379b2372d253e21ed268b582dfa59e49_JaffaCakes118

Sharing

Copy URL

Twitter E-mail

General

Target

379b2372d253e21ed268b582dfa59e49_JaffaCakes118
Size

90KB
MD5

379b2372d253e21ed268b582dfa59e49
SHA1

ad444a0282bb7e0e44779730a4a95995c2760aa7
SHA256

9adf2d51a717a80ece1749eb69e6bef4836fb094ba72ccca9625f274b1f7ee6c
SHA512

be4789715706273729c610b739fb580c2c5acc56c405d892e86814109190880ece9877159c0c5b60f9fe2d6eaf26f8b3975f9a0d24ab00da00b9b5d8bf5f5a96
SSDEEP

1536:T2D6peLu2noHBWBVFyOBpOzNi2cqr6z0qr6kYfE9UT6r1NIW:TTeLu2UOBpz2cqaIpT6rl

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
379b2372d253e21ed268b582dfa59e49_JaffaCakes118

Files

379b2372d253e21ed268b582dfa59e49_JaffaCakes118
.exe windows:4 windows x86 arch:x86

696524208aa80f70377314fb9cdcced4

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

VirtualProtect
lstrcmpA
FatalExit
GetAtomNameA
AddAtomW
lstrcmpA
WaitForSingleObject
SetUnhandledExceptionFilter
GetLongPathNameA
OpenEventA
HeapAlloc
HeapAlloc
ExitProcess
CallNamedPipeA
HeapCreate
FatalExit
lstrcmpA
GetFileAttributesExA
CompareStringA
lstrcmpW
lstrcmpW
lstrcatW
lstrcmpA
WaitForSingleObject
FatalExit
lstrcmpW
GetLongPathNameA
CompareStringA
GetAtomNameA
OpenSemaphoreW
GetExitCodeThread
HeapDestroy
SetUnhandledExceptionFilter
lstrcat
SetUnhandledExceptionFilter
lstrcat
GetFileAttributesExA
AddAtomW
HeapCreate
GetExitCodeThread
HeapCreate
SetUnhandledExceptionFilter
EnumSystemLanguageGroupsA
OpenEventA
AddAtomW
GetComputerNameA
SetLastError
EnumSystemLanguageGroupsA
GetComputerNameA
FatalExit
AddAtomW
lstrcmpA
HeapCreate
WaitForSingleObject
CallNamedPipeA
GetLongPathNameA
GetFileAttributesExA
FatalExit
HeapDestroy
EnumSystemLanguageGroupsA
GetFileAttributesExA
HeapDestroy
AddAtomW
SetUnhandledExceptionFilter
HeapAlloc
HeapCreate
VirtualProtect
GetLongPathNameA
CreateMailslotA

user32

GetWindowLongW
GetDlgItem
CharPrevW
wsprintfW
LoadCursorW
GetDC
LoadStringW
SetWindowLongA
SetForegroundWindow
SendDlgItemMessageA
SetWindowLongW
GetClientRect
CharNextExA
PostMessageA
DefWindowProcA
InvalidateRect
DispatchMessageW
LoadStringA
MessageBoxA
EndDialog
SetDlgItemTextA
wsprintfW
DefWindowProcA
ShowWindow
TranslateMessageEx
DialogBoxParamW
CharNextW
GetDlgItemInt
GetSysColorBrush
SetWindowPos
MessageBoxA
ShowWindow
GetDesktopWindow
TranslateMessage
DefWindowProcA
SetWindowTextA
GetDlgItemTextA
PostQuitMessage
CharPrevA
LoadIconA
SetDlgItemTextW
CreateWindowExW
SetWindowLongA
GetDlgItem
GetParent
TranslateMessage
LoadIconW
ReleaseDC
DialogBoxParamA
DefWindowProcW
KillTimer
TranslateMessage
PostMessageA
SendMessageW

Sections

.text
Size: 47KB - Virtual size: 46KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 3KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 37KB - Virtual size: 37KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

696524208aa80f70377314fb9cdcced4

Headers

File Characteristics

Imports

kernel32

user32

Sections

.text Size: 47KB - Virtual size: 46KB

.rdata Size: 3KB - Virtual size: 3KB

.data Size: 37KB - Virtual size: 37KB

.rsrc Size: 1KB - Virtual size: 1KB

.text
Size: 47KB - Virtual size: 46KB

.rdata
Size: 3KB - Virtual size: 3KB

.data
Size: 37KB - Virtual size: 37KB

.rsrc
Size: 1KB - Virtual size: 1KB