1a92c0f497725e0b3d84d95d37273fc5_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

1a92c0f497725e0b3d84d95d37273fc5_JaffaCakes118
Size

38KB
MD5

1a92c0f497725e0b3d84d95d37273fc5
SHA1

3eed63be27a8010b001b2a11e68741a5ace76661
SHA256

5cf437d50aa6a7f9171ad4834bd3ce28e3df2ae71fbf3041549045f546d0938a
SHA512

92baacc7af46e8e24bbc76ea7666a99476bd4c66b6fce7fa03b5671462344d30d282e25e911a8a2041ea68d085235ed7c608220896ad75bd0836556f3c4171a5
SSDEEP

768:XHjEJG42E8dB/30MdDp+xcMs6ErJHP4dJooLtsH6sHfZXBC:XAHgNd+xg60dPIoo5sH6sH6

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
1a92c0f497725e0b3d84d95d37273fc5_JaffaCakes118

Files

1a92c0f497725e0b3d84d95d37273fc5_JaffaCakes118
.exe windows:4 windows x86 arch:x86

8e9bf9169b2763eee4956c02ea0703af

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
InitializeCriticalSection
GetProcAddress
MultiByteToWideChar
GetProcAddress
ReadFile
LoadLibraryW
CreateFileW
GetModuleFileNameA
ReadFile
InitializeCriticalSection
VirtualProtect
InterlockedExchange
LocalAlloc
lstrcmpiW
GetCurrentProcess
CreateEventW
GetModuleFileNameA
ReadFile
GetSystemTimeAsFileTime
GetModuleHandleW
QueryPerformanceCounter
GetSystemTimeAsFileTime
GetSystemTimeAsFileTime
GetVersionExA
GetTickCount
FreeLibrary
LocalFree
lstrcmpiW
QueryPerformanceCounter
QueryPerformanceCounter
LoadLibraryW
InitializeCriticalSection
DisableThreadLibraryCalls
DisableThreadLibraryCalls
Sleep
GetVersionExA
HeapAlloc
InterlockedExchange
CreateFileW
VirtualProtect
GetLastError
LocalAlloc
GetModuleFileNameA
GetCurrentProcessId
LocalAlloc
GetModuleHandleA
GetModuleFileNameW
InitializeCriticalSection
LeaveCriticalSection
HeapDestroy
FreeLibrary
CloseHandle
CreateFileW
VirtualProtect
GetCurrentProcessId
UnhandledExceptionFilter

gdi32

GetBkColor
CreateFontIndirectA
CreateBitmapIndirect
BitBlt
SetBkMode
CreateCompatibleDC
Ellipse
RoundRect
SetBrushOrgEx
CreateRectRgn
SetBrushOrgEx
CreateRectRgn
SelectObject
SetBrushOrgEx
GetBkMode
GetWindowExtEx
SetPixel
RoundRect
CreateSolidBrush
GetBkColor
GetBkColor
CreateSolidBrush
SetWindowExtEx
BitBlt
BitBlt
CreateDIBSection
CreateSolidBrush
GetPixel
GetPixel
CreateFontA
GetBkMode
CreateFontIndirectA
CreateRectRgn
GetWindowExtEx
BitBlt
CreateFontIndirectA
Rectangle
SetWindowExtEx
BitBlt
PatBlt
CreateRectRgn
CreateFontA
GetBkMode
CreateBitmapIndirect
SetWindowOrgEx
GetPixel
CreateFontIndirectA
Rectangle
SetBkMode
SetBkColor
MoveToEx
SelectObject
CreatePen
Polygon
RoundRect
SetWindowExtEx

Sections

.text
Size: 33KB - Virtual size: 36KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 512B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.rsrc
Size: 1024B - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

8e9bf9169b2763eee4956c02ea0703af

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

gdi32

Sections

.text Size: 33KB - Virtual size: 36KB

.data Size: 512B - Virtual size: 4KB

.rdata Size: 3KB - Virtual size: 4KB

.rsrc Size: 1024B - Virtual size: 4KB

.text
Size: 33KB - Virtual size: 36KB

.data
Size: 512B - Virtual size: 4KB

.rdata
Size: 3KB - Virtual size: 4KB

.rsrc
Size: 1024B - Virtual size: 4KB