25bcb587bafd8dfec9c872d1db2eefb7_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

25bcb587bafd8dfec9c872d1db2eefb7_JaffaCakes118
Size

100KB
MD5

25bcb587bafd8dfec9c872d1db2eefb7
SHA1

bc6ee3249d5e62c39d7d96b88c6b1200bf44a481
SHA256

c590bdcffd7a6b833024c4319bc678d762f8b3160ea9ac95564e431b2fbb3a99
SHA512

b571d2376bd930a90e54614b099b5a60700464cd30aa4562b06261ce5c5f809d4060facec4e8ee0cbed7bcd789b0b0f6747c6beaa79e7026dc74533be5dd9671
SSDEEP

3072:qmYEQybkjAYebfEw5BKmg4ucxbHiuGNRtiXe:4Ej1Yo8wrnPxboRw

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
25bcb587bafd8dfec9c872d1db2eefb7_JaffaCakes118

Files

25bcb587bafd8dfec9c872d1db2eefb7_JaffaCakes118
.exe windows:5 windows x86 arch:x86

24d1a300b44c744f83a4983697b9eed6

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

waveInPrepareHeader
OpenDriver
mixerOpen
waveInUnprepareHeader
waveInStop
mixerGetID
mixerGetControlDetailsW
mixerSetControlDetails
waveInClose
mixerGetLineControlsW
waveInOpen
waveInReset
waveInGetDevCapsW
CloseDriver
mixerGetLineInfoW
mixerClose
waveInAddBuffer
SendDriverMessage
waveInStart

kernel32

GetEnvironmentStringsW
GlobalLock
SetUnhandledExceptionFilter
GetFullPathNameW
SetFilePointer
GetProcessHeap
IsBadReadPtr
GlobalFree
lstrcmpW
HeapFree
lstrcmpiW
WaitForMultipleObjects
DeleteFileW
GetPrivateProfileStringW
WriteFile
GetCurrentProcessId
GetThreadPriority
GetFileSize
LoadLibraryW
CreateThread
GetLastError
HeapAlloc
lstrcpynW
GetFileAttributesW
GetSystemDefaultLangID
lstrcpyA
InterlockedDecrement
InterlockedIncrement
GlobalUnlock
lstrlenW
GetModuleFileNameA
ReleaseSemaphore
InterlockedExchange
ResetEvent
CreateFileW
FreeLibrary
InitializeCriticalSection
SetThreadPriority
PostQueuedCompletionStatus
VirtualFree
GlobalMemoryStatus
GlobalAlloc
GetStartupInfoA
WideCharToMultiByte
LeaveCriticalSection
GetTickCount
MultiByteToWideChar
GetSystemTimeAsFileTime
GetQueuedCompletionStatus
GlobalHandle
IsBadCodePtr
GetCurrentThread
QueryPerformanceCounter
ReadFile
CreateSemaphoreW
lstrlenA
SetEvent
GetCurrentProcess
GetDiskFreeSpaceW
GetSystemInfo
IsBadWritePtr
WaitForSingleObject
CreateEventW
GetProfileIntA
DeleteCriticalSection
lstrcpyW
SetEndOfFile
CloseHandle
MulDiv
CreateIoCompletionPort
EnterCriticalSection
GetVersionExW

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

user32

IsRectEmpty
SetDlgItemInt
CheckDlgButton
DestroyWindow
IsWindow
GetWindowRect
ClientToScreen
ReleaseDC
MoveWindow
TranslateMessage
GetDesktopWindow
EnableWindow
LoadCursorW
DispatchMessageW
IsWindowVisible
ShowWindow
GetClientRect
SetDlgItemTextW
CheckRadioButton
GetAsyncKeyState
DefWindowProcW
GetDC
SetCursor
CreateDialogParamW
GetWindowLongW
SetWindowLongW
InvalidateRect
LoadStringW
GetDlgItem
GetDlgItemInt
SendMessageW
wsprintfW
PeekMessageW

msvfw32

ICSendMessage
ICDecompress
ICOpen
ICGetInfo
ICCompress
ICClose
ICLocate

msvcrt

??3@YAXPAX@Z
_ftol
??2@YAPAXI@Z
_except_handler3
_purecall
wcslen

ole32

CoTaskMemAlloc
CoInitialize
CoUninitialize
StringFromGUID2
CoTaskMemFree
CoCreateInstance
CoFreeUnusedLibraries

gdi32

GetStockObject
GetObjectW
PatBlt
SelectObject
GetPaletteEntries
GetTextExtentPoint32W

advapi32

RegDeleteKeyW
RegSetValueW
RegEnumKeyExW
RegCreateKeyW
RegSetValueExW
RegQueryValueExW
RegCloseKey
RegEnumKeyW
RegOpenKeyW
RegOpenKeyExW

Sections

.text
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

24d1a300b44c744f83a4983697b9eed6

Headers

File Characteristics

Imports

winmm

kernel32

version

user32

msvfw32

msvcrt

ole32

gdi32

advapi32

Sections

.text Size: 45KB - Virtual size: 44KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 17KB - Virtual size: 94KB

.rsrc Size: 23KB - Virtual size: 23KB

.text
Size: 45KB - Virtual size: 44KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 17KB - Virtual size: 94KB

.rsrc
Size: 23KB - Virtual size: 23KB