13c793786cf0b2512a4e72b185601d5f_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

13c793786cf0b2512a4e72b185601d5f_JaffaCakes118
Size

1008KB
MD5

13c793786cf0b2512a4e72b185601d5f
SHA1

31ca11d03143bb2cb14949a6c98c774f1ec85807
SHA256

df6e70fb43d373ab7e12d954172056f61ce841ece7ef954708c3737db31794ba
SHA512

117d81afcd5e59ba74bb87f07201657bf42bd84a936e5ff50c21ce0a372c898e92b3ac230fc1f46ce9a5e408d504bdfcfb58c6432e0d45305840946ca5d94b30
SSDEEP

24576:wxeuV58YCygTVBZGt75Pi5LkWqbUFBlccEWa:87DgT/ZGt7U54fYFHO

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
13c793786cf0b2512a4e72b185601d5f_JaffaCakes118

Files

13c793786cf0b2512a4e72b185601d5f_JaffaCakes118
.exe windows:4 windows x86 arch:x86

fc62d2bf230041424ab940b596bb7ac8

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

waveOutRestart
SendDriverMessage
midiOutReset

gdi32

CreateSolidBrush
GetStockObject
TextOutW
MoveToEx
LineTo
Polyline
GetTextExtentPointW
CreateFontIndirectW
DeleteObject
GetTextMetricsW
GetTextExtentPoint32W
PatBlt
SetTextColor
SetBkColor
PtVisible
SelectObject
CreatePen

comctl32

InitCommonControlsEx
CreateToolbarEx
CreateStatusWindowW
PropertySheetW

msvcrt

__wgetmainargs
_cexit
_exit
_XcptFilter
_initterm
_amsg_exit
__setusermatherr
__p__commode
__p__fmode
__set_app_type
_unlock
__dllonexit
_lock
_onexit
?terminate@@YAXXZ
_controlfp
_spawnlp
_vsnprintf
_vsnwprintf
__CxxFrameHandler
getenv
_wtoi64
exit
realloc
iswalnum
iswalpha
_wctime
wcstoul
iswdigit
_wgetenv
_wtoi
_itow
towlower
iswprint
wcsstr
towupper
wcsrchr
??2@YAPAXI@Z
_purecall
_wcsdup
wcstok
_wcsicmp
_wcsnicmp
swscanf
iswspace
_wfopen
fprintf
fclose
calloc
memset
memmove
memcpy
malloc
wcsncmp
wcschr
free
??3@YAXPAX@Z

kernel32

GlobalFree
GlobalLock
GlobalAlloc
GlobalSize
FreeLibrary
GetProcAddress
LoadLibraryW
WaitForSingleObject
GetModuleHandleW
SetEnvironmentVariableW
GetModuleFileNameW
GetPriorityClass
GetFileAttributesW
GlobalUnlock
GetCurrentDirectoryW
OutputDebugStringW
GetTickCount
DeleteCriticalSection
InitializeCriticalSection
GetFileTime
CompareFileTime
ExitProcess
GetCommandLineW
CreateThread
GetCurrentProcessId
Sleep
InterlockedCompareExchange
GetCurrentProcess
SetPriorityClass
InterlockedIncrement
LeaveCriticalSection
ExpandEnvironmentStringsW
EnterCriticalSection
GetVersionExW
DeleteFileW
GetCurrentThreadId
ExpandEnvironmentStringsA
CreateProcessW
WriteFile
Beep
CreateFileW
GetFileSize
ReadFile
MultiByteToWideChar
CloseHandle
InterlockedExchange
GetLastError
WideCharToMultiByte
DebugBreak
InterlockedDecrement
RtlUnwind
SetUnhandledExceptionFilter
GetModuleHandleA
QueryPerformanceCounter
GetSystemTimeAsFileTime
TerminateProcess
UnhandledExceptionFilter
LoadLibraryA
SetLastError
FormatMessageW
CreateEventA
SetEvent
SetErrorMode
SetFilePointer
GetComputerNameW
GetModuleFileNameA

