e847ec0c5e27700058a251c8a42aee0d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

e847ec0c5e27700058a251c8a42aee0d_JaffaCakes118
Size

116KB
MD5

e847ec0c5e27700058a251c8a42aee0d
SHA1

3640ccacf9de9963339b661bc95b677ba8f8f1af
SHA256

0b2f149c4b4b4822561b65f790b24c6598e6319493a773455b461dc3784fa5ce
SHA512

fe2a11741de82d91c9e13e806086ce8f2a5da16f716dccaff1b538ab5a16aa71eeca851c0308885bd18372a7b26384d80da4a369ac13e454f9bb5005f63da627
SSDEEP

3072:VbhksiiGcGPfI67YA3WQ2ETKnCLIpQLGmrebWZIKE:3liiGRfI+L9+CMpsrHZIK

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
e847ec0c5e27700058a251c8a42aee0d_JaffaCakes118

Files

e847ec0c5e27700058a251c8a42aee0d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

bb46405bd87820b650a8122b192c9fa6

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
InitializeCriticalSection
lstrlenA
MultiByteToWideChar
LeaveCriticalSection
EnterCriticalSection
SetLastError
Sleep
LeaveCriticalSection
EnterCriticalSection
HeapFree
Sleep
SetLastError
GetModuleFileNameA
QueryPerformanceCounter
HeapAlloc
LoadLibraryA
LeaveCriticalSection
InterlockedCompareExchange
VirtualAlloc
DeleteCriticalSection
GetCurrentThreadId
GetModuleFileNameA
InitializeCriticalSection
InterlockedCompareExchange
CreateEventW
GetVersionExA
InitializeCriticalSection
GetModuleFileNameA
GetModuleFileNameA
HeapAlloc
HeapFree
DeleteCriticalSection
SetLastError
GetModuleHandleW
UnhandledExceptionFilter
UnhandledExceptionFilter
GetModuleHandleA
CreateThread
GetCurrentProcess
InterlockedExchange
GetCurrentProcess
VirtualProtect
GetModuleHandleA
LeaveCriticalSection
GetProcessHeap
HeapAlloc
InterlockedExchange
GetModuleFileNameA
CreateThread
GetModuleFileNameW
UnhandledExceptionFilter
GetVersionExA
Sleep
GetModuleFileNameA
VirtualAlloc
GetModuleHandleA
UnhandledExceptionFilter
HeapFree
LocalFree
DisableThreadLibraryCalls
ReadFile
LoadLibraryA

gdi32

GetWindowOrgEx
GetWindowOrgEx
MoveToEx
CreateCompatibleDC
CreateDIBitmap
CreateFontA
SetPixel
RoundRect
BitBlt
SetBrushOrgEx
CreateBitmapIndirect
CreateDIBSection
SetWindowExtEx
CreateCompatibleDC
SetBkColor
GetBkColor
GetBkMode
CreateBitmapIndirect
Ellipse
SetTextColor
BitBlt
SetBkColor
CreateDIBitmap
BitBlt
SetWindowOrgEx
GetCurrentObject
CreateSolidBrush
CreateDIBitmap
LineTo
LineTo
CreateBitmapIndirect
BitBlt
CreateDIBSection
CreatePen
CombineRgn
StretchBlt
SetWindowExtEx
SetWindowExtEx
SetBkMode
CreateSolidBrush
BitBlt
SetPixel
Polygon
GetWindowOrgEx
GetBkMode
GetCurrentObject
SetBkMode
CreateBitmapIndirect
GetBkColor
GetWindowOrgEx
CreateDIBitmap
SelectObject
SetBkMode
BitBlt
GetWindowExtEx
CreateDIBitmap
SetWindowExtEx
BitBlt
Polygon
CreateFontIndirectA
CreatePen
CreatePen
GetPixel
CreateDIBitmap
BitBlt
MoveToEx

user32

SetForegroundWindow
IsDlgButtonChecked
GetSystemMetrics
PostMessageW
LoadCursorW
SetWindowPos
BeginPaint
TranslateMessage
BeginPaint
wsprintfA
GetWindowRect
MessageBoxW
DispatchMessageW
SetWindowPos
TranslateMessage
GetClientRect
SetWindowPos
InvalidateRect
SendDlgItemMessageW
ReleaseDC
SetForegroundWindow
DestroyWindow
DefWindowProcW
LoadStringW
ShowWindow
GetClientRect
EndDialog
SetTimer
SetForegroundWindow
GetFocus
GetClientRect
PostMessageW
DispatchMessageW
EndDialog
EnableWindow
GetDC
DestroyWindow
GetWindowRect
SetWindowLongW
PostMessageW
GetFocus
BeginPaint
EnableWindow
GetFocus
EndDialog
SetWindowLongW
IsWindow
SetFocus
EnableWindow
PeekMessageW
EndDialog
KillTimer
GetDlgItem
LoadIconW
PostQuitMessage
GetDC
EndDialog
GetSysColor
GetWindowRect
ShowWindow
SetDlgItemTextW
LoadIconW
EndDialog
DefWindowProcW
IsWindow
SetWindowTextW
GetFocus
PostQuitMessage
TranslateMessage
DialogBoxParamW

Sections

.text
Size: 109KB - Virtual size: 112KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 5KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

bb46405bd87820b650a8122b192c9fa6

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

gdi32

user32

Sections

.text Size: 109KB - Virtual size: 112KB

.data Size: 512B - Virtual size: 4KB

.rdata Size: 5KB - Virtual size: 8KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 109KB - Virtual size: 112KB

.data
Size: 512B - Virtual size: 4KB

.rdata
Size: 5KB - Virtual size: 8KB

.rsrc
Size: 1024B - Virtual size: 4KB