStartupInfoA
GetCommandLineA
HeapFree

user32

EndPaint
ScreenToClient
MessageBoxA
CharNextA
FindWindowA
SetForegroundWindow
RegisterWindowMessageA
GetForegroundWindow
SendMessageA
GetParent
IsWindow
GetCursorPos
ReleaseDC
GetClientRect
GetDC
PeekMessageA
GetQueueStatus
wsprintfA
SystemParametersInfoA
PostMessageA
SetTimer
EnableWindow
GetWindowTextA
EndDialog
PostQuitMessage
SendDlgItemMessageA
SetWindowTextA
GetDlgItem
ShowWindow
BeginPaint
GetWindowRect
GetSystemMetrics
RegisterClassA
SetFocus
LoadCursorA
SetCursor
DefWindowProcA
LoadIconA
DialogBoxParamA
KillTimer
CreateWindowExA
GetMessageA
TranslateMessage
DispatchMessageA
FillRect

gdi32

SetTextColor
CreateSolidBrush
GetDeviceCaps
CreateHalftonePalette
SelectPalette
RealizePalette
StretchDIBits
SetStretchBltMode
SetBrushOrgEx
CreateDIBSection
CreateCompatibleDC
SelectObject
DeleteObject
DeleteDC
SetBkMode
GetStockObject
GetClipBox

comdlg32

GetSaveFileNameA

advapi32

RegSetValueExA
RegQueryValueExA
RegDeleteValueA
RegCreateKeyExA
RegCloseKey
RegOpenKeyExA
RegOpenKeyA

shell32

ShellExecuteA

winmm

mciSendStringA
mmioInstallIOProcA
midiStreamClose
midiOutUnprepareHeader
midiStreamOut
midiOutPrepareHeader
midiStreamProperty
midiStreamOpen
midiOutReset
midiStreamRestart
midiStreamPause
midiStreamStop
midiStreamPosition
mmioClose
mmioRead
mmioSeek
mmioDescend
mmioOpenA

comctl32

InitCommonControlsEx

Sections

.text
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3d34bea655061682b9aae986ef62ae33

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

winmm

comctl32

Sections

.text Size: 76KB - Virtual size: 75KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 16KB - Virtual size: 3.4MB

.rsrc Size: 8KB - Virtual size: 6KB

.text
Size: 76KB - Virtual size: 75KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 16KB - Virtual size: 3.4MB

.rsrc
Size: 8KB - Virtual size: 6KB