45c71b2f1575fd939bd0d14a2414c05b_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

45c71b2f1575fd939bd0d14a2414c05b_JaffaCakes118
Size

148KB
MD5

45c71b2f1575fd939bd0d14a2414c05b
SHA1

718fe365b4d5ea0d6e859a3c5af27d849bcd794e
SHA256

2159a4219813ef828c536a2af90021cb593be5d113810dec365e56f5e6f2c5b1
SHA512

b3c97d120521537a8a22aa7237119a0cd8ed015405267e62a8bcad0fb1079b35c8886d201170f7e58e7c16f95d22beddda38bc82d6b76050ed2b79d2d84da929
SSDEEP

3072:JjV7pDQpBfM6RQGpzDUoFLQsbSFHTimqwIfMVp5:JZadShrIfMVn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
45c71b2f1575fd939bd0d14a2414c05b_JaffaCakes118

Files

45c71b2f1575fd939bd0d14a2414c05b_JaffaCakes118
.exe windows:4 windows x86 arch:x86

81c548ba8359e5bd8e7ea6ae82d19278

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetVersionExA
GetTempPathA
WritePrivateProfileStringA
GetVersion
lstrcpyA
TerminateThread
LockResource
FreeResource
GetPrivateProfileStringA
GetACP
GetPrivateProfileIntA
lstrlenA
LoadLibraryA
CreateThread
CloseHandle
lstrcpynA
Sleep
GetModuleFileNameA
LocalAlloc
GetProcAddress
LocalFree
FindResourceA
DeleteFileA
LoadResource
lstrcatA
lstrcmpiA
FreeLibrary
GetCPInfo
GetStringTypeW
GetStringTypeA
LCMapStringA
LCMapStringW
VirtualAlloc
WriteFile
RtlUnwind
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
HeapAlloc
HeapReAlloc
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
UnhandledExceptionFilter
HeapFree
HeapSize
GetCurrentProcess
TerminateProcess
GetOEMCP
ExitProcess
GetCommandLineA
GetStartupInfoA
GetModuleHandleA
GetFileType
MultiByteToWideChar

user32

IsDlgButtonChecked
LoadBitmapA
SendMessageA
LoadImageA
GetClientRect
GetDC
ReleaseDC
wsprintfA
LoadStringA
MessageBoxA
LoadMenuA
GetSubMenu
DialogBoxParamA
DestroyMenu
SetDlgItemTextA
EnableWindow
CheckDlgButton
CreateWindowExA
SetWindowPos
MapWindowPoints
LoadIconA
SetDlgItemInt
TrackPopupMenu
EnableMenuItem
GetCursorPos
SetFocus
GetDlgItemTextA
GetDlgItemInt
SetTimer
InvalidateRect
KillTimer
FillRect
CheckMenuItem
SetWindowLongA
GetWindowLongA
GetWindowRect
CallWindowProcA
EndPaint
BeginPaint
EndDialog
GetDlgItem

gdi32

SetTextColor
TextOutA
DeleteObject
GetObjectA
CreateSolidBrush
CreateCompatibleBitmap
SelectObject
CreateCompatibleDC
DeleteDC
StretchDIBits
StretchBlt
SetStretchBltMode
GetTextExtentPoint32A

comdlg32

GetOpenFileNameA

advapi32

RegEnumKeyA
RegOpenKeyExA

shell32

SHGetPathFromIDListA
SHBrowseForFolderA

avifil32

AVIStreamTimeToSample
AVIFileInit
AVIFileExit
AVIStreamRead
AVIStreamStart
AVIStreamLength
AVIFileOpenA
AVIStreamReadFormat
AVIStreamInfoA
AVIStreamGetFrame
AVIStreamGetFrameOpen
AVIFileGetStream
AVIFileInfoA
AVIFileRelease
AVIStreamGetFrameClose
AVIStreamSampleToTime

comctl32

ord17
CreateToolbarEx

msacm32

acmStreamConvert
acmStreamClose
acmStreamUnprepareHeader
acmStreamPrepareHeader
acmStreamSize
acmStreamOpen

winmm

mciSendStringA

encmpa

ord9
ord3
ord2
ord8
ord1
ord7
ord4
ord6
ord5

encodem1v

ord2
ord3
ord1

Sections

.text
Size: 44KB - Virtual size: 43KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 5KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 12KB - Virtual size: 22KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 80KB - Virtual size: 76KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.yvs
Size: - Virtual size: 4KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

81c548ba8359e5bd8e7ea6ae82d19278

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

avifil32

comctl32

msacm32

winmm

encmpa

encodem1v

Sections

.text Size: 44KB - Virtual size: 43KB

.rdata Size: 8KB - Virtual size: 5KB

.data Size: 12KB - Virtual size: 22KB

.rsrc Size: 80KB - Virtual size: 76KB

.yvs Size: - Virtual size: 4KB

.text
Size: 44KB - Virtual size: 43KB

.rdata
Size: 8KB - Virtual size: 5KB

.data
Size: 12KB - Virtual size: 22KB

.rsrc
Size: 80KB - Virtual size: 76KB

.yvs
Size: - Virtual size: 4KB