d62f6a40894bf0b870daed806b491cca_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

d62f6a40894bf0b870daed806b491cca_JaffaCakes118
Size

1.3MB
MD5

d62f6a40894bf0b870daed806b491cca
SHA1

b0b8f55625d0216db006426e495763deadf883d5
SHA256

84852a75207baa92af100d5dd4df57912c6adfbc225d3724205bfb356cb416ca
SHA512

e969a30fd13b63b84515763667dd7faeea51367ab991a3e640e4523cd85e7a0c84d69e6658825be070856acd560f4d84c1918d798783aacaa3d4c4962f22480e
SSDEEP

24576:OhqICVMewgzS5ThWdXbGOsKAVtly7KdDTJUD5CmK7T7DyTbYJFkMmq89l9ig0xmf:OpuOTWxNaVJTJI5Cmm82FB8Ri9xUOi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d62f6a40894bf0b870daed806b491cca_JaffaCakes118

Files

d62f6a40894bf0b870daed806b491cca_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3d34bea655061682b9aae986ef62ae33

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GlobalLock
GetProcAddress
FreeLibrary
GlobalReAlloc
MulDiv
LocalLock
lstrcpyA
CreateFileA
WritePrivateProfileStringA
Sleep
LocalReAlloc
WriteFile
lstrlenA
GetTickCount
SetEndOfFile
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
InterlockedIncrement
InterlockedDecrement
FlushFileBuffers
OutputDebugStringA
TlsGetValue
SetLastError
TlsAlloc
HeapAlloc
GetCurrentThreadId
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
CloseHandle
CreateProcessA
SetThreadPriority
GetCurrentThread
GetCurrentProcess
SetPriorityClass
ResumeThread
GetWindowsDirectoryA
GetFileAttributesA
SetFileAttributesA
CopyFileA
GetShortPathNameA
GlobalAlloc
LocalFree
GetModuleFileNameA
GetOEMCP
GetACP
GlobalFree
GlobalHandle
GlobalUnlock
LocalAlloc
LocalUnlock
SetStdHandle
GetCPInfo
SetFilePointer
ReadFile
GetLastError
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
RtlUnwind
GetVersion
TerminateProcess
TlsSetValue
GetVersionExA
GetModuleHandleA
GetSystemPowerStatus
UnhandledExceptionFilter
ExitProcess
GetStartupInfoA
GetCommandLineA
HeapFree

user32

EndPaint
ScreenToClient
MessageBoxA
CharNextA
FindWindowA
SetForegroundWindow
RegisterWindowMessageA
GetForegroundWindow
SendMessageA
GetParent
IsWindow
GetCursorPos
ReleaseDC
GetClientRect
GetDC
PeekMessageA
GetQueueStatus
wsprintfA
SystemParametersInfoA
PostMessageA
SetTimer
EnableWindow
GetWindowTextA
EndDialog
PostQuitMessage
SendDlgItemMessageA
SetWindowTextA
GetDlgItem
ShowWindow
BeginPaint
GetWindowRect
GetSystemMetrics
RegisterClassA
SetFocus
LoadCursorA
SetCursor
DefWindowProcA
LoadIconA
DialogBoxParamA
KillTimer
CreateWindowExA
GetMessageA
TranslateMessage
DispatchMessageA
FillRect

gdi32

SetTextColor
CreateSolidBrush
GetDeviceCaps
CreateHalftonePalette
SelectPalette
RealizePalette
StretchDIBits
SetStretchBltMode
SetBrushOrgEx
CreateDIBSection
CreateCompatibleDC
SelectObject
DeleteObject
DeleteDC
SetBkMode
GetStockObject
GetClipBox

comdlg32

GetSaveFileNameA

advapi32

RegSetValueExA
RegQueryValueExA
RegDeleteValueA
RegCreateKeyExA
RegCloseKey
RegOpenKeyExA
RegOpenKeyA

shell32

ShellExecuteA

winmm

mciSendStringA
mmioInstallIOProcA
midiStreamClose
midiOutUnprepareHeader
midiStreamOut
midiOutPrepareHeader
midiStreamProperty
midiStreamOpen
midiOutReset
midiStreamRestart
midiStreamPause
midiStreamStop
midiStreamPosition
mmioClose
mmioRead
mmioSeek
mmioDescend
mmioOpenA

comctl32

InitCommonControlsEx

Sections

.text
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3d34bea655061682b9aae986ef62ae33

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

winmm

comctl32

Sections

.text Size: 76KB - Virtual size: 75KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 16KB - Virtual size: 3.4MB

.rsrc Size: 8KB - Virtual size: 6KB

.text
Size: 76KB - Virtual size: 75KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 16KB - Virtual size: 3.4MB

.rsrc
Size: 8KB - Virtual size: 6KB