65ba407d9b3883f0ceedea06b2d8e96c_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

65ba407d9b3883f0ceedea06b2d8e96c_JaffaCakes118
Size

100KB
MD5

65ba407d9b3883f0ceedea06b2d8e96c
SHA1

9e2d8d41456f6dd6a28218b388628c7b81491fb5
SHA256

2d7f42f46bd5553815c651f8e2ec7220c35775b95aa42c4483b94a6305b6507d
SHA512

06e6b262eb16bc0a59339eea4118197e4b96f98c7ecf78ae47d242321ede6e6cfbfd0c2ec8cfe1344a281b552fa62b54c0ee7be8baab58b01d9b747ef2273828
SSDEEP

3072:JmvASqFckNNqjbKMtMGUtCBZyPTqk7uGzdKd5hN:JzBFciqbhUoBZyPTqV4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
65ba407d9b3883f0ceedea06b2d8e96c_JaffaCakes118

Files

65ba407d9b3883f0ceedea06b2d8e96c_JaffaCakes118
.exe windows:5 windows x86 arch:x86

191f203ebf3b568298dab0c5629ec10c

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetDesktopWindow
SetDlgItemTextW
SetWindowLongW
SetDlgItemInt
ReleaseDC
LoadStringW
DefWindowProcW
DispatchMessageW
ShowWindow
SendMessageW
SetCursor
DestroyWindow
wsprintfW
CheckDlgButton
InvalidateRect
GetDC
GetDlgItem
CreateDialogParamW
TranslateMessage
PeekMessageW
ClientToScreen
EnableWindow
IsWindowVisible
GetWindowLongW
GetAsyncKeyState
LoadCursorW
MoveWindow
GetWindowRect
GetDlgItemInt
IsWindow
IsRectEmpty
GetClientRect
CheckRadioButton

gdi32

GetTextExtentPoint32W
PatBlt
GetPaletteEntries
GetStockObject
GetObjectW
SelectObject

ole32

CoUninitialize
CoTaskMemFree
CoFreeUnusedLibraries
CoInitialize
CoTaskMemAlloc
CoCreateInstance
StringFromGUID2

kernel32

CreateSemaphoreW
GetFullPathNameW
lstrcpyA
GetFileSize
GetPrivateProfileStringW
InterlockedIncrement
GetFileAttributesW
GetVersionExW
lstrcpynW
GetStartupInfoA
CloseHandle
CreateFileW
lstrlenW
WideCharToMultiByte
IsBadCodePtr
DeleteCriticalSection
CreateIoCompletionPort
SetEvent
WaitForMultipleObjects
IsBadReadPtr
GetEnvironmentStringsW
lstrlenA
GetSystemInfo
GetCurrentThread
GetProcessHeap
GetDiskFreeSpaceW
GetQueuedCompletionStatus
GetModuleFileNameA
PostQueuedCompletionStatus
GlobalLock
GlobalHandle
GetTickCount
lstrcpyW
InterlockedDecrement
lstrcmpW
InterlockedExchange
GetCurrentProcess
lstrcmpiW
HeapAlloc
CreateThread
GetSystemTimeAsFileTime
GetCurrentProcessId
SetUnhandledExceptionFilter
LeaveCriticalSection
GlobalAlloc
SetEndOfFile
HeapFree
EnterCriticalSection
ReleaseSemaphore
FreeLibrary
GetThreadPriority
GetSystemDefaultLangID
ReadFile
MulDiv
IsBadWritePtr
LoadLibraryW
GlobalUnlock
GlobalFree
GlobalMemoryStatus
WaitForSingleObject
CreateEventW
VirtualFree
InitializeCriticalSection
ResetEvent
SetFilePointer
DeleteFileW
SetThreadPriority
GetLastError
WriteFile
QueryPerformanceCounter
GetProfileIntA
MultiByteToWideChar

msvfw32

ICOpen
ICDecompress
ICGetInfo
ICSendMessage
ICLocate
ICClose
ICCompress

winmm

mixerSetControlDetails
waveInClose
waveInAddBuffer
mixerGetLineInfoW
OpenDriver
mixerGetLineControlsW
waveInStop
mixerGetControlDetailsW
waveInStart
mixerGetID
waveInGetDevCapsW
waveInOpen
SendDriverMessage
waveInPrepareHeader
mixerClose
mixerOpen
waveInReset
CloseDriver
waveInUnprepareHeader

msvcrt

_except_handler3
??2@YAPAXI@Z
??3@YAXPAX@Z
wcslen
_purecall
_ftol

advapi32

RegQueryValueExW
RegEnumKeyExW
RegCloseKey
RegDeleteKeyW
RegSetValueExW
RegCreateKeyW
RegOpenKeyExW
RegSetValueW
RegOpenKeyW
RegEnumKeyW

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

Sections

.text
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

191f203ebf3b568298dab0c5629ec10c

Headers

File Characteristics

Imports

user32

gdi32

ole32

kernel32

msvfw32

winmm

msvcrt

advapi32

version

Sections

.text Size: 45KB - Virtual size: 45KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 17KB - Virtual size: 65KB

.rsrc Size: 23KB - Virtual size: 23KB

.text
Size: 45KB - Virtual size: 45KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 17KB - Virtual size: 65KB

.rsrc
Size: 23KB - Virtual size: 23KB