e95ef9165f0837f18d8591f2b720149e_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

e95ef9165f0837f18d8591f2b720149e_JaffaCakes118
Size

101KB
MD5

e95ef9165f0837f18d8591f2b720149e
SHA1

0d3e854afe627d39f6e66bf3f112fb7870329c0c
SHA256

ef731e70ec18c265c961bdb5c25249a7e94227db3a2a655e2244d284b4b11dcd
SHA512

408cad7e77b300fa3fdfbbcac1360a6816676b3b757be47b4b54a34705cff32967954fceeab354e5790e721eb232b13b4822bbc0168f6f7de7381e45818099ff
SSDEEP

1536:/DY5PhJ9BGpxlihSkosBp6uuJiJ1KYdiMsxgnJJaGBx9r+Go6wUI1eqf7Z:7YVZcpDCuJihayJwGBx9SGPI1Z

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e95ef9165f0837f18d8591f2b720149e_JaffaCakes118

Files

e95ef9165f0837f18d8591f2b720149e_JaffaCakes118
.exe windows:5 windows x86 arch:x86

68e50104fd34fcc2e43c18be2859630a

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

winmm

mixerGetLineControlsW
CloseDriver
mixerSetControlDetails
waveInGetDevCapsW
waveInStop
mixerGetID
mixerClose
mixerGetLineInfoW
waveInPrepareHeader
mixerOpen
waveInOpen
mixerGetControlDetailsW
waveInUnprepareHeader
OpenDriver
waveInAddBuffer
waveInClose
waveInStart
waveInReset
SendDriverMessage

user32

GetDlgItem
EnableWindow
IsWindowVisible
SetDlgItemTextW
PeekMessageW
ShowWindow
DispatchMessageW
GetDesktopWindow
ClientToScreen
ReleaseDC
GetWindowLongW
GetAsyncKeyState
SendMessageW
InvalidateRect
SetDlgItemInt
DefWindowProcW
GetDC
IsRectEmpty
GetWindowRect
GetDlgItemInt
MoveWindow
SetCursor
DestroyWindow
wsprintfW
CreateDialogParamW
SetWindowLongW
LoadCursorW
GetClientRect
CheckRadioButton
CheckDlgButton
TranslateMessage
LoadStringW
IsWindow

kernel32

SetThreadPriority
LoadLibraryW
GlobalLock
GetPrivateProfileStringW
PostQueuedCompletionStatus
GlobalUnlock
GetDiskFreeSpaceW
GetThreadPriority
SetEndOfFile
lstrlenW
CreateThread
OutputDebugStringA
GetFullPathNameW
SetUnhandledExceptionFilter
GetSystemDefaultLangID
IsBadReadPtr
lstrlenA
WideCharToMultiByte
ResetEvent
GetVersionExW
InitializeCriticalSection
InterlockedExchange
VirtualFree
GetFileAttributesW
GetFileSize
HeapAlloc
LeaveCriticalSection
lstrcpyW
GetModuleFileNameA
lstrcmpW
lstrcmpiW
GetEnvironmentStringsW
EnterCriticalSection
HeapFree
IsBadWritePtr
InterlockedDecrement
GlobalFree
GetTickCount
GlobalAlloc
GetCurrentProcessId
SetEvent
MulDiv
InterlockedIncrement
GetCPInfo
FreeLibrary
CreateIoCompletionPort
DeleteCriticalSection
GetLastError
CreateFileW
IsBadCodePtr
CreateEventW
WriteFile
MultiByteToWideChar
GetProcessHeap
GetStartupInfoA
GetCurrentProcess
GlobalHandle
QueryPerformanceCounter
GetSystemInfo
GetQueuedCompletionStatus
GetSystemTimeAsFileTime
ReadFile
ReleaseSemaphore
GlobalMemoryStatus
SetFilePointer
WaitForMultipleObjects
DeleteFileW
lstrcpyA
GetCurrentThread
IsBadHugeReadPtr
lstrcpynW
CreateSemaphoreW
WaitForSingleObject
GetProfileIntA
CloseHandle

gdi32

GetObjectW
GetStockObject
PatBlt
SelectObject
GetPaletteEntries
GetTextExtentPoint32W

ole32

CoTaskMemFree
StringFromGUID2
CoTaskMemAlloc
CoCreateInstance
CoInitialize
CoUninitialize
CoFreeUnusedLibraries

msvfw32

ICGetInfo
ICOpen
ICSendMessage
ICDecompress
ICClose
ICCompress
ICLocate

version

GetFileVersionInfoSizeW
GetFileVersionInfoW
VerQueryValueW

advapi32

RegOpenKeyW
RegQueryValueExW
RegOpenKeyExW
RegSetValueW
RegCloseKey
RegSetValueExW
RegCreateKeyW
RegEnumKeyExW
RegEnumKeyW
RegDeleteKeyW

msvcrt

_purecall
??2@YAPAXI@Z
??3@YAXPAX@Z
wcslen
_ftol
_except_handler3

Sections

.text
Size: 46KB - Virtual size: 45KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 13KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 17KB - Virtual size: 94KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 23KB - Virtual size: 23KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

68e50104fd34fcc2e43c18be2859630a

Headers

File Characteristics

Imports

winmm

user32

kernel32

gdi32

ole32

msvfw32

version

advapi32

msvcrt

Sections

.text Size: 46KB - Virtual size: 45KB

.rdata Size: 13KB - Virtual size: 13KB

.data Size: 17KB - Virtual size: 94KB

.rsrc Size: 23KB - Virtual size: 23KB

.text
Size: 46KB - Virtual size: 45KB

.rdata
Size: 13KB - Virtual size: 13KB

.data
Size: 17KB - Virtual size: 94KB

.rsrc
Size: 23KB - Virtual size: 23KB