fc061c983f683306002ee2b0c1a2d840_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

fc061c983f683306002ee2b0c1a2d840_JaffaCakes118
Size

41KB
MD5

fc061c983f683306002ee2b0c1a2d840
SHA1

3cb993aa5efd642f584fb1e1baec46b26a12373b
SHA256

da78b98222dc0a6bd5794c51d700eb1da7eb16ed58a22fe137b1f100eb3a1e5a
SHA512

3cfbe21905db409fffa0bafbaa2573ff1b964117d6687e0cb57fc9b5128a3cd7e05997ae1335d7091a8d69f4c72e7b0a6f5f7b430fc816fd964afd05d4d4a641
SSDEEP

768:LdhDwc9xTB5OhkU+X3WT20YHBm40tGXUvpW03SfX4hD3:Loc9xjOhz+XC20gVCvpWnX4

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
fc061c983f683306002ee2b0c1a2d840_JaffaCakes118

Files

fc061c983f683306002ee2b0c1a2d840_JaffaCakes118
.exe windows:4 windows x86 arch:x86

0888b180e913a7fe1cbf20b37ba57327

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetLastError
IsValidLanguageGroup
EnumResourceLanguagesA
GetProcAddress
GetConsoleNlsMode
VirtualProtect
GetTapeStatus
Toolhelp32ReadProcessMemory
UnregisterConsoleIME
CreateMailslotA
LoadLibraryExA
FindNextVolumeMountPointA
GetSystemWindowsDirectoryW
GetProcAddress
HeapReAlloc
CreateProcessW
LoadLibraryA

user32

SendMessageTimeoutW
UnregisterHotKey
CreateDesktopW
UnregisterDeviceNotification
CharToOemW
DestroyMenu
GetLastActivePopup
InvertRect
GetMessageExtraInfo
GetWindowLongW
MonitorFromRect
DestroyWindow
DdePostAdvise
SetClipboardViewer
CheckMenuItem
SetClassLongW
GetDialogBaseUnits
IsDlgButtonChecked
IsCharAlphaNumericA
DrawStateW
User32InitializeImmEntryTable
DestroyCursor
EnumWindows
DdeGetQualityOfService
GetScrollInfo
GetClipboardFormatNameW
IMPSetIMEA
ClipCursor
WindowFromDC
RemovePropW
GetCursor
SetDlgItemInt
ScreenToClient
EnableScrollBar
GetClientRect

gdi32

RealizePalette
ColorMatchToTarget
EngGradientFill
GetTextExtentPointW
FONTOBJ_vGetInfo
CreateICA
GdiCreateLocalEnhMetaFile
EnumFontsW
GetMetaFileA
SetTextJustification
GdiEntry7
AnimatePalette
GetEnhMetaFilePixelFormat
CreateDIBSection
GdiAddGlsBounds
Escape
GetEnhMetaFileDescriptionW
DeleteDC
CreatePen
GdiSetBatchLimit
CreateEnhMetaFileW
SelectClipPath
GdiGetDC
GdiPlayDCScript
SelectObject
StrokePath
GdiEntry16
GetLogColorSpaceA
Rectangle
GetArcDirection
CreateFontIndirectExA
DeviceCapabilitiesExW
GetCharWidthI

comdlg32

FindTextA
PrintDlgW
ReplaceTextW
ChooseColorW
GetSaveFileNameA
WantArrows
GetOpenFileNameA
PageSetupDlgW
PrintDlgExA
ChooseFontW
GetFileTitleA
LoadAlterBitmap

Sections

.text
Size: 4KB - Virtual size: 44KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 33KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

0888b180e913a7fe1cbf20b37ba57327

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

Sections

.text Size: 4KB - Virtual size: 44KB

.data Size: 33KB - Virtual size: 36KB

.idata Size: 3KB - Virtual size: 4KB

.text
Size: 4KB - Virtual size: 44KB

.data
Size: 33KB - Virtual size: 36KB

.idata
Size: 3KB - Virtual size: 4KB