dfbb0274e9bc443685add48202dd57ac_JaffaCakes118

General

Target

dfbb0274e9bc443685add48202dd57ac_JaffaCakes118
Size

171KB
MD5

dfbb0274e9bc443685add48202dd57ac
SHA1

93fd9e1217d3ddd5f8c489022fd4ccedcfeb8d70
SHA256

5a08a84927bfb5d156edc48350ef6d308e587f1efb5539e548de3e7ca57c1647
SHA512

0462e34f93373ca56225ff5fcf45582fc733ef93345407f6b6325961b58f5a855516cd72c5b3af93fde8a76a266a2558c8b1acd165dc1ea6a9ca208bf1bdb3d0
SSDEEP

3072:m8Oh/qFKrq6QsTx04k+o36QgXmpNbS+IOa7M+QDd5rYyDGT:m1SG5QsLY6pENbS+La7M+QfrYyCT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
dfbb0274e9bc443685add48202dd57ac_JaffaCakes118

Files

dfbb0274e9bc443685add48202dd57ac_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3fc6cb627a4a27f7ff9ca64c4395e3e3

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetSysColor
GetWindowInfo
LoadCursorA
GetWindowLongA
MoveWindow
ReleaseCapture
ReleaseDC
FillRect
SetWindowPos
GetDlgItem
IsWindow
SetWindowLongA
SetCursor
GetDC
SetCapture

winmm

mciSendCommandA
sndPlaySoundA

version

GetFileVersionInfoA
VerQueryValueA
GetFileVersionInfoSizeA

ole32

CoGetMalloc
CoTaskMemFree
ProgIDFromCLSID
StringFromCLSID

kernel32

GetACP
GetModuleHandleA
GetCurrentThreadId
SetUnhandledExceptionFilter
GetSystemTime
CreateProcessA
GetCalendarInfoW
LocalAlloc
InterlockedExchange
HeapDestroy
RaiseException
CreateFileW
UnhandledExceptionFilter
HeapAlloc
WriteFile
GetEnvironmentVariableA
lstrlenA
GetCurrentProcess
TerminateProcess
GetSystemTimeAsFileTime
LoadLibraryW
GetThreadLocale
HeapFree
GetStdHandle
GetCurrentProcessId
EnumResourceNamesA
CloseHandle
GetTickCount
QueryPerformanceCounter
IsDebuggerPresent
lstrlenW
FindFirstFileW
GetLocaleInfoA
MultiByteToWideChar
HeapReAlloc
InterlockedCompareExchange
GetProcessHeap
LoadLibraryExW
SystemTimeToFileTime
WideCharToMultiByte
GetStartupInfoA
HeapSize
Sleep
lstrcpynW

oleacc

LresultFromObject
CreateStdAccessibleObject

Sections

.text
Size: 96KB - Virtual size: 96KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.bss
Size: 71KB - Virtual size: 70KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1024B - Virtual size: 248KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3fc6cb627a4a27f7ff9ca64c4395e3e3

Headers

File Characteristics

Imports

user32

winmm

version

ole32

kernel32

oleacc

Sections

.text Size: 96KB - Virtual size: 96KB

.rdata Size: 2KB - Virtual size: 2KB

.bss Size: 71KB - Virtual size: 70KB

.rsrc Size: 1024B - Virtual size: 248KB

.text
Size: 96KB - Virtual size: 96KB

.rdata
Size: 2KB - Virtual size: 2KB

.bss
Size: 71KB - Virtual size: 70KB

.rsrc
Size: 1024B - Virtual size: 248KB