e82fafa84e464ba682a156d230fd584d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

e82fafa84e464ba682a156d230fd584d_JaffaCakes118
Size

310KB
MD5

e82fafa84e464ba682a156d230fd584d
SHA1

4b0d6b7b3fd159dab178c31158757e02a0742f19
SHA256

4deba088cb604259029c0931016f14e0d4802756efa9681c5861db65cc1e001b
SHA512

9481289f54df9759e446a615754cbfdfa138f536e6835f776801687b9a78b241dce5d86e4db604687eac70310870cea420f55ab6ea89da2f6ba52a2c076840ac
SSDEEP

6144:C+GRQ+AHBjEqkU/6utFLLicDt3NIDVixJjwnUptWG5GrxMC:sRWhRkI72dIx4MWG5y

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e82fafa84e464ba682a156d230fd584d_JaffaCakes118

Files

e82fafa84e464ba682a156d230fd584d_JaffaCakes118
.exe windows:5 windows x86 arch:x86

d8f48774ffdfe3cb41759d89ee0db94f

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_DEBUG_STRIPPED

Imports

gdi32

GetPixel
DeleteObject
RectVisible
SetDIBits
SetMapMode
BitBlt
CreateBitmap
SetDIBColorTable
TextOutW
LineTo
FillRgn
GetStockObject
ExtFloodFill
Polyline
CreateDIBSection
OffsetRgn
CreateICW
CreateDIBitmap
PlayMetaFile
LPtoDP
GetDIBits
UnrealizeObject
SelectObject
ResizePalette
SetPaletteEntries
DeleteDC
GetNearestPaletteIndex
CreateHalftonePalette
CreatePolygonRgn
EnumFontFamiliesW
TranslateCharsetInfo
PolyBezier
PtVisible
PatBlt
SetBkColor
ExtTextOutW
CreatePatternBrush
Ellipse
SetBkMode
GetDIBColorTable
Polygon
SetROP2
GetCurrentObject
RoundRect
GetPaletteEntries
SelectPalette
SetBrushOrgEx
SetPixel
MoveToEx
SaveDC
GetObjectW
GetDeviceCaps

msvcrt

wcstok
_adjust_fdiv
_wcsicmp
_itow
_CxxThrowException
wcscmp
_purecall
_onexit
_cexit
_beginthreadex
_exit
rand
_getdcwd
__argc
_controlfp
_except_handler3
_c_exit
__CxxFrameHandler
__set_app_type
_wcmdln
_ltow
_wcsdup
_wsplitpath
free
wcschr

user32

CreateWindowExA
UpdateWindow
DefWindowProcA
TranslateMessage
DestroyWindow
GetMessageA
SendMessageA
RegisterClassExA
ShowWindow
DispatchMessageA

kernel32

lstrcpynW
RaiseException
GetTickCount
LoadLibraryW
GlobalFree
GetProcessHeap
SetUnhandledExceptionFilter
GetThreadLocale
CloseHandle
HeapSize
lstrlenA
InterlockedDecrement
SetErrorMode
QueryPerformanceCounter
lstrcpyW
VirtualFree
InterlockedExchange
InterlockedIncrement
GlobalAlloc
GetExitCodeThread
GetProcessHeaps
GetCurrentThreadId
GetModuleHandleA
GetProcAddress
FileTimeToLocalFileTime
UnhandledExceptionFilter
SetEndOfFile
IsDBCSLeadByte
LocalAlloc
GetStartupInfoW
GetDateFormatW
GetTempFileNameW
GetCurrentProcess
FreeLibrary
MultiByteToWideChar
LocalFree
HeapAlloc
CreateFileW
GetCurrentProcessId
lstrcatW
lstrcmpW
GetTempPathW
VirtualAlloc
GetFileTime

Sections

.text
Size: 188KB - Virtual size: 188KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 111KB - Virtual size: 804KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

d8f48774ffdfe3cb41759d89ee0db94f

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

msvcrt

user32

kernel32

Sections

.text Size: 188KB - Virtual size: 188KB

.data Size: 9KB - Virtual size: 9KB

.rsrc Size: 111KB - Virtual size: 804KB

.text
Size: 188KB - Virtual size: 188KB

.data
Size: 9KB - Virtual size: 9KB

.rsrc
Size: 111KB - Virtual size: 804KB