39649e62f70fda33381733f89427d8eb_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

39649e62f70fda33381733f89427d8eb_JaffaCakes118
Size

764KB
MD5

39649e62f70fda33381733f89427d8eb
SHA1

85c633c225af72bb379a160fc83ee4ff072ff4dc
SHA256

ba4adccddd9a642b35476c998fe81d1d0e79afba48c854c5b4b3483d28cfeacb
SHA512

fcc0cc465ff861bc9384da54a7c38808c131ef2fef38358db9ac3b39b80c7d9766cc952ab3c237602d153dc60be7ff67581d74ff5e1bf7fb1efd015030c520d0
SSDEEP

12288:PTbEblEqvPedr2DQFN7DE9auJF+3nuBAqyvK5YISC048KZj/C6Zc492g8MhD9I7S:r4blESedCDqlESxzKc4PHhD94tEMBU

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
39649e62f70fda33381733f89427d8eb_JaffaCakes118

Files

39649e62f70fda33381733f89427d8eb_JaffaCakes118
.exe windows:4 windows x86 arch:x86

55c85abe0934f6ca87f4de210392cc8c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetEnvironmentStrings
GetEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
RaiseException
FreeEnvironmentStringsW
FlushFileBuffers
UnhandledExceptionFilter
IsBadWritePtr
VirtualAlloc
VirtualFree
HeapCreate
GetFileAttributesA
CompareStringW
GetStdHandle
SetEnvironmentVariableA
GetACP
SetStdHandle
HeapSize
HeapReAlloc
HeapAlloc
RtlUnwind
GetVersion
GetCommandLineA
GetStartupInfoA
DeleteFileA
MoveFileA
GetLocalTime
TerminateProcess
MulDiv
GetCurrentDirectoryA
GetPrivateProfileStringA
GetPrivateProfileIntA
GetCPInfo
GetStringTypeW
GetOEMCP
GetStringTypeA
IsBadCodePtr
SetUnhandledExceptionFilter
IsBadReadPtr
SetEndOfFile
LCMapStringA
LCMapStringW
SetFilePointer
CompareStringA
ReadFile
HeapDestroy
GetFileType
SetHandleCount
MultiByteToWideChar
ExitProcess
HeapFree
GetCurrentProcess
WideCharToMultiByte
LoadLibraryA
GetProcAddress
GetModuleHandleA
WriteFile
GetLastError
CreateFileA
GetVersionExA
CloseHandle
IsProcessorFeaturePresent
GetTimeZoneInformation
GetSystemTime

user32

TranslateMessage
DispatchMessageA
TranslateAcceleratorA
GetWindowRect
ClientToScreen
GetClientRect
SetDlgItemTextA
EndDialog
ShowWindow
EnableWindow
GetDlgItem
GetDlgItemTextA
PostMessageA
DefWindowProcA
DestroyCursor
LoadCursorFromFileA
LoadCursorA
DrawMenuBar
RedrawWindow
GetSystemMetrics
PeekMessageA
SendDlgItemMessageA
WaitMessage
CreateWindowExA
PostQuitMessage
DialogBoxParamA
LoadIconA
RegisterClassA
UpdateWindow
LoadAcceleratorsA
SetCursor
GetForegroundWindow
MessageBoxA

winmm

timeGetTime
waveOutSetVolume
auxSetVolume
mciSendStringA

comdlg32

GetOpenFileNameA
GetSaveFileNameA

ole32

CoInitialize
CoUninitialize
CoCreateInstance

advapi32

RegOpenKeyExA
RegDeleteValueA
RegCreateKeyExA
RegSetValueExA
RegQueryValueExA
RegOpenKeyA
RegCloseKey

gdi32

SetMapMode
GetDeviceCaps
CreateDIBSection
SelectObject
SetTextColor
CreateFontA
SetTextAlign
GetTextExtentPoint32A
SetBkColor
DeleteObject
DeleteDC
ExtTextOutA
GetStockObject
CreateCompatibleDC

shell32

ShellExecuteA

d3d8

Direct3DCreate8

dsound

ord11

Sections

.text
Size: 508KB - Virtual size: 504KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 24KB - Virtual size: 20KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 68KB - Virtual size: 1.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data1
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 156KB - Virtual size: 153KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

55c85abe0934f6ca87f4de210392cc8c

Headers

File Characteristics

Imports

kernel32

user32

winmm

comdlg32

ole32

advapi32

gdi32

shell32

d3d8

dsound

Sections

.text Size: 508KB - Virtual size: 504KB

.rdata Size: 24KB - Virtual size: 20KB

.data Size: 68KB - Virtual size: 1.4MB

.data1 Size: 4KB - Virtual size: 2KB

.rsrc Size: 156KB - Virtual size: 153KB

.text
Size: 508KB - Virtual size: 504KB

.rdata
Size: 24KB - Virtual size: 20KB

.data
Size: 68KB - Virtual size: 1.4MB

.data1
Size: 4KB - Virtual size: 2KB

.rsrc
Size: 156KB - Virtual size: 153KB