e7cbda2c17cdace81fb51181226989dd_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

e7cbda2c17cdace81fb51181226989dd_JaffaCakes118
Size

691KB
MD5

e7cbda2c17cdace81fb51181226989dd
SHA1

fab337bd6a5526ff319072ba41ae51ce6fbe4ffe
SHA256

94e22f7feb7d809478a364131299b70921d61fa72f91dcc741a173b6554b76de
SHA512

a49f0ecad983746679e9f8316e98b825d750ff6be97f81b3022817908199a15dd60dd56449aa2567beba26aa4d948864803bb5b2e4851bfd002d04bc346e643d
SSDEEP

12288:5YlYap6IhYyapEphfgjIbCkVRKC70DJtAKAyKuBBIsWFiD1EJPS8zPVfv1cqmYgw:zg6UdaEZJTni8yKuBBInMWPFdvBT

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e7cbda2c17cdace81fb51181226989dd_JaffaCakes118

Files

e7cbda2c17cdace81fb51181226989dd_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c54d5cf14aab2ccb5233f6b987c54e56

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_ISOLATION
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
DisableThreadLibraryCalls
EnterCriticalSection
DisableThreadLibraryCalls
DisableThreadLibraryCalls
VirtualProtect
CreateEventW
DeleteCriticalSection
DeleteCriticalSection
GetModuleHandleA
HeapFree
UnhandledExceptionFilter
InitializeCriticalSection
InterlockedDecrement
GetSystemTimeAsFileTime
InterlockedCompareExchange
CloseHandle
InterlockedDecrement
InitializeCriticalSection
GetProcessHeap
HeapDestroy
lstrcmpiW
CreateThread
HeapAlloc
DeleteCriticalSection
QueryPerformanceCounter
InterlockedDecrement
HeapDestroy
HeapDestroy
GetVersionExA
GetProcAddress
LoadLibraryW
ReadFile
LocalFree
GetModuleHandleW
GetTickCount
MultiByteToWideChar
GetModuleFileNameW
EnterCriticalSection
GetCurrentProcess
ReadFile
EnterCriticalSection
LeaveCriticalSection
SetLastError
InterlockedCompareExchange
ReadFile
DisableThreadLibraryCalls
UnhandledExceptionFilter
CloseHandle
FreeLibrary
HeapDestroy
MultiByteToWideChar
GetProcAddress
HeapAlloc
HeapDestroy
UnhandledExceptionFilter
LocalFree
GetModuleFileNameA
GetLastError
CreateEventW
DisableThreadLibraryCalls

user32

ShowWindow
SetTimer
SetFocus
InvalidateRect
SetWindowTextW
SetDlgItemTextW
BeginPaint
SetWindowTextW
SetDlgItemTextW
GetDesktopWindow
SetTimer
EndDialog
GetDesktopWindow
IsDlgButtonChecked
EndPaint
SetForegroundWindow
GetFocus
LoadIconW
SetCursor
GetFocus
LoadIconW
SetWindowPos
PeekMessageW
SendMessageW
SetTimer
EnableWindow
GetWindowRect
GetClientRect
SetWindowTextW
EnableWindow
DestroyWindow
SetWindowLongW
SetWindowLongW
SetDlgItemTextW
wsprintfA
EndPaint
GetClientRect
IsDlgButtonChecked
SendDlgItemMessageW
GetFocus
DialogBoxParamW
SetWindowTextW
KillTimer
GetSystemMetrics
MessageBoxW
ShowWindow
SendDlgItemMessageW
SetForegroundWindow
SetWindowLongW
SetForegroundWindow
GetParent
BeginPaint
DefWindowProcW
GetSystemMetrics
BeginPaint
wsprintfA
wsprintfA
DialogBoxParamW
SendMessageW
GetDesktopWindow
TranslateMessage
EndPaint
PostQuitMessage
SetTimer

gdi32

BitBlt
Ellipse
SetWindowExtEx
BitBlt
CreatePen
StretchBlt
GetPixel
SetBrushOrgEx
BitBlt
BitBlt
Polygon
GetCurrentObject
Ellipse
GetBrushOrgEx
Polygon
Rectangle
SetWindowOrgEx
CreateCompatibleDC
GetWindowExtEx
MoveToEx
StretchBlt
Ellipse
BitBlt
CreateSolidBrush
GetBrushOrgEx
GetBkColor
GetPixel
MoveToEx
BitBlt
GetBrushOrgEx
CreateFontA
SetBkMode
SetWindowExtEx
Rectangle
SetPixel
MoveToEx
GetBrushOrgEx
CreateBitmapIndirect
GetBrushOrgEx
SelectObject
GetBrushOrgEx
GetBkMode
GetCurrentObject
CreateFontA
SetTextColor
CreateCompatibleDC
BitBlt
SetWindowExtEx
CreateBitmapIndirect
GetWindowOrgEx
StretchBlt
CreateDIBSection
CreateCompatibleDC
CreateSolidBrush
CreateDIBSection
MoveToEx
GetWindowOrgEx
SetBkColor
SetPixel
StretchBlt
GetWindowExtEx

Sections

.text
Size: 603KB - Virtual size: 968KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 82KB - Virtual size: 84KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

c54d5cf14aab2ccb5233f6b987c54e56

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 603KB - Virtual size: 968KB

.data Size: 512B - Virtual size: 4KB

.rdata Size: 5KB - Virtual size: 8KB

.rsrc Size: 82KB - Virtual size: 84KB

.text
Size: 603KB - Virtual size: 968KB

.data
Size: 512B - Virtual size: 4KB

.rdata
Size: 5KB - Virtual size: 8KB

.rsrc
Size: 82KB - Virtual size: 84KB