f36989c1fc4a1665c1fbd8570efd409c_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

f36989c1fc4a1665c1fbd8570efd409c_JaffaCakes118
Size

138KB
MD5

f36989c1fc4a1665c1fbd8570efd409c
SHA1

e4a82363c1e790d9cdb916dcd2b894f75beb357e
SHA256

b9a6c4ee7ce7878314cb11e6887628888c3a41f349c4c3ab52497ab395cbc416
SHA512

6fafb5f9e681fcc32c54737d7b1fbd3f7dceef576ecdbf51359f6bc02871aa2fb40adf82011f12eb05a3aa6f3b76613cb488437e09801242a585c91dbb6bc525
SSDEEP

3072:Ey3KRM5HNIe0YsijU0JdGl/suOtCi0xt6fZ3/lNLkUVu:EQYOxlU0J4l/FwoSvlNLkE

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
f36989c1fc4a1665c1fbd8570efd409c_JaffaCakes118

Files

f36989c1fc4a1665c1fbd8570efd409c_JaffaCakes118
.exe windows:5 windows x86 arch:x86

84a0196e415bd1e5a5dba256833a148b

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

WaitForMultipleObjects
FindClose
lstrlenW
CreateFileMappingA
LocalAlloc
OpenMutexA
WaitForSingleObject
GetModuleHandleA
lstrlenW
RtlUnwind
WideCharToMultiByte
GetWindowsDirectoryA
SetThreadPriority
GetStartupInfoA
LoadLibraryA
GlobalAlloc
TerminateProcess
GlobalLock
OpenFileMappingA
GetLocalTime
UnmapViewOfFile
DeleteCriticalSection
VirtualQuery
FlushFileBuffers
GetModuleFileNameA
OpenEventA
CloseHandle
GetFullPathNameA
GetTempPathA
MapViewOfFileEx
FileTimeToSystemTime

user32

SetWindowsHookExW
GetMenuStringA
RegisterClassW
SetWindowPlacement
SetParent
GetMenuItemInfoW
GetIconInfo
SetRectEmpty
GetCursorPos
FindWindowExA
SetWindowTextA
GetScrollInfo
ScrollWindowEx
TrackPopupMenu
LoadKeyboardLayoutA
GetComboBoxInfo
SendMessageW
SetScrollInfo
EqualRect
SetScrollPos
CreateIconIndirect
InsertMenuA
SetTimer
SetScrollRange
DrawIconEx
CreateCaret
SetActiveWindow
SetWindowLongA
NotifyWinEvent
EnableScrollBar
GetClipboardData
GetKeyState
GetWindowLongW
IsCharAlphaA
IsWindow
CharUpperW
SetFocus
CharLowerBuffW
DrawFrameControl
RemovePropA
SetCaretPos
DrawFocusRect
InflateRect
SetKeyboardState
SetRect
DestroyCursor
FillRect
GetWindowDC
IsCharAlphaNumericA
ShowScrollBar

gdi32

SetROP2
CreateDIBitmap
GetBkColor
MaskBlt
CreateRectRgnIndirect
CreatePatternBrush
Rectangle
CreatePalette
FrameRgn
CopyEnhMetaFileA
CreateCompatibleDC
RealizePalette
SetTextAlign
GetTextColor
CreateBitmap

ole32

OleSetMenuDescriptor
CoGetClassObject
CoCreateGuid

atkcbdno

_Hugeval
_LRteps
_Dscale
_Strxfrm
_LNan

oleaut32

VariantClear
SysAllocStringByteLen
SafeArrayGetUBound
SafeArrayPtrOfIndex
CreateErrorInfo

shell32

ShellExecuteA
DragQueryFileA

comctl32

ImageList_GetIconSize
ImageList_SetIconSize
ImageList_GetBkColor
ImageList_Replace
ImageList_DragShowNolock

urlmon

CoInternetCreateZoneManager

advapi32

RegQueryValueExA

wininet

HttpSendRequestA
InternetReadFile

comdlg32

GetOpenFileNameA

Sections

.text
Size: 132KB - Virtual size: 132KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 2KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

84a0196e415bd1e5a5dba256833a148b

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

ole32

atkcbdno

oleaut32

shell32

comctl32

urlmon

advapi32

wininet

comdlg32

Sections

.text Size: 132KB - Virtual size: 132KB

.rdata Size: 3KB - Virtual size: 4KB

.rsrc Size: 2KB - Virtual size: 4KB

.text
Size: 132KB - Virtual size: 132KB

.rdata
Size: 3KB - Virtual size: 4KB

.rsrc
Size: 2KB - Virtual size: 4KB