dc82b9438baefeb35ff9b5c645da0e01_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

dc82b9438baefeb35ff9b5c645da0e01_JaffaCakes118
Size

580KB
MD5

dc82b9438baefeb35ff9b5c645da0e01
SHA1

d5a78666fa34335c504e01916e6ffee1149137a3
SHA256

95c8543113432b487a5c254e190690bcdd45b4bd20b3aeae066d20e370c50e80
SHA512

be29b0f2ae04481b7349285538ef609c9d32a3f222b042e9a3dd0a864a1b4bdbd195d0eca875c8fe9820c096783df4886c26f18dd44fd46d66c0074f3bf3b588
SSDEEP

12288:ufkmAyAqdEsu+PWT4TIrcb1MP/DwNZs+HTrRRQ:ucmAyRqs2TaMzwDfHo

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dc82b9438baefeb35ff9b5c645da0e01_JaffaCakes118

Files

dc82b9438baefeb35ff9b5c645da0e01_JaffaCakes118
.exe windows:4 windows x86 arch:x86

d71bf84132f56df8c39bfce437bcfa3d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

CreateFileA
UnlockFile
LockFile
SetFileAttributesA
GetExitCodeThread
SetEvent
SuspendThread
ResumeThread
TerminateThread
SwitchToThread
GetFullPathNameA
SetCurrentDirectoryA
GetCurrentDirectoryA
GetFileSize
Sleep
lstrcmpiA
GetCurrentThreadId
lstrcpyA
lstrcmpA
lstrlenA
CloseHandle
FlushFileBuffers
RaiseException
GetModuleHandleA
lstrcpynA
GetFileAttributesA
CreateDirectoryA
SetFilePointer
lstrcatA
GetModuleFileNameA
GetLastError
CreateMutexA
GetVersionExA
GetCurrentProcess
GetPrivateProfileIntA
WritePrivateProfileStringA
GetComputerNameA
GetTempPathA
GetSystemDirectoryA
GetWindowsDirectoryA
WideCharToMultiByte
MultiByteToWideChar
MulDiv
FreeLibrary
LoadLibraryA
GetCurrentProcessId
FlushInstructionCache
GetProcAddress
LockResource
LoadResource
FindResourceA
InitializeCriticalSection
DeleteCriticalSection
LeaveCriticalSection
EnterCriticalSection
InterlockedDecrement
SizeofResource
ReadFile
RtlUnwind
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
CreateThread
TlsSetValue
TlsGetValue
ExitThread
InterlockedIncrement
HeapAlloc
HeapFree
TlsAlloc
SetLastError
TerminateProcess
WriteFile
GetStdHandle
UnhandledExceptionFilter
FreeEnvironmentStringsA
FreeEnvironmentStringsW
GetEnvironmentStrings
GetEnvironmentStringsW
SetHandleCount
GetFileType
GetEnvironmentVariableA
HeapDestroy
HeapCreate
VirtualFree
LCMapStringA
LCMapStringW
HeapReAlloc
HeapSize
VirtualAlloc
IsBadWritePtr
SetUnhandledExceptionFilter
IsBadReadPtr
IsBadCodePtr
GetStringTypeA
GetStringTypeW
GetCPInfo
GetACP
GetOEMCP
SetStdHandle

