14c3fb9b709aed4a795957c793acfca1_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

14c3fb9b709aed4a795957c793acfca1_JaffaCakes118
Size

204KB
MD5

14c3fb9b709aed4a795957c793acfca1
SHA1

4ab9c8920080f79e857d73d52d82460ff4990f09
SHA256

db5c65dff1c5d136cdbab21829e3b223cbb3566f7d0bd10946a376e82faeae11
SHA512

a6370700cbea82e49ad703bc004649b44f9e3b3832c17b3aa2314d7e89f8aa209a8a54385b6f60cb2cb6ec1048af058ed04789fd59b4ef278a3dad9f008bfc70
SSDEEP

3072:gmkuAUo0MTYii07ez/EQ6qaSoxaQXDqRI7TZ021LqHu:gmkujxMTd0f6qFoF2C7y21LqH

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
14c3fb9b709aed4a795957c793acfca1_JaffaCakes118

Files

14c3fb9b709aed4a795957c793acfca1_JaffaCakes118
.exe windows:5 windows x86 arch:x86

f2a48e9f5abda2fcc231b6d0a2b1ce29

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

user32

GetSysColor
GetSystemMetrics
IsWindowEnabled
SetForegroundWindow
IsChild
LoadCursorW
CharNextA
GetKeyState
SetTimer
SetActiveWindow
LoadIconW
EnableMenuItem
SetWindowTextW
SetClipboardData
DeleteMenu
InflateRect
UnregisterClassA
GetSysColorBrush
AdjustWindowRectEx
LoadIconA
GetMessageW
IsWindowVisible
MoveWindow

msvcrt

_CxxThrowException
_adjust_fdiv
memset
??1type_info@@UAE@XZ
__p__commode
exit
_onexit
memcpy
__set_app_type

kernel32

GetFullPathNameW
HeapReAlloc
SetFileAttributesA
FormatMessageW
FreeEnvironmentStringsA
GetOEMCP
GetShortPathNameA
GlobalMemoryStatus
GetCurrentThreadId
LoadLibraryA
Sleep
GetCurrentThread
CloseHandle
GetLocaleInfoA
WideCharToMultiByte
GetProcessHeap
GetStringTypeW
InterlockedCompareExchange
GetSystemTimeAsFileTime
IsBadCodePtr
SetUnhandledExceptionFilter
GetEnvironmentStringsW
VirtualAlloc
ExitProcess
WriteFile
GlobalFree
GetCurrentProcess
LoadLibraryW
GetThreadLocale
SetLastError
GetTickCount
LoadLibraryExW
VirtualProtect
GetACP
ResetEvent
InterlockedDecrement
DeleteFileA
CreateFileMappingA
lstrcpyW
UnhandledExceptionFilter
FreeEnvironmentStringsW
TlsSetValue
InterlockedExchange

gdi32

GetStockObject
CreateFontIndirectW
SelectObject
SetWindowOrgEx
CreatePen
GetTextMetricsA

opengl32

glPushMatrix

Sections

.text
Size: 136KB - Virtual size: 135KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 58KB - Virtual size: 57KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 6KB - Virtual size: 284KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 3KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

f2a48e9f5abda2fcc231b6d0a2b1ce29

Headers

DLL Characteristics

File Characteristics

Imports

user32

msvcrt

kernel32

gdi32

opengl32

Sections

.text Size: 136KB - Virtual size: 135KB

.rdata Size: 58KB - Virtual size: 57KB

.data Size: 6KB - Virtual size: 284KB

.rsrc Size: 3KB - Virtual size: 2KB

.text
Size: 136KB - Virtual size: 135KB

.rdata
Size: 58KB - Virtual size: 57KB

.data
Size: 6KB - Virtual size: 284KB

.rsrc
Size: 3KB - Virtual size: 2KB