advapi32

RegCloseKey
RegEnumValueW
RegOpenKeyExW
RegQueryValueExW
RegSetValueExW
RegDeleteValueW
RegCreateKeyExW
RegOpenKeyExA
RegQueryValueExA

user32

ShowWindow
GetWindowThreadProcessId
GetForegroundWindow
GetTitleBarInfo
CopyRect
DrawIconEx
FillRect
SetRect
GetSysColorBrush
GetWindowDC
GetDCEx
IsWindowVisible
DefWindowProcW
RedrawWindow
GetActiveWindow
IsZoomed
SetCursor
PtInRect
EndDeferWindowPos
BeginDeferWindowPos
SystemParametersInfoW
LoadIconW
RegisterClassExW
LoadCursorW
LoadStringW
SetParent
OpenIcon
MapWindowPoints
IsWindowEnabled
ChildWindowFromPointEx
EndPaint
BeginPaint
SetLayeredWindowAttributes
WindowFromPoint
DispatchMessageW
TranslateMessage
GetMessageW
GetCapture
GetDlgItemTextW
SetDlgItemTextW
SendDlgItemMessageW
GetParent
IsClipboardFormatAvailable
DeleteMenu
GetMenuItemCount
GetMenuItemInfoW
GetDlgItem
GetDlgItemInt
IsDlgButtonChecked
CheckDlgButton
CheckRadioButton
SetDlgItemInt
GetMenuState
PostQuitMessage
AdjustWindowRect
GetMenu
DrawTextW
GetSysColor
CallNextHookEx
UpdateWindow
MessageBoxW
TranslateAcceleratorW
PeekMessageW
CloseClipboard
SetClipboardData
EmptyClipboard
OpenClipboard
GetClipboardData
DestroyMenu
CreatePopupMenu
GetScrollInfo
SetWindowsHookExW
GetSubMenu
LoadAcceleratorsW
RegisterWindowMessageW
RegisterClipboardFormatW
WaitMessage
SetActiveWindow
SetWindowLongW
ModifyMenuW
TrackPopupMenu
GetDesktopWindow
GetDC
ReleaseDC
RemoveMenu
DrawMenuBar
GetCursorPos
ScreenToClient
SetWindowPos
DeferWindowPos
ClientToScreen
OffsetRect
SetWindowPlacement
GetWindowPlacement
InflateRect
GetWindowRect
MessageBeep
CreateMenu
InsertMenuItemW
MoveWindow
IsIconic
GetKeyState
GetSystemMetrics
ReleaseCapture
SetCapture
SetMenuItemInfoW
GetWindowLongW
DestroyWindow
SetTimer
EnableWindow
InvalidateRect
KillTimer
PostMessageW
GetWindowTextLengthW
GetWindowTextW
SetWindowTextW
SetFocus
IsChild
GetClientRect
EnableMenuItem
CreateWindowExW
CheckMenuItem
GetFocus
SendMessageW
BringWindowToTop

Sections

.text
Size: 781KB - Virtual size: 780KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 7KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 199KB - Virtual size: 198KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 20KB - Virtual size: 3.2MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Size: - Virtual size: 4KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

fc62d2bf230041424ab940b596bb7ac8

Headers

File Characteristics

Imports

winmm

gdi32

comctl32

msvcrt

kernel32

advapi32

user32

Sections

.text Size: 781KB - Virtual size: 780KB

.rdata Size: 7KB - Virtual size: 6KB

.data Size: 199KB - Virtual size: 198KB

.rsrc Size: 20KB - Virtual size: 3.2MB

Size: - Virtual size: 4KB

.text
Size: 781KB - Virtual size: 780KB

.rdata
Size: 7KB - Virtual size: 6KB

.data
Size: 199KB - Virtual size: 198KB

.rsrc
Size: 20KB - Virtual size: 3.2MB