8a95d84b2c028c9bc2c4d5049d605764_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

8a95d84b2c028c9bc2c4d5049d605764_JaffaCakes118
Size

99KB
MD5

8a95d84b2c028c9bc2c4d5049d605764
SHA1

dbcc0c0153f793a199a332421f74c44ee213b47f
SHA256

0754727045f5bece880d60f84844593d34c931a47365bcc910cfcac3d3137dd5
SHA512

113cf3da80c4e6727ba74fc027225b09e21fa8fad7522406449e1d5a7d339fbb5d167624165a85a7c8929cf690aaa8760c4c42da16bd026ac336528e43a4567a
SSDEEP

3072:aQaGqH42XiJIhAGlvzMW7NHzRB/MVNSDbxq:leY2XiJ0l3NTR2VNm0

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
8a95d84b2c028c9bc2c4d5049d605764_JaffaCakes118

Files

8a95d84b2c028c9bc2c4d5049d605764_JaffaCakes118
.exe windows:5 windows x86 arch:x86

0cc0768ed399c41e0e53c8e898bfde31

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WaitForSingleObject
QueryPerformanceCounter
GetModuleFileNameA
InitializeCriticalSection
GetSystemTimeAsFileTime
CloseHandle
FreeLibrary
HeapAlloc
GetVersionExW
lstrcpyA
GetTickCount
lstrcpyW
GlobalMemoryStatus
GetStartupInfoA
ResetEvent
GetCurrentThread
MultiByteToWideChar
WriteFile
LoadLibraryW
GetQueuedCompletionStatus
GetProcessHeap
InterlockedExchange
lstrcmpW
GetProfileIntA
VirtualFree
GetFileAttributesW
GetLastError
GlobalHandle
lstrlenW
IsBadCodePtr
InterlockedIncrement
ReadFile
CreateSemaphoreW
SetEvent
GetCurrentProcessId
GetProcAddress
GetEnvironmentStringsA
EnterCriticalSection
GetACP
GlobalAlloc
GetThreadPriority
SetFilePointer
IsBadWritePtr
CreateIoCompletionPort
SetEndOfFile
GetFullPathNameW
ReleaseSemaphore
GetSystemInfo
DeleteCriticalSection
lstrcpynW
HeapFree
PostQueuedCompletionStatus
GetCurrentProcess
GlobalFree
GetFileSize
LeaveCriticalSection
CreateFileW
GetPrivateProfileStringW
GetSystemDefaultLangID
SetUnhandledExceptionFilter
WaitForMultipleObjects
DeleteFileW
GetDiskFreeSpaceW
SetThreadPriority
CreateEventW
GlobalUnlock
MulDiv
lstrlenA
CreateThread
GlobalLock
WideCharToMultiByte
InterlockedDecrement
IsBadReadPtr
lstrcmpiW

user32

DispatchMessageW
SetDlgItemTextW
LoadCursorW
IsRectEmpty
ReleaseDC
ShowWindow
DestroyWindow
TranslateMessage
ClientToScreen
GetWindowRect
SetDlgItemInt
IsWindowVisible
GetAsyncKeyState
SendMessageW
CheckRadioButton
CheckDlgButton
GetDlgItemInt
wsprintfW
PeekMessageW
GetWindowLongW
GetClientRect
SetWindowLongW
IsWindow
InvalidateRect
LoadStringW
MoveWindow
SetCursor
DefWindowProcW
GetDC
GetDesktopWindow
GetDlgItem
EnableWindow
CreateDialogParamW

msvfw32

ICDecompress
ICLocate
ICClose
ICCompress
ICSendMessage
ICGetInfo
ICOpen

winmm

SendDriverMessage
mixerOpen
waveInAddBuffer
waveInOpen
mixerSetControlDetails
waveInUnprepareHeader
CloseDriver
waveInReset
waveInStart
waveInClose
waveInGetDevCapsW
mixerGetControlDetailsW
mixerGetID
mixerGetLineInfoW
waveInStop
waveInPrepareHeader
mixerClose
OpenDriver
mixerGetLineControlsW

advapi32

RegSetValueW
RegEnumKeyExW
RegCloseKey
RegOpenKeyExW
RegOpenKeyW
RegQueryValueExW
RegDeleteKeyW
RegSetValueExW
RegCreateKeyW
RegEnumKeyW

ole32

CoFreeUnusedLibraries
CoInitialize
CoTaskMemAlloc
CoCreateInstance
CoUninitialize
StringFromGUID2
CoTaskMemFree

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

msvcrt

??2@YAPAXI@Z
??3@YAXPAX@Z
wcslen
_ftol
_except_handler3
_purecall

gdi32

GetObjectW
GetPaletteEntries
PatBlt
GetStockObject
SelectObject
GetTextExtentPoint32W

Sections

.text
Size: 44KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 115KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

0cc0768ed399c41e0e53c8e898bfde31

Headers

File Characteristics

Imports

kernel32

user32

msvfw32

winmm

advapi32

ole32

version

msvcrt

gdi32

Sections

.text Size: 44KB - Virtual size: 44KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 17KB - Virtual size: 115KB

.rsrc Size: 23KB - Virtual size: 23KB

.text
Size: 44KB - Virtual size: 44KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 17KB - Virtual size: 115KB

.rsrc
Size: 23KB - Virtual size: 23KB