102e4495b4ee75ac0cb141703a99f226_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

102e4495b4ee75ac0cb141703a99f226_JaffaCakes118
Size

82KB
MD5

102e4495b4ee75ac0cb141703a99f226
SHA1

092242d1820b43194fafcab04cdd13ce946081cf
SHA256

8fb373e8ebacbdb6d563a827188e5f146fc1961837af2e4b722f91881eb0868f
SHA512

0004cc0b96f0d6549ea551478060997fa0d291fb84ea633d88b8f8dba7b8ee18a4e6987e2b9e4f69edd40f3bacdebb8c8ed656f90639df77a2da359d408dcb43
SSDEEP

1536:Cz4acKxzwa4VTd305ILVGhTocRP14LspFvlGyYKdbDHf2+DsXwX4JHWdPR2Fp:R2zSTdKILVCFBiLGvcGdb7e+rX4J2qFp

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
102e4495b4ee75ac0cb141703a99f226_JaffaCakes118

Files

102e4495b4ee75ac0cb141703a99f226_JaffaCakes118
.exe windows:4 windows x86 arch:x86

cf7b9049f4483241a3981f36f4e7b53c

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetWindowsDirectoryA
BeginUpdateResourceW
SearchPathA
ExitProcess
GetModuleHandleA
FindAtomA
GetVersion
FindCloseChangeNotification
RegisterWaitForInputIdle
GetEnvironmentStringsA
GetTempPathA
CreatePipe
GetModuleHandleW
VirtualAlloc
GetLongPathNameW
OpenMutexW
FormatMessageW
ReplaceFileA
GetPrivateProfileStructA
GetProfileSectionW
FormatMessageA
GetVersionExA
MapViewOfFileEx
LoadLibraryA
WaitForMultipleObjectsEx
GetSystemDirectoryW
GetProcAddress
GetLastError
IsValidCodePage
VirtualFree
CreateDirectoryExA
GetFullPathNameA

msvcrt

memcpy
_wtoi64
ispunct
fabs
_wfdopen
_fpreset
_wexeclpe
_mbsnbcnt
towupper
??0__non_rtti_object@@QAE@ABV0@@Z
_CIsqrt
strcpy
wcschr
__iscsym
__p__wenviron
__dllonexit
strncpy
_searchenv

user32

GetWindowRect
LoadStringW
MapWindowPoints
SetCursor
ModifyMenuW
GetMenuState
IsDialogMessageW
GetMenu
SetMenuItemInfoW
SendMessageW
GetPropW
GetDlgItemTextW
CopyRect
AppendMenuW
PtInRect
GetSystemMetrics
RealGetWindowClass
IsWindowEnabled
GetSysColor

gdi32

SetViewportExtEx
SetPixel
GetPaletteEntries
SetRectRgn
SetBkMode
CombineRgn
GetBrushOrgEx
SetDIBitsToDevice
SetBkColor
SetBrushOrgEx
GetDIBits
GetTextExtentExPointW
GetObjectW
CreateCompatibleBitmap
DeleteDC
GetTextFaceW

opengl32

glEndList
glVertex4dv
glDepthRange
glNormal3i
glRasterPos3sv
glTexCoord2s
glColor3iv
glGetError
glColor4iv
glTexGendv
wglGetProcAddress
glClearColor
glNormal3f
wglUseFontOutlinesW
glPixelMapfv
glCopyTexSubImage2D

Exports

Exports

ZjgqiEd
PasfoSmckvsmKmd
AlahrcQocyztRskxu
PbsmemDa

Sections

.text
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 5KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.xpi
Size: 1024B - Virtual size: 644B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.ixp
Size: 512B - Virtual size: 17B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.pixi
Size: 1024B - Virtual size: 836B

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 65KB - Virtual size: 65KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 72B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

cf7b9049f4483241a3981f36f4e7b53c

Headers

File Characteristics

Imports

kernel32

msvcrt

user32

gdi32

opengl32

Exports

Exports

Sections

.text Size: 4KB - Virtual size: 3KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 5KB - Virtual size: 4KB

.xpi Size: 1024B - Virtual size: 644B

.ixp Size: 512B - Virtual size: 17B

.pixi Size: 1024B - Virtual size: 836B

.rsrc Size: 65KB - Virtual size: 65KB

.reloc Size: 512B - Virtual size: 72B

.text
Size: 4KB - Virtual size: 3KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 5KB - Virtual size: 4KB

.xpi
Size: 1024B - Virtual size: 644B

.ixp
Size: 512B - Virtual size: 17B

.pixi
Size: 1024B - Virtual size: 836B

.rsrc
Size: 65KB - Virtual size: 65KB

.reloc
Size: 512B - Virtual size: 72B