83950ff2a01d2d4ec1c5292d5dbd6c6c_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

83950ff2a01d2d4ec1c5292d5dbd6c6c_JaffaCakes118
Size

99KB
MD5

83950ff2a01d2d4ec1c5292d5dbd6c6c
SHA1

af0302fe6ffd44134dada3730a9a7af12aa7228b
SHA256

82a0cbdc3c6bcfbff4ebfb57edf1b3f890dbb65edc305afd9127925bd84c35b2
SHA512

afe98a6cd0f1758d4dd27f2427c2ed47680a39ba1a9cf43e15942c544de79933c5900e9869e63d9f5be1ba0cb6f6dc9999d2d878807a29fb4bce092f18c4aa6b
SSDEEP

3072:DxNTaeeCumWHrQzYuCxi0m8a9CKWEhyGDpuad1qcKVt:Dx10Zmo6mUv82QEhyY17Kf

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
83950ff2a01d2d4ec1c5292d5dbd6c6c_JaffaCakes118

Files

83950ff2a01d2d4ec1c5292d5dbd6c6c_JaffaCakes118
.exe windows:5 windows x86 arch:x86

f1195b5b7cafaffc4ff8dcc3b472dd02

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualFree
lstrlenW
IsBadCodePtr
ReadFile
GetVersionExW
LoadLibraryW
GlobalUnlock
CreateIoCompletionPort
lstrcmpiW
GlobalLock
GetLastError
CreateFileW
lstrcpynW
WaitForSingleObject
GetPrivateProfileStringW
GlobalAlloc
FreeLibrary
GetCurrentThread
lstrcpyA
InterlockedDecrement
GetCPInfo
GlobalFree
GetStartupInfoA
OutputDebugStringA
DeleteFileW
GetTickCount
GetProfileIntA
MultiByteToWideChar
GetDiskFreeSpaceW
lstrcpyW
GetFileSize
IsBadHugeReadPtr
GetSystemTimeAsFileTime
IsBadReadPtr
GetModuleFileNameA
GetThreadPriority
GetCurrentProcess
HeapAlloc
QueryPerformanceCounter
CreateEventW
GlobalHandle
IsBadWritePtr
GetProcessHeap
CreateThread
GlobalMemoryStatus
SetEvent
WideCharToMultiByte
SetFilePointer
MulDiv
GetQueuedCompletionStatus
SetUnhandledExceptionFilter
HeapFree
EnterCriticalSection
lstrlenA
SetThreadPriority
lstrcmpW
GetFileAttributesW
WaitForMultipleObjects
ReleaseSemaphore
InterlockedExchange
WriteFile
GetFullPathNameW
ResetEvent
SetEndOfFile
InterlockedIncrement
DeleteCriticalSection
GetEnvironmentStringsW
InitializeCriticalSection
CloseHandle
GetSystemDefaultLangID
LeaveCriticalSection
CreateSemaphoreW
GetSystemInfo
GetCurrentProcessId
PostQueuedCompletionStatus

msvfw32

ICLocate
ICCompress
ICOpen
ICGetInfo
ICSendMessage
ICClose
ICDecompress

user32

DefWindowProcW
DispatchMessageW
SetDlgItemInt
wsprintfW
ClientToScreen
IsRectEmpty
IsWindowVisible
SetDlgItemTextW
MoveWindow
SetCursor
CheckRadioButton
GetClientRect
GetDlgItemInt
CheckDlgButton
LoadStringW
SetWindowLongW
SendMessageW
PeekMessageW
DestroyWindow
ReleaseDC
ShowWindow
GetDlgItem
TranslateMessage
GetWindowLongW
GetWindowRect
GetDesktopWindow
LoadCursorW
IsWindow
InvalidateRect
EnableWindow
GetDC
CreateDialogParamW
GetAsyncKeyState

advapi32

RegSetValueW
RegCloseKey
RegSetValueExW
RegOpenKeyW
RegOpenKeyExW
RegEnumKeyExW
RegQueryValueExW
RegCreateKeyW
RegEnumKeyW
RegDeleteKeyW

ole32

CoTaskMemAlloc
CoFreeUnusedLibraries
CoCreateInstance
CoInitialize
StringFromGUID2
CoTaskMemFree
CoUninitialize

gdi32

GetObjectW
GetPaletteEntries
SelectObject
GetTextExtentPoint32W
GetStockObject
PatBlt

winmm

waveInStop
SendDriverMessage
waveInReset
waveInAddBuffer
mixerGetID
mixerGetLineInfoW
mixerSetControlDetails
waveInClose
waveInOpen
mixerOpen
mixerClose
mixerGetLineControlsW
OpenDriver
mixerGetControlDetailsW
waveInUnprepareHeader
CloseDriver
waveInPrepareHeader
waveInStart
waveInGetDevCapsW

msvcrt

??3@YAXPAX@Z
wcslen
_ftol
_except_handler3
_purecall
??2@YAPAXI@Z

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

Sections

.text
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f1195b5b7cafaffc4ff8dcc3b472dd02

Headers

File Characteristics

Imports

kernel32

msvfw32

user32

advapi32

ole32

gdi32

winmm

msvcrt

version

Sections

.text Size: 44KB - Virtual size: 44KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 17KB - Virtual size: 115KB

.rsrc Size: 23KB - Virtual size: 23KB

.text
Size: 44KB - Virtual size: 44KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 17KB - Virtual size: 115KB

.rsrc
Size: 23KB - Virtual size: 23KB