user32

wsprintfA
CreateWindowExA
IsWindow
GetSysColor
GetDlgItemInt
GetWindowTextA
SetDlgItemInt
SetDlgItemTextA
TrackMouseEvent
DestroyCursor
CopyIcon
LoadCursorA
RegisterClassA
RegisterClassExA
GetClassInfoExA
SetWindowLongA
SetParent
SetClassLongA
DefWindowProcA
DefMDIChildProcA
GetWindow
SetCursor
SetWindowPos
GetDesktopWindow
IsChild
DeferWindowPos
GetActiveWindow
SetMenu
LoadMenuA
GetMenu
LoadImageA
DestroyMenu
GetSubMenu
CreatePopupMenu
TrackPopupMenuEx
InsertMenuItemA
DeleteMenu
GetMenuItemInfoA
GetMenuItemCount
CheckMenuItem
CheckMenuRadioItem
EnableMenuItem
SetMenuItemInfoA
GetMenuStringA
DrawEdge
DrawIconEx
GetClassLongA
DialogBoxParamA
CreateDialogParamA
EndDialog
CreateDialogIndirectParamA
GetDialogBaseUnits
DialogBoxIndirectParamA
EndDeferWindowPos
BeginDeferWindowPos
SetRectEmpty
GetSystemMenu
IsWindowEnabled
DrawFrameControl
IsRectEmpty
IntersectRect
DrawFocusRect
DispatchMessageA
TranslateMessage
IsDialogMessageA
TranslateAcceleratorA
TranslateMDISysAccel
GetMessageA
PeekMessageA
UpdateWindow
EnableWindow
GetDlgItem
InflateRect
SystemParametersInfoA
GetParent
LoadBitmapA
GetMenuInfo
GetClassNameA
CallNextHookEx
UnhookWindowsHookEx
SetWindowsHookExA
MoveWindow
CallWindowProcA
GetDC
KillTimer
ReleaseCapture
DrawTextA
IsIconic
GetFocus
DestroyWindow
ShowWindow
MapWindowPoints
GetWindowLongA
BeginPaint
FillRect
EndPaint
ClientToScreen
SetFocus
ScreenToClient
IsZoomed
PostQuitMessage
EqualRect
CopyRect
IsWindowVisible
SetWindowRgn
SetRect
GetSystemMetrics
LoadIconA
SetMenuInfo
GetClientRect
PostMessageA
FindWindowA
SetForegroundWindow
SetActiveWindow
InvalidateRect
GetWindowRect
OffsetRect
GetWindowDC
ReleaseDC
GetScrollBarInfo
SetCapture
SendMessageA
SetTimer
GetCursorPos
PtInRect

gdi32

CreatePatternBrush
Rectangle
CreateEllipticRgn
SaveDC
SetTextColor
RestoreDC
SetBkMode
GetObjectA
StretchBlt
BitBlt
DeleteDC
CreateSolidBrush
OffsetRgn
CombineRgn
CreateCompatibleDC
CreateCompatibleBitmap
ExcludeClipRect
SelectObject
RoundRect
CreateRoundRectRgn
CreatePen
DeleteObject
GetStockObject
CreateFontIndirectA
GetDeviceCaps
GetTextExtentPoint32A
SetBrushOrgEx
SetDIBits
CreateRectRgn
GetDIBits
TextOutA
SetROP2
MoveToEx
LineTo

comctl32

ImageList_Draw
InitCommonControlsEx
ord2
ord17
ImageList_Destroy
ImageList_AddMasked
ImageList_Create

winmm

timeGetTime

msvfw32

DrawDibDraw
DrawDibClose
DrawDibOpen

shell32

Shell_NotifyIconA

Sections

.text
Size: 228KB - Virtual size: 227KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 32KB - Virtual size: 30KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 24KB - Virtual size: 28KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 288KB - Virtual size: 286KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.Qing
Size: 4KB - Virtual size: 60B

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

d71bf84132f56df8c39bfce437bcfa3d

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comctl32

winmm

msvfw32

shell32

Sections

.text Size: 228KB - Virtual size: 227KB

.rdata Size: 32KB - Virtual size: 30KB

.data Size: 24KB - Virtual size: 28KB

.rsrc Size: 288KB - Virtual size: 286KB

.Qing Size: 4KB - Virtual size: 60B

.text
Size: 228KB - Virtual size: 227KB

.rdata
Size: 32KB - Virtual size: 30KB

.data
Size: 24KB - Virtual size: 28KB

.rsrc
Size: 288KB - Virtual size: 286KB

.Qing
Size: 4KB - Virtual size: 60B