0430fc20f9ce4911b5fb1e72bcde3f9a_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

0430fc20f9ce4911b5fb1e72bcde3f9a_JaffaCakes118
Size

101KB
MD5

0430fc20f9ce4911b5fb1e72bcde3f9a
SHA1

4e36a18e1894a525d46d4fa8a37d25356f953499
SHA256

c40fdcda73629722ff72f3522e6f040292017aa9cb37161d020d3b3837389d01
SHA512

ee6b881da5ab2107b37c336c2e6cd00f19c9cf567d9e1e8e3cbccc3cd0e39526358afbd6c2ce84af3126f8c4c4737f97736e8e3dd8b450bc1374c542b7c25b25
SSDEEP

1536:lsd6sJG2I3h5ESouZlf8bMJDuRzYP3VpCJo34b/UdB6BGJczl9C9lm6Zin:s5lmfOQS6Djob/Ur6BGJczl9C264n

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0430fc20f9ce4911b5fb1e72bcde3f9a_JaffaCakes118

Files

0430fc20f9ce4911b5fb1e72bcde3f9a_JaffaCakes118
.exe windows:5 windows x86 arch:x86

fb28fee5929771852b82392ac0ec1baa

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetEnvironmentStringsW
InterlockedIncrement
GetCPInfo
EnterCriticalSection
CreateFileW
InterlockedExchange
GetQueuedCompletionStatus
CreateSemaphoreW
GetLastError
IsBadCodePtr
MultiByteToWideChar
SetFilePointer
GlobalMemoryStatus
GetTickCount
CreateThread
GetDiskFreeSpaceW
lstrlenW
lstrcpyW
ReleaseSemaphore
VirtualFree
GetFileAttributesW
GlobalAlloc
InterlockedDecrement
GetStartupInfoA
WriteFile
CreateIoCompletionPort
GetCurrentProcess
SetThreadPriority
LoadLibraryW
InitializeCriticalSection
DeleteFileW
GetPrivateProfileStringW
SetEndOfFile
IsBadReadPtr
GetCurrentProcessId
GlobalFree
GetThreadPriority
ReadFile
lstrcmpW
WaitForMultipleObjects
WaitForSingleObject
lstrcpynW
DeleteCriticalSection
WideCharToMultiByte
GetCurrentThread
IsBadHugeReadPtr
GetSystemInfo
HeapAlloc
HeapFree
GetProfileIntA
GlobalLock
lstrcmpiW
GlobalHandle
OutputDebugStringA
GetSystemTimeAsFileTime
GetSystemDefaultLangID
GetModuleFileNameA
GetVersionExW
GetFileSize
GetFullPathNameW
SetUnhandledExceptionFilter
ResetEvent
QueryPerformanceCounter
FreeLibrary
LeaveCriticalSection
CreateEventW
MulDiv
SetEvent
GetProcessHeap
lstrlenA
lstrcpyA
PostQueuedCompletionStatus
CloseHandle
GlobalUnlock
IsBadWritePtr

msvcrt

_purecall
??3@YAXPAX@Z
_except_handler3
??2@YAPAXI@Z
wcslen
_ftol

winmm

mixerGetLineControlsW
waveInGetDevCapsW
waveInClose
mixerSetControlDetails
mixerGetID
waveInUnprepareHeader
waveInPrepareHeader
SendDriverMessage
mixerClose
waveInOpen
waveInAddBuffer
waveInStop
waveInReset
mixerGetControlDetailsW
waveInStart
OpenDriver
mixerOpen
CloseDriver
mixerGetLineInfoW

ole32

CoTaskMemAlloc
CoCreateInstance
StringFromGUID2
CoUninitialize
CoFreeUnusedLibraries
CoInitialize
CoTaskMemFree

user32

InvalidateRect
wsprintfW
SetDlgItemInt
LoadCursorW
DefWindowProcW
MoveWindow
GetDesktopWindow
LoadStringW
TranslateMessage
CreateDialogParamW
GetAsyncKeyState
GetClientRect
SetWindowLongW
CheckRadioButton
DispatchMessageW
SetCursor
CheckDlgButton
ReleaseDC
IsWindowVisible
GetDC
SetDlgItemTextW
GetDlgItem
PeekMessageW
ShowWindow
GetWindowRect
ClientToScreen
IsWindow
IsRectEmpty
DestroyWindow
GetWindowLongW
SendMessageW
GetDlgItemInt
EnableWindow

advapi32

RegEnumKeyW
RegEnumKeyExW
RegCreateKeyW
RegOpenKeyExW
RegSetValueW
RegOpenKeyW
RegDeleteKeyW
RegCloseKey
RegSetValueExW
RegQueryValueExW

msvfw32

ICSendMessage
ICClose
ICOpen
ICCompress
ICLocate
ICGetInfo
ICDecompress

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

gdi32

GetObjectW
GetPaletteEntries
GetTextExtentPoint32W
SelectObject
GetStockObject
PatBlt

Sections

.text
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 99KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fb28fee5929771852b82392ac0ec1baa

Headers

File Characteristics

Imports

kernel32

msvcrt

winmm

ole32

user32

advapi32

msvfw32

version

gdi32

Sections

.text Size: 46KB - Virtual size: 45KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 17KB - Virtual size: 99KB

.rsrc Size: 23KB - Virtual size: 23KB

.text
Size: 46KB - Virtual size: 45KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 17KB - Virtual size: 99KB

.rsrc
Size: 23KB - Virtual size: 23KB