2a34fd34ea5ea2e7810175bec12093d6_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

2a34fd34ea5ea2e7810175bec12093d6_JaffaCakes118
Size

158KB
MD5

2a34fd34ea5ea2e7810175bec12093d6
SHA1

69a87ff9ca54999472df600305e382b711e7a2bf
SHA256

86adac2df115143094079e9e19a53760c0b40ac4ff5ff631dbc262af2269ee37
SHA512

0dbb0d2474b9a1f79165beccb7bccf4faa1d4de4db90b592a327b1e3443dea5a3f372672eaf30d6fa264d698ef777070cc1b84e8a22a0f2e7b6bbfcbc7d20c23
SSDEEP

3072:UDCAQzsd76/P7BID9jy4rvbpQYP0m1Ju2zAF:UDpQYknFSjNr9Ql6Ju2A

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
2a34fd34ea5ea2e7810175bec12093d6_JaffaCakes118

Files

2a34fd34ea5ea2e7810175bec12093d6_JaffaCakes118
.exe windows:5 windows x86 arch:x86

3ee8567f358f9174fe09a8d888c6c0d4

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

DeleteDC
CreateCompatibleDC
SetLayout
GetFontData
StartPage
TextOutW
CreateHalftonePalette
ScaleWindowExtEx
PtVisible
GetObjectA
Polygon
GetDIBColorTable
CreateDiscardableBitmap
PathToRegion
ExtTextOutW
UpdateColors
ScaleViewportExtEx
DescribePixelFormat
GetDeviceCaps
SetWindowOrgEx
GetMetaFileA
Ellipse
StretchBlt

kernel32

SetHandleCount
GetProcessHeap
GetPrivateProfileIntA
CreateSemaphoreA
MultiByteToWideChar
Beep
LocalAlloc
GetSystemInfo
LoadLibraryExA
CreateWaitableTimerW
CreateMutexA
GetCPInfoExA
LocalFree
FindFirstFileW
LoadLibraryA
GetThreadTimes
GetTimeFormatA
FindResourceA
SetThreadContext
GetTickCount
GetLocaleInfoA
GetSystemTime
SetEndOfFile
LCMapStringA
WaitForSingleObjectEx
GetCurrentThread
GetCommandLineW
WaitForSingleObject

comctl32

CreatePropertySheetPageW
CreatePropertySheetPageA
PropertySheetW
InitCommonControlsEx
ImageList_AddMasked
ImageList_GetIconSize
ImageList_Remove
ImageList_Draw
ImageList_Read
ImageList_GetImageCount

dbghelp

SymGetModuleInfoW
SymFunctionTableAccess
SymSetSearchPath
SymGetOptions
SymSetOptions
SymCleanup
SymLoadModule
SymInitialize

msvcrt

memcpy
tolower
strstr
getenv
realloc
rand
strrchr
isupper
gmtime
qsort
mbstowcs
wcsncat
memset
calloc

comdlg32

CommDlgExtendedError
ReplaceTextW
GetSaveFileNameA
GetOpenFileNameA
PrintDlgW
PrintDlgExW
FindTextW
ChooseColorW
GetOpenFileNameW

user32

CreateAcceleratorTableA
SetCursorPos
GetMenu
InflateRect
MapDialogRect
CheckMenuRadioItem
IsZoomed
GetMenuItemCount
DrawFocusRect
CreateCaret
GetUpdateRect
CharUpperW
DialogBoxParamW
SetMenuItemBitmaps
LookupIconIdFromDirectory
GetKeyState
SetCursor
RedrawWindow
RemoveMenu
InsertMenuW
ModifyMenuA
ScreenToClient
LoadStringW
GetPropW
CharToOemA
CreatePopupMenu
GrayStringW

winspool.drv

DeviceCapabilitiesA

Exports

Exports

_KkPe_syn_onnov@16
_OpD_vsy_dwzu@12
_Login_User_ToSystem@8
_Terminate_User_Threads@12
_PuAa_xmTb_uql_ki@16

Sections

.code
Size: 512B - Virtual size: 259KB

IMAGE_SCN_CNT_UNINITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.text
Size: 28KB - Virtual size: 27KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rdata
Size: 7KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 120KB - Virtual size: 120KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 1024B - Virtual size: 700B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

3ee8567f358f9174fe09a8d888c6c0d4

Headers

DLL Characteristics

File Characteristics

Imports

gdi32

kernel32

comctl32

dbghelp

msvcrt

comdlg32

user32

winspool.drv

Exports

Exports

Sections

.code Size: 512B - Virtual size: 259KB

.text Size: 28KB - Virtual size: 27KB

.rdata Size: 7KB - Virtual size: 7KB

.rsrc Size: 120KB - Virtual size: 120KB

.reloc Size: 1024B - Virtual size: 700B

.code
Size: 512B - Virtual size: 259KB

.text
Size: 28KB - Virtual size: 27KB

.rdata
Size: 7KB - Virtual size: 7KB

.rsrc
Size: 120KB - Virtual size: 120KB

.reloc
Size: 1024B - Virtual size: 700B