d54585548c8b2cd8dcf3465294534adc_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

d54585548c8b2cd8dcf3465294534adc_JaffaCakes118
Size

100KB
MD5

d54585548c8b2cd8dcf3465294534adc
SHA1

ba4965f86e3040470299ee5f2bc257127a9c2765
SHA256

365711f063135c7fd1f329c24bf5d90a3c16b362792c2b259053206524eee02a
SHA512

850b421c3d2f9755a103aadcfb1cf047bf47a7ca711c979075d6bedecff00a44ba3eea3545a90b11b8d9f92d153a1e5f4a1c00d507c2a6c6d8f7836f79d964f0
SSDEEP

3072:81Zkla/92mcczpFs+mZioUz/DgB3zVluJ/fDpIkGM/n:+Slxc9dmEok0B3hluJ/VIin

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
d54585548c8b2cd8dcf3465294534adc_JaffaCakes118

Files

d54585548c8b2cd8dcf3465294534adc_JaffaCakes118
.exe windows:5 windows x86 arch:x86

6f9640a21488327395ad9aceb2f2b68e

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

user32

IsWindowVisible
ReleaseDC
InvalidateRect
ShowWindow
DefWindowProcW
LoadStringW
DestroyWindow
MoveWindow
PeekMessageW
LoadCursorW
GetDC
DispatchMessageW
SendMessageW
GetDesktopWindow
CreateDialogParamW
GetClientRect
GetWindowRect
SetWindowLongW
ClientToScreen
CheckDlgButton
TranslateMessage
GetAsyncKeyState
CheckRadioButton
GetDlgItemInt
SetDlgItemTextW
wsprintfW
GetWindowLongW
SetDlgItemInt
GetDlgItem
SetCursor
EnableWindow
IsWindow
IsRectEmpty

kernel32

GlobalHandle
HeapAlloc
lstrcmpW
GlobalFree
GetThreadPriority
DeleteCriticalSection
GetEnvironmentStringsW
WaitForSingleObject
ResetEvent
lstrcpynW
GetTickCount
GetCurrentProcess
lstrlenW
InterlockedDecrement
GetDiskFreeSpaceW
PostQueuedCompletionStatus
EnterCriticalSection
InterlockedExchange
GetStartupInfoA
LeaveCriticalSection
CreateThread
FreeLibrary
GetVersionExW
CreateFileW
GlobalAlloc
VirtualFree
SetEvent
GetProfileIntA
GetLastError
IsBadReadPtr
GetCurrentThread
GetPrivateProfileStringW
GetProcessHeap
ReadFile
GetFileAttributesW
IsBadHugeReadPtr
QueryPerformanceCounter
DeleteFileW
GlobalMemoryStatus
HeapFree
GetModuleFileNameA
IsBadWritePtr
GetCurrentProcessId
WriteFile
lstrcpyW
SetThreadPriority
GetFullPathNameW
GetFileSize
GetSystemDefaultLangID
WideCharToMultiByte
WaitForMultipleObjects
GetSystemTimeAsFileTime
IsBadCodePtr
GetQueuedCompletionStatus
InterlockedIncrement
CloseHandle
GlobalLock
SetUnhandledExceptionFilter
SetFilePointer
lstrcmpiW
lstrcpyA
SetEndOfFile
LoadLibraryW
CreateEventW
InitializeCriticalSection
MultiByteToWideChar
MulDiv
lstrlenA
GlobalUnlock
GetSystemInfo
CreateIoCompletionPort
CreateSemaphoreW
ReleaseSemaphore

winmm

waveInGetDevCapsW
waveInReset
waveInAddBuffer
mixerGetControlDetailsW
SendDriverMessage
OpenDriver
mixerOpen
mixerSetControlDetails
mixerGetLineInfoW
mixerGetID
mixerClose
waveInOpen
waveInStart
waveInUnprepareHeader
waveInPrepareHeader
mixerGetLineControlsW
waveInStop
waveInClose
CloseDriver

advapi32

RegDeleteKeyW
RegEnumKeyExW
RegOpenKeyW
RegCloseKey
RegQueryValueExW
RegCreateKeyW
RegSetValueW
RegSetValueExW
RegEnumKeyW
RegOpenKeyExW

ole32

CoTaskMemAlloc
StringFromGUID2
CoFreeUnusedLibraries
CoCreateInstance
CoInitialize
CoUninitialize
CoTaskMemFree

version

GetFileVersionInfoSizeW
VerQueryValueW
GetFileVersionInfoW

msvfw32

ICLocate
ICOpen
ICDecompress
ICSendMessage
ICClose
ICGetInfo
ICCompress

gdi32

GetObjectW
GetPaletteEntries
GetStockObject
GetTextExtentPoint32W
SelectObject
PatBlt

msvcrt

??3@YAXPAX@Z
_purecall
wcslen
_ftol
_except_handler3
??2@YAPAXI@Z

Sections

.text
Size: 45KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 71KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

6f9640a21488327395ad9aceb2f2b68e

Headers

File Characteristics

Imports

user32

kernel32

winmm

advapi32

ole32

version

msvfw32

gdi32

msvcrt

Sections

.text Size: 45KB - Virtual size: 44KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 17KB - Virtual size: 71KB

.rsrc Size: 23KB - Virtual size: 23KB

.text
Size: 45KB - Virtual size: 44KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 17KB - Virtual size: 71KB

.rsrc
Size: 23KB - Virtual size: 23KB