18d0c7bcf19f19239493a8740f174bf9_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

18d0c7bcf19f19239493a8740f174bf9_JaffaCakes118
Size

32KB
MD5

18d0c7bcf19f19239493a8740f174bf9
SHA1

4fe011823edf5d61c982748878f9aa237d14ba92
SHA256

e16aae418aff15074f4a0cae27c5a23c1b8263a890dfc94c26ef3c27db0c91ea
SHA512

2d79ba2dee699b5e9fef2c2ba732f16cd5cb7fdd3a622cdd022dfc598fb2e8c77c047bf12f9fe040d40d27042a4a404330bd9fb230690c799ac305ebfdd97406
SSDEEP

384:OxjLcYaxaoo3tT+6tncrKddXuyLAPIzPm2T9L8/tbWOdXTHJGHhyQQId1/VXz:OhL/2Aft6Q50wZT9glfXTHJYdQId1x

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
18d0c7bcf19f19239493a8740f174bf9_JaffaCakes118

Files

18d0c7bcf19f19239493a8740f174bf9_JaffaCakes118
.exe windows:4 windows x86 arch:x86

7eb2078bb8ffef5b1df66357bfa5f088

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
SetCurrentDirectoryA
SystemTimeToFileTime
HeapReAlloc
_llseek
lstrcatA
HeapSize
LocalSize
ReadProcessMemory
LocalFree
_hread
InitializeCriticalSection
ReadFile
lstrcpyA
GetModuleHandleW
GetLastError
MapViewOfFile
FormatMessageW
ExitThread
SetEndOfFile
SetCurrentDirectoryA
SystemTimeToFileTime
MapViewOfFile
DeviceIoControl
WritePrivateProfileStringA
LoadLibraryW
LocalFree
GetStartupInfoW
OpenProcess
GetEnvironmentStringsW
FileTimeToLocalFileTime
GetFileType
_lwrite
FreeEnvironmentStringsA
DelayLoadFailureHook
GetOEMCP
_lclose
_lread
GetLongPathNameW
MultiByteToWideChar
GetStringTypeA
_llseek
SetStdHandle
LocalFree
GlobalGetAtomNameW
GetTimeZoneInformation
FindFirstFileW
LocalUnlock
GetCurrentProcessId
LoadResource
lstrcpyA
SetFileAttributesA
GetComputerNameW
InterlockedIncrement
SetEvent
UnregisterWait
ExpandEnvironmentStringsA
RemoveDirectoryA
lstrlenW
_hread
FindResourceA
GetExitCodeProcess
GetDateFormatW
GetSystemDefaultLangID
FoldStringW
MoveFileW
_lclose
ExpandEnvironmentStringsA
SearchPathW
GetSystemDirectoryW
GetEnvironmentVariableW
CompareStringA
GetOEMCP
LoadResource
GetBinaryTypeA
GetPrivateProfileStringA

gdi32

GetStockObject
GetTextAlign
CreateDCA
CreateDCA
MoveToEx
SetWindowExtEx
CreateICA
ExcludeClipRect
UnrealizeObject
SetBkMode
SetTextColor
StartDocW
SetWindowExtEx
SetStretchBltMode
SelectObject
SetPixel
CreateCompatibleBitmap
GetLayout
SetBrushOrgEx
SetRectRgn
Rectangle
GetViewportOrgEx
RemoveFontResourceA
GetTextFaceA
GetClipRgn
RemoveFontResourceA
GetObjectA
SetViewportOrgEx
PlayMetaFile
DeleteDC
GetTextMetricsA
CreateDiscardableBitmap
SetTextAlign
Rectangle
GetClipBox
SetPixel
CreateRectRgnIndirect
SetRectRgn
GetObjectA
SetROP2
EndPage
CreateDCW
BitBlt
RealizePalette
GetViewportOrgEx
CreateDiscardableBitmap
GetTextMetricsA
SetWindowOrgEx
CreateDIBSection
GetTextFaceW
SetDIBits
ExtTextOutW
SetPixel
GetTextColor
StartDocA
SetROP2
CreatePatternBrush
SetWindowExtEx
LineTo
CreateFontIndirectW
CreateFontIndirectW
SetTextAlign
BitBlt
SetViewportExtEx
GetObjectA
GetStockObject
OffsetViewportOrgEx
OffsetViewportOrgEx
CreateRectRgnIndirect
Escape
OffsetViewportOrgEx
SetBkMode
GetLayout
CreateDIBitmap
RestoreDC
GetObjectW
CreateSolidBrush
GetTextExtentPointW
CreateDCW
CreateDCW

user32

InvalidateRect
GetWindowTextA
LoadIconW
CreateDialogParamA
GetSystemMenu
IsDialogMessageW
IsZoomed
EnumThreadWindows
VkKeyScanA
SetTimer
TileChildWindows
GetMenuState
MessageBoxW
TileWindows
LoadIconA
LoadCursorA
LoadBitmapA
TranslateAcceleratorW
MoveWindow
AppendMenuW
GetClassNameA
GetParent
UnionRect
GetShellWindow
MoveWindow
SystemParametersInfoA
PostMessageA
InvertRect
CreateWindowExA
CharNextW
MonitorFromWindow
GetNextDlgGroupItem
LoadMenuA
MessageBoxA
ModifyMenuW
RegisterHotKey
GetWindowLongW
GetWindowDC
IsWindowVisible
DestroyCaret
DdeAccessData
LoadMenuW
SetMenuDefaultItem
RegisterClassA
wsprintfA
LoadMenuW
GetClassInfoExW
TranslateAcceleratorW
EnumThreadWindows
InsertMenuA
MessageBoxW
CreateWindowExW
CharPrevA
SendMessageCallbackW
UnionRect
SubtractRect
MessageBeep
GetSystemMenu
EndDialog
LoadMenuA
DrawTextW
DdeInitializeA
SetDlgItemTextA
MapWindowPoints
SetWindowLongW
ModifyMenuW
CreateDialogParamA
CharUpperBuffW
ArrangeIconicWindows
WinHelpA
PtInRect
SwitchToThisWindow
ShowCursor
VkKeyScanA
GetMonitorInfoA
DrawAnimatedRects
CheckMenuItem
DrawCaption
GetDlgCtrlID

Sections

.text
Size: 7KB - Virtual size: 8KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 7KB - Virtual size: 16KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 6KB - Virtual size: 8KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 10KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

7eb2078bb8ffef5b1df66357bfa5f088

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

gdi32

user32

Sections

.text Size: 7KB - Virtual size: 8KB

.data Size: 7KB - Virtual size: 16KB

.rdata Size: 6KB - Virtual size: 8KB

.rsrc Size: 10KB - Virtual size: 12KB

.text
Size: 7KB - Virtual size: 8KB

.data
Size: 7KB - Virtual size: 16KB

.rdata
Size: 6KB - Virtual size: 8KB

.rsrc
Size: 10KB - Virtual size: 12KB