91e49c7408a6c41f0d64682f56504a41_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

91e49c7408a6c41f0d64682f56504a41_JaffaCakes118
Size

224KB
MD5

91e49c7408a6c41f0d64682f56504a41
SHA1

fffd906c1dfb11bebd71131fb713085698fd4d13
SHA256

3d75dcc7265c8323e4192ea8442c1354086def6b2893957a0bd61d8f90662b50
SHA512

d9285fd26d54439bd861ee3b633e60d84e60835d3f67de478803a543b5c11b4e86f36182977e06dd12ec6651897aaec7e1cf5a706a395424a3d1634792a29062
SSDEEP

3072:edLfTvCY5uNKITkMrI6/9FWsgN4Mn3mGpjYND0nnybAtQpdWzxhyRvOVGqrJ0jmk:edqTdIC9e7nWGpUNDM7WexhySGmJG/Bz

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
91e49c7408a6c41f0d64682f56504a41_JaffaCakes118

Files

91e49c7408a6c41f0d64682f56504a41_JaffaCakes118
.exe windows:5 windows x86 arch:x86

116f2e29621ac3058d91bffb33a7bc41

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

comctl32

InitCommonControlsEx

gdi32

GetTextMetricsW
TextOutW
CreateFontIndirectW
PatBlt
CreatePen
CreateICW
CombineRgn
GetPixel
GetDeviceCaps
LineTo
DeleteDC
SetPixel
BitBlt
SetTextColor
GetTextExtentPoint32W
MoveToEx
GetStockObject
CreateCompatibleDC
StretchBlt
CreateRectRgn
SelectObject
SetRectRgn
CreateSolidBrush
SetBkColor
DeleteObject
CreateCompatibleBitmap

kernel32

lstrcpynW
GetStartupInfoA
GetProcAddress
LoadLibraryA
GetModuleHandleA
GetModuleFileNameA
OpenMutexA
GetPrivateProfileIntW
lstrlenW

shell32

ShellAboutW

user32

UpdateWindow
EndDialog
LoadBitmapW
GetMessageW
DefWindowProcW
KillTimer
GetDlgItemInt
PostQuitMessage
ShowWindow
MessageBeep
SetWindowPos
SetDlgItemInt
GetSystemMetrics
IsIconic
MessageBoxW
SendMessageW
GetWindowRect
EndPaint
SetCapture
ReleaseCapture
DialogBoxParamW
GetWindowDC
TranslateMessage
PostMessageW
GetSysColor
DispatchMessageW
GetDC
ReleaseDC
BeginPaint
GetMenu
RegisterClassW
WinHelpW
LoadStringW
GetClientRect
GetDlgItem
DrawMenuBar
SystemParametersInfoW
EnableMenuItem
InvalidateRect
SetTimer
FlashWindow
ShowCursor
SetWindowTextW
GetDesktopWindow
LoadCursorW
LoadIconW
CreateWindowExW
LoadAcceleratorsW
wsprintfW
TranslateAcceleratorW
SetCursor

msvcrt

_except_handler3
__p__fmode
_c_exit
srand
time
_acmdln
_exit
__p__commode
__setusermatherr
_cexit
exit
_XcptFilter
__getmainargs
isdigit
_initterm
_controlfp
rand
_adjust_fdiv
__set_app_type

Sections

.text
Size: 32KB - Virtual size: 32KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 326B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 186KB - Virtual size: 185KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 52KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

116f2e29621ac3058d91bffb33a7bc41

Headers

DLL Characteristics

File Characteristics

Imports

comctl32

gdi32

kernel32

shell32

user32

msvcrt

Sections

.text Size: 32KB - Virtual size: 32KB

.rdata Size: 3KB - Virtual size: 2KB

.data Size: 512B - Virtual size: 326B

.rsrc Size: 186KB - Virtual size: 185KB

.reloc Size: 1024B - Virtual size: 52KB

.text
Size: 32KB - Virtual size: 32KB

.rdata
Size: 3KB - Virtual size: 2KB

.data
Size: 512B - Virtual size: 326B

.rsrc
Size: 186KB - Virtual size: 185KB

.reloc
Size: 1024B - Virtual size: 52KB