077acaa09da73eac33e54f8c0552388a_JaffaCakes118

General

Target

077acaa09da73eac33e54f8c0552388a_JaffaCakes118
Size

51KB
MD5

077acaa09da73eac33e54f8c0552388a
SHA1

ff4bb8947ad6559a9ae41886fd295e286751d44a
SHA256

869095df2350b8ae9816124c21609bb8f430c999bd67c3dce71d6435579161b7
SHA512

4bb7847b67f3d0aaa79ae4832f7588cbbaae13cd88cd422e8a37c612fa8dc4d544cce2e0416d51c4adf5da66b74df55e8de144225c299782578adb7f9400bded
SSDEEP

1536:Mdhez8B/gEMQOITS4N9aPBUo5qnx2P3x:QhezegE7tTSWaPpqnx25

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
077acaa09da73eac33e54f8c0552388a_JaffaCakes118

Files

077acaa09da73eac33e54f8c0552388a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

13fd443be87f20ee00c65bd25295d166

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

dsound

DirectSoundCaptureEnumerateA
DirectSoundCaptureCreate8

msvbvm60

__vbaCyErrVar
__vbaFailedFriend
__vbaCVarAryUdt

msvfw32

ICDrawBegin
ICDraw
DrawDibGetBuffer

user32

CreateDesktopW
DestroyCursor
LoadCursorFromFileA
MessageBoxIndirectA
RegisterClassA
ShowCursor
CreateCursor

kernel32

SetUnhandledExceptionFilter
WriteFile
TlsSetValue
TlsFree
TlsAlloc
GetVersion
GetStartupInfoA
GetModuleHandleA
GetLastError
GetCommandLineA
ExitProcess
EnumResourceTypesA
CloseHandle
lstrcpynA
lstrlenA
lstrcpyA

advapi32

RegOpenKeyExA
LsaEnumeratePrivileges
LsaLookupNames
LsaGetRemoteUserName

ole32

CoTaskMemFree
OleUninitialize
OleSaveToStream
OleInitialize
CreateFileMoniker
CoUninitialize
CoInitialize
CoGetClassObject
CoCreateInstance

wininet

InternetReadFile
InternetSetOptionExA
FindNextUrlCacheGroup

Sections

.text
Size: 14KB - Virtual size: 16KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 11KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 14KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.idata
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

13fd443be87f20ee00c65bd25295d166

Headers

File Characteristics

Imports

dsound

msvbvm60

msvfw32

user32

kernel32

advapi32

ole32

wininet

Sections

.text Size: 14KB - Virtual size: 16KB

.rdata Size: 11KB - Virtual size: 12KB

.data Size: 14KB - Virtual size: 16KB

.idata Size: 2KB - Virtual size: 4KB

.rsrc Size: 8KB - Virtual size: 8KB

.text
Size: 14KB - Virtual size: 16KB

.rdata
Size: 11KB - Virtual size: 12KB

.data
Size: 14KB - Virtual size: 16KB

.idata
Size: 2KB - Virtual size: 4KB

.rsrc
Size: 8KB - Virtual size: 8KB