019ba9985226054e74e2332e80113f8d_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

019ba9985226054e74e2332e80113f8d_JaffaCakes118
Size

103KB
MD5

019ba9985226054e74e2332e80113f8d
SHA1

913f30c3fe8f98516c0c3389c901644ab0de459a
SHA256

6f9d2eb1c03bca18b211f0016f8adbbc68fdd569ec074edab7fd22c40c05586c
SHA512

1b18e549da0aad9fc8244926ee5304e879f474b7995f5e2912dd35f00d0b5a26fce91744fefe7f8ca5cd50dd0b6c6f04572fa8167741f57d3e2f523b2fdb7aed
SSDEEP

3072:G1Uo/cy3AkCSV3bUPm5No24d7+mphHY7QL5RCDHPlEmDO:GB/cy3AkjhPw22+mpF9RCjDO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
019ba9985226054e74e2332e80113f8d_JaffaCakes118

Files

019ba9985226054e74e2332e80113f8d_JaffaCakes118
.exe windows:5 windows x86 arch:x86

141b622aa70e67261bb13c80212a4939

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDlgItemInt
ShowWindow
SetWindowLongW
GetWindowLongW
SendMessageW
GetDC
SetDlgItemTextW
GetDesktopWindow
PeekMessageW
ReleaseDC
GetAsyncKeyState
SetCursor
LoadStringW
LoadCursorW
DefWindowProcW
IsWindowVisible
wsprintfW
IsWindow
CheckDlgButton
MoveWindow
EnableWindow
InvalidateRect
IsRectEmpty
TranslateMessage
GetClientRect
SetDlgItemInt
CheckRadioButton
DestroyWindow
ClientToScreen
GetDlgItem
GetWindowRect
CreateDialogParamW
DispatchMessageW

kernel32

lstrlenA
GetCurrentProcessId
LoadLibraryW
InitializeCriticalSection
ReleaseSemaphore
lstrcpyW
GetProfileIntA
SetUnhandledExceptionFilter
GetDiskFreeSpaceW
GetVersionExW
ReadFile
lstrlenW
IsBadReadPtr
CreateThread
PostQueuedCompletionStatus
lstrcpyA
InterlockedIncrement
GlobalUnlock
WaitForMultipleObjects
GetLastError
GetSystemDefaultLangID
IsBadCodePtr
InterlockedExchange
GetModuleFileNameA
GetCurrentProcess
GlobalAlloc
MulDiv
GetSystemTimeAsFileTime
GetThreadPriority
GetProcessHeap
MultiByteToWideChar
GetFullPathNameW
LeaveCriticalSection
QueryPerformanceCounter
lstrcmpiW
GetCurrentThread
EnterCriticalSection
CreateSemaphoreW
GlobalHandle
HeapAlloc
GetPrivateProfileStringW
GetTickCount
IsBadHugeReadPtr
WaitForSingleObject
SetEndOfFile
GlobalFree
GlobalLock
lstrcmpW
GetQueuedCompletionStatus
GetFileAttributesW
GetEnvironmentStringsW
WideCharToMultiByte
IsBadWritePtr
GlobalMemoryStatus
lstrcpynW
GetFileSize
CreateFileW
GetStartupInfoA
DeleteFileW
InterlockedDecrement
FreeLibrary
SetEvent
VirtualFree
ResetEvent
CloseHandle
WriteFile
CreateIoCompletionPort
CreateEventW
DeleteCriticalSection
SetThreadPriority
HeapFree
SetFilePointer
GetSystemInfo

winmm

CloseDriver
OpenDriver
mixerGetLineControlsW
waveInStart
waveInUnprepareHeader
waveInClose
waveInReset
waveInStop
mixerGetControlDetailsW
mixerClose
mixerGetLineInfoW
waveInAddBuffer
mixerGetID
SendDriverMessage
mixerSetControlDetails
waveInPrepareHeader
mixerOpen
waveInGetDevCapsW
waveInOpen

ole32

CoInitialize
CoCreateInstance
CoFreeUnusedLibraries
CoUninitialize
CoTaskMemFree
StringFromGUID2
CoTaskMemAlloc

msvcrt

??2@YAPAXI@Z
_purecall
wcslen
_ftol
_except_handler3
??3@YAXPAX@Z

msvfw32

ICCompress
ICLocate
ICOpen
ICGetInfo
ICClose
ICDecompress
ICSendMessage

advapi32

RegOpenKeyExW
RegSetValueExW
RegEnumKeyExW
RegOpenKeyW
RegSetValueW
RegCloseKey
RegDeleteKeyW
RegQueryValueExW
RegCreateKeyW
RegEnumKeyW

gdi32

GetPaletteEntries
GetObjectW
SelectObject
GetStockObject
GetTextExtentPoint32W
PatBlt

version

VerQueryValueW
GetFileVersionInfoSizeW
GetFileVersionInfoW

Sections

.text
Size: 48KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

141b622aa70e67261bb13c80212a4939

Headers

File Characteristics

Imports

user32

kernel32

winmm

ole32

msvcrt

msvfw32

advapi32

gdi32

version

Sections

.text Size: 48KB - Virtual size: 47KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 17KB - Virtual size: 66KB

.rsrc Size: 23KB - Virtual size: 23KB

.text
Size: 48KB - Virtual size: 47KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 17KB - Virtual size: 66KB

.rsrc
Size: 23KB - Virtual size: 23KB