6c31b1727774b523c307ab60082f9ceb_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

6c31b1727774b523c307ab60082f9ceb_JaffaCakes118
Size

101KB
MD5

6c31b1727774b523c307ab60082f9ceb
SHA1

003a96c47c85a431263bfb6c8281e14b4dc15ce5
SHA256

830cdab810b3c657e2abf987f6d5f6f6e0c442659d87e3083974452825ac1ca8
SHA512

8c31c8b1933a640a7c53620e3e61996be0121201bbfb16f9a7cde7d68714c890ea2f2c57c76928e69cb16e530aff8f52aecd095954124242c1088dcfbd4d9a80
SSDEEP

3072:izguGzg4KCdgxGMVMQgRctR/izrp4jXWDsxf9:DuGst0/QWct0zrp4jX5x

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
6c31b1727774b523c307ab60082f9ceb_JaffaCakes118

Files

6c31b1727774b523c307ab60082f9ceb_JaffaCakes118
.exe windows:5 windows x86 arch:x86

f28206ebdbbf49e64e05b5bfe1a6be5f

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

DestroyWindow
GetDC
MoveWindow
ShowWindow
SetCursor
wsprintfW
GetDlgItemInt
SetDlgItemTextW
ClientToScreen
CreateDialogParamW
ReleaseDC
PeekMessageW
IsWindow
GetWindowRect
GetClientRect
TranslateMessage
DispatchMessageW
CheckRadioButton
DefWindowProcW
InvalidateRect
SendMessageW
GetWindowLongW
LoadCursorW
LoadStringW
GetDesktopWindow
CheckDlgButton
IsRectEmpty
SetDlgItemInt
GetDlgItem
GetAsyncKeyState
IsWindowVisible
SetWindowLongW
EnableWindow

msvcrt

??2@YAPAXI@Z
_purecall
??3@YAXPAX@Z
wcslen
_ftol
_except_handler3

kernel32

InterlockedExchange
lstrcpyW
GetEnvironmentStringsW
MulDiv
FreeLibrary
lstrlenW
GetSystemDefaultLangID
GetSystemTimeAsFileTime
GetModuleFileNameA
lstrcmpW
GetLastError
IsBadHugeReadPtr
CreateSemaphoreW
ResetEvent
CreateEventW
SetThreadPriority
CreateThread
GetCurrentProcess
GlobalUnlock
DeleteCriticalSection
GlobalAlloc
DeleteFileW
WriteFile
SetUnhandledExceptionFilter
IsBadReadPtr
CloseHandle
PostQueuedCompletionStatus
lstrcpyA
SetEndOfFile
GetStartupInfoA
GetQueuedCompletionStatus
LoadLibraryW
GetFileAttributesW
VirtualFree
GetCurrentProcessId
InitializeCriticalSection
InterlockedIncrement
SetFilePointer
GetProfileIntA
GetCPInfo
CreateIoCompletionPort
GetCurrentThread
GlobalLock
GetProcessHeap
lstrcmpiW
GetPrivateProfileStringW
OutputDebugStringA
GetTickCount
IsBadCodePtr
GetVersionExW
InterlockedDecrement
IsBadWritePtr
WaitForSingleObject
SetEvent
lstrlenA
CreateFileW
LeaveCriticalSection
GlobalFree
QueryPerformanceCounter
lstrcpynW
GetFileSize
EnterCriticalSection
GetThreadPriority
GlobalMemoryStatus
HeapAlloc
ReleaseSemaphore
HeapFree
WideCharToMultiByte
GetDiskFreeSpaceW
ReadFile
GetSystemInfo
GlobalHandle
GetFullPathNameW
MultiByteToWideChar
WaitForMultipleObjects

winmm

CloseDriver
mixerSetControlDetails
waveInGetDevCapsW
mixerGetControlDetailsW
waveInOpen
SendDriverMessage
mixerGetLineControlsW
waveInUnprepareHeader
waveInStop
waveInReset
waveInPrepareHeader
mixerGetID
waveInClose
OpenDriver
waveInStart
mixerOpen
mixerGetLineInfoW
mixerClose
waveInAddBuffer

gdi32

PatBlt
GetTextExtentPoint32W
GetStockObject
SelectObject
GetObjectW
GetPaletteEntries

msvfw32

ICGetInfo
ICLocate
ICClose
ICDecompress
ICCompress
ICSendMessage
ICOpen

ole32

CoTaskMemFree
CoUninitialize
CoCreateInstance
StringFromGUID2
CoTaskMemAlloc
CoFreeUnusedLibraries
CoInitialize

advapi32

RegOpenKeyW
RegOpenKeyExW
RegCreateKeyW
RegSetValueExW
RegSetValueW
RegDeleteKeyW
RegCloseKey
RegEnumKeyW
RegEnumKeyExW
RegQueryValueExW

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

Sections

.text
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 81KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f28206ebdbbf49e64e05b5bfe1a6be5f

Headers

File Characteristics

Imports

user32

msvcrt

kernel32

winmm

gdi32

msvfw32

ole32

advapi32

version

Sections

.text Size: 46KB - Virtual size: 45KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 17KB - Virtual size: 81KB

.rsrc Size: 23KB - Virtual size: 23KB

.text
Size: 46KB - Virtual size: 45KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 17KB - Virtual size: 81KB

.rsrc
Size: 23KB - Virtual size: 23KB