0d7915869676ce21dcab9fc709bbf7b3_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

0d7915869676ce21dcab9fc709bbf7b3_JaffaCakes118
Size

119KB
MD5

0d7915869676ce21dcab9fc709bbf7b3
SHA1

8473880f49979eb8572270a81f89023d4e09f704
SHA256

9f7b1d2064a0b4b19b94e81974000e42893c680b3ec4660a84cfe680947fdee9
SHA512

becadf5b7d623ddb77e70762401214274ed299177f2488d814fd501be53bbfc2cf665eca150f2b599d28afd2f79c48be45bd4dc745c855b9564db71be4ce8750
SSDEEP

3072:hw4eVIuk7wYDl80aBtJAmtTHHuD9lcFAYQ+qxUYvliva:yquk7wYDl80aBtamHOZlpAqxba

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
0d7915869676ce21dcab9fc709bbf7b3_JaffaCakes118

Files

0d7915869676ce21dcab9fc709bbf7b3_JaffaCakes118
.exe windows:4 windows x86 arch:x86

087f2863ac2ff7db56c365b20b95d670

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetTimeFormatW
OutputDebugStringW
GlobalReAlloc
SetUnhandledExceptionFilter
TerminateThread
lstrcatA
CreateDirectoryW
VirtualAlloc
FreeEnvironmentStringsW
GetLastError
GetFileType
GetCurrentThread
CreateProcessA
HeapFree
CreateDirectoryA
WriteConsoleW
GetWindowsDirectoryW
GlobalAlloc
GetProcAddress
LoadLibraryA
IsBadWritePtr
FindNextFileW
QueryPerformanceCounter
LoadLibraryW
CloseHandle
GetCurrentThreadId
GetModuleHandleA
SetFilePointer
CreatePipe
ExitProcess
GetProcAddress
GetSystemInfo
GetSystemDirectoryA
OutputDebugStringA

msvcrt

atoi
memcpy
__wgetmainargs
wcsncpy
memset
_iob
sprintf
_acmdln
_vsnprintf
_wcsnicmp
wcsncmp
strcpy
strncpy
towupper
_wtoi
__p__commode

user32

RemoveMenu
GetMenuItemCount
LoadCursorW
OpenClipboard
LoadStringW
ReleaseDC
RegisterDeviceNotificationW
GetKeyState
SystemParametersInfoW
LoadAcceleratorsW
RealChildWindowFromPoint
GetAsyncKeyState
DeleteMenu
ShowWindow
GetDlgItem
DialogBoxParamW
MsgWaitForMultipleObjects
SetScrollPos
GetWindowPlacement
DispatchMessageA
PostQuitMessage
LoadStringA
SetCapture
InvalidateRect

gdi32

SetTextColor
SelectPalette
CreatePen
SetMapMode
PatBlt
CreateSolidBrush
CreateFontIndirectA
SetPixel
BitBlt
SetBkColor
DeleteDC
GetDeviceCaps
SelectObject
SaveDC
CreateCompatibleDC

opengl32

glColor3us
glColor4i
glTexCoord3fv
glColor3f
glTexCoord2d
glCopyTexSubImage1D
glNormal3f
glClearStencil
glInitNames
glGetTexImage
wglCopyContext
glRectdv
glGetPixelMapusv

Exports

Exports

CnvukvSiyrwShtua
MtEvvwGwp
HncFmlfsYfmbcSekddAv

Sections

.text
Size: 9KB - Virtual size: 9KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

idea0
Size: 512B - Virtual size: 277B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 90B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 105KB - Virtual size: 104KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 52B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

087f2863ac2ff7db56c365b20b95d670

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

msvcrt

user32

gdi32

opengl32

Exports

Exports

Sections

.text Size: 9KB - Virtual size: 9KB

.rdata Size: 2KB - Virtual size: 2KB

idea0 Size: 512B - Virtual size: 277B

.data Size: 512B - Virtual size: 90B

.rsrc Size: 105KB - Virtual size: 104KB

.reloc Size: 512B - Virtual size: 52B

.text
Size: 9KB - Virtual size: 9KB

.rdata
Size: 2KB - Virtual size: 2KB

idea0
Size: 512B - Virtual size: 277B

.data
Size: 512B - Virtual size: 90B

.rsrc
Size: 105KB - Virtual size: 104KB

.reloc
Size: 512B - Virtual size: 52B