7e4810a06f051577755e66daa0903b9e_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

7e4810a06f051577755e66daa0903b9e_JaffaCakes118
Size

116KB
MD5

7e4810a06f051577755e66daa0903b9e
SHA1

eef82e1f8ffcbf13f822544e080a84cb79082c70
SHA256

e7e7d7d3cb8e2016a25899c7e00326df52f400100affed85ffaaddfe6898f682
SHA512

19bb0507c8ed5d69a96f0828c15b918aaea849c49d1a133f4e8cba85b8eafe7241a5e5a892ba5199fe996d2a925e91b137d4b2bfc6d3b3c1e6b37473bd400276
SSDEEP

3072:HChC6NAN/FuTmngEyyIVVokCVGp1bnrGL0Tk6:H0CTN/gTagEyxZ6GX40Tk

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
7e4810a06f051577755e66daa0903b9e_JaffaCakes118

Files

7e4810a06f051577755e66daa0903b9e_JaffaCakes118
.exe windows:4 windows x86 arch:x86

cce7bbce77610b9130eb5d1f4d659541

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

IsBadWritePtr
VirtualAlloc
WriteFile
VirtualFree
HeapCreate
HeapDestroy
GetFileType
GetStdHandle
SetHandleCount
GetEnvironmentStringsW
SetUnhandledExceptionFilter
FreeEnvironmentStringsW
FreeEnvironmentStringsA
GetModuleFileNameA
UnhandledExceptionFilter
LCMapStringW
LCMapStringA
MultiByteToWideChar
GetProcAddress
HeapSize
IsBadReadPtr
IsBadCodePtr
GetCPInfo
GetACP
GetOEMCP
LoadLibraryA
GetStringTypeA
GetStringTypeW
GetLastError
CompareStringA
CompareStringW
SetEnvironmentVariableA
RaiseException
SetFilePointer
FlushFileBuffers
CloseHandle
LoadLibraryExA
ReadFile
GetEnvironmentStrings
WideCharToMultiByte
GetTimeZoneInformation
GetSystemTime
GetLocalTime
RtlUnwind
GetModuleHandleA
GetStartupInfoA
GetCommandLineA
GetVersion
ExitProcess
HeapFree
HeapReAlloc
HeapAlloc
TerminateProcess
GetCurrentProcess
SetStdHandle

user32

DefWindowProcA
GetClientRect
InvalidateRect
DestroyWindow
BeginPaint
DrawTextA
EndPaint
PostQuitMessage
CreateWindowExA
LoadIconA
RegisterClassExA
LoadStringA
LoadAcceleratorsA
GetMessageA
TranslateAcceleratorA
TranslateMessage
DispatchMessageA
ShowWindow
GetSysColorBrush
GetSysColor
FillRect
ReleaseCapture
PtInRect
LoadCursorA
SetCursor
UpdateWindow
SetCapture
CheckRadioButton
SetDlgItemInt
GetSystemMenu
AppendMenuA
SetMenuDefaultItem
GetDC
DrawEdge
IsDlgButtonChecked
ReleaseDC
EndDialog
DialogBoxParamA

gdi32

RealizePalette
CreateHalftonePalette
SelectPalette
StretchDIBits
BeginPath
MoveToEx
LineTo
EndPath
StrokeAndFillPath
CreateBrushIndirect
Ellipse
CreatePen
Rectangle
SetROP2
CreateSolidBrush
SelectObject
SetBkColor
DeleteObject
LPtoDP
GetPixel

Sections

.text
Size: 56KB - Virtual size: 55KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 12KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 8KB - Virtual size: 11KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 36KB - Virtual size: 34KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cce7bbce77610b9130eb5d1f4d659541

Headers

File Characteristics

Imports

kernel32

user32

gdi32

Sections

.text Size: 56KB - Virtual size: 55KB

.rdata Size: 12KB - Virtual size: 8KB

.data Size: 8KB - Virtual size: 11KB

.rsrc Size: 36KB - Virtual size: 34KB

.text
Size: 56KB - Virtual size: 55KB

.rdata
Size: 12KB - Virtual size: 8KB

.data
Size: 8KB - Virtual size: 11KB

.rsrc
Size: 36KB - Virtual size: 34KB