20cc364e498aa9e54ba317febab33475_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

20cc364e498aa9e54ba317febab33475_JaffaCakes118
Size

165KB
MD5

20cc364e498aa9e54ba317febab33475
SHA1

3a2413183a39a6490ed62d309c94ef487ea24244
SHA256

d055ba2f02e2c0088e1343ea06ee0b7d2bb9232079adb14ed5d71cfae1f9afbb
SHA512

183eb3cef0612f41af07aad3bedd5045fa5eb936135185bf86951242d51f6ac42607fb0d518969a0c7f90ec006e373908fbb0282e6058ba519b24cabf6bbaf3b
SSDEEP

3072:4iY/vHi2r8KhmF6CVjwSkLga+tpznaM8JoGD2Kv839yjzK7kuZRpVRNmddPSi:UHFIQCRkLEaZoGD2G839yzq9RBNKdqi

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
20cc364e498aa9e54ba317febab33475_JaffaCakes118

Files

20cc364e498aa9e54ba317febab33475_JaffaCakes118
.exe windows:4 windows x86 arch:x86

38edc5bdb07a0aa6ad3a38d1bbe8d6d1

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

ole32

CoInitialize
CoFreeUnusedLibraries
StringFromGUID2
CoUninitialize
CoCreateInstance

gdi32

StretchBlt
SetStretchBltMode
CreatePen
SelectObject
GetObjectType
LineTo
BitBlt
CreateDIBSection
CreateDCW
DeleteDC
CreateCompatibleDC
CreateBitmap

user32

LoadCursorW
RedrawWindow
GetFocus
ClipCursor
TrackPopupMenuEx
SetCursor
FindWindowA
EnableWindow
IsWindow
InvalidateRect
SetParent
GetDesktopWindow
CreatePopupMenu
DestroyMenu
SetWindowPos
PtInRect

kernel32

WaitCommEvent
LocalAlloc
CreateFileW
LocalFree
GetSystemTimeAsFileTime
ReadFile
WaitCommEvent
DisableThreadLibraryCalls
GetFullPathNameW
GetCurrentProcessId
GetCurrentThreadId
GetTickCount
EnumResourceNamesW
LoadLibraryW
ExitProcess
GetModuleFileNameA
ExitProcess
GlobalLock
CloseHandle
GlobalAlloc
GetVersionExA
GlobalUnlock

comctl32

ImageList_DragMove
ImageList_DragLeave
ImageList_DragEnter

advapi32

RegSetValueW
RegDeleteKeyW
RegQueryValueExW
RegCreateKeyW
RegOpenKeyExW
RegCloseKey
RegSetValueExW
RegEnumKeyExW

msimg32

AlphaBlend
TransparentBlt

winmm

timeGetTime

gdiplus

GdipCreateBitmapFromFile
GdipGetImageWidth
GdipGetImagePixelFormat
GdipGetImageHeight
GdipDisposeImage

Sections

.text
Size: 122KB - Virtual size: 122KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 2KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 39KB - Virtual size: 38KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsr
Size: 512B - Virtual size: 68KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

38edc5bdb07a0aa6ad3a38d1bbe8d6d1

Headers

File Characteristics

Imports

ole32

gdi32

user32

kernel32

comctl32

advapi32

msimg32

winmm

gdiplus

Sections

.text Size: 122KB - Virtual size: 122KB

.rdata Size: 2KB - Virtual size: 2KB

.data Size: 39KB - Virtual size: 38KB

.rsr Size: 512B - Virtual size: 68KB

.text
Size: 122KB - Virtual size: 122KB

.rdata
Size: 2KB - Virtual size: 2KB

.data
Size: 39KB - Virtual size: 38KB

.rsr
Size: 512B - Virtual size: 68KB