d1d143f26e94ea870b3d85b721373bbf_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

d1d143f26e94ea870b3d85b721373bbf_JaffaCakes118
Size

309KB
MD5

d1d143f26e94ea870b3d85b721373bbf
SHA1

a660d9412ac772899ebacfcb828418add0e86c21
SHA256

45fb3968e7a11b0bc18e0625cc12301a4f439d090fd7d86dbbca71792f85767c
SHA512

0e78c2a2076b783286eda96404ca12ef2b2d2393e9e3007b72f640db285f19687f82525e4c187cb19d8061ede09bca385fa34c5a613eeefe823e27f31a509f25
SSDEEP

6144:bHZPksujdYcN2pZjVldktpoBMkRI1/meB1zxdKc:bJdodN4gyBMkRba1NEc

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d1d143f26e94ea870b3d85b721373bbf_JaffaCakes118

Files

d1d143f26e94ea870b3d85b721373bbf_JaffaCakes118
.exe windows:4 windows x86 arch:x86

833edeb5eede623d5d3b9dec2e9fd4de

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

dsound

DirectSoundCreate

version

GetFileVersionInfoA
GetFileVersionInfoSizeA
VerQueryValueA

advapi32

RegCreateKeyExA
RegSetValueExA
RegCloseKey
RegQueryValueExA
RegOpenKeyExA

comctl32

ord17

gdi32

SetDIBColorTable
GetStockObject
RestoreDC
GetObjectA
GetDIBColorTable
ExtTextOutA
GetDeviceCaps
DeleteObject
CreateRectRgnIndirect
CreateCompatibleDC
DeleteDC
SelectObject
CreateFontA
SaveDC
RealizePalette
CreatePalette
SelectPalette
SetSystemPaletteUse
GetSystemPaletteEntries
CreateFontIndirectA
SetBkColor
Rectangle
StretchBlt
OffsetClipRgn
CreateDIBSection
GetClipRgn
ExcludeClipRect
BitBlt
SelectClipRgn
TextOutA
SetTextColor
SetBkMode

shell32

ShellExecuteA

user32

SystemParametersInfoA
KillTimer
PostQuitMessage
GetWindowLongA
CreateDialogParamA
GetMessageA
GetSysColor
GetWindowTextA
DrawFrameControl
DrawIconEx
PostMessageA
OffsetRect
GetWindowDC
FillRect
GetCursorPos
MapWindowPoints
WindowFromPoint
PtInRect
HideCaret
LoadImageA
DrawTextA
PeekMessageA
TranslateMessage
DispatchMessageA
UnhookWindowsHookEx
SendMessageA
DestroyWindow
DestroyMenu
RedrawWindow
GetClientRect
IsIconic
LockWindowUpdate
BeginPaint
EndPaint
GetDC
CallNextHookEx
GetAsyncKeyState
DeleteMenu
InsertMenuItemA
RemoveMenu
DrawMenuBar
SetMenu
SetWindowPos
IsZoomed
MoveWindow
UpdateWindow
InvalidateRect
CreateMenu
LoadIconA
RegisterClassA
ShowWindow
ReleaseDC
SetWindowsHookExA
GetSystemMetrics
CreateWindowExA
SendDlgItemMessageA
SetTimer
SetWindowLongA
SetForegroundWindow
ShowCursor
GetWindowRect
DefWindowProcA
LoadCursorA
SetCursor
SetWindowTextA
DialogBoxParamA
MessageBoxA
EndDialog
GetActiveWindow
GetDesktopWindow
GetDlgItem
IsWindowVisible

winmm

timeBeginPeriod
timeSetEvent
waveOutPrepareHeader
waveOutWrite
waveOutReset
timeKillEvent
waveOutOpen
waveOutUnprepareHeader
waveOutGetPosition
timeGetTime
timeEndPeriod
waveOutClose
waveOutGetDevCapsA
joyGetPosEx

wsock32

closesocket
recv
accept
recvfrom
sendto
send
WSAStartup
WSACleanup
gethostname
socket
WSAGetLastError
WSAAsyncSelect
setsockopt
bind
getsockname
ntohs
ntohl

kernel32

GetVersion
CompareStringW
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
SetEnvironmentVariableA
SuspendThread
GetTimeZoneInformation
FreeEnvironmentStringsA
ExitProcess
GetCurrentThreadId
GetCurrentProcess
GetCurrentThread
DuplicateHandle
QueryPerformanceFrequency
GetModuleFileNameA
SetUnhandledExceptionFilter
GetVersionExA
GlobalMemoryStatus
LocalFree
LocalAlloc
QueryPerformanceCounter
CreateMutexA
WaitForSingleObject
ReleaseMutex
SetFilePointer
CloseHandle
SetEndOfFile
FlushFileBuffers
ReadFile
WriteFile
GetLastError
FormatMessageA
CreateFileA
HeapFree
TerminateProcess
HeapReAlloc
SetHandleCount
GetStdHandle
GetFileType
UnhandledExceptionFilter
GlobalAlloc
MultiByteToWideChar
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
WideCharToMultiByte
GetCPInfo
GetACP
GetOEMCP
HeapDestroy
CreateFileMappingA
HeapCreate
VirtualFree
RtlUnwind
VirtualAlloc
LCMapStringA
LCMapStringW
SetStdHandle
GetStringTypeA
GetStringTypeW
CompareStringA
Sleep
HeapAlloc
LoadLibraryA
FreeLibrary
GetProcAddress
SetThreadPriority
CreateThread
CreateEventA
SetEvent
GetDriveTypeA
VirtualQuery
VirtualProtect
GetSystemInfo
GetLocalTime
GetSystemTime
GlobalLock
GlobalUnlock
GlobalFree

Sections

.text
Size: 178KB - Virtual size: 178KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 32KB - Virtual size: 185KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 89KB - Virtual size: 89KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

833edeb5eede623d5d3b9dec2e9fd4de

Headers

File Characteristics

Imports

dsound

version

advapi32

comctl32

gdi32

shell32

user32

winmm

wsock32

kernel32

Sections

.text Size: 178KB - Virtual size: 178KB

.rdata Size: 7KB - Virtual size: 7KB

.data Size: 32KB - Virtual size: 185KB

.rsrc Size: 89KB - Virtual size: 89KB

.text
Size: 178KB - Virtual size: 178KB

.rdata
Size: 7KB - Virtual size: 7KB

.data
Size: 32KB - Virtual size: 185KB

.rsrc
Size: 89KB - Virtual size: 89KB