22c6e30d6e51f7bdd24730bed2e9411d_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

22c6e30d6e51f7bdd24730bed2e9411d_JaffaCakes118
Size

485KB
MD5

22c6e30d6e51f7bdd24730bed2e9411d
SHA1

f1f35897e92046875ab43445c1473d4f384e4f3c
SHA256

625e414ff1ef7191a259b10d49217cd898881ce105f0c3b96eb52288aec3278c
SHA512

aa0d8c19763af19a6bc56872e0c5dc02f5eef664948101f9c6500b54114caed6fe1d300ca43c625d2ec5628c0b7d104de8cb48fd91fb747675739af27bd80bc8
SSDEEP

6144:XWm/rHIISv1c39Dg5d/TKXoxUfws0+qaAr37l35UDZXFkfOnRGnvdPBNvQBHVvQY:30v496Ahws0laed+OWnwNj41vQS0w

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
22c6e30d6e51f7bdd24730bed2e9411d_JaffaCakes118

Files

22c6e30d6e51f7bdd24730bed2e9411d_JaffaCakes118
.exe windows:4 windows x86 arch:x86

97e7f4129942470f4f9bd52a173223b4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

SetMetaRgn
EndPage
EnumFontFamiliesW
GetColorAdjustment
GetBrushOrgEx
GetRegionData
GdiPlayDCScript
SetWindowOrgEx
CreateDCA
GetNearestPaletteIndex

comctl32

InitCommonControlsEx

comdlg32

GetSaveFileNameW
PageSetupDlgW
ReplaceTextA
ChooseColorA

kernel32

TerminateProcess
GetProcAddress
GetCPInfo
FillConsoleOutputCharacterA
GetModuleFileNameA
HeapDestroy
UnhandledExceptionFilter
GetCurrentProcessId
TlsGetValue
GetTickCount
GetStringTypeA
GetStdHandle
MultiByteToWideChar
CompareStringA
RtlUnwind
TlsAlloc
GetStringTypeW
IsBadWritePtr
GetCurrentThreadId
GetConsoleOutputCP
HeapAlloc
HeapCreate
InitializeCriticalSection
GetCurrentProcess
HeapReAlloc
GetEnvironmentStringsW
VirtualFree
GetACP
OpenMutexA
TlsFree
WriteConsoleA
LeaveCriticalSection
FreeEnvironmentStringsW
LCMapStringW
GetLogicalDriveStringsA
HeapFree
GetCurrentThread
GetVersion
VirtualAlloc
FindFirstFileA
FileTimeToSystemTime
WriteFile
GetProcessHeaps
WriteProfileStringW
CreateMutexA
GetLastError
CompareStringW
QueryPerformanceCounter
GetSystemTime
CreateWaitableTimerW
CloseHandle
GlobalGetAtomNameW
FlushFileBuffers
EnterCriticalSection
GetOEMCP
SetStdHandle
SetLastError
LCMapStringA
FreeEnvironmentStringsA
GetEnvironmentStrings
ExitProcess
TlsSetValue
GetStartupInfoA
InterlockedIncrement
GetCommandLineA
AddAtomA
SetEnvironmentVariableA
SetFilePointer
ReadFile
SetHandleCount
GetProfileIntW
CreateWaitableTimerA
GetLocalTime
GetFileType
WideCharToMultiByte
DeleteCriticalSection
GetModuleHandleA
LoadLibraryA
VirtualQuery
EnumCalendarInfoExW
GetEnvironmentVariableW
GetSystemTimeAsFileTime
InterlockedDecrement
RemoveDirectoryA
InterlockedExchange
GetTimeZoneInformation

user32

GetDlgItemTextA
DrawEdge
GetClassLongW
SetWindowLongA
DrawIconEx
GetDlgItemInt
RegisterClassA
RegisterClassExA

Sections

.text
Size: 157KB - Virtual size: 156KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 4KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 312KB - Virtual size: 312KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 10KB - Virtual size: 9KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

97e7f4129942470f4f9bd52a173223b4

Headers

File Characteristics

Imports

gdi32

comctl32

comdlg32

kernel32

user32

Sections

.text Size: 157KB - Virtual size: 156KB

.rdata Size: 4KB - Virtual size: 27KB

.data Size: 312KB - Virtual size: 312KB

.rsrc Size: 10KB - Virtual size: 9KB

.text
Size: 157KB - Virtual size: 156KB

.rdata
Size: 4KB - Virtual size: 27KB

.data
Size: 312KB - Virtual size: 312KB

.rsrc
Size: 10KB - Virtual size: 9KB