abff30ac7b85182a12bfc9db8cbb967a_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

abff30ac7b85182a12bfc9db8cbb967a_JaffaCakes118
Size

102KB
MD5

abff30ac7b85182a12bfc9db8cbb967a
SHA1

df49a445f30403b3fa461f332d3e5dd21e22bbfd
SHA256

adbc111d103a9530569c5a6a5cfaad1cf0f31ab402380a5ee0e615595352e673
SHA512

2501ae8ec986996868c2f4cc05b19b7f289d0ab93918f54aaa7c3238314361a0c467b041d2e1d79015a98cb29a5f5fc339583c0ca0572d6eb28a848702db9c16
SSDEEP

3072:Vkfg8ecSMCaQaFUxlz2TE7FKDCfUxvKi:Vk4ncSQQZxUOLfri

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
abff30ac7b85182a12bfc9db8cbb967a_JaffaCakes118

Files

abff30ac7b85182a12bfc9db8cbb967a_JaffaCakes118
.exe windows:5 windows x86 arch:x86

9a0902567a53e872631056c8d9758930

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

lstrlenA
GetStartupInfoA
GlobalMemoryStatus
lstrcpynW
InterlockedIncrement
VirtualFree
IsBadHugeReadPtr
QueryPerformanceCounter
MulDiv
GetSystemTimeAsFileTime
GetFullPathNameW
SetFilePointer
lstrcpyA
WaitForMultipleObjects
WriteFile
IsBadWritePtr
WaitForSingleObject
PostQueuedCompletionStatus
ReleaseSemaphore
GetProcessHeap
GetCPInfo
GetCurrentProcessId
GlobalLock
GetEnvironmentStringsW
EnterCriticalSection
GlobalHandle
ResetEvent
GetFileSize
CreateThread
IsBadReadPtr
lstrcmpiW
GlobalAlloc
InterlockedDecrement
GetQueuedCompletionStatus
HeapAlloc
lstrcpyW
SetEvent
GlobalUnlock
GetPrivateProfileStringW
DeleteCriticalSection
WideCharToMultiByte
GetProfileIntA
MultiByteToWideChar
OutputDebugStringA
GetSystemDefaultLangID
GetSystemInfo
lstrcmpW
SetThreadPriority
InitializeCriticalSection
CreateSemaphoreW
GetThreadPriority
lstrlenW
SetEndOfFile
LeaveCriticalSection
GetDiskFreeSpaceW
IsBadCodePtr
CreateEventW
LoadLibraryW
GetCurrentThread
GetModuleFileNameA
HeapFree
FreeLibrary
CloseHandle
ReadFile
GetFileAttributesW
GetVersionExW
InterlockedExchange
DeleteFileW
GetTickCount
CreateFileW
GlobalFree
GetCurrentProcess
CreateIoCompletionPort
GetLastError
SetUnhandledExceptionFilter

ole32

CoTaskMemFree
CoUninitialize
CoInitialize
CoTaskMemAlloc
StringFromGUID2
CoFreeUnusedLibraries
CoCreateInstance

user32

LoadStringW
CheckDlgButton
PeekMessageW
GetWindowRect
GetWindowLongW
GetDlgItem
DispatchMessageW
EnableWindow
InvalidateRect
LoadCursorW
MoveWindow
IsWindow
IsWindowVisible
ClientToScreen
DefWindowProcW
GetDlgItemInt
GetDC
GetClientRect
IsRectEmpty
SendMessageW
SetWindowLongW
SetCursor
ReleaseDC
SetDlgItemInt
ShowWindow
wsprintfW
GetAsyncKeyState
SetDlgItemTextW
TranslateMessage
CreateDialogParamW
CheckRadioButton
GetDesktopWindow
DestroyWindow

msvcrt

??2@YAPAXI@Z
_ftol
wcslen
_purecall
??3@YAXPAX@Z
_except_handler3

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

advapi32

RegQueryValueExW
RegEnumKeyExW
RegCreateKeyW
RegEnumKeyW
RegDeleteKeyW
RegSetValueW
RegCloseKey
RegSetValueExW
RegOpenKeyExW
RegOpenKeyW

msvfw32

ICDecompress
ICSendMessage
ICLocate
ICCompress
ICOpen
ICClose
ICGetInfo

winmm

mixerGetLineInfoW
waveInPrepareHeader
waveInReset
mixerOpen
waveInOpen
SendDriverMessage
waveInAddBuffer
mixerGetControlDetailsW
mixerGetID
CloseDriver
mixerGetLineControlsW
waveInGetDevCapsW
mixerClose
mixerSetControlDetails
waveInClose
waveInUnprepareHeader
waveInStop
OpenDriver
waveInStart

gdi32

PatBlt
GetPaletteEntries
SelectObject
GetStockObject
GetObjectW
GetTextExtentPoint32W

Sections

.text
Size: 47KB - Virtual size: 47KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 122KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

9a0902567a53e872631056c8d9758930

Headers

File Characteristics

Imports

kernel32

ole32

user32

msvcrt

version

advapi32

msvfw32

winmm

gdi32

Sections

.text Size: 47KB - Virtual size: 47KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 17KB - Virtual size: 122KB

.rsrc Size: 23KB - Virtual size: 23KB

.text
Size: 47KB - Virtual size: 47KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 17KB - Virtual size: 122KB

.rsrc
Size: 23KB - Virtual size: 23KB