56d5cc7734344dc709c2e4a9bab9e2a1_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

56d5cc7734344dc709c2e4a9bab9e2a1_JaffaCakes118
Size

351KB
MD5

56d5cc7734344dc709c2e4a9bab9e2a1
SHA1

5954921fe5e5b7d9b50da504768c5463902dc08d
SHA256

d93fa2b019aa012041ad5707836fe7b02d2003936f73599d4f5e4d497c5c9ec1
SHA512

e77a24fe0c672a27717a2677dddf631e41b305552324580e9d9ac4a6f735c6211dbe57c95cd6270635677e244a65be0fd73e23ca375e7bf59bff494963a13def
SSDEEP

6144:oNhqICgcp1r6FE7aWwRyzYcqWdBWY4PxkeYSSeLBP5we3mSiS5UUAd0zTSer9Guj:OhqICVtGPbRyzYcqgBWRkTe9P55iS5Zn

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
56d5cc7734344dc709c2e4a9bab9e2a1_JaffaCakes118

Files

56d5cc7734344dc709c2e4a9bab9e2a1_JaffaCakes118
.exe windows:4 windows x86 arch:x86

3d34bea655061682b9aae986ef62ae33

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

LoadLibraryA
GlobalLock
GetProcAddress
FreeLibrary
GlobalReAlloc
MulDiv
LocalLock
lstrcpyA
CreateFileA
WritePrivateProfileStringA
Sleep
LocalReAlloc
WriteFile
lstrlenA
GetTickCount
SetEndOfFile
GetStringTypeW
GetStringTypeA
LCMapStringW
LCMapStringA
MultiByteToWideChar
InterlockedIncrement
InterlockedDecrement
FlushFileBuffers
OutputDebugStringA
TlsGetValue
SetLastError
TlsAlloc
HeapAlloc
GetCurrentThreadId
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
GetEnvironmentStrings
WideCharToMultiByte
FreeEnvironmentStringsW
FreeEnvironmentStringsA
CloseHandle
CreateProcessA
SetThreadPriority
GetCurrentThread
GetCurrentProcess
SetPriorityClass
ResumeThread
GetWindowsDirectoryA
GetFileAttributesA
SetFileAttributesA
CopyFileA
GetShortPathNameA
GlobalAlloc
LocalFree
GetModuleFileNameA
GetOEMCP
GetACP
GlobalFree
GlobalHandle
GlobalUnlock
LocalAlloc
LocalUnlock
SetStdHandle
GetCPInfo
SetFilePointer
ReadFile
GetLastError
LeaveCriticalSection
EnterCriticalSection
DeleteCriticalSection
InitializeCriticalSection
HeapReAlloc
VirtualAlloc
VirtualFree
HeapCreate
HeapDestroy
GetEnvironmentVariableA
RtlUnwind
GetVersion
TerminateProcess
TlsSetValue
GetVersionExA
GetModuleHandleA
GetSystemPowerStatus
UnhandledExceptionFilter
ExitProcess
GetStartupInfoA
GetCommandLineA
HeapFree

user32

EndPaint
ScreenToClient
MessageBoxA
CharNextA
FindWindowA
SetForegroundWindow
RegisterWindowMessageA
GetForegroundWindow
SendMessageA
GetParent
IsWindow
GetCursorPos
ReleaseDC
GetClientRect
GetDC
PeekMessageA
GetQueueStatus
wsprintfA
SystemParametersInfoA
PostMessageA
SetTimer
EnableWindow
GetWindowTextA
EndDialog
PostQuitMessage
SendDlgItemMessageA
SetWindowTextA
GetDlgItem
ShowWindow
BeginPaint
GetWindowRect
GetSystemMetrics
RegisterClassA
SetFocus
LoadCursorA
SetCursor
DefWindowProcA
LoadIconA
DialogBoxParamA
KillTimer
CreateWindowExA
GetMessageA
TranslateMessage
DispatchMessageA
FillRect

gdi32

SetTextColor
CreateSolidBrush
GetDeviceCaps
CreateHalftonePalette
SelectPalette
RealizePalette
StretchDIBits
SetStretchBltMode
SetBrushOrgEx
CreateDIBSection
CreateCompatibleDC
SelectObject
DeleteObject
DeleteDC
SetBkMode
GetStockObject
GetClipBox

comdlg32

GetSaveFileNameA

advapi32

RegSetValueExA
RegQueryValueExA
RegDeleteValueA
RegCreateKeyExA
RegCloseKey
RegOpenKeyExA
RegOpenKeyA

shell32

ShellExecuteA

winmm

mciSendStringA
mmioInstallIOProcA
midiStreamClose
midiOutUnprepareHeader
midiStreamOut
midiOutPrepareHeader
midiStreamProperty
midiStreamOpen
midiOutReset
midiStreamRestart
midiStreamPause
midiStreamStop
midiStreamPosition
mmioClose
mmioRead
mmioSeek
mmioDescend
mmioOpenA

comctl32

InitCommonControlsEx

Sections

.text
Size: 76KB - Virtual size: 75KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 16KB - Virtual size: 3.4MB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 8KB - Virtual size: 6KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3d34bea655061682b9aae986ef62ae33

Headers

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

advapi32

shell32

winmm

comctl32

Sections

.text Size: 76KB - Virtual size: 75KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 16KB - Virtual size: 3.4MB

.rsrc Size: 8KB - Virtual size: 6KB

.text
Size: 76KB - Virtual size: 75KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 16KB - Virtual size: 3.4MB

.rsrc
Size: 8KB - Virtual size: 6KB