16e8ea38fda64060084a8e7afcebcb2a_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

16e8ea38fda64060084a8e7afcebcb2a_JaffaCakes118
Size

564KB
MD5

16e8ea38fda64060084a8e7afcebcb2a
SHA1

ce36de8a3486550487a631d5f03d1f2978ffab8c
SHA256

66e65c810b0e81a44210ed465a4e5d1e26077e6dafc841f4c2301489e9028aac
SHA512

4d186f810a0089b4b22db5b96ad0290258a3f6a22a0dd488f14555c4583e75c7cb965317270a3b2c18067b35d590a77c225f678866ad3a5be5eda34134ff0523
SSDEEP

12288:Y3X7PBX1wozsUY17payTGTUtcVsSsuG8prFHEk4c9eJViBjeZ:+rPBXiozsUqsyRSs8HE3cIJViBI

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
16e8ea38fda64060084a8e7afcebcb2a_JaffaCakes118

Files

16e8ea38fda64060084a8e7afcebcb2a_JaffaCakes118
.exe windows:4 windows x86 arch:x86

95cfcf3c64308cae2c2209e6d423ef82

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetSystemInfo
GetSystemDefaultLangID
VerLanguageNameA
MultiByteToWideChar
GlobalFree
WaitForMultipleObjects
GlobalAlloc
GetFileAttributesA
MapViewOfFile
CreateFileMappingA
CreateEventA
CreateFileA
UnmapViewOfFile
SetThreadPriority
DeleteFileA
SetFileAttributesA
GetFileSize
SetFilePointer
GetModuleFileNameA
WriteFile
GetDriveTypeA
GlobalMemoryStatus
FindClose
FindNextFileA
FindFirstFileA
FileTimeToDosDateTime
FileTimeToSystemTime
FileTimeToLocalFileTime
GetFileTime
ReleaseMutex
GetLastError
CreateMutexA
_lwrite
QueryPerformanceFrequency
QueryPerformanceCounter
OpenFile
_llseek
_lread
_lclose
CreateThread
ExitThread
WaitForSingleObject
Sleep
GetLocalTime
GetTickCount
GetVersionExA
LoadLibraryA
OutputDebugStringA
GetProcAddress
FreeLibrary
ReadFile
GetStringTypeW
LCMapStringW
LCMapStringA
RtlUnwind
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
HeapSize
GetStringTypeA
HeapReAlloc
VirtualAlloc
VirtualFree
CloseHandle
HeapCreate
HeapDestroy
GetEnvironmentVariableA
GetVersion
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
GetSystemTime
GetTimeZoneInformation
GetCurrentProcess
TerminateProcess
ExitProcess
CompareStringW
GetCPInfo
CompareStringA
SetEnvironmentVariableA
GetOEMCP
SetStdHandle
RaiseException
FlushFileBuffers
HeapAlloc
HeapFree
GetACP

user32

GetDC
GetClientRect
GetMessageA
ClientToScreen
GetWindowLongA
GetKeyboardState
AdjustWindowRect
SetWindowLongA
PeekMessageA
DispatchMessageA
TranslateMessage
OffsetRect
DefWindowProcA
PostQuitMessage
FindWindowA
GetLastActivePopup
LoadCursorA
SetForegroundWindow
GetDesktopWindow
GetWindowRect
LoadIconA
RegisterClassA
MoveWindow
ShowCursor
GetSystemMetrics
GetActiveWindow
MessageBoxA
UpdateWindow
CreateWindowExA
DestroyWindow
ShowWindow
DialogBoxParamA
GetFocus
GetDlgItemTextA
SetDlgItemTextA
SetFocus
KillTimer
SetTimer
CheckDlgButton
EndDialog
IsDlgButtonChecked
CheckRadioButton
GetDlgCtrlID
GetDlgItemInt
SetDlgItemInt
SendDlgItemMessageA
SendMessageA
CharUpperA
InvalidateRect
ReleaseDC
SetRect
SetWindowTextA
GetDlgItem

gdi32

DeleteObject
TextOutA
SetBkColor
SetTextColor
SelectObject
CreateFontIndirectA
GetStockObject
GetSystemPaletteEntries

advapi32

RegCloseKey
RegQueryValueExA
RegOpenKeyExA

ole32

CoUninitialize
CoInitialize
CoCreateInstance

ddraw

DirectDrawCreateEx

winmm

timeGetTime

dinput8

DirectInput8Create

dsound

ord11

Sections

.text
Size: 456KB - Virtual size: 455KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 84KB - Virtual size: 5.9MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

95cfcf3c64308cae2c2209e6d423ef82

Headers

File Characteristics

Imports

kernel32

user32

gdi32

advapi32

ole32

ddraw

winmm

dinput8

dsound

Sections

.text Size: 456KB - Virtual size: 455KB

.rdata Size: 12KB - Virtual size: 11KB

.data Size: 84KB - Virtual size: 5.9MB

.rsrc Size: 8KB - Virtual size: 5KB

.text
Size: 456KB - Virtual size: 455KB

.rdata
Size: 12KB - Virtual size: 11KB

.data
Size: 84KB - Virtual size: 5.9MB

.rsrc
Size: 8KB - Virtual size: 5KB