31ddd2de9d277d7408e27397c72bd369_JaffaCakes118

Sharing

Copy URL Twitter E-mail

General

Target

31ddd2de9d277d7408e27397c72bd369_JaffaCakes118
Size

42KB
MD5

31ddd2de9d277d7408e27397c72bd369
SHA1

934d8376d7f3458d116fd0fffaaf866ef5295ed6
SHA256

cc888815338db11e166c4724aa69b9cf9178a361814464132ef6b6830f192133
SHA512

1c7af5930207c975d08e631cf8ab94a14ceb69f14085d684344a8a61289ca43408e13177e539102a11dc28a5717c9620de852f149d02e8eed0c11e24dcfad2ce
SSDEEP

768:su7Qjqqt1iI8326Q0w1Wv17b4gzque/3OejhSF/9ri7A+VR8Cwr16Sr:x+L/6YWv1n4gds+Yo/9rL0R8rJFr

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
31ddd2de9d277d7408e27397c72bd369_JaffaCakes118

Files

31ddd2de9d277d7408e27397c72bd369_JaffaCakes118
.exe windows:4 windows x86 arch:x86

c779a437c41ba9802469d76dde09378e

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_NO_SEH

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

GetBinaryTypeA
VirtualProtect
VirtualLock
GetConsoleCommandHistoryLengthW
SetCriticalSectionSpinCount
CloseProfileUserMapping
ProcessIdToSessionId
GetFullPathNameA
PeekConsoleInputW
RtlFillMemory
GlobalGetAtomNameA
SleepEx
RegisterConsoleOS2
SetConsoleCursorPosition
GlobalAddAtomW
GetLastError
GetModuleFileNameW
SetThreadAffinityMask
GlobalLock
SetConsoleOutputCP
GetSystemDefaultUILanguage
SetTapePosition
VerifyConsoleIoHandle
QueryDosDeviceW
SetEnvironmentVariableW
DosPathToSessionPathW
SetConsoleDisplayMode
ReleaseMutex
lstrcmpiA
FatalExit
EnumSystemCodePagesW
WriteProcessMemory
SetConsoleHardwareState

user32

PrivateExtractIconExA
UserHandleGrantAccess
GetDC
SetProcessDefaultLayout
WINNLSGetEnableStatus
CreateMenu
IsMenu
GetKeyboardLayoutList
InSendMessage
CallMsgFilterW
LockWindowStation
SetMenuDefaultItem
GetWindowRect
DdeSetUserHandle
ReplyMessage
GetCaretBlinkTime
InSendMessageEx
DeleteMenu
GetUserObjectInformationW
GetMenuState
GetTabbedTextExtentW
DestroyMenu
LoadMenuIndirectW
DefWindowProcA
mouse_event
DrawTextExW
GetWindow
GetMessageA
DefFrameProcW

gdi32

BitBlt
CreateEllipticRgn
GetMetaRgn
OffsetViewportOrgEx
CreateDIBSection
GdiEntry13
EnumFontFamiliesExW
GetMetaFileA
PtInRegion
SetLayout
Polygon
FONTOBJ_vGetInfo
PlayEnhMetaFileRecord
SetPixel
CopyEnhMetaFileA
GdiEntry16
CreateEnhMetaFileW
StrokePath

comdlg32

PageSetupDlgA
FindTextA
ChooseColorA
CommDlgExtendedError
PrintDlgA
ChooseFontW
FindTextW
GetFileTitleA
GetFileTitleW
PrintDlgExW
ChooseColorW
GetSaveFileNameW
LoadAlterBitmap
GetOpenFileNameW
dwOKSubclass
Ssync_ANSI_UNICODE_Struct_For_WOW
GetSaveFileNameA

Sections

.text
Size: 4KB - Virtual size: 1.0MB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: 34KB - Virtual size: 36KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.idata
Size: 3KB - Virtual size: 4KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

c779a437c41ba9802469d76dde09378e

Headers

DLL Characteristics

File Characteristics

Imports

kernel32

user32

gdi32

comdlg32

Sections

.text Size: 4KB - Virtual size: 1.0MB

.data Size: 34KB - Virtual size: 36KB

.idata Size: 3KB - Virtual size: 4KB

.text
Size: 4KB - Virtual size: 1.0MB

.data
Size: 34KB - Virtual size: 36KB

.idata
Size: 3KB - Virtual size: 4KB