c1df1539ab875dfaba8998c94393a33d_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

c1df1539ab875dfaba8998c94393a33d_JaffaCakes118
Size

100KB
MD5

c1df1539ab875dfaba8998c94393a33d
SHA1

947004be74e77044d947e4aa053983a653c857e9
SHA256

42da308cbbe9381241cfb50792928629f3cf3c98ae5f755bd30b4b49dc016a96
SHA512

10e08edf7257b304499dc3f9ace6860f702c2d62273c9bddc626b442a668174f4a987e40e758cf8f2031b9b4a0af7826f79ebf1c4cdd2a64096e5d0a83d3f661
SSDEEP

1536:V01mn0Se/Bo608OUjEnFQUgRuNNgSZkB4cnKcdDW3SJaCS1GkJCkI3Qph7:V0l/aRezU71c4cn/W2BS1GkJCFAv

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
c1df1539ab875dfaba8998c94393a33d_JaffaCakes118

Files

c1df1539ab875dfaba8998c94393a33d_JaffaCakes118
.exe windows:5 windows x86 arch:x86

cecd39d3dcbc05ee57eba93e6b98ab13

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

mixerOpen
waveInStop
waveInUnprepareHeader
mixerClose
OpenDriver
mixerGetID
mixerSetControlDetails
waveInReset
waveInGetDevCapsW
mixerGetLineInfoW
mixerGetControlDetailsW
waveInOpen
waveInClose
waveInAddBuffer
waveInStart
SendDriverMessage
waveInPrepareHeader
CloseDriver
mixerGetLineControlsW

kernel32

lstrcpynW
GetSystemTimeAsFileTime
WriteFile
GetEnvironmentStringsW
GetTickCount
InterlockedIncrement
GetFileAttributesW
SetUnhandledExceptionFilter
GetThreadPriority
MultiByteToWideChar
InitializeCriticalSection
GlobalHandle
GlobalAlloc
LeaveCriticalSection
CreateEventW
SetEvent
PostQueuedCompletionStatus
GlobalMemoryStatus
CreateThread
GetSystemInfo
HeapAlloc
GetCurrentProcessId
SetEndOfFile
ReadFile
LoadLibraryW
GetProcessHeap
DeleteCriticalSection
InterlockedDecrement
HeapFree
SetThreadPriority
DeleteFileW
GetQueuedCompletionStatus
GetPrivateProfileStringW
SetFilePointer
IsBadCodePtr
lstrcpyW
IsBadWritePtr
IsBadReadPtr
lstrcmpW
WaitForMultipleObjects
WideCharToMultiByte
IsBadHugeReadPtr
GetModuleFileNameA
CreateSemaphoreW
GetVersionExW
ReleaseSemaphore
GetDiskFreeSpaceW
VirtualFree
MulDiv
GetFileSize
InterlockedExchange
EnterCriticalSection
CreateFileW
GlobalUnlock
WaitForSingleObject
CloseHandle
lstrlenW
ResetEvent
GlobalFree
GlobalLock
QueryPerformanceCounter
GetSystemDefaultLangID
lstrcmpiW
GetCurrentProcess
GetCurrentThread
lstrlenA
lstrcpyA
GetStartupInfoA
FreeLibrary
CreateIoCompletionPort
GetProfileIntA
GetLastError
GetFullPathNameW

user32

SetWindowLongW
EnableWindow
SetDlgItemInt
DestroyWindow
LoadStringW
GetClientRect
IsWindow
CheckDlgButton
GetDlgItemInt
InvalidateRect
ReleaseDC
SetDlgItemTextW
SendMessageW
GetDC
ClientToScreen
PeekMessageW
LoadCursorW
wsprintfW
TranslateMessage
IsWindowVisible
ShowWindow
GetDlgItem
CreateDialogParamW
DefWindowProcW
GetAsyncKeyState
GetDesktopWindow
MoveWindow
DispatchMessageW
GetWindowLongW
IsRectEmpty
GetWindowRect
SetCursor
CheckRadioButton

gdi32

SelectObject
GetObjectW
GetTextExtentPoint32W
GetPaletteEntries
GetStockObject
PatBlt

msvcrt

wcslen
??2@YAPAXI@Z
_ftol
_purecall
_except_handler3
??3@YAXPAX@Z

ole32

CoTaskMemFree
CoCreateInstance
CoUninitialize
CoTaskMemAlloc
CoInitialize
StringFromGUID2
CoFreeUnusedLibraries

version

GetFileVersionInfoW
GetFileVersionInfoSizeW
VerQueryValueW

msvfw32

ICOpen
ICClose
ICSendMessage
ICCompress
ICDecompress
ICLocate
ICGetInfo

advapi32

RegCreateKeyW
RegEnumKeyW
RegCloseKey
RegSetValueExW
RegSetValueW
RegOpenKeyW
RegQueryValueExW
RegOpenKeyExW
RegDeleteKeyW
RegEnumKeyExW

Sections

.text
Size: 45KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 66KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cecd39d3dcbc05ee57eba93e6b98ab13

Headers

File Characteristics

Imports

winmm

kernel32

user32

gdi32

msvcrt

ole32

version

msvfw32

advapi32

Sections

.text Size: 45KB - Virtual size: 45KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 17KB - Virtual size: 66KB

.rsrc Size: 23KB - Virtual size: 23KB

.text
Size: 45KB - Virtual size: 45KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 17KB - Virtual size: 66KB

.rsrc
Size: 23KB - Virtual size: 23KB