56b46a7a879e75bfd2c9e1e1688b77df_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

56b46a7a879e75bfd2c9e1e1688b77df_JaffaCakes118
Size

192KB
MD5

56b46a7a879e75bfd2c9e1e1688b77df
SHA1

e40851e1024c48af3da307ec99bb5fc6416f5926
SHA256

afb54fd81e8cc53cd41e1fd2c48a7e8329262292f58c37a7cd0d57731ad0a2e2
SHA512

4d173b495868747e1106a2acee4780c2c2f4d8bb17406869e2a89be37685c7cf8554a1e2907cb5dbd760e2ddcd4ffb3252eb5033278f2514349bc2416120cb33
SSDEEP

3072:AbsfCHfdQUx1/Dbq3y4E+s+Eof6Mvd+NejNC1Kl808O+sn6j3rk6rtO9rC:kpHl5FcyYEoSMQUCJ8n6rY6rtIrC

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
56b46a7a879e75bfd2c9e1e1688b77df_JaffaCakes118

Files

56b46a7a879e75bfd2c9e1e1688b77df_JaffaCakes118
.exe windows:4 windows x86 arch:x86

61c5ae2ab90eb61d23d4bb89cc600aa2

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

msvfw32

ICDecompress
ICSendMessage
ICOpen
ICClose

avifil32

AVIStreamGetFrame
AVIStreamRelease
AVIStreamGetFrameOpen
AVIFileCreateStreamA
AVIStreamInfoA
AVIFileRelease
AVIStreamSetFormat
AVIFileInit
AVIFileOpenA
AVIStreamGetFrameClose
AVIFileGetStream
AVIStreamWrite
AVISaveOptions
AVIMakeCompressedStream

comctl32

CreateToolbarEx

avicap32

capCreateCaptureWindowA
capGetDriverDescriptionA

kernel32

SetFilePointer
QueryDosDeviceW
DisableThreadLibraryCalls
CreateFileMappingA
LocalFree
GetProcessId
GetFileSize
WriteFile
CreateFileA
MapViewOfFile
UnmapViewOfFile
ProcessIdToSessionId
GlobalSize
EnumResourceTypesA
lstrlenA
ReadFile
ExitProcess
Sleep
LocalAlloc
CloseHandle
GlobalAlloc
GlobalFree

gdi32

SelectObject
CreateRectRgn
FillRgn
CreateCompatibleDC
CreateDIBSection
GetObjectA
CombineRgn
SetDIBColorTable
StretchDIBits
GetCurrentObject
DeleteDC
BitBlt
SetStretchBltMode
GetStockObject
SetDIBitsToDevice
DeleteObject
StretchBlt

user32

GetWindowRect
SetWindowTextA
IsWindow
ReleaseCapture
GetClientRect
SetFocus
DispatchMessageA
wvsprintfA
LoadCursorA
DefWindowProcA
ShowWindow
MoveWindow
GetFocus
OffsetRect
BeginPaint
GetMessageA
UpdateWindow
TranslateMessage
SetWindowLongA
CreateWindowExA
SubtractRect
PeekMessageA
CallWindowProcA
InvalidateRect
MessageBoxA
SendMessageA
ScreenToClient
EndPaint
wsprintfA
GetKeyState
LoadIconA
DestroyWindow
RegisterClassA
GetWindowLongA
GetClassLongA
SetCursor
SetCapture

Sections

.text
Size: 113KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 74KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.tls
Size: 1024B - Virtual size: 344KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

61c5ae2ab90eb61d23d4bb89cc600aa2

Headers

File Characteristics

Imports

msvfw32

avifil32

comctl32

avicap32

kernel32

gdi32

user32

Sections

.text Size: 113KB - Virtual size: 112KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 74KB - Virtual size: 74KB

.tls Size: 1024B - Virtual size: 344KB

.text
Size: 113KB - Virtual size: 112KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 74KB - Virtual size: 74KB

.tls
Size: 1024B - Virtual size: 344KB